Dell Networking Command Line Reference Guide for the MXL 10/40GbE Switch I/O Module 9.14.1.
Notes, cautions, and warnings NOTE: A NOTE indicates important information that helps you make better use of your product. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. © 2019 Dell Inc. or its subsidiaries. All rights reserved. Dell, EMC, and other trademarks are trademarks of Dell Inc. or its subsidiaries.
Contents 1 About this Guide...........................................................................................................................................44 Objectives......................................................................................................................................................................... 44 Audience........................................................................................................................................................
banner exec.......................................................................................................................................................................77 banner login.......................................................................................................................................................................78 banner motd..........................................................................................................................................
show processes cpu....................................................................................................................................................... 107 show processes ipc flow-control...................................................................................................................................110 show processes memory................................................................................................................................................
resequence prefix-list ipv4.............................................................................................................................................148 show config.....................................................................................................................................................................148 Common IP ACL Commands........................................................................................................................................
show config.....................................................................................................................................................................193 show ip prefix-list detail................................................................................................................................................. 193 show ip prefix-list summary.................................................................................................................................
permit icmp.....................................................................................................................................................................252 permit.............................................................................................................................................................................. 253 deny udp (for IPv6 ACLs)...........................................................................................................................
bgp bestpath router-id ignore....................................................................................................................................... 291 bgp client-to-client reflection........................................................................................................................................291 bgp cluster-id..............................................................................................................................................................
neighbor password......................................................................................................................................................... 317 neighbor peer-group (assigning peers)........................................................................................................................318 neighbor peer-group (creating group).........................................................................................................................
timers bgp extended...................................................................................................................................................... 361 MBGP Commands......................................................................................................................................................... 361 debug ip bgp dampening.........................................................................................................................................
description...................................................................................................................................................................... 389 fcoe priority-bits............................................................................................................................................................ 390 iscsi priority-bits....................................................................................................................................
14 Dynamic Host Configuration Protocol (DHCP)......................................................................................... 440 Commands to Configure the System to be a DHCP Server.....................................................................................441 clear ip dhcp.................................................................................................................................................................... 441 debug ip dhcp server..............................
ip dhcp snooping trust.................................................................................................................................................. 460 ipv6 dhcp snooping trust..............................................................................................................................................460 ip dhcp source-address-validation...............................................................................................................................
18 FIP Snooping............................................................................................................................................492 clear fip-snooping database interface vlan.................................................................................................................492 clear fip-snooping statistics..........................................................................................................................................493 feature fip-snooping...
ip igmp querier-timeout.................................................................................................................................................520 ip igmp query-interval.................................................................................................................................................... 521 ip igmp query-max-resp-time........................................................................................................................................
show interfaces..............................................................................................................................................................559 show interfaces configured.......................................................................................................................................... 563 show interfaces dampening.........................................................................................................................................
ip directed-broadcast.....................................................................................................................................................601 ip domain-list...................................................................................................................................................................601 ip domain-lookup.............................................................................................................................................
ipv6 access-list.............................................................................................................................................................. 638 ipv6 control-plane egress-filter.................................................................................................................................... 639 permit..............................................................................................................................................................
bgp default local-preference.........................................................................................................................................673 bgp enforce-first-as.......................................................................................................................................................673 bgp fast-external-fallover..............................................................................................................................................
neighbor peer-group passive........................................................................................................................................700 neighbor remote-as........................................................................................................................................................ 701 neighbor remove-private-as..........................................................................................................................................
clear ip bgp ipv6 unicast dampening........................................................................................................................... 729 clear ip bgp ipv6 unicast flap-statistics.......................................................................................................................729 debug ip bgp ipv6 unicast dampening.........................................................................................................................
advertise......................................................................................................................................................................... 759 area-password................................................................................................................................................................760 clear config............................................................................................................................................
max-lsp-lifetime..............................................................................................................................................................785 maximum-paths............................................................................................................................................................. 785 metric-style...................................................................................................................................................
show mac-address-table aging-time............................................................................................................................818 show mac learning-limit................................................................................................................................................. 819 Virtual LAN (VLAN) Commands...................................................................................................................................819 description.....
34 Multicast Source Discovery Protocol (MSDP)......................................................................................... 847 clear ip msdp peer..........................................................................................................................................................847 clear ip msdp sa-cache................................................................................................................................................. 848 clear ip msdp statistic..
ip multicast-routing........................................................................................................................................................ 873 mtrace..............................................................................................................................................................................874 show ip mroute.........................................................................................................................................
description...................................................................................................................................................................... 908 distance.......................................................................................................................................................................... 909 distance ospf......................................................................................................................................
show ip ospf interface...................................................................................................................................................943 show ip ospf neighbor................................................................................................................................................... 944 show ip ospf routes...................................................................................................................................................
40 Policy-based Routing (PBR).....................................................................................................................981 description.......................................................................................................................................................................981 ip redirect-group............................................................................................................................................................
ipv6 pim neighbor-filter................................................................................................................................................ 1012 ipv6 pim register-filter.................................................................................................................................................. 1013 ipv6 pim rp-address...............................................................................................................................................
45 Quality of Service (QoS)........................................................................................................................ 1047 Global Configuration Commands............................................................................................................................... 1048 qos-rate-adjust.............................................................................................................................................................
test cam-usage.............................................................................................................................................................1075 trust................................................................................................................................................................................1077 wred..................................................................................................................................................
show rmon..................................................................................................................................................................... 1105 show rmon alarms.........................................................................................................................................................1106 show rmon events..............................................................................................................................................
enable sha256-password....................................................................................................................................... 1136 login authentication.................................................................................................................................................1137 password..................................................................................................................................................................
ip ssh hostbased-authentication........................................................................................................................... 1163 ip ssh key-size......................................................................................................................................................... 1164 ip ssh mac................................................................................................................................................................
sflow ingress-enable..................................................................................................................................................... 1195 sflow extended-switch enable.....................................................................................................................................1196 sflow max-header-size extended................................................................................................................................
logging extended.......................................................................................................................................................... 1227 default logging monitor................................................................................................................................................1228 default logging trap................................................................................................................................................
debug spanning-tree....................................................................................................................................................1256 description.....................................................................................................................................................................1256 disable........................................................................................................................................................
57 System Time and Date............................................................................................................................ 1287 clock set.........................................................................................................................................................................1287 clock summer-time date..............................................................................................................................................
interface management ethernet ip address...............................................................................................................1313 no default-gateway....................................................................................................................................................... 1313 no interface management ethernet ip address......................................................................................................... 1313 reload.....................
peer-link port-channel..................................................................................................................................................1339 peer-routing.................................................................................................................................................................. 1340 peer-routing-timeout...........................................................................................................................................
66 FC Flex IO Modules.................................................................................................................................1374 FC Flex IO Modules...................................................................................................................................................... 1374 Data Center Bridging (DCB) for FC Flex IO Modules..............................................................................................
1 About this Guide This guide provides information about the Dell Networking Operating System (OS) command line interface (CLI). This guide also includes information about the protocols and features found in the Dell OS and on the Dell Networking systems supported by the Dell OS.
x||y Keywords and parameters separated by a double bar allows you to choose any or all of the options. Information Icons This book uses the following information symbols: NOTE: The Note icon signals important operational information. CAUTION: The Caution icon signals information about situations that could result in equipment damage or loss of data. WARNING: The Warning icon signals information about hardware handling that could result in injury.
2 CLI Basics This chapter describes the command line interface (CLI) structure and command modes. The Dell operating software commands are in a text-based interface that allows you to use the launch commands, change command modes, and configure interfaces and protocols.
User "Irene" on line vty3 ( 123.12.1.321 ) Dell#conf When another user enters CONFIGURATION mode, the Dell Networking OS sends a message similar to the following: % Warning: User "admin" on line vty2 "172.16.1.210" is in configuration In this case, the user is “admin” on vty2. Navigating the CLI The Dell Networking Operating System (OS) displays a command line interface (CLI) prompt comprised of the host name and CLI mode. • Host name is the initial part of the prompt and is “Dell” by default.
To obtain a list of partial keywords using a partial keyword: Type a partial keyword and then type a ?. Example The following is an example of typing ip ? at the prompt: Dell(conf)#ip ? igmp Internet Group Management Protocol route Establish static routes telnet Specify telnet options When entering commands, you can take advantage of the following timesaving features: • The commands are not case-sensitive. • You can enter partial (truncated) command keywords.
Using the Keyword no Command To disable, delete or return to default values, use the no form of the commands. For most commands, if you type the keyword no in front of the command, you disable that command or delete it from the running configuration. In this guide, the no form of the command is described in the Syntax portion of the command description.
Filtering the Command Output Multiple Times You can filter a single command output multiple times. To filter a command output multiple times, place the save option as the last filter. For example: Dell# command | grep regular-expression | except regular-expression | grep otherregular-expression | find regular-expression | no-more | save. Command Modes To navigate and launch various CLI modes, use specific commands. Navigation to these modes is described in the following sections.
2 Enter the interface command and then enter an interface type and interface number that is available on the switch. The prompt changes to include the designated interface and slot/port number.
MAC ACCESS LIST Mode To enter MAC ACCESS LIST mode and configure either standard or extended access control lists (ACLs), use the mac access-list standard or mac access-list extended command. To enter MAC ACCESS LIST mode: 1 Verify that you are logged in to CONFIGURATION mode. 2 Use the mac access-list standard or mac access-list extended command. Include a name for the ACL. The prompt changes to include (conf-std-macl) or (conf-ext-macl). You can return to CONFIGURATION mode by using the exit command.
PROTOCOL GVRP Mode To enable and configure GARP VLAN Registration Protocol (GVRP), use PROTOCOL GVRP mode. For more information, refer to GARP VLAN Registration (GVRP). To enter PROTOCOL GVRP mode: 1 Verify that you are logged in to CONFIGURATION mode. 2 Enter the protocol gvrp command. The prompt changes to include (config-gvrp). You can return to CONFIGURATION mode by using the exit command. RAPID SPANNING TREE (RSTP) Mode To enable and configure RSTP, use RSTP mode.
To enter ROUTER RIP mode: 1 Verify that you are logged in to CONFIGURATION mode. 2 Enter the router rip command. The prompt changes to include (conf-router_rip). You can return to CONFIGURATION mode by using the exit command. SPANNING TREE Mode To enable and configure the Spanning Tree protocol, use SPANNING TREE mode. For more information, refer to Spanning Tree Protocol (STP). To enter SPANNING TREE mode: 1 Verify that you are logged in to CONFIGURATION mode.
3 File Management This chapter contains command line interface (CLI) commands needed to manage the configuration files as well as other file management commands. The commands in this chapter are supported by the Dell Networking Operating System (OS).
stack-unit-number Enter the stack-unit number. The range is from 0 to 5. all Enter the keywordall to apply the configuration for all stack units. default Enter the keyword default to use the primary Dell Networking OS image. primary Enter the keyword primary to use the primary Dell Networking OS image. secondary Enter the keyword secondary to use the primary Dell Networking OS image. tftp: Enter the keyword TFTP: to retrieve the image from a TFTP server. tftp://hostip/ filepath.
• Command Modes Command History usbflash: (external Flash) or any sub-directory EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. copy Copy one file to another location. The Dell Networking Operating System (OS) supports IPv4 addressing for FTP, TFTP, and SCP (in the hostip field).
NOTE: Dell Networking OS imposes a length limit on the password you create for performing the secure copy operation. Your password can be no longer than 32 characters. When you use the copy running-config startup-config command to copy the running configuration (the startup configuration file amended by any configuration changes made since the system was started) to the startup configuration file, the Dell Networking OS creates a backup file on the internal flash of the startup configuration.
delete Delete a file from the flash. After deletion, files cannot be restored. Syntax Parameters delete flash: ([flash://]filepath) usbflash ([usbflash://]filepath) flash-url no-confirm Command Modes Command History Example Enter the following location and keywords: • For a file or directory on the internal Flash, enter flash:// then the filename or directory name. • For a file or directory on an external USB drive, enter usbflash:// then the filename or directory name.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You must include the colon (:) when entering this command. CAUTION: This command deletes all files, including the startup configuration file. So, after executing this command, consider saving the running config as the startup config (use the write memory command or copy run start command). Related Commands copy — copies the current configuration to either the startup-configuration file or the terminal.
logging coredump Enable coredump. Syntax logging coredump stack-unit all Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The kernel coredump can be large and may take five to 30 minutes to upload.
NOTE: You must disable logging coredump before you designate a new server destination for your core dumps. Related Commands logging coredump – disables the kernel coredump pwd Display the current working directory. Syntax pwd Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#pwd flash: Dell# Related Commands cd – changes the directory.
Command Modes Command History Usage Information 0-5 Enter the stack member unit identifier to restore only the mentioned stack-unit. all Enter the keyword all to restore all units in the stack. bootvar Enter the keyword bootvar to reset boot line. clear-all Enter the keywords clear-all to reset the NvRAM, boot environment variables, and the system startup configuration. nvram Enter the keyword nvram to reset the NvRAM only. EXEC Privilege Version Description 9.9(0.
Each boot path variable (primary_boot, secondary_boot, and default_boot) is further split into the following three independent variables: • primary_server, primary_file, and primary_type • secondary_server, secondary_file, and secondary_type • default_server, default_file, and default_type NOTE: For information on the default values that these variables take, refer to the Restoring Factory Default Environment Variables section in the Dell Networking OS Configuration guide.
Power-cycling the unit(s). Dell# Example (NvRAM, single unit) Dell#restore factory-defaults stack-unit 1nvram ************************************************************** * Warning - Restoring factory defaults will delete the existing * * persistent settings (stacking, fanout, etc.) * * After restoration the unit(s) will be powercycled immediately.
show file Display contents of a text file in the local filesystem. Syntax show file url Parameters Command Modes Command History url Enter one of the following: • For a file on the internal Flash, enter flash:// then the filename. • For a file on the external Flash, enter usbflash:// then the filename. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Example Command Fields Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show file-systems Size(b) Free(b) 2143281152 2000936960 15848660992 831594496 Dell# Type USERFLASH USBFLASH network network network Flags rw rw rw rw rw Prefixes flash: usbflash: ftp: tftp: scp: Field Description size(b) Lists the size (in bytes) of the storage location. If the location is remote, no size is listed.
Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Example NOTE: A filepath that contains a dot ( . ) is not supported.
ftp for the current FTP configuration fvrp for the current FVRP configuration host for the current host configuration hardwaremonitor for hardware-monitor action-on-error settings igmp for the current IGMP configuration interface for the current interface configuration line for the current line configuration load-balance for the current port-channel load-balance configuration logging for the current logging configuration mac for the current MAC ACL configuration mac-addresstable for the
Command Modes Command History configured (OPTIONAL) Enter the keyword configuration to display line card interfaces with non-default configurations only. status (OPTIONAL) Enter the keyword status to display the checksum for the running configuration and the start-up configuration. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show running-config Current Configuration ...
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show startup-config ! Version E8-3-16-29 ! Last configuration change at Thu Apr 26 19:19:02 2012 by default ! Startup-config last updated at Thu Apr 26 19:19:04 2012 by default ! boot system stack-unit 0 primary system: A: boot system stack-unit 0 secondary tftp://10.11.200.241/ dt-m1000e-5-c2 boot system gateway 10.11.209.
Command Fields Lines Beginning With Description Dell Force10 Network... Name of the operating system Dell Force10 Operating... OS version number Dell Force10 Application... Software version Copyright (c)... Copyright information Build Time... Software build’s date stamp Build Path... Location of the software build files loaded on the system Dell Force10 uptime is... Amount of time the system has been up System image...
flash: After entering the keyword flash:, you can either follow it with the location of the source file in this form: //filepath or press Enter to launch a prompt sequence. usbflash: After entering the keyword usbflash:, you can either follow it with the location of the source file in this form: //filepath or press Enter to launch a prompt sequence. A: Enter this keyword to upgrade the bootflash partition A. B: Enter this keyword to upgrade the bootflash partition B.
B: Defaults none Command Modes EXEC Privilege Command History Enter this keyword to upgrade the bootflash partition B. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Reset the card using the power-cycle option after restoring the FPGA command.
Usage Information Example You can enter this command in the following ways: • verify md5 flash://img-file • verify md5 flash://img-file • verify sha256 flash://img-file • verify sha256 flash://img-file Without Entering the Hash Value for Verification using SHA256 DellEMC# verify sha256 flash://FTOS-SE-9.5.0.0.bin SHA256 hash for FTOS-SE-9.5.0.0.
4 Control and Monitoring The Dell Networking OS supports the following control and monitoring commands. asset-tag Assign and store a unique asset-tag to the stack member. Syntax asset-tag stack-unit unit id Asset-tag ID To remove the asset tag, use no stack-unit unit-id Asset-tag ID command. Parameters stack-unit unit-id Enter the keywordsstack-unit then the unit-id to assign a tag to the specific member. The range is from 0 to 5.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You must save the configuration and reload the system to implement ASF. When you enter the command, the system sends a message stating that the new mode is enabled when the system reloads. banner exec Configure a message that is displayed when your enter EXEC mode.
banner motd — sets a Message of the Day banner. exec-banner — Enables the display of a text string when you enter EXEC mode. line — enables and configures the console and virtual terminal lines to the system. banner login Set a banner to display when logging on to the system. Syntax banner login {acknowledgement | keyboard-interactive | c line c} Enter no banner login to delete the banner text.
If you configure the acknowledgement keyword, the system requires a positive acknowledgement from the user while logging in to the system. $ telnet 10.11.178.16 Trying 10.11.178.16... Connected to 10.11.178.16. Escape character is '^]'. THIS IS A LOGIN BANNER. PRESS ‘Y’ TO ACKNOWLEDGE. ACKNOWLEDGE? [y/n]: y Login: admin Password: Related Commands banner motd — sets a Message of the Day banner. exec-banner — enables the display of a text string when you enter EXEC mode.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command clears alarms that are no longer active. If an alarm situation is still active, it is seen in the system output. clear command history Clear the command history log. Syntax clear command history Command Modes EXEC Privilege Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters Command Modes Command History Example terminal (OPTIONAL) Enter the keyword terminal to specify that you are configuring from the terminal. EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#configure Dell(conf)# debug cpu-traffic-stats Enable the collection of computer processor unit (CPU) traffic statistics.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable Return to EXEC mode. Syntax disable [level] Parameters level Defaults 1 Command Modes EXEC Privilege Command History (OPTIONAL) Enter a number for a privilege level of the Dell OS. The range is from 0 to 15. The default is 1. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Dell(conf-if-te-3/1)#do clear logging Clear logging buffer [confirm] Dell(conf-if-te-3/1)# Dell(conf-if-te-3/1)#do reload System configuration has been modified. Save? [yes/no]: n Proceed with reload [confirm yes/no]: n Dell(conf-if-te-3/1)# enable Enter EXEC Privilege mode or any other privilege level configured. After entering this command, you may need to enter a password.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Replaces the enable xfp-power-updates command. To enable polling and to configure the polling frequency, use this command. enable secure Creates configurable Full–Switch mode where Chassis Management Controller (CMC) access to FN IOM is bypassed for the elements critical to the security certifications. Syntax enable secure To disable the secure mode, use no enable secure command.
exec-banner Enable the display of a text string when the user enters EXEC mode. Syntax exec-banner Defaults Enabled on all lines (if configured, the banner appears). Command Modes LINE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Optionally, use the banner exec command to create a text string that is displayed when you access EXEC mode.
Example Dell con0 is now available Press RETURN to get started. Dell> exit Return to the lower command mode. Syntax exit Command Modes Command History Related Commands • EXEC Privilege • CONFIGURATION • LINE • INTERFACE • PROTOCOL GVRP • SPANNING TREE • MULTIPLE SPANNING TREE • MAC ACCESS LIST • ACCESS-LIST • PREFIX-LIST • ROUTER OSPF • ROUTER RIP Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. end — returns to EXEC Privilege mode.
Usage Information If you use the feature unique-name command, the system generates a host name using the platform type and system serial number. It overwrites any existing host name configured on the system using the hostname command. The feature unique-name command is also added to the running configuration. If you disable the feature using the no feature unique-name command, the system reverts to the default host name of Dell.
ftp-server topdir Specify the top-level directory to be accessed when an incoming FTP connection request is made. Syntax ftp-server topdir directory Parameters directory Enter the directory path. Defaults The internal flash is the default directory. Command Modes CONFIGURATION Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
hostname Set the host name of the system. Syntax Parameters hostname name name Defaults Dell Command Modes CONFIGURATION Command History Usage Information Enter a text string, up to 32 characters long. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The hostname is used in the prompt. You cannot specify spaces in the hostname. Starting with Dell Networking OS version 9.3(0.
ip ftp source-interface Specify an interface’s IP address as the source IP address for FTP connections. Syntax ip ftp source-interface interface Parameters interface Enter the following keywords and slot/port or number information: • For Loopback interfaces, enter the keyword loopback then a number from zero (0) to 16383. • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
ip telnet server enable Enable the Telnet server on the switch. Syntax ip telnet server enable To disable the Telnet server, use the no ip telnet server enable command. Defaults Enabled Command Modes CONFIGURATION Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip ssh server — enables the secure shell (SSH) server on the system.
• For Loopback interfaces, enter the keyword loopback then a number from zero (0) to 16383. • For a Port Channel, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. • For VLAN interface, enter the keyword vlan then a number from 1 to 4094.
login concurrent-session Configures the limit of concurrent sessions for each user on console and virtual terminal lines. Syntax login concurrent-session {limit number-of-sessions | clear—line enable} no login concurrent session {limit number-of-sessions | clear—line enable} Parameters limit number-ofsessions Sets the number of concurrent sessions that any user can have on console and virtual terminal lines. The range is from 1 to 12 (10 VTY lines, one console, and one AUX line).
Current sessions for user admin: Line Location 2 vty 0 10.14.1.97 3 vty 1 10.14.1.97 Clear existing session? [line number/Enter to cancel]: When you try to create more than the permitted number of sessions, the following message appears, prompting you to close one of your existing sessions. You must close any of your existing sessions to login to the system . $ telnet 10.11.178.14 Trying 10.11.178.14... Connected to 10.11.178.14. Escape character is '^]'.
Usage Information Only the system and security administrators can configure login activity tracking and view the login activity details of other users. If you enable user login statistics, the system displays the last successful login details of the current user and the details of any failed login attempts by others. If you use the login statistics time-period days command to set a custom time period, the system only reports the login statistics during that interval.
Supported Modes Command History Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ping Test connectivity between the system and another device by sending echo requests and waiting for replies.
Default is No. Defaults Command Modes Command History pattern pattern (IPv4 only) Enter the IPv4 data pattern. Range: 0-FFFF. Default: 0xABCD. sweep-min-size Enter the minimum size of datagram in sweep range. The range is from 52 to 15359 bytes. sweep-max-size Enter the maximum size of datagram in sweep range. The range is from 53 to 15359 bytes. sweep-interval Enter the incremental value for sweep size. The range is from 1 to 15308 seconds.
reload Reboot the Dell Networking OS. Syntax reload Command Modes EXEC Privilege Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If there is a change in the configuration, the Dell Networking OS prompts you to save the new configuration. Or you can save your running configuration with the copy running-config command. Related Commands redundancy disable-auto-reboot — Resets any designated stack member except the management unit.
log (OPTIONAL) Enter the keyword log to add timestamps to log messages with severity from 0 to 6. datetime (OPTIONAL) Enter the keyword datetime to have the current time and date added to the message. localtime (OPTIONAL) Enter the keyword localtime to include the localtime in the timestamp. msec (OPTIONAL) Enter the keyword msec to include milliseconds in the timestamp. show-timezone (OPTIONAL) Enter the keyword show-timezone to include the time zone information in the timestamp.
-- Major Alarms -Alarm Type Duration ---------------------------------------No major alarms Dell# show command-history Display a buffered log of all commands all users enter along with a time stamp. Syntax show command-history Defaults none Command Modes Command History • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information One trace log message is generated for each command. No password information is saved to this file.
Example 3: service timestamps log uptime DellEMC#show clock 15:51:47.
Example Dell#show cpu-traffic-stats Processor : CP -------------Received 100% traffic on TenGigabitEthernet 1/4 Total packets:100 LLC:0, SNAP:0, IP:100, ARP:0, other:0 Unicast:100, Multicast:0, Broadcast:0 Dell# Related Commands debug cpu-traffic-stats — enables CPU traffic statistics for debugging. show debugging View a list of all enabled debugging processes. Syntax show debugging Command Modes EXEC Privilege Command History Example Version Description 8.3.16.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following example shows the output of the show environment fan command as it appears prior to the Dell Networking OS version 7.8.1.0.
Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If there are no fiber ports in the unit, just the header under show inventory media displays. If there are fiber ports but no "Media not present or accessible". Example Dell#show inventory System Type System Mode Software Version : PE-FN-2210S-IOM : 1.
successfulattempts (Optional)Displays the number of successful login attempts by the current user in the last 30 days or the custom defined time period unsuccessfulattempts (Optional)Displays the number of failed login attempts by the current user in the last 30 days or the custom defined time period. user login-id (Optional)Displays the login statistics of a specific user in the last 30 days or the custom defined time period.
The following is sample output of the show login statistics all command. Dell#show login statistics all -----------------------------------------------------------------User: admin Last login time: 08:54:28 UTC Wed Mar 23 2016 Last login location: Line vty0 ( 10.16.127.
The following is sample output of the show login statistics unsuccessful-attempts user login-id command. Dell# show login statistics unsuccessful-attempts user admin There were 3 unsuccessful login attempt(s) for user admin in last 12 day(s). The following is sample output of the show login statistics successful-attempts command. Dell#show login statistics successful-attempts There were 4 successful login attempt(s) for user admin in last 30 day(s).
seconds. Add the keyword details to display all running processes (except sysdlp). Refer to Example (management-unit). stack-unit 0–5 (OPTIONAL) Enter the keyword stack-unit then the stack member ID. The range is from 0 to 5. As an option of the show processes cpu command, this option displays CPU usage for the designated stack member. Or, as an option of memory, this option limits the output of memory statistics to the designated stack member. Refer to Example (stackunit).
frrpagt 0x762da000 491370 F10StkMgr 0x762f9000 665580 lcMgr 0x7631d000 37580 dla 0x76348000 452110 sysAdmTsk 0x76367000 1751990 timerMgr 0x76385000 14460 PM 0x7629d000 347970 diagagt 0x763c7000 0 evagt 0x763eb000 90800 ipc 0x77ee9000 5 tme 0x77eec000 0 ttraceIpFlow 0x77eee000 20 linkscan_user_threa 0x77ff6000 0 isrTask 0x7811a000 0 tDDB 0x7811c000 22980 GC 0x7811e000 0 bshell_reaper_threa 0x78365000 10 tSysLog 0x78367000 1106980 tTimerTask 0x78369000 13131160 tExcTask 0x7836b000 30 tLogTask 0x785bb000 14765
f10appioserv mrtm f10appioserv l2mgr f10appioserv l2pm f10appioserv arpm Dell# 225280 5496832 225280 1036288 225280 172032 225280 192512 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 208896 11124736 208896 16134144 208896 7483392 208896 7057408 Example (stack-unit) Dell#show process memory stack-unit 0 Total: 2147483648, MaxUsed: 378433536, CurrentUsed: 378433536, CurrentFree: 1769050112 TaskName TotalAllocated TotalFreed MaxHeld CurrentHolding f10appioserv 225280 0 0 208896 ospf 573440 0 0 8716288 f10appioserv 2252
Command Modes Command History Usage Information • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show processes memory Display memory usage information based on the running processes. Syntax show processes memory {management-unit | stack unit {0–5 | all | summary}} Parameters Command Modes Command History Usage Information management-unit Enter the keyword management-unit for CPU memory usage of the stack management unit. stack unit 0–5 Enter the keyword stack unit then a stack unit ID of the member unit for which to display memory usage on the forwarding processor.
The output of the show memory command and this command differ based on which the Dell OS processes are counted. • In the show memory output, the memory size is equal to the size of the application processes. • In the output of this command, the memory size is equal to the size of the application processes plus the size of the system processes.
Version Description 9.14(0.0) Introduced on the S5048F-ON. 9.13(0.0) Introduced on the S3048–ON, S3100 series, S4048–ON, S4048T–ON, S5000, S6000, S6000–ON, S6010–ON, S6100–ON, Z9100–ON, C9010, MXL, M-IOA, and FN-IOM. Usage Information You can use the show reset-reason without the stack-unit option to view the reason for the last system reboot of the local system.
Type Cause Time ----------------------------------------------------------------------------------stack-unit 1 Reboot by Software 11/05/2017-09:04 stack-unit 2 Reboot by Software 11/05/2017-09:04 stack-unit 3 Cold Reset N/A stack-unit 4 N/A N/A stack-unit 5 N/A N/A stack-unit 6 N/A N/A show software ifm Display interface management (IFM) data.
IGMP 0 0x000e027f 0x00000000 0x00000000 0x00000000 0 SNMP 0 0x00000000 0x00000000 0x8000c2c0 0x00000002 21 EVTTERM 0 0x00000000 0x00000000 0x800002c0 0x0003c000 20 MRTM 0 0x00000000 0x00000000 0x81f7103f 0xc0600000 30 DSM 0 0x00000000 0x00000000 0x80771033 0x00000000 58 Mirror 0 0x00000000 0x00000000 0x80770003 0x00000000 25 LACP 0 0x00000000 0x00000000 0x8000383f 0x01000000 33 SFL_CP 0 0x00000000 0x00000000 0x807739ff 0x00000000 24 DHCP 0 0x00000000 0x00000000 0x807040f3 0x18001000 35 V6RAD 0 0x00000433 0x
Master priority : 0 Hardware Rev : X01 Num Ports : 12 Up Time : 20 hr, 2 min Dell Networking OS Version : 1-0(0-4127) Jumbo Capable : yes POE Capable : no FIPS Mode : disabled Boot Flash : A: 4.1.1.1 [booted] B: 4.1.1.1 Boot Selector : 4.1.0.
Parameters stack-unit (OPTIONAL) Enter the keyword stack-unit to view CPU memory usage for the stack member designated by unit-id. The range is 0 to 7. page (OPTIONAL) Enter the keyword page to view 24 lines of text at a time. Press the SPACE BAR to view the next 24 lines. Press ENTER to view the next line of text. When using the pipe command ( | ), enter one of these keywords to filter command output. For details about filtering commands, refer to CLI Basics.
Dell#show tech-support stack-unit 1 ? page Page through output | Pipe through a command Dell#show tech-support stack-unit 1 | ? except Show only text that does not match a pattern find Search for the first occurrence of a pattern grep Show only text that matches a pattern no-more Don't paginate output save Save output to a file Dell#show tech-support stack-unit 1 | save ? flash: Save to local file system (flash://filename (max 20 chars) ) Dell#show tech-support stack-unit 1 | save flash://LauraSave Sta
IOM-Series:XL 9.14(0.0) 48247080 Jul 1 2018 12:08:54 TARGET IMAGE INFORMATION : --------------------------------------------------------------------Type Version Target checksum runtime 9.14(0.0) Control Processor passed BOOT IMAGE INFORMATION : --------------------------------------------------------------------Type Version Target checksum boot flash 4.0.1.
Rcvd: 0 format errors, 0 checksum errors, 0 redirects, 2 unreachable 0 echo, 0 echo reply, 0 mask requests, 0 mask replies, 0 quench 0 parameter, 0 timestamp, 0 info request, 0 other Sent: 0 redirects, 0 unreachable, 0 echo, 0 echo reply 0 mask requests, 0 mask replies, 0 quench, 0 timestamp 0 info reply, 0 time exceeded, 0 parameter problem UDP statistics: Rcvd: 396516 total, 0 checksum errors, 0 no port 0 short packets, 0 bad length, 28746 no port broadcasts, 0 socket full Sent: 16460 total, 28746 forward
Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. terminal xml Enable XML mode in Telnet and SSH client sessions. Syntax terminal xml To exit XML mode, use the terminal no xml command. Defaults Disabled Command Modes Command History Usage Information • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information When you enter the traceroute command without specifying an IP address (Extended Traceroute), you are prompted for a target and source IP address, timeout (in seconds) (default is 5), a probe count (default is 3), minimum TTL (default is 1), maximum TTL (default is 30), and port number (default is 33434). To keep the default setting for those parameters, press the ENTER key. Example (IPv4) Dell#traceroute www.force10networks.com Translating "www.force10networks.com"...domain server (10.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Each time you issue this command, it replaces the previously configured address of the same family. The no virtual-ip command takes an address/prefix-length argument, so that the desired address only is removed. If you enter the no virtual-ip command without any specified address, the IPv4 virtual addresses are removed. Example Dell#virtual-ip 10.11.197.
5 802.1X An authentication server must authenticate a client connected to an 802.1X switch port. Until the authentication, only extensible authentication protocol over LAN (EAPOL) traffic is allowed through the port to which a client is connected. After authentication is successful, normal traffic passes through the port. The Dell Networking operating software supports remote authentication dial-in service (RADIUS) and active directory environments using 802.1X Port Authentication.
• dot1x reauthentication • dot1x reauth-max • dot1x server-timeout • dot1x supplicant-timeout • dot1x tx-period • mac • show dot1x cos-mapping interface • show dot1x interface • show dot1x profile debug dot1x Display 802.1X debugging information. Syntax debug dot1x [all | auth-pae-fsm | backend-fsm | eapol-pdu] [interface interface] Parameters all Enable all 802.1X debug messages. auth-pae-fsm Enable authentication PAE FSM debug messages.
Command Modes CONFIGURATION (conf-if-interface-slot/port) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If the host responds to 802.1X with an incorrect login/password, the login fails. The switch attempts to authenticate again until the maximum attempts configured is reached.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The prerequisites for enabling MAB-only authentication on a port are: • Enable 802.1X authentication globally on the switch and on the port (the dot1x authentication command). • Enable MAC authentication bypass on the port (the dot1x mac-auth-bypass command). In MAB-only authentication mode, a port authenticates using the host MAC address even though 802.1xauthentication is enabled.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x authentication (Configuration) — Enable dot1x globally. dot1x critical-vlan Configure critical-VLAN for users or devices when authentication server is not reachable. Syntax Parameters [no] dot1x critical-vlan vlan-id vlan-id Defaults Not Configured. Command Modes INTERFACE Enter the VLAN identifier. The VLAN-ID range is from 1 to 4094.
Critical VLAN id: Mac-Auth-Bypass: Mac-Auth-Bypass Only: Tx Period: Quiet Period: ReAuth Max: Supplicant Timeout: Server Timeout: Re-Auth Interval: Max-EAP-Req: Host Mode: Auth PAE State: Backend State: 400 Disable Disable 30 seconds 60 seconds 2 30 seconds 30 seconds 60 seconds 2 SINGLE_HOST Authenticated Idle dot1x profile Configure a dot1x profile to define a list of trusted supplicant MAC addresses.
dot1x static-mab Enable static MAC authorization bypass (MAB) and configure static MAB profile to an interface. Syntax Parameters [no] dot1x static-mab profile profile-name profile profile-name Defaults Disabled. Command Modes INTERFACE Enter the keyword profile and the profile-name to configure the static MAB profile name. The profile name length is limited to 32 characters. INTERFACE (BATCH MODE) Command History Usage Information This guide is platform-specific.
Quiet Period: ReAuth Max: Supplicant Timeout: Server Timeout: Re-Auth Interval: Max-EAP-Req: Host Mode: Auth PAE State: Backend State: 60 seconds 2 30 seconds 30 seconds 60 seconds 2 SINGLE_HOST Authenticated Idle dot1x guest-vlan Configure a guest VLAN for limited access users or for devices that are not 802.1X capable. Syntax dot1x guest-vlan vlan-id To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command. Parameters vlan-id Enter the VLAN Identifier. The range is from 1 to 4094.
dot1x host-mode Enable single-host or multi-host authentication. Syntax Parameters dot1x host-mode {single-host | multi-host | multi-auth} single-host Enable single-host authentication. multi-host Enable multi-host authentication. multi-auth Enable multi-supplicant authentication. Defaults single-host Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
dot1x max-eap-req Configure the maximum number of times an extensive authentication protocol (EAP) request is transmitted before the session times out. Syntax dot1x max-eap-req number To return to the default, use the no dot1x max-eap-req command. Parameters number Defaults 2 Command Modes INTERFACE Supported Modes Full–Switch Command History Enter the number of times an EAP request is transmitted before a session time-out. The range is from 1 to 10. The default is 2. Version Description 9.
Parameters force-authorized Enter the keywords force-authorized to forcibly authorize a port. auto Enter the keyword auto to authorize a port based on the 802.1X operation result. force-unauthorized Enter the keywords force-unauthorized to forcibly deauthorize a port. Defaults none Command Modes Auto Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Defaults 3600 seconds (1 hour) Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x reauth-max Configure the maximum number of times a port can reauthenticate before the port becomes unauthorized. Syntax dot1x reauth-max number To return to the default, use the no dot1x reauth-max command.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When you configure the dot1x server-timeout value, take into account the communication medium used to communicate with an authentication server and the number of RADIUS servers configured.
Parameters seconds Defaults 30 seconds Command Modes INTERFACE Supported Modes Full–Switch Command History Enter the interval time, in seconds, that EAPOL PDUs are transmitted. The range is from 1 to 65535. The default is 30. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. mac Configure a list of supplicant MAC addresses for dot1x profile represented with a profile-name.
DellEMC(conf-dot1x-profile)#show config dot1x profile mySupplicants mac 00:50:56:aa:01:10 mac 00:50:56:aa:01:11 DellEMC(conf-dot1x-profile)# DellEMC(conf-dot1x-profile)#exit show dot1x cos-mapping interface Display the CoS priority-mapping table the RADIUS server provides and applies to authenticated supplicants on an 802.1X-enabled system.
802.1p CoS re-map table on Te 0/1: ---------------------------------802.1p CoS re-map table for Supplicant: 00:00:00:00:00:10 Dot1p 0 1 2 3 4 5 6 7 Dell# Remapped Dot1p 7 6 5 4 3 2 1 0 show dot1x interface Display the 802.1X configuration of an interface.
Auth-Fail VLAN id: Auth-Fail Max-Attempts: Mac-Auth-Bypass: Mac-Auth-Bypass Only: Tx Period: Quiet Period: ReAuth Max: Supplicant Timeout: Server Timeout: Re-Auth Interval: Max-EAP-Req: Host Mode: Auth PAE State: Backend State: Dell# NONE NONE Enable Enable 3 seconds 60 seconds 2 30 seconds 30 seconds 3600 seconds 2 SINGLE_HOST Authenticated Idle Dell#show dot1x interface tengigabitethernet 0/1 mac-address 00:00:00:00:00:10 Supplicant Mac: 0 0 0 0 0 10 Lookup for Mac: 802.
Command History Example This guide is platform-specific. For command information about other platforms, refer to the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S3100 series, S4048–ON, S4048–ON, S4810, S4820T, S5000, S6000, S6000–ON, S6100–ON, C9010, Z9100–ON, and Z9500. 9.9(0.0) Introduced on the C9010. DellEMC#show dot1x profile 802.
6 Access Control Lists (ACL) Access control lists (ACLs) are supported by the Dell Networking Operating System (OS).
• permit tcp • permit udp • seq • Common MAC Access List Commands • clear counters mac access-group • mac access-group • show mac access-lists • show mac accounting access-list • Standard MAC ACL Commands • deny • mac access-list standard • permit • seq • Extended MAC ACL Commands • deny • mac access-list extended • permit • seq • IP Prefix List Commands • clear ip prefix-list • deny • ip prefix-list • permit • seq • show config • show ip prefix-list detail
• deny tcp • deny udp • deny arp (for Extended MAC ACLs) • deny icmp • deny ether-type (for Extended MAC ACLs) • deny • deny • permit (for Standard IP ACLs) • permit arp • permit ether-type (for Extended MAC ACLs) • permit icmp • permit udp • permit (for Extended IP ACLs) • permit • seq • permit tcp • seq arp • seq ether-type • seq • seq • permit udp • permit tcp • permit icmp • permit • deny udp (for IPv6 ACLs) • deny tcp (for IPv6 ACLs) • deny icmp (for
• Supported Modes Command History CONFIGURATION-MAC ACCESS LIST-EXTENDED Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. remark Enter a description for an ACL entry. Syntax remark [remark-number] [description] Parameters remark-number Enter the remark number. The range is from 0 to 4294967290. NOTE: You can use the same sequence number for the remark and an ACL rule.
To remove a remark, use the no remark command with or without the sequence number. If there is a matching string, the system deletes the remark. Example DellEMC(config-std-nacl)# remark 10 Deny rest of the traffic DellEMC(config-std-nacl)# remark 5 Permit traffic from XYZ Inc. DellEMC(config-std-nacl)# show config ! ip access-list standard test remark 5 Permit traffic from XYZ Inc. seq 5 permit 1.1.1.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you have exhausted all the sequence numbers, this feature permits re-assigning a new sequence number to entries of an existing access-list. Related Commands resequence prefix-list ipv4 — resequences a prefix list. resequence prefix-list ipv4 Re-assign sequence numbers to entries of an existing prefix list.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(config-std-nacl)#show conf ! ip access-list standard test remark 5 Permit traffic from XYZ Inc. seq 5 permit 1.1.1.0/24 count remark 10 Deny traffic from ABC seq 10 deny 2.1.1.0/24 count Dell(config-std-nacl)# Common IP ACL Commands The following commands are available within both IP ACL modes (Standard and Extended) and do not have mode-specific options.
specify (ipv4 or ipv6), the ACL processes either IPv4 or IPv6 rules, but not both. Using this configuration, you can set up two different types of access classes with each class processing either IPv4 or IPv6 rules separately. However, if you already have configured generic IP ACL on a terminal line, then you cannot further apply IPv4 or IPv6 specific filtering on top of this configuration. Because, both IPv4 and IPv6 access classes are already configured on this terminal line.
Supported Modes Command History Usage Information Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module platform. You can assign one ACL (standard or extended ACL) to an interface.. NOTE: This command is not supported on the FN IOMSwitch Loopback interfaces. NOTE: If outbound(egress) IP ACL is applied on switch port, filter will be applied only for routed traffic egressing out of that port.
show ip accounting access-list Display the IP access-lists created on the switch and the sequence of filters. Syntax show ip accounting {access-list access-list-name | cam_count} interface interface Parameters Command Modes Supported Modes Command History Usage Information access-list-name Enter the name of the ACL to be displayed. cam_count List the count of the CAM rules for this ACL.
The switch supports both Ingress and Egress IP ACLs. NOTE: Also refer to the Commands Common to all ACL Types and Common IP ACL Commands sections. deny (for Standard IP ACLs) To drop packets with a certain IP address, configure a filter.
Usage Information Version Description 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platforms. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
The number of entries allowed per ACL is hardware-dependent. For detailed specifications on entries allowed per ACL, refer to your line card documentation. Example Dell(conf)#ip access-list standard TestList Dell(config-std-nacl)# Related Commands ip access-list extended — creates an extended access list. resequence access-list — Displays the current configuration. permit (for Standard IP ACLs) To permit packets from a specific source IP address to leave the switch, configure a filter.
monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
source Enter an IP address in dotted decimal format of the network from which the packet was received. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces.
destination Enter the IP address of the network or host to which the packets are sent. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port.
Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module. 9.3(0.
mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address. dscp Enter this keyword dscp to deny a packet based on the DSCP value. The range is from 0 to 63.
of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
1 2 3 4 5 6 7 8 0000111110100000 0000111111000000 0001000000000000 0001100000000000 0001110000000000 0001111000000000 0001111100000000 0001111101000000 1111111111100000 1111111111000000 1111100000000000 1111110000000000 1111111000000000 1111111100000000 1111111111000000 1111111111111111 4000 4032 4096 6144 7168 7680 7936 8000 4031 4095 6143 7167 7679 7935 7999 8000 32 64 2048 1024 512 256 64 1 Total Ports: 4001 Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM.
port port Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535. destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. count (OPTIONAL) Enter the keyword count to count packets processed by the filter.
can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces Example An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
Related Commands ip access-list standard — configures a standard IP access list. resequence access-list — Displays the current configuration. permit (for Extended IP ACLs) To pass IP packets meeting the filter criteria, configure a filter.
Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped.
mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or noncontiguous. any Enter the keyword any to match and drop specific Ethernet traffic on the interface. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent. dscp Enter the keyword dscp to deny a packet based on the DSCP value.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces.
port port • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port parameter) Enter the application layer port number. Enter two port numbers if you are using the range logical operand. The range is from 0 to 65535. The following list includes some common TCP port numbers: • 23 = Telnet • 20 and 21 = FTP • 25 = SMTP • 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module platform. The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the “Quality of Service” chapter of the Dell Networking OS Configuration Guide. The switch cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. Most ACL rules require one entry in the CAM.
permit — assigns a permit filter for IP packets. permit udp — assigns a permit filter for UDP packets. permit udp To pass UDP packets meeting the filter criteria, configure a filter.
of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Total Ports: 4001 Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM. Dell# Data Mask From To 1 0000000000000000 1111110000000000 0 #Covered 1023 1024 Total Ports: 1024 Related Commands ip access-list extended — creates an extended ACL. permit — assigns a permit filter for IP packets. permit tcp — assigns a permit filter for TCP packets. seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.
port port • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port parameter.) (OPTIONAL) Enter the application layer port number. Enter two port numbers if you are using the range logical operand. The range is from 0 to 65535. The following list includes some common TCP port numbers: • 23 = Telnet • 20 and 21 = FTP • 25 = SMTP • 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent.
Usage Information The order option is relevant in the context of the Policy QoS feature only. The following applies: • The seq sequence-number command is applicable only in an ACL group. • The order option works across ACL groups that have been applied on an interface via the QoS policy framework. • The order option takes precedence over seq sequence-number. • If sequence-number is not configured, the rules with the same order value are ordered according to their configuration order.
Parameters mac-list-name Command Modes EXEC Privilege Supported Modes Full–Switch Command History (OPTIONAL) Enter the name of a configured MAC access list. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mac access-group Apply a MAC ACL to traffic entering or exiting an interface. Enter into the Interface mode and apply the MAC ACL in the following manner.
4 Related Commands If the MAC ACL is applied on a VLAN ACL group, then none of the VLANs in that group should have an access list applied on it. mac access-list standard — configures a standard MAC ACL. mac access-list extended — configures an extended MAC ACL. show mac access-lists Display all of the Layer 2 ACLs configured in the system, whether or not they are applied to an interface, and the count of matches/ mismatches against each ACL entry displayed.
• in | out Command Modes Supported Modes Command History • EXEC • EXEC Privilege For a VLAN interface enter the keyword VLAN and then the vlan id Identify whether ACL is applied on ingress or egress side. Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The ACL hit counters in this command increment the counters for each matching rule, not just the first matching rule.
mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keywordlog to enable the triggering of ACL log messages.
Related Commands permit — configures a MAC address filter to pass packets. seq — configures a MAC address filter with a specified sequence number. mac access-list standard To configure a standard MAC ACL, name a new or existing MAC access control list (MAC ACL) and enter MAC ACCESS LIST mode. Syntax mac access-list standard mac-list-name Parameters mac-list-name Defaults Not configured.
mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
Related Commands deny — configures a MAC ACL filter to drop packets. seq —configure a MAC ACL filter with a specified sequence number. seq To a deny or permit filter in a MAC access list while creating the filter, assign a sequence number. Syntax seq sequence-number {deny | permit} {any | mac-source-address [mac-sourceaddress-mask]} [count [byte]] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, use the no seq sequence-number command.
Usage Information Version Description 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When the configured maximum threshold is exceeded, generation of logs is stopped.
• Parameters Use the no deny {any | host mac-address | mac-source-address mac-sourceaddress-mask} {any | host mac-address | mac-destination-address macdestination-address-mask} command. any Enter the keyword any to drop all packets. host mac-address Enter the keyword host and then enter a MAC address to drop packets with that host address. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask Specify which bits in the MAC address must match.
mac access-list extended Name a new or existing extended MAC access control list (extended MAC ACL). Syntax Parameters mac access-list extended access-list-name [cpu-qos] access-list-name Enter a text string as the MAC access list name, up to 140 characters. cpu-qos Enter the keyword cpu-qos to assign this ACL to control plane traffic only (CoPP). Defaults None Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.
• Parameters Use the no permit {any | host mac-address | mac-source-address mac-sourceaddress-mask} {any | mac-destination-address mac-destination-address-mask} command. any Enter the keyword any to forward all packets. host Enter the keyword host then a MAC address to forward packets with that host address. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match.
seq Configure a filter with a specific sequence number. Syntax Parameters seq sequence-number {deny | permit} {any | host mac-address | mac-sourceaddress mac-source-address-mask} {any | host mac-address | mac-destinationaddress mac-destination-address-mask} [ethertype operator] [count [byte]] sequence-number Enter a number as the filter sequence number. The range is from zero (0) to 65535. deny Enter the keyword deny to drop any traffic matching this filter.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. deny — configures a filter to drop packets. permit — configures a filter to forward packets. IP Prefix List Commands When you create an access-list without any rule and then apply it to an interface, the ACL behavior reflects implicit permit. To configure or enable IP prefix lists, use these commands.
Command Modes PREFIX-LIST Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Sequence numbers for this filter are automatically assigned starting at sequence number 5. If you do not use the ge or le options, only packets with an exact match to the prefix are filtered. Related Commands permit — configures a filter to pass packets.
ge min-prefixlength (OPTIONAL) Enter the keyword ge and then enter the minimum prefix length, which is a number from zero (0) to 32. le max-prefix-length (OPTIONAL) Enter the keyword le and then enter the maximum prefix length, which is a number from zero (0) to 32. Command Modes PREFIX-LIST Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you do not use the ge or le options, only packets with an exact match to the prefix are filtered. Related Commands deny — configures a filter to drop packets. permit — configures a filter to pass packets. show config Display the current PREFIX-LIST configurations.
Example Dell#show ip prefix-list detail Ip Prefix-list with the last deletion/insertion: PL_OSPF_to_RIP ip prefix-list PL_OSPF_to_RIP: count: 3, range entries: 1, sequences: 5 - 25 seq 5 permit 1.1.1.0/24 (hit count: 0) seq 10 deny 2.1.0.0/16 ge 23 (hit count: 0) seq 25 permit 192.0.0.0 bitmask 192.0.0.0 (hit count: 800) show ip prefix-list summary Display a summary of the configured prefix lists.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The continue feature allows movement from one route-map entry to a specific route-map entry (the sequence number). If you do not specify the sequence number, the continue feature simply moves to the next sequence number (also known as an implied continue). If a match clause exists, the continue feature executes only after a successful match occurs.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. route-map — Enables a route map. match interface To match routes whose next hop is on the interface specified, configure a filter. Syntax match interface interface To remove a match, use the no match interface interface command. Parameters interface Defaults Not configured.
match ip address To match routes based on IP addresses specified in an access list, configure a filter. Syntax Parameters match ip address prefix-list-name prefix-list-name Defaults Not configured. Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Related Commands Enter the name of configured prefix list, up to 140 characters. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands match interface — redistributes routes that match the next-hop interface. match ip address — redistributes routes that match an IP address. match ip route-source — redistributes routes that match routes advertised by other routers. match metric — redistributes routes that match a specific metric. match route-type — redistributes routes that match a route type. match tag — redistributes routes that match a specific tag.
Parameters metric-value Defaults Not configured. Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Related Commands Enter a value to match. The range is from zero (0) to 4294967295. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. match interface — redistributes routes that match the next-hop interface. match ip address — redistributes routes that match an IP address.
match ip route-source — redistributes routes that match routes advertised by other routers. match metric — redistributes routes that match a specific metric. match tag — redistributes routes that match a specific tag. match tag To redistribute only routes that match a specified tag value, configure a filter. Syntax match tag tag-value Parameters tag-value Defaults Not configured.
Defaults Not configured. If you do not define a keyword (permit or deny) for the route map, the permit action is the default. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Parameters + (OPTIONAL) Enter + to add a metric-value to the redistributed routes. - (OPTIONAL) Enter - to subtract a metric-value from the redistributed routes. metric-value Enter a number as the new metric value. The range is from zero (0) to 4294967295. Defaults Not configured. Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
set tag To specify a tag for redistributed routes, configure a filter. Syntax Parameters set tag tag-value tag-value Defaults Not configured. Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Related Commands Enter a number as the tag. The range is from zero (0) to 4294967295. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. set automatic-tag — computes the tag value of the route.
Parameters Command Modes Supported Modes Command History map-name • EXEC • EXEC Privilege (OPTIONAL) Enter the name of a configured route map, up to 140 characters. Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show route-map route-map firpo, permit, sequence 10 Match clauses: Set clauses: tag 34 Dell# Related Commands route-map — configures a route map.
threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes.
deny (for Extended IP ACLs) Configure a filter that drops IP packets meeting the filter criteria. Syntax deny {ip | ip-protocol-number} {source mask | any | host ip-address} {destination mask | any | host ip-address} [count [byte]] [dscp value] [order] [monitor] [fragments] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
Supported Modes Command History Usage Information Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped.
count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority).
traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists.
• port port range = inclusive range of ports (you must specify two ports for the port command) Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535. The following list includes some common TCP port numbers: Defaults • 23 = Telnet • 20 and 21 = FTP • 25 = SMTP • 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D.
You can configure either count (packets) or count (bytes). However, for an ACL with multiple rules, you can configure some ACLs with count (packets) and others as count (bytes) at any given time. Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators (for example, gt, lt, or range) may require more than one entry. The range of ports is configured in the CAM based on bit mask boundaries; the space required depends on exactly what ports are included in the range.
deny udp To drop user datagram protocol (UDP) packets meeting the filter criteria, configure a filter. Syntax deny udp {source mask | any | host ip-address} [operator port [port]] {destination mask | any | host ip-address} [dscp] [operator port [port]] [count [byte]] [order] [fragments] [threshold-in-msgs [count]] To remove this filter, you have two choices: Parameters 212 • Use the no seq sequence-number command if you know the filter’s sequence number.
ACL logs are terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which the ACL logs are generated is five minutes. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.
Total Ports: 1024 Related Commands deny — assigns a filter to deny IP traffic. deny tcp — assigns a filter to deny TCP traffic. deny arp (for Extended MAC ACLs) Configure an egress filter that drops ARP packets on egress ACL supported line cards. (For more information, refer to your line card documentation).
order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) If you did not use the keyword order, the ACLs have the lowest order by default (255).
The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the Quality of Service chapter of the Dell Networking OS Configuration Guide. The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to the Port Monitoring. When you use the log option, the CP processor logs details the packets that match.
of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
• Parameters Use the no deny ether-type protocol-type-number {destination-mac-address macaddress-mask | any} vlan vlan-id {source-mac-address mac-address-mask | any} command. protocol-typenumber Enter a number from 600 to FFFF as the specific Ethernet type traffic to drop. destination-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platforms. When the configured maximum threshold is exceeded, generation of logs is stopped.
threshold-in-msgs count (OPTIONAL) Enter thethreshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated. with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The threshold range is from 1 to 10 minutes.
deny To drop packets with a certain IP address, configure a filter. Syntax deny {any | host mac-address | mac-source-address mac-source-address-mask}{any | host mac-address | mac-destination-address mac-destination-address-mask} [ethertype-operator] [count [byte]][log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: Parameters Defaults • Use the no seq sequence-number command if you know the filter’s sequence number.
Usage Information Version Description 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module. 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the Quality of Service chapter of the Dell Networking OS Configuration Guide.
mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address or hostname. no-drop Enter the keywords no-drop to match only the forwarded packets. count (OPTIONAL) Enter the keyword count to count packets processed by the filter.
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface.
The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to Port Monitoring. You cannot include IP, TCP, or UDP filters in an ACL configured with ARP filters. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
any Enter the keyword any to match and drop specific Ethernet traffic on the interface. vlan vlan-id Enter the keyword vlan and then enter the VLAN ID to filter traffic associated with a specific VLAN. The range is 1 to 4094 and 1 to 2094 for ExaScale (you can use IDs 1 to 4094). To filter all VLAN traffic specify VLAN 1. source-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
Usage Information Version Description 7.4.1.0 Added the monitor option. 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the “Quality of Service” chapter of the Dell Networking OS Configuration Guide. NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead.
Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or noncontiguous. any Enter the keyword any to match and drop specific Ethernet traffic on the interface. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address.
count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval. If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs.
destination Enter the IP address of the network or host to which the packets are sent. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lowerorder numbers have a higher priority).
This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Example An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
bytes (OPTIONAL) Enter the keyword bytes to count bytes processed by the filter. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255).
Related Commands ip access-list extended — creates an extended ACL. permit tcp — assigns a permit filter for TCP packets. permit udp — assigns a permit filter for UDP packets. permit To forward packets from a specific source MAC address, configure a filter.
Usage Information Version Description 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When the configured maximum threshold is exceeded, generation of logs are stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100.
permit tcp To pass TCP packets meeting the filter criteria, configure a filter. Syntax permit tcp {source mask | any | host ip-address} [bit] [operator port [port]] {destination mask | any | host ip-address} [bit] [dscp] [operator port [port]] [count [byte]] [order] [fragments][log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
To remove this filter, use the no seq sequence-number command. Parameters sequence-number Enter a number from 0 to 4294967290. deny Enter the keyword deny to drop all traffic meeting the filter criteria.. permit Enter the keyword permit to forward all traffic meeting the filter criteria. destination-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. 8.1.1.0 Introduced on the E-Series ExaScale. 7.4.1.
This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. seq ether-type Configure an egress filter with a specific sequence number that filters traffic with specified types of Ethernet packets.
log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes.
You cannot include IP, TCP, or UDP (Layer 3) filters in an ACL configured with ARP or Ether-type (Layer 2) filters. Apply Layer 2 ACLs to interfaces in Layer 2 mode. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
permit — configures a filter to forward packets. seq — assigns a sequence number to a deny or permit filter in an IP access list while creating the filter. seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.
• 25 = SMTP • 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry.
If you configure the sequence-number, the sequence-number is used as a tie breaker for rules with the same order. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
• gt = greater than • lt = less than • range = inclusive range of ports (you must specify two port for the port parameter.) port port (OPTIONAL) Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is 0 to 65535. destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128.
traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists.
• 169 = SNMP destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. The :: notation specifies successive hexadecimal fields of zero.
can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces. You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction.
of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor to monitor traffic on the monitoring interface specified in the flow-based monitoring session along with the filter operation.
Parameters • Use the no seq sequence-number command syntax if you know the filter’s sequence number • Use the no permit {ipv6-protocol-number | icmp | ipv6 | tcp | udp} command ip-protocol-number Enter an IPv6 protocol number. The range is from 0 to 255. icmp Enter the keyword icmp to filter internet Control Message Protocol version 6. ipv6 Enter the keyword ipv6 to filter any internet Protocol version 6. tcp Enter the keyword tcp to filter the Transmission Control protocol.
deny udp (for IPv6 ACLs) Configure a filter to drop user datagram protocol (UDP) packets meeting the filter criteria.
monitor Defaults (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command syntax if you know the filter’s sequence number • Use the no deny tcp {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} command source Enter the IP address of the network or host from which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous.
The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes ACCESS-LIST Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform.
Defaults source Enter the IPv6 address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ipv6–address Enter the keyword host then the IPv6 address to specify a host IP address.
traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists.
Usage Information Version Description 9.4(0.0) Added the support for flow-based monitoring on theMXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
7 Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM) This section describes the access control list (ACL) virtual local area network (VLAN) group, and content addressable memory (CAM) enhancements. member vlan Add VLAN members to an ACL VLAN group. Syntax member vlan {VLAN-range} Parameters VLAN-range Enter the member VLANs using comma-separated VLAN IDs, a range of VLAN IDs, a single VLAN ID, or a combination.
ip access-group Apply an egress IP ACL to the ACL VLAN group. Syntax Parameters ip access-group {group name} out implicit-permit group-name Enter the name of the ACL VLAN group where you want the egress IP ACLs applied, up to 140 characters. out Enter the keyword out to apply the ACL to outgoing traffic.
Version Description 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. Usage Information When an ACL-VLAN-Group name or the Access List Group Name contains more than 30 characters, the name is truncated in the show acl-vlan-group command output. Examples The following sample illustrates the output of the show acl-vlan-group command. NOTE: Some group names and some access list names are truncated.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. After CAM configuration for ACL VLAN groups is performed, you must reboot the system to enable the settings to be stored in nonvolatile storage. During the initialization of CAM, the chassis manager reads the NVRAM and allocates the dynamic VCAP regions.
vlanaclopt <0-2> Allocate the number of FP blocks for the ACL VLAN optimization feature. Default If you use the default keyword with the cam-acl-vlan command, the FP blocks allocated for VLAN processes are restored to their default values. No FP blocks or dynamic VLAN Content Aware Processor (VCAP) groups are allocated for VLAN operations by default. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM.
• L2AclCam • V6AclCam The following describes the output fields of this show command: Field Description LineCard Number of the line card that contains information on ACL VLAN groups Portpipe The hardware path that packets follow through a system for ACL optimization CAM-Region Type of area in the CAM block that is used for ACL VLAN groups Total CAM space Total amount of space in the CAM block Used CAM Amount of CAM space that is currently in use Available CAM Amount of CAM space that is fr
Command Modes EXEC EXEC Privilege Supported Modes Command History Examples Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. The following sample output shows the line-by-line style display when using the show running-config aclvlan-group option.
You can create an ACL VLAN group and attach the ACL with the VLAN members. Optimization is applicable only when you create an ACL VLAN group. If you apply an ACL separately on the VLAN interface, each ACL maps with the VLAN and increased CAM space utilization occurs. Attaching an ACL individually to VLAN interfaces is similar to the behavior of ACL-VLAN mapping storage in CAM prior to the implementation of the ACL VLAN group functionality.
description (ACL VLAN Group) Add a description to the ACL VLAN group. Syntax description description Parameters description Enter a description to identify the ACL VLAN group (80 characters maximum). Default No default behavior or values Command Modes CONFIGURATION (conf-acl-vl-grp) Supported Modes Full–Switch Command History Usage Information 270 Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform.
8 Bidirectional Forwarding Detection (BFD) Bidirectional forwarding detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The Dell Networking Operating System (OS) implementation is based on the standards specified in the IETF Draft draft-ietf-bfd-base-03 and supports BFD on all Layer 3 physical interfaces including virtual local area network (VLAN) interfaces and port-channels.
• Passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system. The default is active. Defaults See Parameters. Command Modes ROUTER OSPF ROUTER OSPFv3 ROUTER BGP ROUTER ISIS Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.13(0.
Usage Information Version Description 8.2.1.0 Introduced BFD for OSPF and ISIS on the E-Series. 7.6.1.0 Introduced BFD for OSPF on the C-Series. 7.5.1.0 Introduced BFD for ISIS on the E-Series. 7.4.1.0 Introduced BFD for OSPF on the E-Series.
Defaults BFD is disabled by default. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bfd enable (Interface) Enable BFD on an interface. Syntax bfd enable Defaults BFD is enabled on all interfaces when you enable BFD from CONFIGURATION mode. Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.
Command Modes INTERFACE Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-gi-0/3)#bfd interval 250 min_rx 300 multiplier 4 role passive Dell(conf-if-gi-0/3)# bfd protocol-liveness Enable the BFD protocol liveness feature.
min_rx milliseconds Enter the keywords min_rx to specify the minimum rate at which the local system receives control packets from the remote system. The range is from 50 to 1000. The default is 200. multiplier value Enter the keywords multiplier to specify the number of packets that must be missed in order to declare a session down. The range is from 3 to 50. The default is 3. role [active | passive] Enter the role that the local system assumes: • Active — The active system initiates the BFD session.
• Passive — passive system does not initiate a session. It only responds to a request for session initialization from the active system. The default is Active. Defaults See Parameters. Command Modes INTERFACE Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.10(0.2) Introduced support for enabling BFD on non-default VRFs for OSPFv2. 9.10(0.
multiplier value Enter the keyword multiplier to specify the number of packets that must be missed in order to declare a session down. The range is from 3 to 50. The default is 3. role [active | passive] Enter the role that the local system assumes: • Active — The active system initiates the BFD session. Both systems can be active for the same session. • Passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system.
The default is Active. Defaults See Parameters Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command provides the flexibility to fine-tune the timer values based on individual interface needs when ISIS BFD is configured in CONFIGURATION mode.
• Related Commands The neighbor only inherits the global timer values configured with the bfd neighbor command: interval, min_rx, and multiplier. neighbor bfd disable — explicitly disables a BFD session with a BGP neighbor or a BGP peer group. show bfd neighbors — displays the BFD neighbor information on all interfaces or a specified interface. neighbor bfd disable Explicitly disable a BFD session with a BGP neighbor or a BGP peer group.
Parameters vrf vrf name (Optional) Enter the keyword vrf and then the name of the VRF to display the BFD sessions with all neighbors within the VRF. interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: detail Defaults Command Modes Command History Example • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a port channel interface, enter the keywords port-channel then a number.
Related Commands • bfd all-neighbors — establish BFD sessions with all neighbors discovered by the IS-IS protocol or OSPF protocol out of all interfaces. vrrp bfd neighbor Establish a BFD for VRRP session with a neighbor. Syntax vrrp bfd neighbor ip-address Parameters neighbor ip-address Defaults none Command Modes INTERFACE Supported Modes Full–Switch Command History 282 Enter the IP address of the BFD neighbor. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
9 Border Gateway Protocol IPv4 (BGPv4) For detailed information about configuring BGP, refer to the BGP chapter in the Dell Networking OS Configuration Guide.
• clear ip bgp • clear ip bgp dampening • clear ip bgp flap-statistics • clear ip bgp peer-group • debug ip bgp • debug ip bgp dampening • debug ip bgp events • debug ip bgp keepalives • debug ip bgp notifications • debug ip bgp soft-reconfiguration • debug ip bgp updates • default-metric • description • max-paths • neighbor activate • neighbor add-path • neighbor advertisement-interval • neighbor advertisement-start • neighbor allowas-in • neighbor default-originate
• shutdown address-family-ipv4–unicast • shutdown address-family-ipv6–unicast • show capture bgp-pdu neighbor • show config • show ip bgp • show ip bgp cluster-list • show ip bgp community • show ip bgp community-list • show ip bgp dampened-paths • show ip bgp detail • show ip bgp extcommunity-list • show ip bgp filter-list • show ip bgp flap-statistics • show ip bgp inconsistent-as • show ip bgp neighbors • show ip bgp next-hop • show ip bgp paths • show ip bgp paths as-p
NOTE: Dell Networking OS Version 7.7.1 supports 2-Byte (16-bit) and 4-Byte (32-bit) format for autonomous system numbers (ASNs), where the 2-Byte format is 1-65535 and the 4-Byte format is 1-4294967295. NOTE: Dell Networking OS Version 8.3.1.0 supports dotted format as well as the traditional plain format for AS numbers. Display the dot format using the show ip bgp commands. To determine the comparable dot format for an ASN from a traditional format, use ASN/65536. ASN%65536.
suppress-map mapname Defaults Command Modes Supported Modes Command History Usage Information (OPTIONAL) Enter the keywords suppress-map then the name of a configured route map to identify which more-specific routes in the aggregate are suppressed. Not configured. • ROUTER BGP ADDRESS FAMILY • ROUTER BGP ADDRESS FAMILY IPv6 Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
• Supported Modes Command History Related Commands ROUTER BGP-address-family Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor add-path — specifies that this neighbor/peer group can send/receive multiple path advertisements. bgp always-compare-med Allows you to enable comparison of the MULTI_EXIT_DISC (MED) attributes in the paths from different external ASs.
Usage Information Before enabling this feature, enable the enable bgp four-octet-as-supportcommand. If you disable the four-octect-support command after using dot or dot+ format, the AS numbers revert to asplain text. When you apply an asnotation, it is reflected in the running-configuration. If you change the notation type, the running-config updates dynamically and the new notation shows.
bgp bestpath as-path multipath-relax Include prefixes received from different AS paths during multipath calculation. Syntax bgp bestpath as-path multipath-relax To return to the default BGP routing process, use the no bgp bestpath as-path multipath-relax command. Defaults Disabled Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
To return to the default selection, use the no bgp bestpath med missing-as-best command. Defaults Disabled Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The MED is a 4-byte unsigned integer value and the default behavior is to assume a missing MED as 4294967295. This command causes a missing MED to be treated as 0.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Route reflection to clients is not necessary if all client routers are fully meshed. Related Commands bgp cluster-id — assigns an ID to a BGP cluster with two or more route reflectors. neighbor route-reflector-client — configures a route reflector and clients. bgp cluster-id Assign a cluster ID to a BGP cluster with more than one route reflector.
To delete a BGP confederation identifier, use the no bgp confederation identifier as-number command. Parameters as-number Defaults Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Enter the AS number. The range is from 0 to 65535 (2 byte), from 1 to 4294967295 (4 byte), or from 0.1 to 65535.65535 (dotted format). Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. All the routers in the Confederation must be 4 byte or 2 byte identified routers. You cannot mix them. The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. After specifying autonomous systems numbers for the BGP confederation, recycle the peers to update their configuration.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you enter the bgp dampening command, the default values for half-life, reuse, suppress, and maxsuppress-time are applied. The parameters are position-dependent; therefore, if you configure one parameter, configure the parameters in the order they appear in the CLI. Related Commands show ip bgp dampened-paths — views the BGP paths.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command is enabled by default, that is for all updates received from EBGP peers, BGP ensures that the first AS of the first AS segment is always the AS of the peer. If not, the update is dropped and a counter is increments. To view the “failed enforce-first-as check” counter, use the show ip bgp neighbors command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Routers supporting 4-byte ASNs advertise that function in the OPEN message. The behavior of a 4-byte router is slightly different depending on whether it is speaking to a 2-byte router or a 4-byte router. When creating Confederations, all the routers in the Confederation must be 4 byte or 2 byte identified routers. You cannot mix them.
bgp non-deterministic-med Compare MEDs of paths from different autonomous systems. Syntax bgp non-deterministic-med To return to the default, use the no bgp non-deterministic-med command. Defaults Disabled (that is, paths/routes for the same destination but from different ASs do not have their MEDs compared). Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Enabling or disabling outbound optimization dynamically resets all neighbor sessions. When you enable outbound optimization, all peers receive the same update packets. Also, the next-hop address, which is chosen as one of the addresses of the neighbor's reachable interface, is the same for all peers. bgp recursive-bgp-next-hop Enable next-hop resolution through other routes learned by BGP. Syntax bgp recursive-bgp-next-hop To disable next-hop resolution, use the no bgp recursive-bgp-next-hop command.
Usage Information BGP uses regular expressions (regex) to filter route information. In particular, the use of regular expressions to filter routes based on AS-PATHs and communities is common. In a large-scale configuration, filtering millions of routes based on regular expressions can be quite CPU intensive, as a regular expression evaluation involves generation and evaluation of complex finite state machines.
bgp soft-reconfig-backup To avoid the peer from resending messages, use this command only when route-refresh is not negotiated. Syntax bgp soft-reconfig-backup To return to the default setting, use the no bgp soft-reconfig-backup command. Defaults Off Command Modes ROUTER BGP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands capture bgp-pdu max-buffer-size — specifies a size for the capture buffer. show capture bgp-pdu neighbor — displays BGP packet capture information. capture bgp-pdu max-buffer-size Set the size of the BGP packet capture buffer. This buffer size pertains to both IPv4 and IPv6 addresses. Syntax capture bgp-pdu max-buffer-size 100-102400000 Parameters 100-102400000 Defaults 40960000 bytes.
Command Modes EXEC Privilege Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bgp recursive-bgp-next-hop — disables next-hop resolution through other routes learned by the BGP. bgp soft-reconfig-backup — turns on BGP Soft Reconfiguration. clear ip bgp dampening Clear information on route dampening and return the suppressed route to the Active state.
• + = (plus) the sequences in a pattern (1 or more sequences). • ? = (question mark) sequences in a pattern (either 0 or 1 sequences). NOTE: Enter an escape sequence (CTRL+v) prior to entering the ? regular expression. Command Modes EXEC Privilege Supported Modes Full–Switch Command History • [ ] = (brackets) a range of single-character patterns. • ( ) = (parenthesis) groups a series of pattern elements to a single element. • { } = (braces) minimum and the maximum match count.
debug ip bgp Display all information on BGP, including BGP events, keepalives, notifications, and updates. Syntax debug ip bgp [ip-address | peer-group peer-group-name] [in | out] To disable all BGP debugging, use the no debug ip bgp command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group peergroup-name Enter the keywords peer-group then the name of the peer group to debug.
out Command Modes EXEC Privilege Supported Modes Full–Switch Command History Related Commands (OPTIONAL) Enter the keyword out to view only outbound dampened routes. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show debugging — view enabled debugging operations. show ip bgp dampened-paths — view BGP dampened routes. debug ip bgp events Display information on local BGP state changes and other BGP events.
To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] keepalives [in | out] command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group peergroup-name (OPTIONAL) Enter the keyword peer-group then the name of the peer group. in (OPTIONAL) Enter the keyword in to view only inbound keepalive messages. out (OPTIONAL) Enter the keyword out to view only outbound keepalive messages.
debug ip bgp soft-reconfiguration Enable soft-reconfiguration debug. Syntax debug ip bgp {ip-address | peer-group-name} soft-reconfiguration To disable, use the no debug ip bgp {ip-address | peer-group-name} softreconfiguration command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name (OPTIONAL) Enter the name of the peer group to disable or enable all routers within the peer group..
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To remove all configured debug commands for BGP, enter the no debug ip bgp command. default-metric Allows you to change the metric of redistributed routes to locally originated routes. Use this command with the redistribute command. Syntax default-metric number To return to the default setting, use the no default-metric command.
Command Modes ROUTER BGP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. router bgp — enters ROUTER mode on the switch. max-paths Configure the maximum number of parallel routes (multipath support) BGP supports. Syntax max-paths {ebgp | ibgp} number To return to the default values, enter the no maximum-paths command.
Defaults Disabled Command Modes CONFIGURATION-ROUTER-BGP-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. By default, when you create a neighbor/peer group configuration in the Router BGP context, this enables IPv4/ Unicast AFI/SAFI. When you use activate in the new context, the neighbor/peer group enables for AFI/SAFI.
To return to the default value, use the no neighbor {ip-address | peer-group-name} advertisement-interval command. Parameters Defaults ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group. seconds Enter a number as the time interval, in seconds, between BGP advertisements. The range is from 0 to 600 seconds.
neighbor allowas-in Set the number of times an AS number can occur in the AS path. Syntax neighbor {ip-address | peer-group-name} allowas-in number To return to the default value, use the no neighbor {ip-address | peer-group-name} allowas-in command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you apply a route map to a BGP peer or neighbor with the neighbor default-originate command configured, the software does not apply the set filters in the route map to that BGP peer or neighbor. neighbor description Assign a character string describing the neighbor or group of neighbors (peer group).
out Defaults Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Enter the keyword out to distribute only outbound traffic. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Other BGP filtering commands include: neighbor filter-list, ip as-path access-list, and neighbor route-map. Related Commands neighbor route-map — assigns a route map to a neighbor or peer group.
To disable, use the no neighbor {ipv4-address | peer-group-name} fall-over command. Parameters ipv4-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. Defaults Disabled. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
neighbor maximum-prefix Control the number of network prefixes received. Syntax neighbor {ip-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor {ip-address | peer-group-name} maximumprefix maximum command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group.
peer-group-name Enter the name of a configured peer group. encryption-type (OPTIONAL) Enter 7 as the encryption type for the password entered. 7 means that the password is encrypted and hidden. password Enter a text string up to 80 characters long. The first character of the password must be a letter. You cannot use spaces in the password. Defaults Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.
Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. You can assign up to 256 peers to one peer group. When you add a peer to a peer group, it inherits all the peer group’s configured parameters.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you create a peer group, it is disabled (Shut mode). Related Commands neighbor peer-group (assigning peers) — assigns routers to a peer group. neighbor remote-as — assigns a indirectly connected AS to a neighbor or peer group. neighbor shutdown — disables a peer or peer group.
To delete a remote AS entry, use the no neighbor {ip-address | peer-group-name} remote-as number command. Parameters ip-address Enter the IP address of the neighbor to enter the remote AS in its routing table. peer-group-name Enter the name of the peer group to enter the remote AS into routing tables of all routers within the peer group. number Enter a number of the AS. The range is from 0 to 65535 (2 byte) or from 1 to 4294967295 (4 byte). Defaults Not configured.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Applies to EBGP neighbors only. Configure your system to accept 4-byte formats before entering a 4 byte AS Number. If the AS-PATH contains both public and private AS number or contains AS numbers of an EBGP neighbor, the private AS numbers are not removed.
neighbor route-reflector-client Configure the router as a route reflector and the specified neighbors as members of the cluster. Syntax neighbor {ip-address | peer-group-name} route-reflector-client To remove one or more neighbors from a cluster, use the no neighbor {ip-address | peer-groupname} route-reflector-client command. If you delete all members of a cluster, you also delete the route-reflector configuration on the router.
peer-group-name Enter the name of the peer group to disable or enable all routers within the peer group. Defaults Enabled (that is, BGP neighbors and peer groups are disabled.) Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Peers that are enabled within a peer group are disabled when their peer group is disabled.
NOTE: This command is supported in BGP Router Configuration mode for IPv4 Unicast address only. Related Commands show ip bgp neighbors — displays routes received by a neighbor. neighbor timers Set keepalive and hold time timers for a BGP neighbor or a peer group. Syntax neighbor {ip-address | peer-group-name} timers keepalive holdtime To return to the default values, use the no neighbor {ip-address | peer-group-name} timers command.
To return to the default values, use the no neighbor {ip-address | ipv6-address | peer-groupname} timers extended idle holdtime command. Parameters ip-address Enter the IP address of the peer router in dotted decimal format. ipv6-address Enter the IPv6 address of the peer router in X:X:X:X::X format. peer-group-name Enter the name of the peer group to set the timers for all routers within the peer group.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Loopback interfaces are up constantly and the BGP session may need one interface constantly up to stabilize the session. The neighbor update-source command is not necessary for directly connected internal BGP sessions. neighbor weight Assign a weight to the neighbor connection, which is used to determine the best path.
mask Enter the mask of the IP address in the slash prefix length format (for example, /24). The mask appears in command outputs in dotted decimal format (A.B.C.D). route-map mapname (OPTIONAL) Enter the keyword route-map then the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ip address • set metric • set tag If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Although the system does not generate a route due to the backdoor config, there is an option for injecting/ sourcing a local route in the presence of network backdoor config on a learned route. redistribute Redistribute routes into BGP. Syntax redistribute {connected | static} [route-map map-name] To disable redistribution, use the no redistribution {connected | static} command.
Related Commands neighbor default-originate — injects the default route. redistribute ospf Redistribute OSPF routes into BGP. Syntax redistribute ospf process-id [[match external {1 | 2}] [match internal]] [route-map map-name] To stop redistribution of OSPF routes, use the no redistribute ospf process-id command. Parameters process-id Enter the number of the OSPF process. The range is from 1 to 65535.
Defaults Not enabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. At least one interface must be in Layer 3 mode for the router bgp command to be accepted.
9.11.0.0 Usage Information Introduced on the S-Series, Z-Series, MXL, and IOM. You can use this command to disable all the configured BGP neighbors corresponding to the multicast IPv4 address families. This command is global for all VRFs. shutdown address-family-ipv4–unicast Disables all the BGP neighbors corresponding to the unicast IPv4 address families.
This command is global for all VRFs. show capture bgp-pdu neighbor Display BGP packet capture information for an IPv4 address on the system. Syntax Parameters show capture bgp-pdu neighbor ipv4-address ipv4-address Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Enter the IPv4 address (in dotted decimal format) of the BGP address to display packet information for that address. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command Modes ROUTER BGP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Example Dell(conf-router_bgp)#show config ! router bgp 45 neighbor suzanne peer-group neighbor suzanne no shutdown neighbor sara peer-group neighbor sara shutdown neighbor 13.14.15.20 peer-group suzanne neighbor 13.14.15.20 shutdown neighbor 123.34.55.123 peer-group suzanne neighbor 123.34.55.
Command Modes Supported Modes Command History Usage Information community-list community-listname (OPTIONAL) Enter the keyword community-list then the community–list–name to display the routes matching the community–list. dampened-paths (OPTIONAL) Enter the keyword dampened-paths to display the paths suppressed due to dampening. extcommunity-list list name (OPTIONAL) Enter the keyword extcommunity-list then the list name to display the routes matching the extended community-list.
Example Field Description Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network. Dell EMC> show ip bgp BGP table version is 847562, local router ID is 63.114.8.
Following is the example for displaying all the received routes from all IPv6 neighbors: DellEMC# show ip bgp ipv6 unicast neighbors all received-routes BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0 BGP local router ID is 11.1.1.
Usage Information Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp cluster-list command shown in the following example. Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned.
community-number Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system. You can specify up to eight community numbers to view information on those community groups. local-AS Enter the keywords local-AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED. All routes with the NO_EXPORT_SUBCONFED (0xFFFFFF03) community attribute must not be advertised to external BGP peers.
Example Field Description Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network. Dell>show ip bgp community BGP table version is 3762622, local router ID is 63.114.8.48 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network * i 3.0.0.0/8 *>i 4.2.49.12/30 * i 4.21.132.0/23 *>i 4.24.
Usage Information The show ip bgp community-list command without any parameters lists BGP routes matching the Community List and the output is the same as for the show ip bgp command output. The following describes the show ip bgp community-list pass command shown in the following example. Example Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.
Example Field Description Path Lists all the ASs the dampened route passed through to reach the destination network. Dell>show ip bgp dampened-paths BGP table version is 210708, local router ID is 63.114.8.
TxUpdCodeP 0x41a1b780 : TrEvt 0 : LocPref 100 : tmpPathP 0x41a1b7b8 : LogNbrChgs 1 RecursiveNH 1 : PgCfgId 0 : KeepAlive 0 : HldTime 0 : DioHdl 0 : AggrValTmrP 0x41ee7024 UpdNetTmrP 0 : RedistTmrP 0x41ee7094 : PeerChgTmrP 0 : CleanRibTmrP 0x41ee7104 PeerUpdTmrP 0x41ee70cc : DfrdNHTmrP 0x41ee7174 : DfrdRtselTmrP 0x41ee713c : FastExtFallover 1 : FastIntFallover 0 : Enforce1stAS 1 PeerIdBitsP 0x41967120 : softOutSz 16 : RibUpdCtxCBP 0 UpdPeerCtxCBP 0 : UpdPeerCtxAFI 0 : TcpioCtxCB 0 : RedistBlk 1 NextCBPurg 11
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To view the total number of COMMUNITY attributes found, use the show ip bgp summary command. The text line above the route table states the number of COMMUNITY attributes found. The show ip bgp community command without any parameters lists BGP routes with at least one BGP community attribute and the output is the same as for the show ip bgp command output.
Example Field Description Path Lists all the ASs the route passed through to reach the destination network. Dell#show ip bgp filter-list hello BGP table version is 80227, local router ID is 120.1.1.1 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r redistributed, n network Origin codes: i - IGP, e - EGP, ? - incomplete Network * I 6.1.5.
NOTE: Enter an escape sequence (CTRL+v) prior to entering the ? regular expression. Command Modes Supported Modes Command History Usage Information Example • EXEC • EXEC Privilege • [ ] = (brackets) a range of single-character patterns. • ( ) = (parenthesis) groups a series of pattern elements to a single element. • { } = (braces) minimum and the maximum match count. • ^ = (caret) the beginning of the input string.
• Supported Modes Command History Usage Information Example EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp inconsistent-as command shown in the following example. Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.
Parameters ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. ip-address (OPTIONAL) Enter the IP address of the neighbor to view only BGP information exchanged with that neighbor. advertised-routes (OPTIONAL) Enter the keywords advertised-routes to view only the routes the neighbor sent. dampened-routes (OPTIONAL) Enter the keywords dampened-routes to view information on dampened routes from the BGP neighbor.
The Lines Beginning with: Description • last read is the time (hours:minutes:seconds) the router read a message from its neighbor • hold time is the number of seconds configured between messages from its neighbor • keepalive interval is the number of seconds between keepalive messages to help ensure that the TCP session is still alive.
Received 1404 messages, 0 in queue 3 opens, 1 notifications, 1394 updates 6 keepalives, 0 route refresh requests Sent 48 messages, 0 in queue 3 opens, 2 notifications, 0 updates 43 keepalives, 0 route refresh requests Minimum time between advertisement runs is 30 seconds Minimum time before advertisements start is 0 seconds Capabilities received from neighbor for IPv4 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) Capabilities advertised to neighbor for IPv4 Unicast : MULTIPROTO_EXT(1
*> 70.70.27.0/24 100.10.10.2 *> 70.70.28.0/24 100.10.10.2 *> 70.70.29.0/24 100.10.10.2 Dell# Example (deniedroutes) 0 0 0 0 100 200 ? 0 100 200 ? 0 100 200 ? Dell#show ip bgp neighbors 100.10.10.2 denied-routes 4 denied paths using 205 bytes of memory BGP table version is 34, local router ID is 100.10.10.
63.114.8.33 63.114.8.34 63.114.8.35 63.114.8.60 Dell> 63.114.8.33, 63.114.8.34, 63.114.8.35, 63.114.8.60, Gi Gi Gi Gi 12/22 12/22 12/22 12/22 240984 135152 1 135155 0 0 0 0 0 0 0 0 00:18:25 00:18:13 00:18:07 00:18:11 show ip bgp paths View all the BGP path attributes in the BGP database. Syntax show ip bgp paths [regexp regular-expression] Parameters regexp regularexpression Enter a regular expression then use one or a combination of the following characters to match: • .
Example Field Description Path Displays the AS path for the route, with the origin code for the route listed last. Numbers listed between braces {} are AS_SET information.
0x1ea3c1ec 0x1ea3c25c 0x1ea3c1b4 0x1ea3c304 0x1ea3c10c 0x1ea3c144 0x1ea3c17c 0x1ea3c2cc 0x1ea3c09c 0x1ea3c0d4 0x1ea3c224 0x1ea3c294 0x1ea3c02c Dell# 251 251 507 507 763 763 763 763 764 764 1019 1019 1021 1 1 1 1 1 1 1 1 1 1 1 1 4 42 22 13 33 {92 93} {102 103} 12 32 {72 73} {82 83} 43 23 show ip bgp paths community View all unique COMMUNITY numbers in the BGP database.
0x1f58ad6c 82 46 209:209 209:41528 0x1c6e2064 83 2 209:777 209:40832 0x1f588ecc 85 570 209:209 209:40832 0x1f57cc0c 98 2 209:209 209:21226 286:3031 13646:1044 13646:1124 13646:1154 13646:1164 13646:1184 13646:1194 13646:1204 13646:1214 13646:1224 13646:1234 13646:1244 13646:1254 13646:1264 13646:3000 0x1d65b2ac 117 6 209:209 209:999 209:31272 0x1f5854ac 119 18 209:209 209:21226 286:108 286:111 286:777 286:3033 517:5104 show ip bgp peer-group Allows you to view information on the BGP peers in a peer group.
Example ( ) Line beginning with: Description Peer-group members: Lists the IP addresses of the peers in the peer group. If the address is outbound optimized, an * is displayed next to the IP address.
show ip bgp regexp Display the subset of the BGP routing table matching the regular expressions specified. Syntax Parameters show ip bgp regexp regular-expression [character] regular-expression [character] Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (zero or more sequences). • + = (plus) the sequences in a pattern (one or more sequences).
Path source: I - internal, a - aggregate, c - confed-external, r redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *>I 3.0.0.0/8 1.1.1.2 0 100 0 2914 1239 80 i *>I 4.0.0.0/8 1.1.1.2 0 100 0 2914 3356 i *>I 4.17.225.0/24 1.1.1.2 0 100 0 2914 11853 11853 11853 11853 11853 6496 *>I 4.17.226.0/23 1.1.1.2 0 100 0 2914 11853 11853 11853 11853 11853 6496 *>I 4.17.251.0/24 1.1.1.2 0 100 0 2914 11853 11853 11853 11853 11853 6496 *>I 4.17.252.0/23 1.
Field Description BGP path attribute entries Displays the number of BGP path attributes and the amount of memory used to process them. BGP AS-PATH entries Displays the number of BGP AS_PATH attributes processed and the amount of memory used to process them. BGP community entries Displays the number of BGP COMMUNITY attributes processed and the amount of memory used to process them. The show ip bgp community command provides more details on the COMMUNITY attributes.
BGP-RIB over all using 385 bytes of memory 2 BGP path attribute entrie(s) using 168 bytes of memory 1 BGP AS-PATH entrie(s) using 39 bytes of memory 1 BGP community entrie(s) using 43 bytes of memory 2 neighbor(s) using 7232 bytes of memory Neighbor AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/Pfx 100.10.10.2 200 46 41 34 0 0 00:14:33 5 120.10.10.2 300 40 47 34 0 0 00:37:10 0 Dell# show running-config bgp To display the current BGP configuration, use this feature.
timers bgp extended Adjust the BGP idle holdtime for all the BGP neighbors. Syntax timers bgp extended idle-holdtime To return to the default, use the no timers bgp extended command. Parameters extended idleholdtime Enter a number for the time interval, in seconds, for the peer to be idle state. The range is from 1 to 32767. The default is 15 seconds. Defaults The default idle-holdtime is 15 seconds.
Parameters dampening Command Modes EXEC Privilege Supported Modes Full–Switch Command History Enter the keyword dampening to clear route flap dampening information. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. distance bgp Define an administrative distance for routes. Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command.
show ip bgp dampened-paths View BGP routes that are dampened (non-active). Syntax Command Modes Supported Modes Command History Usage Information Example show ip bgp [ipv4 unicast] dampened-paths • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp damp command shown in the following example.
To delete the Route Origin community, use the no set extcommunity command. Parameters as4 ASN4:NN Enter the keyword as4 then the 4-octet AS specific extended community number in the format ASN4:NN (4-byte AS number:2-byte community value). ASN:NNNN Enter the 2-octet AS specific extended community number in the format ASN:NNNN (2byte AS number:4-byte community value). IPADDR:NN Enter the IP address specific extended community in the format IPADDR:NN (4-byte IPv4 Unicast Address:2-byte community value).
Defaults none Command Modes ROUTE MAP (config-route-map) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If the set community rt and soo are in the same route-map entry, the behavior defines as: • Related Commands If the rt option comes before soo, with or without the additive option, soo overrides the communities rt sets.
show ip bgp extcommunity-list View information on all routes with Extended Community attributes. Syntax show ip bgp [ipv4 unicast] extcommunity-list [list name] Parameters Command Modes Supported Modes Command History Usage Information ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. list name Enter the extended community list name you wish to view. The range is 140 characters.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enable soft-reconfiguration for a neighbor and you execute the clear ip bgp soft in command, the update database stored in the router is replayed and updates are re-evaluated. With this command, the replay and update process is triggered only if route-refresh request is not negotiated with the peer.
debug ip bgp ipv6 unicast soft-reconfiguration Enable soft-reconfiguration debugging for IPv6 unicast routes. Syntax debug ip bgp [ipv4-address | ipv6-address | peer-group-name] ipv6 unicast softreconfiguration To disable debugging, use the no debug ip bgp [ipv4-address | ipv6-address | peer-groupname] ipv6 unicast soft-reconfiguration command. Parameters ipv4-address | ipv6address Enter the IP address of the neighbor on which you want to enable soft-reconfiguration debugging.
Related Commands Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ipv6 prefix-list — View the selected IPv6 prefix-list. show ipv6 prefix-list Displays the specified IPv6 prefix list. Syntax Parameters show ipv6 prefix-list detail {prefix-list name} | summary detail Display a detailed description of the selected IPv6 prefix list. prefix-list name Enter the name of the prefix list. NOTE: There is a 140-character limit for prefix list names.
summary Command Modes EXEC Supported Modes Full–Switch Command History 370 Display a summary of RPF routes. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
10 Content Addressable Memory (CAM) Content addressable memory (CAM) commands are supported on the Dell Networking operating software on the platform. WARNING: If you are using these features for the first time, contact Dell Networking Technical Assistance Center (TAC) for guidance.
vman-qos—dual—fp number] ipv4pbr number} ecfmacl number [nlbclusteraclnumber]fcoeacl number iscsioptacl number} Parameters default Use the default CAM profile settings and set the CAM as follows: • L3 ACL (ipv4acl): 4 • L2 ACL(l2acl): 5 • IPv6 L3 ACL (ipv6acl): 0 • L3 QoS (ipv4qos): 1 • L2 QoS (l2qos): 1 • L2PT (L2PT): 0 • MAC ACL (IpMacAcl): 0 • VmanDualQos: 0 • EcfmAcl: 0 • nlbclusteracl: 0 • FcoeAcl: 4 • iscsiOptAcl: 2 l2acl number Enter the keyword l2acl and then the number of
vman-dual-qos number Enter the keyword vman-dual-qos and then the number of FP blocks for VMAN dual QoS. The range is from 0 to 4. Ipv4pbr number Enter the keyword ipv4pbr and then the number of FP blocks for ipv4pbr ACL. The range is from 0 to 8. Openflow number Enter the keyword openflow and then the number of FP blocks for open flow (multiples of 4). The range is from 0 to 8. fcoeacl number Enter the keyword fcoeacl and then the number of FP blocks for FCOE ACL. The range is from 0 to 6.
cam-optimization Optimize CAM utilization for QoS Entries by minimizing require policy-map CAM space. Syntax cam-optimization [qos] Parameters qos Optimize CAM usage for QoS. Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
silence-period default Enter the keyword default to set the silence period for receiving syslog message regarding CAM usage for CAM region, slot/portpipe. The default silence period is 0 seconds. silence-period silence-period-value Enter the silence period for stop receiving syslog message for the respective CAM region, slot/portpipe. The range is from 0 to 65535 seconds. Command Modes CONFIGURATION Supported Modes Full-Switch Command History Usage Information Version Description 9.14.1.
Ipv4Qos : L2Qos : L2PT : IpMacAcl : VmanQos : VmanDualQos : EcfmAcl : FcoeAcl : iscsiOptAcl : ipv4pbr : vrfv4Acl : Openflow : fedgovacl : nlbclusteracl: 2 1 0 0 0 0 0 0 0 0 0 0 0 0 -- stack-unit 0 -Current Settings(in block sizes) 1 block = 128 entries L2Acl : 6 Ipv4Acl : 4 Ipv6Acl : 0 Ipv4Qos : 2 L2Qos : 1 L2PT : 0 IpMacAcl : 0 VmanQos : 0 VmanDualQos : 0 EcfmAcl : 0 FcoeAcl : 0 iscsiOptAcl : 0 ipv4pbr : 0 vrfv4Acl : 0 Openflow : 0 fedgovacl : 0 nlbclusteracl: 0 -- stack-unit 1 -Current Settings(in block
Command Modes Configuration Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The display reflects the settings implemented with the cam-acl-egress command.
11 Control Plane Policing (CoPP) The Dell Networking OS supports the following CoPP commands. control-plane-cpuqos To manage control-plane traffic, enter control-plane mode and configure the switch. Syntax control-plane-cpuqos Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands qos-policy-input — creates a QoS input policy map. policy-map-input — creates an input policy map. service-policy rate-limit-protocols Apply a policy for the system to rate limit control protocols on a per-protocol basis. Syntax Parameters service-policy rate-limit-protocols policy-name policy-name Enter the service-policy name, using a string up to 32 characters. Defaults Not configured.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command applies the service-policy based on the type of protocol defined in the ACL rules. Create ACL and QoS policies prior to enabling this command.
VRRP Dell# any any _ Q10 _ _ show ipv6 protocol-queue-mapping Display the queue mapping for each configured IPv6 protocol. Syntax show ipv6 protocol-queue-mapping Defaults Not configured. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
LLDP GVRP STP ISIS Dell# 382 any 01:80:c2:00:00:21 01:80:c2:00:00:00 01:80:c2:00:00:14/15 09:00:2b:00:00:04/05 Control Plane Policing (CoPP) 0x88cc any any any any Q8 Q8 Q7 Q9 Q9 CP CP CP CP CP _ _ _ _
12 Data Center Bridging (DCB) Data center bridging (DCB) refers to a set of IEEE Ethernet enhancements that provide data centers with a single, robust, converged network to support multiple traffic types, including local area network (LAN), server, and storage traffic. The Dell Networking Operating System (OS) commands for data center bridging features include 802.1Qbb priority-based flow control (PFC), 802.1Qaz enhanced transmission selection (ETS), and the data center bridging exchange (DCBX) protocol.
• service-class buffer shared-threshold-weight • show qos dcb-map • show stack-unit stack-ports pfc details advertise dcbx-appln-tlv On a DCBX port with a manual role, configure the application priority TLVs advertised on the interface to DCBX peers. Syntax advertise dcbx-appln-tlv {fcoe | iscsi} To remove the application priority TLVs, use the no advertise dcbx-appln-tlv {fcoe | iscsi} command.
Usage Information You can configure the transmission of more than one TLV type at a time; for example: advertise dcbx-tlv ets-conf ets-reco. You can enable ETS recommend TLVs (ets-reco) only if you enable ETS configuration TLVs (ets-conf). To disable TLV transmission, use the no form of the command; for example, no advertise dcbx-tlv pfc ets-reco. DCBX requires that you enable LLDP to advertise DCBX TLVs to peers. Configure DCBX operation at the INTERFACE level on a switch or globally on the switch.
dcb-enable Enable data center bridging. Syntax dcb enable To disable DCB, use the no dcb enable command. Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. DCB is not supported if you enable link-level flow control on one or more interfaces. dcb-policy buffer-threshold (Global Configuration) Assign the dcb buffer threshold policy on the stack ports.
Example for Interface Mode Dell(conf-if-te-1/1)#dcb-policy buffer-threshold test dcb-policy buffer-threshold (Interface Configuration) Assign the DCB policy to the DCB buffer threshold profile on interfaces. This setting takes precedence over the global buffer-threshold setting.
• manual: configures the port to operate only on administer-configured DCB parameters. The port does not accept a DCB configuration received form a peer or a local configuration source. Defaults Manual Command Modes INTERFACE PROTOCOL LLDP Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. DCBX requires that you enable LLDP to advertise DCBX TLVs to peers.
debug dcbx Enable DCBX debugging. Syntax debug dcbx {all | auto-detect-timer | config-exchng | fail | mgmt | resource | sem | tlv} To disable DCBX debugging, use the no debug dcbx command. Parameters {all | auto-detecttimer | configexchng | fail | mgmt | resource | sem | tlv} Defaults none Command Modes EXEC Privilege Command History Enter the type of debugging, where: • all: enables all DCBX debugging operations. • auto-detect-timer: enables traces for DCBX auto-detect timers.
Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. fcoe priority-bits Configure the FCoE priority advertised for the FCoE protocol in application priority TLVs. Syntax fcoe priority-bits priority-bitmap To remove the configured FCoE priority, use the no fcoe priority-bits command. Parameters priority-bitmap Defaults 0x8 Command Modes PROTOCOL LLDP Command History Usage Information Enter the priority-bitmap range.
priority Configure the priority for the PFC threshold to be allocated to the buffer space parameters.
Example Dell (conf-dcb-buffer-thr)#priority 0 buffer-size 52 pause-threshold 16 resumeoffset 10 shared-threshold-weight 7 pfc mode on Enable the PFC configuration on the port so that the priorities are included in DCBX negotiation with peer PFC devices. Syntax pfc mode on To disable the PFC configuration, use the no pfc mode on command. Defaults PFC mode is on. Command Modes DCB MAP Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
Usage Information The maximum number of lossless queues globally supported on the switch is two. • The following lists the dot1p priority-queue assignments. dot1p Value in the Incoming Frame Description heading 0 0 1 0 2 0 3 1 4 2 5 3 6 3 7 3 priority-list Configure the 802.1p priorities for the traffic on which you want to apply an ETS output policy. Syntax priority-list value To remove the priority list, use the no priority-list command.
qos-policy-output ets To configure the ETS bandwidth allocation and scheduling for priority traffic, create a QoS output policy. Syntax qos-policy-output policy-name ets To remove the QoS output policy, use the no qos-policy-output ets command. Parameters Command Modes Command History Usage Information policy-name Enter the policy name. The maximum is 32 characters. CONFIGURATION Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information dot1p priority traffic on the switch is scheduled to the current queue mapping. dot1p priorities within the same queue must have the same traffic properties and scheduling method. ETS-assigned scheduling applies only to data queues, not to control queues. The configuration of bandwidth allocation and strict-queue scheduling is not supported at the same time for a priority group.
NOTE: This command also enables you to view information corresponding to a range of ports. • Command Modes Command History Usage Information You can specify multiple ports as slot/port-range. For example, if you want to display information corresponding to all ports between 1 and 4, specify the port range as show interfaces interface-type 1/1 - 4. CONFIGURATION Version Description 9.9(0.0) Added support to display the interface configurations corresponding to a range of ports. 9.2(0.
Field Description Local DCBX Status: Protocol State Current operational state of the DCBX protocol: ACK or IN-SYNC. Peer DCBX Status: DCBX Operational Version DCBX version advertised in Control TLVs received from the peer device. Peer DCBX Status: DCBX Max Version Supported Highest DCBX version supported in Control TLVs received from the peer device. Peer DCBX Status: Sequence Number Sequence number transmitted in Control TLVs received from the peer device.
Example Field Description Total DCBX Frames received Number of DCBX frames received from the remote peer port. Total DCBX Frame errors Number of DCBX frames with errors received. Total DCBX Frames unrecognized Number of unrecognizable DCBX frames received.
Parameters port-type slot/port ets Enter the port-type slot and port ETS information. {summary | detail} Enter the keyword summary for a summary list of results or enter the keyword detail for a full list of results. NOTE: This command also enables you to view information corresponding to a range of ports. • Command Modes Command History Usage Information You can specify multiple ports as slot/port-range.
Field Description State Machine Type Type of state machine used for DCBX exchanges of ETS parameters: Feature — for legacy DCBX versions; Asymmetric — for an IEEE version. Conf TLV Tx Status Status of ETS Configuration TLV advertisements: enabled or disabled. ETS TLV Statistic: Input Conf TLV pkts Number of ETS Configuration TLVs received. ETS TLV Statistic: Output Conf TLV pkts Number of ETS Configuration TLVs transmitted.
Oper status is init Conf TLV Tx Status is disabled Traffic Class TLV Tx Status is disabled Example (Detail) Dell(conf)# show interfaces tengigabitethernet 0/0 ets detail Interface TenGigabitEthernet 0/0 Max Supported TC Groups is 4 Number of Traffic Classes is 8 Admin mode is on Admin Parameters : -----------------Admin is enabled TC-grp Priority# Bandwidth TSA 0 0,1,2,3,4,5,6,7 100% ETS 1 0% ETS 2 0% ETS 3 0% ETS 4 0% ETS 5 0% ETS 6 0% ETS 7 0% ETS Priority# 0 1 2 3 4 5 6 7 Remote Parameters: ------------
show interface pfc Displays the PFC configuration applied to ingress traffic on an interface, including priorities and link delay. Syntax show interface port-type slot/port pfc {summary | detail} Parameters port-type slot/ port pfc Enter the port-type slot and port PFC information. {summary | detail} Enter the keyword summary for a summary list of results or enter the keyword detail for a full list of results. NOTE: This command also enables you to view information corresponding to a range of ports.
Field Description PFC DCBX Oper status Operational status for the exchange of the PFC configuration on the local port: match (up) or mismatch (down). State Machine Type Type of state machine used for DCBX exchanges of the PFC parameters: Feature — for legacy DCBX versions; Symmetric — for an IEEE version. TLV Tx Status Status of the PFC TLV advertisements: enabled or disabled. PFC Link Delay Link delay (in quanta) used to pause specified priority traffic.
FCOE TLV Tx Status is disabled ISCSI TLV Tx Status is disabled Local FCOE PriorityMap is 0x8 Local ISCSI PriorityMap is 0x10 Remote FCOE PriorityMap is 0x8 Remote ISCSI PriorityMap is 0x8 Dell# show interfaces tengigabitethernet 0/49 pfc detail Interface TenGigabitEthernet 0/49 Admin mode is on Admin is enabled Remote is enabled Remote Willing Status is enabled Local is enabled Oper status is recommended PFC DCBX Oper status is Up State Machine Type is Feature TLV Tx Status is enabled PFC Link Delay 45556 p
2 3 4 5 6 7 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 show qos priority-groups Displays the ETS priority groups configured on the switch, including the 802.1p priority classes and ID of each group. Syntax show qos priority-groups Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Admin mode is on Admin Parameters: -------------------Admin is enabled TC-grp Priority# Bandwidth TSA -----------------------------------------------0 0,1,2,3,4,5,6,7 100% ETS 1 - 2 - 3 - 4 - 5 - 6 - 7 - 8 - Stack unit 1 stack port all Max Supported TC Groups is 4 Number of Traffic Classes is 1 Admin mode is on Admin Parameters: -------------------Admin is enabled TC-grp Priority# Bandwidth TSA -----------------------------------------------0 0,1,2,3,4,5,6,7 100% ETS 1 2 3 4 5 6 7 8 - dcb pfc-shared-buffer
Shared-pfc-buffer-size <= (Total-pfc-buffer-size — Σpfc priority <> buffer-size on each port, priority). Dell(conf)#dcb pfc-shared-buffer-size 2000 %ERROR: pfc shared buffer size configured cannot accommodate existing buffer requirement in the system. Enter a smaller value for the shared buffer size or increase the total buffer size appropriately by using the dcb pfc-total- buffer-size command.
dcb-buffer-threshold Configure the profile name for the DCB buffer threshold. Syntax dcb buffer—threshold profile-name Parameters profile-name Enter the name of the profile, which can be a string of up to 32 characters in length. Default None Command Modes CONFIGURATION mode Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform. Usage Information You can configure up to a maximum of four lossless (PFC) queues. By configuring four lossless queues, you can configure four different priorities and assign a particular priority to each application that your network is used to process.
Parameters buffer-threshold Configure the profile name for the DCB buffer threshold profile-name Enter the name of the profile, which can be a string of up to 32 characters in length. Default None Command Modes INTERFACE mode Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform. Usage Information You can configure a maximum of four lossless (PFC) queues.
resume thresholds for the buffer. This method of configuration enables you to manage and administer the behavior of lossless queues. Example for Configuration Mode Dell(conf)# dcb-policy buffer-threshold stack-unit all stack-ports all test Example for Interface Mode Dell(conf-if-te-1/1)#dcb-policy buffer-threshold test priority-pgid Assign 802.1p priority traffic to a priority group in a DCB map.
• Priority group 4 contains traffic with dot1p priority 5, 6, and 7. To remove a priority-pgid configuration from a DCB map, enter the no priority-pgid command. qos-policy-buffer Create a QoS policy buffer and enter the configuration mode to configure the no-drop queues, ingress buffer size, buffer limit for pausing, and buffer offset limit for resuming.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform. You must apply this buffer policy at the interface level for the attributes to be applicable in conjunction with the DCB input policy. For each QoS policy buffer, you can specify the shared buffer threshold limit, the ingress buffer size, buffer limit for pausing the acceptance of packets, and the buffer offset limit for resuming the acceptance of received packets.
Usage Information Command History Example You can configure all the data queues. You can configure queues 0-7. The following table describes the mapping between the threshold weight of the shared buffer on the queue. It also shows the percentage of the available shared buffer used by the queues for each of the corresponding threshold weights of the shared buffer: sharedthresholdweight on the queue % of available shared buffer that can be consumed by the queue. 0 No dynamic sharing; shared buffer = 0.
Usage Information Use the show qos dcb-map command to display the enhanced transmission selection (ETS) and priority-based flow control (PFC) parameters used to configure server-facing Ethernet ports. The following table describes the show qos dcb-map output shown in the example below. Example Field Description State Complete: All mandatory DCB parameters are correctly configured. In progress: The DCB map configuration is not complete. Some mandatory parameters are not configured.
Link Delay 45556 pause quantum 0 Pause Tx pkts, 0 Pause Rx pkts stack unit 1 stack-port all Admin mode is On Admin is enabled, Priority list is 4-5 Local is enabled, Priority list is 4-5 Link Delay 45556 pause quantum 0 Pause Tx pkts, 0 Pause Rx pkts 416 Data Center Bridging (DCB)
13 Debugging and Diagnostics The basic debugging and diagnostic commands are supported by the Dell Networking Operating System (OS).
diag stack-unit Run offline diagnostics on a stack unit. Syntax diag stack-unit number [alllevels | level0 | level1 | level2] verbose no-reboot Parameters number Enter the stack-unit number. The range is from 0 to 5. alllevels Enter the keyword alllevels to run the complete set of offline diagnostic tests. level0 Enter the keyword level0 to run Level 0 diagnostics. Level 0 diagnostics check for the presence of various components and perform essential path verifications.
stack unit 0 syncing disks... 1 1 done unmounting file systems... unmounting /f10/flash (/dev/ld0e)... unmounting /usr/pkg (/dev/ld0h)... unmounting /usr (mfs:35)... unmounting /lib (mfs:24)... unmounting /f10 (mfs:21)... unmounting /tmp (mfs:15)... unmounting /kern (kernfs)... unmounting / (/dev/md0a)... done rebooting... offline stack-unit Place a stack unit in the offline state.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Hardware Commands These commands display information from a hardware sub-component or ASIC. clear hardware stack-unit Clear statistics from selected hardware components.
clear hardware system-flow Clear system-flow statistics from selected hardware components. Syntax Parameters clear hardware system-flow layer2 stack-unit 0–5 port-set 0–0 counters stack-unit 0–5 Enter the keywords stack-unit then 0 to 5 to select a particular stack member and then enter one of the following command options to clear a specific collection of data.
show hardware layer3 Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe. Syntax show hardware layer3 {acl | qos} stack-unit 0–5 port-set 0–0 Parameters acl | qos Enter either the keyword acl or the keyword qos to select between ACL or QoS data. stack-unit 0–5 Enter the keywords stack-unit then a numeral from 0 to 5 to select a stack ID. port-set 0–0 Enter the keyword port-set with a port-pipe number.
shows the High Gig (Higig) port raw input/output counter statistics to which the stacking module is connected. cpu party-bus statistics Enter the keywords cpu party-bus statistics, to display the Management plane input/output counter statistics of the pseudo party bus interface. cpu private-mgmt statistics Enter the keywords cpu private-mgmt statistics, to display the Management plane input/output counter statistics of the Private Management interface.
bc pci driver statistics for device: rxHandle :0 noMhdr :0 noMbuf :0 noClus :0 recvd :0 dropped :0 recvToNet :0 rxError :0 rxDatapathErr :0 rxPkt(COS0) :0 rxPkt(COS1) :0 rxPkt(COS2) :0 rxPkt(COS3) :0 rxPkt(COS4) :0 rxPkt(COS5) :0 rxPkt(COS6) :0 rxPkt(COS7) :0 rxPkt(UNIT0) :0 transmitted :1696 txRequested :1696 noTxDesc :0 txError :0 txReqTooLarge :0 txInternalError :0 txDatapathErr :0 txPkt(COS0) :0 txPkt(COS1) :0 txPkt(COS2) :0 txPkt(COS3) :0 txPkt(COS4) :0 txPkt(COS5) :0 txPkt(COS6) :0 txPkt(COS7) :0 txPk
xe9 !ena xe10 down xe11 !ena xe12 !ena xe13 !ena xe14 !ena xe15 !ena xe16 !ena xe17 !ena xe18 down xe19 !ena xe20 down Dell# 1G FD 10G FD 1G FD 1G FD 1G FD 1G FD 1G FD 1G FD 1G FD 1G FD 1G FD 1G FD SW SW SW SW SW SW SW SW SW SW SW SW Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Forward Forward Forward Block Forward Forward Forward Forward Forward Forward Forward Forward Tag Tag Tag None Tag Tag Tag Tag Tag Tag Tag Tag F F F FA F F F F F F F F GMII 1550 KR 1550 GMII 1550 GMII 11996 GMII 1550 GMII 1
Front End Link Status 0x200000000000000000000000 Front End Port Present Status0x000000000000000000000000 Back Plane Link Status 0x00000000 ************************************************ Link Status of all the ports in the Device - 0 The linkStatus of Front End Port 1 is FALSE The linkStatus of Front End Port 2 is FALSE The linkStatus of Front End Port 3 is TRUE The linkStatus of Front End Port 4 is FALSE The linkStatus of Front End Port 5 is FALSE The linkStatus of Front End Port 6 is FALSE The linkStatus
----- Buffer Stats for Interface Te 1/4 Queue Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/5 Queue Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/6 Queue
Parameters interface interface Enter any of the following keywords and slot/port or number information: • Command Modes For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. priority-group Enter the keyword priority-group followed by id for specific priority group or keyword all. queue Enter the keyword queue followed by id for specific queue or keyword all.
Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue Maximum Shared Limit: 29514 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue Maximum Shared Limit: 29514 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue Maximum Shared Limit: 29514 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats
Example Version Description 9.8(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Parameters Command Modes stack-unit stackunit-number Unique ID of the stack unit to select a particular stack member and then enter one of the following command options to display a collection of data based on the option entered. The range is from 0 to 11. buffer-statssnapshot unit number Display the historical snapshot of buffer statistical values. unit Enter the keyword unit along with a port-pipe number.
--------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 unit: 3 port: 13 (interface Fo 1/156) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 unit: 3 port: 17 (interface Fo 1/160) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 unit: 3 port: 21 (interface Fo 1/164) -----------------------
• Command Modes For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. queue Enter the keyword queue after id for specific queue or keyword all. priority-group Enter the keyword priority-group followed by {id} for specific priority group or keyword all. EXEC EXEC Privilege Command History Version Description 9.8(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
--------------------------------------UCAST 0 0 UCAST 1 0 UCAST 2 0 UCAST 3 0 UCAST 4 0 UCAST 5 0 UCAST 6 0 UCAST 7 0 UCAST 8 0 UCAST 9 0 UCAST 10 0 UCAST 11 0 Example displaying egress queue-level snapshot for multicast packets for the specific interface Dell#show hardware buffer-stats-snapshot resource interface fortyGigE 0/0 queue mcast 3 Unit 1 unit: 0 port: 1 (interface Fo 0/0) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Dell#sh
show hardware system-flow Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe. Syntax Parameters show hardware system-flow layer2 stack-unit 0–5 port-set 0–0 [counters] acl | qos For the selected stack member and stack member port-pipe, display which system flow entry the packet hits and what queue the packet takes as it dumps the raw system flow tables. stack-unit 0–5 Enter the keywords stack-unit then 0 to 5 to select a stack member ID.
KEY=0x00000000 00000000 00000000 0180c200 00000000 00000000 00000000 , FPF4=0x00 MASK=0x00000000 00000000 00000000 ffffffff ffff0000 00000000 00000000 , 0x00 action={act=Drop, param0=0(0x00), param1=0(0x00)}, action={act=CosQCpuNew, param0=7(0x07), param1=0(0x00)}, action={act=CopyToCpu, param0=0(0x00), param1=0(0x00)}, action={act=UpdateCounter, param0=1(0x01), param1=0(0x00)}, meter=NULL, counter={idx=0, mode=0x01, entries=1} ################ FP Entry for redirecting LLDP BPDU to RSM ################ EID
action={act=Drop, param0=0(0x00), param1=0(0x00)}, action={act=CosQCpuNew, param0=6(0x06), param1=0(0x00)}, action={act=CopyToCpu, param0=0(0x00), param1=0(0x00)}, action={act=UpdateCounter, param0=1(0x01), param1=0(0x00)}, !--------- output truncated -----------------! show hardware drops Displays internal drops on the specified interface or for a range of interface.
HOL DROPS on COS2 HOL DROPS on COS3 HOL DROPS on COS4 HOL DROPS on COS5 HOL DROPS on COS6 HOL DROPS on COS7 HOL DROPS on COS8 HOL DROPS on COS9 HOL DROPS on COS10 HOL DROPS on COS11 HOL DROPS on COS12 HOL DROPS on COS13 HOL DROPS on COS14 HOL DROPS on COS15 HOL DROPS on COS16 HOL DROPS on COS17 TxPurge CellErr Aged Drops --- Egress MAC counters--Egress FCS Drops --- Egress FORWARD PROCESSOR IPv4 L3UC Aged & Drops TTL Threshold Drops INVALID VLAN CNTR Drops L2MC Drops PKT Drops of ANY Conditions Hg MacUnderf
TxPurge CellErr Aged Drops --- Egress MAC counters--Egress FCS Drops --- Egress FORWARD PROCESSOR IPv4 L3UC Aged & Drops TTL Threshold Drops INVALID VLAN CNTR Drops L2MC Drops PKT Drops of ANY Conditions Hg MacUnderflow TX Err PKT Counter --- Error counters--Internal Mac Transmit Errors Unknown Opcodes Internal Mac Receive Errors Dell(conf)# : 0 : 0 : 0 Drops : 0 : 0 : 0 : 0 : 0 : 0 : 0 --- : 0 : 0 : 0 Debugging and Diagnostics 439
14 Dynamic Host Configuration Protocol (DHCP) Dynamic host configuration protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on the configuration policies the network administrators determine. An MXL switch can operate as a DHCP server or DHCP client. As a DHCP client, the switch requests an IP address from a DHCP server.
• Commands to Configure Secure DHCP • arp inspection • arp inspection-limit • arp inspection-trust • clear ip dhcp snooping • clear ipv6 dhcp snooping binding • ip dhcp snooping • ipv6 dhcp snooping • ip dhcp snooping database • ipv6 dhcp snooping database write-delay • ip dhcp snooping binding • IPv6 DHCP Snooping Binding • ip dhcp snooping database renew • ipv6 dhcp snooping database renew • ip dhcp snooping trust • ipv6 dhcp snooping trust • ip dhcp source-address-validat
Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Entering after the clear ip dhcp binding command clears all the IPs from the binding table. debug ip dhcp server Display the Dell Networking OS debugging messages for DHCP.
default-router Assign a default gateway to clients based on the address pool. Syntax Parameters default-router address [address2...address8] address Defaults none Command Modes DHCP Supported Modes Full–Switch Command History Enter a list of routers that may be the default gateway for clients on the subnet. You may specify up to eight routers. List them in order of preference. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Supported Modes Command History Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. domain-name Assign a domain to clients based on the address pool. Syntax domain-name name Parameters name Defaults none Command Modes DHCP Supported Modes Full–Switch Command History Give a name to the group of addresses in a pool. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
hardware-address For manual configurations, specify the client hardware address. Syntax Parameters hardware-address address address Defaults none Command Modes DHCP Supported Modes Full–Switch Command History Enter the hardware address of the client. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. host-address For manual (rather than automatic) configurations, assign a host to a single-address pool.
ip dhcp server Enable DHCP server globally. Syntax [no] ip dhcp server To disable the DHCP server, use the no ip dhcp server command. Defaults Disabled Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.12(1.0) Introduced on the S5048F–ON. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.
Defaults 24 hours Command Modes DHCP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. netbios-name-server Specify the NetBIOS windows internet naming service (WINS) name servers, in order of preference, that are available to Microsoft dynamic host configuration protocol (DHCP) clients. Syntax Parameters netbios-name-server address [address2...
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. network Specify the range of addresses in an address pool. Syntax network network /prefix-length Parameters network/ prefixlength Defaults none Command Modes DHCP Supported Modes Full–Switch Command History Specify a range of addresses. Prefix-length range is from 17 to 31. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
global Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Display the DHCP configuration for the entire system. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp conflict Display the address conflict log.
Commands to Configure the System to be a DHCP Client To configure the system to be a DHCP client, use the following commands. ip address dhcp Configure an Ethernet interface to acquire its IP address from a DHCP network server. Syntax ip address dhcp Command Modes INTERFACE Default The Ethernet is not configured to operate as a DHCP client and receive a dynamic IP address. Command History Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters all Clear DHCP client statistics on all DHCP client-enabled interfaces on the switch. interface type slot/ port Clear DHCP client statistics on the specified interface. Defaults none Command Modes EXEC Privilege Command History • For a 10-GigabitEthernet Ethernet interface, enter TenGigabitEthernet then the slot/port numbers; for example, tengigabitethernet 1/3. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. release dhcp interface Release the dynamically-acquired IP address on an Ethernet interface while retaining the DHCP client configuration on the interface.
To display the currently configure dynamic IP address and lease time, enter the show ip dhcp lease command. show ip dhcp client statistics Display DHCP client statistics, including the number of DHCP messages sent and received on an interface. Syntax Parameters show ip dhcp client statistics {all | interface type slot/port} all Display DHCP client statistics on all DHCP client-enabled interfaces on the switch. interface type slot/ port Display DHCP client statistics on the specified interface.
Commands to Configure Secure DHCP DHCP, as defined by RFC 2131, provides no authentication or security mechanisms. Secure DHCP is a suite of features that protects networks that use dynamic address allocation from spoofing and attacks. arp inspection Enable dynamic arp inspection (DAI) on a VLAN. Syntax arp inspection Defaults Disabled Command Modes INTERFACE VLAN Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
arp inspection-trust Specify a port as trusted so that ARP frames are not validated against the binding table. Syntax arp inspection-trust Defaults Disabled Command Modes Supported Modes Command History Related Commands • INTERFACE • INTERFACE PORT-CHANNEL Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. arp inspection — enables dynamic ARP inspection on a VLAN. clear ip dhcp snooping Clear the DHCP binding table.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM Dell# clear ipv6 dhcp snooping? binding Clear the snooping binding database ip dhcp snooping Enable DHCP snooping globally. Syntax [no] ip dhcp snooping Defaults Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ip dhcp snooping database Delay writing the binding table for a specified time. Syntax Parameters ip dhcp snooping database write-delay minutes minutes Defaults none Command Modes CONFIGURATION Supported Modes Full–Switch Command History The range is from 5 to 21600. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ipv6 dhcp snooping database write-delay To set time interval for storing the snooping binding entries in a file.
vlan-id vlan-id Enter the keywords vlan-id then the VLAN to which the host belongs. The range is from 2 to 4094. ip ip-address Enter the keyword ip then the IP address that the server is leasing. interface type Enter the keyword interface then the type of interface to which the host is connected: • Defaults For a Ten-Gigabit Ethernet interface, enter the keyword tengigabitethernet. slot/port Enter the slot and port number of the interface.
Defaults Command Modes Supported Modes Command History • For an 10/100 Ethernet interface, enter the keyword fastethernet. • For a Gigabit Ethernet interface, enter the keyword gigabitethernet. • For a Ten-Gigabit Ethernet interface, enter the keyword tengigabitethernet. interface number Enter the number of the interface. lease value Enter the keyword lease then the amount of time the IPv6 address are leased. The range is from 1 to 4294967295.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL. ip dhcp snooping trust Configure an interface as trusted. Syntax [no] ip dhcp snooping trust Defaults Untrusted Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ipv6 dhcp snooping trust Configure an interface as trusted for DHCP snooping.
Supported Modes Command History Usage Information Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Allocate at least one FP block to ipmacacl before you can enable IP+MAC Source Address Validation. 1 Use the cam-acl l2acl command from CONFIGURATION mode. 2 Save the running-config to the startup-config. 3 Reload the system. ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL. ip dhcp relay Enable Option 82. Syntax ip dhcp relay information-option [remote-id | trust-downstream] Parameters remote-id Configure the system to enable the remote-id string in option-82. trust-downstream Configure the system to trust Option 82 when it is received from the previous-hop router.
trust-downstream Configure the system to trust Option 82 when it is received from the previous-hop router. vpn Enter the keyword vpn to add VPN/VRF related sub-option to relay agent information Option 82. NOTE: Adds the VPN/VRF related sub-options into the relay agent information option(82). When DHCP broadcasts are forwarded by the relay agent from clients to DHCP server. Default Disabled. Command Modes CONFIGURATION Command History This guide is platform-specific.
Defaults • For a 10-Gigabit Ethernet information, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet information, enter the keyword FortyGigabitEthernet then the slot/port information. • For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. • For a Tunnel interface, enter the keyword tunnel then the tunnel ID. The range is from 1 to 16383. • For a port channel interface, enter thee keyword port-channel then a number.
Defaults Command Modes • For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. • For a Tunnel interface, enter the keyword tunnel then the tunnel ID. The range is from 1 to 16383. • For a port channel interface, enter thee keyword port-channel then a number. The range is from 1 to 128. • For a VLAN interface, enter the keyword vlan then a number from 1 to 4094.
show ip dhcp snooping Display the contents of the DHCP binding table or display the interfaces configured with IP Source Guard. Syntax show ip dhcp snooping [binding | source-address-validation] Parameters Defaults binding Display the interfaces configured with IP Source Guard. source-addressvalidation Display the interfaces configured with IP Source Guard. none Command Modes Supported Modes Command History Related Commands • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.
Binding Entry lease expired : 0 Dell# ip dhcp snooping verify mac-address Validate a DHCP packet’s source hardware address against the client hardware address field (CHADDR) in the payload. Syntax [no] ip dhcp snooping verify mac-address Defaults Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
15 Equal Cost Multi-Path (ECMP) Equal cost multi-path (ECMP) is supported on the Dell Networking OS. ecmp-group Provides a mechanism to monitor traffic distribution on an ECMP link bundle. A system log is generated when the standard deviation of traffic distribution on a member link exceeds a defined threshold. Syntax ecmp-group {ecmp-group-id interface interface | link-bundle-monitor} To remove the selected interface, use the ecmp-group no interface command.
xor1 | xor2 | xor4 | xor8 | xor16}[[hg {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16}]| [lag {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16 }][stack-unit|linecard number | port-set number] | [hg—seed value] | [seedvalue] To return to the default hash algorithm, use the no hash-algorithm command. To return to the default ECMP hash algorithm, use the no hash-algorithm ecmp algorithm-value command.
xor2 | xor4 | xor8 | xor16}|lsb | xor1 | xor2 | xor4 | xor8 | xor16 hg {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16} lag {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16} 470 crc16 |crc16cc |crc32MSB |crc32LSB |xor1 |xor2 |xor4 |xor8 | xor16 • lsb: Returns the LSB of the key as the hash • xor1: Use CRC16_BISYNC_AND_XOR1 — Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor1 • xor2: Use CRC16_BISYNC_AND_XOR2 — Upper 8 bits of CRC16-BISYNC and
linecard number (OPTIONAL) : Enter the keyword linecard then the linecard slot number. port-set number (OPTIONAL) Enter the keyword port-set then the port-set slot number. Defaults 0 for hash-algorithm value on TeraScale and ExaScale IPSA and IPDA mask value is FF for a line card. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. Added flow-based-hashing support for hashing on ECMP. 9.2(0.
hash-algorithm ecmp Change the hash algorithm used to distribute traffic flows across an ECMP (equal-cost multipath routing) group. Syntax hash-algorithm ecmp {crc-upper} | {dest-ip} | {lsb} To return to the default hash algorithm, use the no hash-algorithm ecmp command. Parameters Defaults crc-upper Uses the upper 32 bits of the key for the hash computation. The default is crc-lower. dest-ip Uses the destination IP for ECMP hashing. The default is enabled.
Supported Modes Command History Usage Information Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Deterministic ECMP sorts ECMPs in order even though RTM provides them in a random order. However, the hash algorithm uses as a seed the lower 12 bits of the chassis MAC, which yields a different hash result for every chassis.
link-bundle-distribution trigger-threshold Provides a mechanism to set the threshold to trigger when traffic distribution begins being monitored on an ECMP link bundle. Syntax link-bundle-distribution trigger-threshold [percent] Parameters percent Command Modes EXEC Privilege Supported Modes Full–Switch Command History Indicate the threshold value when traffic distribution starts being monitored on an ECMP link bundle. The range is from 1 to 90%. The default is 60%. Version Description 9.9(0.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show link-bundle distribution Display the link-bundle distribution for the interfaces in the bundle, type of bundle (LAG or ECMP), and the most recently calculated interface utilization (either bytes per second rate or maximum rate) for each interface. Syntax show link-bundle-distribution Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.
16 FC FLEXIO FPORT The switch is a blade switch which is plugged into the Dell M1000 Blade server chassis.The blade module contains two slots for pluggable flexible module. With single FC Flex IO module, 4 ports are supported, whereas 8 ports are supported with both FC Flex IO modules. Each port can operate in 2G, 4G or 8G Fiber Channel speed. The topology-wise, FC Flex IOM is directly connected to a FC Storage.
• fabric • active-zoneset • show fc ns • show fc switch • show fc zoneset • show fc zone • show fc alias • show fcoe-map feature fc Enable feature fc with FPort functionality. Syntax Parameters feature fc fport domain-id range Range Command Modes CONFIGURATION Supported Modes Full–Switch Command History Enter the range from 1 to 239. Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 9.1(1.0) Introduced on the S5000. Example without member Dell(conf)# fc zone z1 Dell(conf-fc-zone-z1)# Example with member Dell(conf)#fc zone test Dell(conf-fc-zone-test)#member ? WORD WWN(00:00:00:00:00:00:00:00), portID(000000), or Alias name(word) Dell(conf-fc-zone-test)#member Related Commands show fc zone — displays the configured zone. show fcoe-map — displays the fabric parameters. fc alias Create a zone alias name.
fc zoneset Create a zoneset. Syntax fc zoneset zoneset_name [member] To delete a zoneset, use the no fc zoneset zoneset_name [member] command. Parameters zoneset_namemem ber Command Modes CONFIGURATION Supported Modes Full–Switch Command History Enter the zoneset name. Enter the WWPN, FC-ID, or Alias name. Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000.
Usage Information Version Description 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.0(1.3) Introduced on the S5000. An FCoE map is a template to map FCoE and FC parameters in a converged fabric. An FCoE map virtualizes upstream FC ports on an NPIV proxy gateway to appear to downstream server CNA ports as FCoE forwarder (FCF) ports on an FCoE network.
necessary parameters to FCoE-enabled servers and switches to log in to a SAN fabric. Use the fcoe-map command to create an FCoE map. On an FN IOM NPIV proxy gateway, an FCoE map is applied on fabric-facing FC ports and server-facing Ethernet ports. Use the fabric command to apply an FCoE map on an FC port. Use the fcoe-map command to apply an FCoE map on an Ethernet port.
Parameters Command Modes Supported Modes Command History Example switch Enter the keyword switch to display all the devices in the name server database of the switch. brief Enter the keyword brief to display in brief devices in the name server database. • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000.
Port Name Node Name Class of Service IP Address Symbolic Port Name Symbolic Node Name Port Type Registered with NameServer Registered for SCN Switch Name Domain Id Switch Port Port Id Port Name Node Name Class of Service IP Address Symbolic Port Name Symbolic Node Name Port Type Registered with NameServer Registered for SCN Dell# Dell#show fc ns Total number of Intf# Domain 9 2 11 2 Dell# fabric brief devices = 2 FC-ID 02:09:00 02:0b:00 31:11:0e:fc:00:00:00:77 21:11:0e:fc:00:00:00:77 8 (NULL) (NULL) Node
Example Dell(conf)#do show fc switch Switch Mode : FPORT Switch WWN : 10:00:aa:00:00:00:00:ac Dell(conf)# show fc zoneset Display the configured and active zoneset. Syntax show fc zoneset [ zoneset_name | active ] Parameters Command Modes Supported Modes Command History Example zoneset_name Enter the zoneset name to display the zoneset name active Enter the keyword active to display the active zonesets. merged Enter the keyword merged to display the merge active zones.
10:00:8c:7c:ff:21:5f:8d 20:02:00:11:0d:03:00:00 Dell# Related Commands fc zone — creates a zone. fc zoneset — creates a zoneset. active-zoneset — activates the zoneset. show fc zone Display the configured zone. Syntax Parameters Command Modes Supported Modes Command History Example show fc zone [zonename ] zonename • EXEC • EXEC Privilege Enter the zone name to display the details. Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.
• Supported Modes Command History Example EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000. Dell#show fc alias Zone Alias Name 0x030303 al1 Dell# Related Commands fc alias — creates a zone alias name. show fcoe-map Display the Fibre Channel and FCoE configuration parameters in FCoE maps.
Fabric Name SAN_FABRIC Fabric Type npiv Fabric Id 1002 Vlan Id 1002 Vlan priority 3 FC-MAP 0efc00 FKA-ADV-Period 8 Fcf Priority 128 Config-State ACTIVE Oper-State DOWN ======================================================= Members Fc 0/9 Fc 0/10 ======================================================= ======================================================= Dell# Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric.
17 FIPS Cryptography To configure federal information processing standards (FIPS) cryptography, use the following commands on the switch. Topics: • fips mode enable • show fips status • show ip ssh • ssh fips mode enable Enable the FIPS cryptography mode on the platform. Syntax fips mode enable To disable the FIPS cryptography mode, use the no fips mode enable command. Default Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show fips status FIPS Mode : Disabled Dell# Dell#show fips status FIPS Mode : Enabled Dell# show ip ssh Display information about established SSH sessions Syntax show ip ssh Defaults none Command Modes EXEC EXEC Privilege Supported Modes Command History Example Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
ssh Open an SSH connection specifying the hostname, username, port number, and version of the SSH client. Syntax ssh {hostname | ipv4 address | ipv6 address} [-c encryption cipher | -l username | -m HMAC alogorithm | -p port-number | -v {1|2}] Parameters hostname (OPTIONAL) Enter the IP address or the hostname of the remote device. ipv4 address (OPTIONAL) Enter the IP address in dotted decimal format A.B.C.D.
Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If FIPS mode is not enabled: Dell#ssh 10.11.8.12 ? -c Encryption cipher to use (for v2 client -l User name option -m HMAC algorithm to use (for v2 clients only) -p SSH server port option (default 22) -v SSH protocol version Dell#ssh 10.11.8.
18 FIP Snooping In a converged Ethernet network, the switch can operate as an intermediate Ethernet bridge to snoop on Fibre Channel over Ethernet initialization protocol (FIP) packets during the login process on Fibre Channel over Ethernet (FCoE) forwarders (FCFs). Acting as a transit FIP snooping bridge, the switch uses dynamically-created ACLs to permit only authorized FCoE traffic to be transmitted between an FCoE end-device and an FCF.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear fip-snooping statistics Clears the statistics on the FIP packets snooped on all VLANs, a specified VLAN, or a specified port interface. Syntax Parameters clear fip-snooping statistics [interface vlan vlan-id | interface port-type port/slot | interface port-channel port-channel-number] vlan-id Enter the VLAN ID of the FIP packet statistics to be cleared.
fip-snooping enable Enable FIP snooping on all VLANs or on a specified VLAN. Syntax fip-snooping enable To disable the FIP snooping feature on all or a specified VLAN, use the no fip-snooping enable command. Defaults FIP snooping is disabled on all VLANs. Command Modes Supported Modes Command History Usage Information • CONFIGURATION • VLAN INTERFACE Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.
fip-snooping port-mode fcf Configure the port for bridge-to-FCF links. Syntax fip-snooping port-mode fcf To disable the bridge-to-FCF link on a port, use the no fip-snooping port-mode fcf command. Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show fip-snooping enode Display information on the ENodes in FIP-snooped sessions, including the ENode interface and MAC address, FCF MAC address, VLAN ID and FC-ID. Syntax show fip-snooping enode [enode-mac-address] Parameters Command Modes Supported Modes Command History Usage Information Example enode-macaddress • EXEC • EXEC Privilege Enter the MAC address of the ENodes to display. Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Supported Modes Command History Usage Information Example Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show fip-snooping fcf command shown in the following example. Field Description FCF MAC MAC address of the FCF. FCF Interface Slot/port number of the interface to which the FCF is connected. VLAN VLAN ID number the session uses. FC-MAP FC-Map value the FCF advertises.
Example Field Description ENode MAC MAC address of the ENode. ENode Interface Slot/ port number of the interface connected to the ENode. FCF MAC MAC address of the FCF. FCF Interface Slot/ port number of the interface to which the FCF is connected. VLAN VLAN ID number the session uses. FCoE MAC MAC address of the FCoE session the FCF assigns. FC-ID Fibre Channel ID the FCF assigns. Port WWPN Worldwide port name of the CNA port. Port WWNN Worldwide node name of the CNA port.
Usage Information The following describes the show fip-snooping statistics command shown in the following example. Field Description Number of VLAN Requests Number of FIP-snoop VLAN request frames received on the interface. Number of VLAN Notifications Number of FIP-snoop VLAN notification frames received on the interface. Number of Multicast Discovery Solicits Number of FIP-snoop multicast discovery solicit frames received on the interface.
Example Field Description Number of Session failures due to Hardware Config Number of session failures due to hardware configuration that occurred on the interface.
Number Number Number Number Number Number Number Number of of of of of of of of FDISC Accepts :16 FDISC Rejects :0 FLOGO Accepts :0 FLOGO Rejects :0 CVL :0 FCF Discovery Timeouts :0 VN Port Session Timeouts :0 Session failures due to Hardware Config :0 show fip-snooping system Display information on the status of FIP snooping on the switch (enabled or disabled), including the number of FCoE VLANs, FCFs, ENodes, and currently active sessions.
*1 100 502 FIP Snooping 0X0EFC00 1 2 17
19 Force10 Resilient Ring Protocol (FRRP) FRRP is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the spanning tree protocol (STP). The resilient ring protocol is an efficient protocol that transmits a high-speed token across a ring to verify the link status. All the intelligence is contained in the master node with practically no intelligence required of the transit mode. Important Points to Remember • FRRP is media- and speed-independent.
Usage Information Example 9.9(0.0) Introduced on the FN MXL. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Executing this command without the optional ring-id command clears the statistics counters on all the available rings. The system requires a command line confirmation before the command executes.
description Enter an identifying description of the ring. Syntax description Word To remove the ring description, use the no description [Word] command. Parameters Word Enter a description of the ring. Maximum: 255 characters. Defaults none Command Modes CONFIGURATION (conf-frrp) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. disable Disable the resilient ring protocol.
secondary interface control-vlan vlan-id • Fast Ethernet interface: enter the keyword FastEthernet then the slot/ port information. • Port Channel interface: enter the keyword port-channel then a number. The range is from 1 to 128.
9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. mode Set the Master or Transit mode of the ring. Syntax mode {master | transit} To reset the mode, use the no mode {master | transit} command. Parameters master Enter the keyword master to set the Ring node to Master mode. transit Enter the keywordtransit to set the Ring node to Transit mode.
show frrp Display the resilient ring protocol configuration. Syntax show frrp [ring-id [summary]] | [summary] Parameters ring-id Enter the ring identification number. The range is from 1 to 255 summary (OPTIONAL) Enter the keyword summary to view just a summarized version of the Ring configuration. Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Related Commands protocol frrp — enters the resilient ring protocol and designate a ring identification. timer Set the hello interval or dead interval for the Ring control packets. Syntax timer {hello-interval milliseconds}| {dead-interval milliseconds} To remove the timer, use the no timer {hello-interval [milliseconds]}| {dead-interval milliseconds} command.
20 GARP VLAN Registration (GVRP) The Dell Networking Operating System (OS) supports the basic GVRP commands. The generic attribute registration protocol (GARP) mechanism allows the configuration of a GARP participant to propagate through a network quickly. A GARP participant registers or de-registers its attributes with other participants by making or withdrawing declarations of attributes. At the same time, based on received declarations or withdrawals, GARP handles attributes of other participants.
• clear gvrp statistics • debug gvrp • disable • garp timers • gvrp enable • gvrp registration • protocol gvrp • show config • show garp timers • show gvrp • clear gvrp statistics • show vlan clear gvrp statistics Clear GVRP statistics on an interface.
pdu Defaults Disabled. Command Modes EXEC Supported Modes Full–Switch Command History Enter the keyword pdu then one of the following Interface keywords and slot/port or number information: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
NOTE: Designate the milliseconds in multiples of 100. leave Enter the keyword leave then the number of milliseconds to configure the leave time. The range is from 100 to 2147483647 milliseconds. The default is 600 milliseconds. NOTE: Designate the milliseconds in multiples of 100. leave-all Enter the keywords leave-all then the number of milliseconds to configure the leaveall time. The range is from 100 to 2147483647 milliseconds. The default is 1000 milliseconds.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable — globally disables GVRP. gvrp registration Configure the GVRP register type. Syntax gvrp registration {fixed | normal | forbidden} To return to the default, use the gvrp register normal command. Parameters fixed Enter the keyword fixed then the VLAN range in a comma-separated VLAN ID set. normal Enter the keyword normal then the VLAN range in a comma-separated VLAN ID set.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable — globally disables GVRP. show config Display the global GVRP configuration. Syntax show config Command Modes CONFIGURATION-GVRP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
LeaveAll Timer Dell# Related Commands 10000 garp timers — sets the intervals (in milliseconds) for sending GARP messages. show gvrp Display the GVRP configuration. Syntax show gvrp [brief | interface] Parameters Defaults brief (OPTIONAL) Enter the keyword brief to display a brief summary of the GVRP configuration. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For a Port Channel interface, enter the keywords port-channel then a number.
clear gvrp statistics Clear GVRP statistics on an interface. Syntax Parameters clear gvrp statistics {interface interface | summary} interface interface summary Defaults Command Modes Supported Modes Command History Usage Information Enter the following keywords and slot/port or number information: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Leave All Transmitted: 41 Invalid Messages/Attributes skipped: 0 Failed Registrations: 0 Dell# Related Commands show gvrp — displays the GVRP configuration. show vlan Display the global VLAN configuration. Syntax show vlan Command Modes Supported Modes Command History Example • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
21 Internet Group Management Protocol (IGMP) The IGMP commands are supported by the Dell Networking Operating System (OS). IGMP Snooping Commands The Dell Networking OS supports IGMP Snooping version 2 and 3 on all Dell Networking systems. Important Points to Remember for IGMP Snooping • The Dell Networking OS supports version 1, version 2, and version 3 hosts.
To remove the feature, use the no ip igmp access-group access-list command. Parameters access-list Enter the name of the extended ACL (16 characters maximum). Defaults Not configured Command Modes INTERFACE (conf-if-interface-slot/port) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The access list accepted is an extended ACL.
Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip igmp query-interval Change the transmission frequency of IGMP general queries the Querier sends. Syntax ip igmp query-interval seconds To return to the default values, use the no ip igmp query-interval command.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip igmp version Manually set the version of the router to IGMPv2 or IGMPv3. Syntax ip igmp version {2 | 3} Parameters 2 Enter the number 2 to set the IGMP version number to IGMPv2. 3 Enter the number 3 to set the IGMP version number to IGMPv3. Defaults 2 (that is, IGMPv2) Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
ip igmp snooping fast-leave Enable IGMP snooping fast-leave for this VLAN. Syntax ip igmp snooping fast-leave To disable IGMP snooping fast leave, use the no igmp snooping fast-leave command. Defaults Not configured. Command Modes INTERFACE VLAN — (conf-if-vl-n) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ip igmp snooping last-member-query-interval The last member query interval is the maximum response time inserted into Group-Specific queries sent in response to Group-Leave messages. Syntax ip igmp snooping last-member-query-interval milliseconds To return to the default value, use the no ip igmp snooping last-member-query-interval command.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The Dell Networking OS provides the capability of statically configuring the interface to which a multicast router is attached. To configure a static connection to the multicast router, enter the ip igmp snooping mrouter interface command in the VLAN context. The interface to the router must be a part of the VLAN where you are entering the command.
Example 526 Dell#show ip igmp snooping mrouter Interface Router Ports Vlan 2 Te 1/3, Po 1 Dell# Internet Group Management Protocol (IGMP)
22 Interfaces The commands in this chapter are supported by Dell Networking Operating System (OS).
• show interfaces configured • show interfaces dampening • show interfaces description • show interfaces stack-unit • show interfaces status • show interfaces switchport • show interfaces transceiver • show range • shutdown • speed (for 1000/10000/auto interfaces) • stack-unit portmode • wavelength • Port Channel Commands • channel-member • group • interface port-channel • minimum-links • port-channel failover-group • show config • show interfaces port-channel • Time
• For the management interface on the RPM, enter the keyword ManagementEthernet then slot/port information. The slot range is from 0 to 1 and the port range is 0. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN, enter the keyword VLAN then a number from 1 to 4094. NOTE: This command also enables you to clear the port configurations corresponding to a range of ports. • You can specify multiple ports as slot/port-range.
• For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. Defaults Without an interface specified, the command clears all interface dampening counters. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.
Usage Information This command only works on ports that the system recognizes as CX4 ports. The figures below shows an attempt to configure an XFP port with the command after inserting a CX4 converter into the port. For details about using XFP ports with CX4 cables, refer to your FN IOM switch hardware guide.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. With each flap, the Dell Networking OS penalizes the interface by assigning a penalty (1024) that decays exponentially depending on the configured half-life. After the accumulated penalty exceeds the suppress threshold value, the interface moves to the Error-Disabled state.
Version Description 9.9(0.0) Introduced on the MXL and FN IOM. Usage Information Use the default interface command to set a 10- Gigabit Ethernet or 40-Gigabit Ethernet interface to its factory-default state. By default, a physical interface is disabled (shutdown) with no assigned IP address or switchport (no ip address). This command removes all software settings and all L3, VLAN, VXLAN, and portchannel configurations on a physical interface.
Usage Information Related Commands Important Points to Remember: • Spaces between characters are not preserved after entering this command unless you enclose the entire description in quotation marks (“desc_text”). • Entering a text string after the description command overwrites any previous text string that you previously configured as the description. • The shutdown and description commands are the only commands that you can configure on an interface that is a member of a port-channel.
To remove a management application configuration, use the no application {all | applicationtype} command. Parameters application-type all Enter any of the following keywords: • For DNS, enter the keyword dns. • For FTP, enter the keyword ftp. • For NTP, enter the keyword ntp. • For Radius, enter the keyword radius. • For sFlow collectors, enter the keyword sflow-collector. • For SNMP (traps and MIB responses), enter the keywords snmp . • For SSH, enter the keyword ssh .
arp-inspection Enter the keyword arp-inspection to enable the timer to recover the interface from an arp-inspection error. Defaults Disabled Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.14(1.0) Introduced arp-inspection option. 9.14(0.
Related Commands errdisable recovery cause — Enable automatic recovery of an interface from the error disabled state. flowcontrol Control how the system responds to and generates 802.3x pause frames on 10G stack units. Syntax Parameters Defaults flowcontrol rx {off | on} tx {off | on} [negotiate] [monitor session-ID] rx on Enter the keywords rx on to process the received flow control frames on this port. This is the default value for the receive side.
The discard threshold defines when the interface starts dropping the packet on the interface. This may be necessary when a connected device does not honor the flow control frame sent by the switch. The discard threshold should be larger than the buffer threshold so that the buffer holds at least hold at least three packets. On 4–port 10G stack units: Changes in the flow-control values may not be reflected automatically in the show interface output for 10G interfaces.
on on Related Commands off on LocNegRx off off off off LocNegTx RemNegRx RemNegTx off off off off off off off off off off off off off off off off off off on off off off on off off off off off off on on on off off on on off off on on off on on on off off on on off off on on off off on on off off on on show running-config — displays the flow configuration parameters (non-default values only). show interfaces — displays the negotiated flow control parameters.
By default, physical interfaces are disabled (shutdown) and are in Layer 3 mode. To place an interface in mode, ensure that the interface’s configuration does not contain an IP address and enter the Port Channel Commands command. By default, the interface is shutdown when the portmode hybrid and switchport are enabled. The tunnel interface operates as an ECMP (equal cost multi path) only when the next hop to the tunnel destination is over a physical interface.
interface ManagementEthernet Configure the Management port on the system. Syntax Parameters interface ManagementEthernet slot/port slot/port Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Enter the keyword ManagementEthernet, then the slot number (0 or 1) and port number zero (0). Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.
Usage Information You cannot delete the Null interface. The only configuration command possible in a Null interface is ip unreachables. Example Dell(conf)#interface null 0 Dell(conf-if-nu-0)# Related Commands interface — configures a physical interface. interface loopback — configures a Loopback interface. interface port-channel — configures a port channel. interface vlan — configures a VLAN. ip unreachables — enables generation of internet control message protocol (ICMP) unreachable messages.
Important Points to Remember: • Bulk configuration is created if at least one interface is valid. • Non-existing interfaces are excluded from the bulk configuration with a warning message. • The interface range prompt includes interface types with slot/port information for valid interfaces. The prompt allows for a maximum of 32 characters. If the bulk configuration exceeds 32 characters, it is represented by an ellipsis ( ... ).
Example (Multiple Range) This example shows how to use commas to add SONET, VLAN, and port-channel interfaces to the range. Dell(config-if)# interface range tengigabitethernet5/1-3, tengigabitethernet1/1–2, Vlan 2–100, Port 1–25 Dell(config-if-range)# no shutdown Dell(config-if-range)# Related Commands interface port-channel — configures a port channel group. interface vlan — configures a VLAN interface. show config (from INTERFACE RANGE mode) — shows the bulk configuration interfaces.
Example (Single Range) This example shows how to define an interface range macro named test. Execute the show running-config command to display the macro definition.
Parameters vlan-id Enter a number as the VLAN Identifier. The range is from 1 to 4096. Defaults Not configured, except for the Default VLAN, which is configured as VLAN 1. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
interface port-channel — configures a port channel group. keepalive Send keepalive packets periodically to keep an interface alive when it is not transmitting data. Syntax keepalive [seconds] To stop sending keepalive packets, use the no keepalive command. Parameters seconds Defaults Enabled. Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information (OPTIONAL) For interfaces with PPP encapsulation enabled, enter the number of seconds between keepalive packets.
mac {dest-mac | source-dest-mac | source-mac} Enter the keywords to distribute MAC traffic based on the following criteria: dest-mac — Uses the destination MAC address, VLAN, Ethertype, source module ID and source port ID fields to hash. source-dest-mac — Uses the destination and source MAC address, VLAN, Ethertype, source module ID and source port ID fields to hash. source-mac — Uses the source MAC address, VLAN, Ethertype, source module ID and source port ID fields to hash.
source-module-id | dest-ip | dest-ipv6 | dest-port-id | destmodule-id | protocol | vlan | L4-sourceport | L4-destport ] mac [source-mac | source-port-id | source-module-id | dest-mac | destport-id | destmodule-id | vlan | ethertype | sourcedest-mac ] tunnel [ipv4-overipv4 | ipv4-overgre-ipv4 | mac-inmac] • source-ipv6 — Use IPv6 src-ip field in hash calculation • source-port-id — Use src-port-id field in hash calculation. • source-module-id — Use src-module-id field in hash calculation.
To disable monitoring and return to the CLI prompt, press the q key. Parameters Command Modes Supported Modes Command History Usage Information interface • EXEC • EXEC Privilege (OPTIONAL) Enter the following keywords and slot/port or number information: • For the management port, enter the keyword managementethernet then the slot (0 or 1) and the port (0). • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Output packets: 64B packets: Over 64B packets: Over 127B packets: Over 255B packets: Over 511B packets: Over 1023B packets: Error statistics: Input underruns: Input giants: Input throttles: Input CRC: Input IP checksum: Input overrun: Output underruns: Output throttles: m l T q - 9401589 67 49166 350 1351 286 2781 0 0 0 0 0 0 0 pps pps pps pps pps pps pps 1 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 pps pps pps pps pps pps pps pps 0 0 0 0 0 0 0 0 Change mode Page up Increase refresh interval Quit
• The port channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members. For example, if the members have a link MTU of 2100 and an IP MTU 2000, the port channel’s MTU values cannot be higher than 2100 for link MTU or 2000 bytes for IP MTU. VLANs: • All members of a VLAN must have same IP MTU value. • Members can have different Link MTU values.
The negotiation auto command provides a mode option for configuring an individual port to forced-master/ forced slave after you enable auto-negotiation. If you do not use the mode option, the default setting is slave. If you do not configure forced-master or forcedslave on a port, the port negotiates to either a master or a slave state.
• auto-negotiation enabled* speed 1000 or auto Port 1 • auto-negotiation enabled* speed 1000 or auto • auto-negotiation enabled speed 100 • auto-negotiation disabled speed 100 • auto-negotiation enabled speed 100 • auto-negotiation disabled speed 100 Link Status Between Port 1 and Port 2 • Up at 1000 Mb/s • Up at 100 Mb/s • Up at 100 Mb/s • Down • Down * You cannot disable auto-negotiation when the speed is set to 1000 or auto.
• True — port is tagged • False — port is untagged • Hybrid — port accepts both tagged and untagged frames The following describes the interface vlan command shown in the following example. This example shows unconfiguration of the hybrid port using the no portmode hybrid command. NOTE: Remove all other configurations on the port before you can remove the hybrid configuration from the port.
rate-interval Configure the traffic sampling interval on the selected interface. Syntax rate-interval seconds Parameters seconds Enter the number of seconds for which to collect traffic data. The range is from 5 to 299 seconds. NOTE: For 0 to 5 seconds, polling occurs every 5 seconds. For 6 to 10 seconds, polling occurs every 10 seconds. For any other value, polling occurs every 15 seconds.
Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11.0.0 Introduced on all Dell EMC Networking OS platforms. The output of the show interfaces command displays the configured rate interval, along with the collected traffic data.
show config Display the interface configuration. Syntax show config Command Modes INTERFACE Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if)#show conf ! interface TenGigabitEthernet 1/7 no ip address switchport no shutdown Dell(conf-if)# show config (from INTERFACE RANGE mode) Display the bulk configured interfaces (interface range).
show interfaces Display information on a specific physical interface or virtual interface. Syntax Parameters show interfaces interface interface Enter one of the following keywords and slot/port or number information: • For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. • For a management interface, enter the keyword ManagementEthernet then the slot/port information. The slot range is 0 to 1 and the port range is 0.
NOTE: In the CLI output, the power value is rounded to a 3-digit value. For receive/transmit power that is less than 0.000, an snmp query returns the corresponding dbm value even though the CLI displays as 0.000. NOTE: After the counters are cleared, the line-rate continues to increase until it reaches the maximum line rate. When the maximum line rate is reached, there is no change in the line-rate.
Line Description – Vlans = number of VLAN tagged packets – throttles = packets containing PAUSE frames – discarded = number of packets discarded without any processing – collisions = number of packet collisions – wred=count both packets discarded in the MAC and in the hardware-based queues Rate information... Estimate of the input and output traffic rate over a designated interval (30 to 299 seconds). Traffic rate is displayed in bits, packets per second, and percent of line rate. Time since...
Queueing strategy: fifo Input Statistics: 94322888 packets, 6036664832 bytes 94322888 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 0 Multicasts, 94322888 Broadcasts 0 runts, 0 giants, 0 throttles 0 CRC, 0 overrun, 0 discarded Output Statistics: 180384 packets, 11926850 bytes, 0 underruns 172622 64-byte pkts, 7762 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 7762 Multicast
show interfaces configured Display any interface with a non-default configuration. Syntax Command Modes Supported Modes Command History show interfaces configured • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. NOTE: This command also enables you to view information corresponding to a range of ports. However, for Open Networking (ON) platforms the notation for specifying port range in the command is different from how you specify in nonON platforms.
Parameters interface (Optional) Enter one of the following keywords and slot/port or number information: • For Loopback interfaces, enter the keyword loopback then a number from 0 to 16383. • For the management interface on the RPM, enter the keyword ManagementEthernet then the slot/port information. The slot range is 0-0 and the port range is 0. • For the Null interface, enter the keywords null 0. • For a Port Channel interface, enter the keywords port-channel then a number.
TenGigabitEthernet TenGigabitEthernet TenGigabitEthernet TenGigabitEthernet TenGigabitEthernet TenGigabitEthernet TenGigabitEthernet Related Commands 0/2 0/3 0/4 0/5 0/6 0/7 0/8 NO admin NO admin NO admin NO admin NO admin NO YES down down down down down up up down down down down down down up show interfaces – displays information on a specific physical interface or virtual interface. show interfaces stack-unit Display information on all interfaces on a specific MXL switch stack member.
Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Output 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Time since last interface status change: 5d5h23m !-------------output truncated ----------------! Related Commands show hardware stack-unit — displays data plane and management plane input/output statistics. show interfaces — displays information on a specific physical interface or virtual interface.
Te 0/7 Te 0/8 Dell# Related Commands Down Up Auto Auto -10000 Mbit Full -- show interfaces — displays information on a specific physical interface or virtual interface. show interfaces switchport Display only virtual and physical interfaces in Layer 2 mode. This command displays the Layer 2 mode interfaces’ IEEE 802.1Q tag status and VLAN membership.
Example Items Description 802.1QTagged Displays whether if the VLAN tagged (“True”), untagged (“False”), or hybrid (“Hybrid”), which supports both untagged and tagged VLANs by port 13/0. Vlan membership Lists the VLANs to which the interface is a member. Starting with the Dell Networking OS version 7.6.1, this field can display native VLAN membership by port 13/0.
Parameters tengigabitethernet For a 10G interface, enter the keyword tengigabitethernet then the slot/port information. NOTE: This command also enables you to view information corresponding to a range of ports. However, for Open Networking (ON) platforms the notation for specifying port range in the command is different from how you specify in nonON platforms.
Line Description TX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. RX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. Temp High Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Voltage High Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Bias High Warning threshold Factory-defined setting. Value can differ between SFP and SFP+.
Interfaces Line Description Tx Fault state This is the digital state of the Tx Fault output pin. Rate Select state This is the digital state of the SFP rate_select input pin. RS state This is the reserved digital state of the pin AS(1) per SFF-8079 and RS(1) per SFF-8431. Tx Disable state If the admin status of the port is down then this flag is set to true. Temperature High Alarm Flag This can be either true or false, depending on the Current voltage value displayed above.
Example Line Description Rx Power Low Warning Flag This can be either true or false, depending on the Current Rx power value displayed above. Dell#show interfaces tengigabitethernet 1/1 transceiver SFP is present.
SFP 1 Tx Disable state = False =================================== SFP 1 Temperature High Alarm Flag = False SFP 1 Voltage High Alarm Flag = False SFP 1 Tx Bias High Alarm Flag = False SFP 1 Tx Power High Alarm Flag = False SFP 1 Rx Power High Alarm Flag = False SFP 1 Temperature Low Alarm Flag = False SFP 1 Voltage Low Alarm Flag = False SFP 1 Tx Bias Low Alarm Flag = False SFP 1 Tx Power Low Alarm Flag = False SFP 1 Rx Power Low Alarm Flag = True =================================== !-------output truncate
To activate an interface, use the no shutdown command. Defaults The interface is disabled. Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The shutdown command marks a physical interface as unavailable for traffic. To discover if an interface is disabled, use the show ip interface brief command. Disabled interfaces are listed as down.
Command History Usage Information Version Description 9.10(0.0) Added support for fanned–out 1 Gigabit SFP port. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is found on the 1000/10000 Base-T Ethernet interfaces. When you enable auto, the system performs an automatic discovery to determine the optics installed and configure the appropriate speed.
• The unit number with the split ports must be the default (stack-unit 0). • This set up can be verified using show system brief command. If the unit ID is different than 0, it must be renumbered to 0 before ports are split by using the stackunit id renumber 0 command in EXEC mode. The quad port must be in a default configuration before it can be split into 4x10G ports.
NOTE: The Dell Networking OS implementation of LAG or Port Channel requires that you configure a LAG on both switches manually. For information about Dell Networking OS link aggregation control protocol (LACP) for dynamic LAGs, refer to the Link Aggregation Control Protocol (LACP) chapter. For more information about configuring and using Port Channels, refer to the Dell Networking OS Configuration Guide. channel-member Add an interface to the Port Channel, while in INTERFACE PORTCHANNEL mode.
disables those interfaces whose speed does not match the speed of the first interface configured and enabled in the Port Channel. If that first interface goes down, the Port Channel does not change its designated speed; disable and re-enable the Port Channel or change the order of the channel members configuration to change the designated speed. For more information about Port Channels, refer to the Dell Networking OS Configuration Guide.
Parameters channel-number Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If you use this command to configure the minimum number of links in a LAG that must be in “oper up” status, the LAG must have at least that number of “oper up” links before it can be declared as up.
Supported Modes Command History Example Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-po-1)#show config ! interface Port-channel 1 no ip address shutdown Dell(conf-if-po-1)# show interfaces port-channel Display information on configured Port Channel groups.
Example (EtherScale) Field Description Port-channel is part... Indicates whether the LAG is part of a LAG fate-sharing group (“Failover-group”). Internet address... States whether an IP address is assigned to the interface. If an IP address is assigned, that address is displayed. MTU 1554... Displays link and IP MTU. LineSpeed Displays the interface’s line speed. For a port channel interface, it is the line speed of the interfaces in the port channel. Members in this...
0 Multicasts, 0 Broadcasts, 0 Unicasts 0 throttles, 0 discarded, 0 collisions User Information The following describes the show interfaces port-channel brief command shown in the following example. Field Description LAG Lists the port channel number. Mode Lists the mode: Status Example (brief) • L3 — for Layer 3 • L2 — for Layer 2 Displays the status of the port channel.
tdr-cable-test Test the condition of copper cables on 100/1000 Base-T modules. Syntax Parameters tdr-cable-test interface interface Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Usage Information Enter the keyword TenGigabitEthernet then the slot/port information for the 100/1000 Ethernet interface. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
The following describes the TDR test status. Status Definition OK Status: Terminated TDR test is complete, no fault is detected on the cable, and the test is terminated. Length: 92 (+/- 1) meters, Status: Shorted A short is detected on the cable. The location, in this Example is 92 meters. The short is accurate to plus or minus one meter. Length: 93 (+/- 1) meters, Status: Open An opening is detected on the cable. The location, in this Example is 93 meters.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#debug ip udp-helper UDP helper debugging is on 01:20:22: Pkt rcvd on Te 4/1 with IP DA (0xffffffff) will be sent on Te 4/2 Te 4/3 Vlan 3 01:44:54: Pkt rcvd on Te 5/1 is handed over for DHCP processing. Related Commands ip udp-broadcast-address — configures a UDP IP address for broadcast.
ip udp-helper udp-port Enable the UDP broadcast feature on an interface either for all UDP ports or a specified list of UDP ports. Syntax ip udp-helper udp-port [udp-port-list] To disable the UDP broadcast on a port, use the no ip udp-helper udp-port [udp-port-list] command. Parameters udp-port-list (OPTIONAL) Enter up to 16 comma-separated UDP port numbers. NOTE: If you do not use this option, all UDP ports are considered by default.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show ip udp-helper -------------------------------------------------Port UDP port list -------------------------------------------------Te 1/1 656, 658 Te 1/2 All Related Commands debug ip udp-helper — enables debug and displays the debug information on a console. ip udp-broadcast-address — configures a UDP IP address for broadcast.
23 IPv4 Routing The basic IPv4 commands are supported by Dell Networking Operating System (OS).
• show ip fib stack-unit • show ip interface • show ip management-route • show ip protocols • show ip route • show ip route list • show ip route summary • show ip traffic • show tcp statistics arp To associate an IP address with a multicast MAC address in the switch when you configure multicast mode of the network load balancing (NLB), use the address resolution protocol (ARP).
configuration mode. This setting causes the multicast MAC address to be mapped to the cluster IP address for NLB mode of operation of the switch. You cannot use Class D or Class E IP addresses or zero IP address (0.0.0.0) when creating a static ARP. Zero MAC addresses (00:00:00:00:00:00) are also invalid. Although static ARP entries take precedence over dynamically-learnt ARP entries, a static ARP entry that points to a wrong port is not included in the FIB or ARP entries.
arp timeout Set the time interval for an ARP entry to remain in the ARP cache. Syntax Parameters arp timeout minutes minutes Defaults 240 minutes (4 hours) Command Modes INTERFACE Supported Modes Full–Switch Command History Related Commands Enter the number of minutes. The range is from 0 to 35790. The default is 240 minutes. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear host Remove one or all dynamically learned host table entries. Syntax clear host name Parameters name Command Modes EXEC Privilege Supported Modes Full–Switch Command History Enter the name of the host to delete. Enter * to delete all host table entries. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
clear ip route Clear one or all routes in the routing table. Syntax Parameters clear ip route {* | ip-address mask} * Enter an asterisk (*) to clear all learned IP routes. ip-address mask Enter a specific IP address and mask in dotted decimal format to clear that IP address from the routing table. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
count value Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information • For the Management interface, enter the keyword ManagementEthernet then the slot/port information. The slot range is from 0 to 1 and the port range is 0. • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Request, hops = 0, XID = 0xda4f9503, secs = 0, hwaddr = 00:60:CF:20:7B:8C, giaddr = 0.0.0.0 00:12:40 : %RELAY-I-BOOTREQUEST: Forwarded BOOTREQUEST for 00:60:CF:20:7B:8C to 14.4.4.2 00:12:42 : %RELAY-I-PACKET: BOOTP REPLY (Unicast) received at interface 14.4.4.1 BOOTP Reply, hops = 0, XID = 0xda4f9503, secs = 0, hwaddr = 00:60:CF:20:7B:8C, giaddr = 113.3.3.17 00:12:42 : %RELAY-I-BOOTREPLY: Forwarded BOOTREPLY for 00:60:CF:20:7B:8C to 113.3.3.
Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ICMP: ICMP: ICMP: ICMP: ICMP: ICMP: ICMP: ICMP: Usage Information echo request rcvd from src 40.40.40.40 src 40.40.40.40, dst 40.40.40.40, echo src 40.40.40.40, dst 40.40.40.40, echo echo request sent to dst 40.40.40.40 echo request rcvd from src 40.40.40.40 src 40.40.40.40, dst 40.40.40.40, echo src 40.40.40.40, dst 40.40.40.40, echo echo request sent to dst 40.40.40.
Field Description d= Lists the destination address of the packet and the name of the interface (in parentheses) through which the packet is being sent out on the network. len Displays the packet’s length. sending, rcvd, fragment, sending broad/multicast proto, unroutable The last part of each line lists the status of the packet. TCP src= Displays the source and destination ports, the sequence number, the acknowledgement number, and the window size of the packets in that TCP packets.
• User Datagram Protocol (udp) In the case of ambiguous access control list rules, the debug ip packet access-control command is disabled. A message appears identifying the error (refer to the Example below).
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You must be in INTERFACE mode before you add an IP address to an interface. Assign an IP address to an interface prior to entering ROUTER OSPF mode. ip directed-broadcast Enables the interface to receive directed broadcast packets.
If you configure both the ip domain-name and ip domain-list commands, the software tries to resolve the name using the ip domain-name command. If the name is not resolved, the software goes through the list of names configured with the ip domain-list command to find a match. To enable dynamic resolution of hosts, use the following steps: • specify a domain name server with the ip name-server command • enable DNS with the ip domain-lookup command To view current bindings, use the show hosts command.
Parameters name Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Enter one domain name to be used to complete unqualified names (that is, incomplete domain names that cannot be resolved). Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can only configure one domain name with the ip domain-name command.
The Dell Networking OS uses standard DHCP ports, that is UDP ports 67 (server) and 68 (client) for DHCP relay services. It listens on port 67 and if it receives a broadcast, the software converts it to unicast, and forwards to it to the DHCP-server with source port=68 and destination port=67. The server replies with source port=67, destination port=67 and the system forwards to the client with source port=67, destination port=68.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip icmp source-interface Enable the ICMP error and unreachable messages to be sent with the source interface IP address, such as the loopback address, instead of the hops of the preceding devices along the network path to be used for easy debugging and diagnosis of network disconnections and reachability problems with IPv4 packets.
traceroute utilities. You can enable the ICMP unreachable messages to contain the loopback address of the source device instead of the previous hop's IP address to be able to easily and quickly identify the device and devices along the path because the DNS server maps the loopback IP address to the hostname and does not translate the IP address of every interface of the switch to the hostname.
purposes. In such cases, if the reply that is obtained from each hop on the network path contains the IP address of the adjacent, neighboring interface from which the packet is received, it is difficult to employ the ping and traceroute utilities.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The system does not support sending DNS queries over a VLAN. DNS queries are sent out on all other interfaces, including the Management port. ip proxy-arp Enable proxy ARP on an interface. Syntax ip proxy-arp To disable proxy ARP, use the no ip proxy-arp command. Defaults Enabled.
For a VLAN, enter the keyword vlan then a number from 1 to 4094. name description (OPTIONAL) Enter the keyword name and the description for the IPv4 static route configuration. permanent (OPTIONAL) Enter the keyword permanent to specify that the route must not be removed even if the interface assigned to that route goes down. The route must be currently active to be installed in the routing table. If you disable the interface, the route is removed from the routing table.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip tcp initial-time Define the wait duration in seconds for the TCP connection to be established. Syntax ip tcp initial-time <8-75> To restore the default behavior, which causes the wait period to be set as eight seconds, use the no ip tcp initial-time command.
ip unreachables Enable the generation of internet control message protocol (ICMP) unreachable messages. Syntax ip unreachables To disable the generation of ICMP messages, use the no ip unreachables command. Defaults Disabled. Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands interface ManagementEthernet — configures the Management port on the system. show arp Display the ARP table. Syntax show arp [interface interface | ip ip-address [mask] | macaddress mac-address [mac-address mask]] [static | dynamic][summary] Parameters interface interface For the Management interface, enter the keyword managementethernet then the slot/port information. • For a Port Channel interface, enter the keyword port-channel then a number. The range is from 1 to 128.
Example Row Heading Description Age(min) Displays the age (in minutes) of the ARP entry. Hardware Address Displays the MAC address associated with the ARP entry. Interface Displays the first two letters of the interfaces type and the slot/port associated with the ARP entry. VLAN Displays the VLAN ID, if any, associated with the ARP entry. CPU Lists which CPU the entries are stored on.
show arp retries Display the configured number of ARP retries. Syntax show arp retries Command Modes Supported Modes Command History Related Commands • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module arp retries — sets the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request. show hosts View the host table and DNS configuration.
Field Description • perm — the entry was manually configured and will not time out • temp — the entry was learned and will time out after 72 hours of inactivity. Also included in the flag is an indication of the validity of the route: Example Related Commands • ok — the entry is valid. • ex — the entry expired. • ?? — the entry is suspect. TTL Displays the amount of time until the entry ages out of the cache. For dynamically learned entries only. Type Displays IP as the type of entry.
summary Command Modes Supported Modes Command History Usage Information Example • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword summary to view a table listing route prefixes and the total number routes which can be entered in to CAM. Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip cam command shown in the following example.
Field Description Initial Size Displays the CAM size the system allocates for the corresponding mask. The system adjusts the CAM size if the number of routes for the mask exceeds the initial allocation. Example (ECMPGroup) Dell#show ip cam stack-unit 0 po 0 ecmp-group detail Example (MemberInfo) Dell#show ip cam stack-unit 0 po 0 ecmp-group member-info detail Destination EC CG ----------------1.1.1.2 0 0 2.1.1.2 0 0 1.1.1.1 0 0 2.1.1.1 0 0 1.1.1.0 0 0 2.1.1.0 0 0 100.1.1. 0 1 100.1.1. 0 1 0.0.0.
Example Field Description Destination Lists the destination IP address. Gateway Displays either the word “direct” and an interface for a directly connected route or the remote IP address used to forward the traffic. First-Hop Displays the first hop IP address. Mac-Addr Displays the MAC address. Port Displays the egress-port information. VId Displays the VLAN ID. If no VLAN is assigned, zero (0) is listed. EC Displays the number of ECMP paths.
Command History Usage Information Version Description 9.11(0.0) Updated the command output to include the unicast reverse path forwarding (uRPF) status. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip interface command shown in the following example. Lines Description TenGigabitEthernet 0/0... Displays the interface’s type, slot/port, and physical and line protocol status. Internet address...
Example (Brief) Dell#show ip int brief Interface IP-Address GigabitEthernet 1/1 unassigned GigabitEthernet 1/2 unassigned GigabitEthernet 1/3 unassigned GigabitEthernet 1/4 unassigned GigabitEthernet 1/5 10.10.10.1 GigabitEthernet 1/6 unassigned OK? NO YES YES YES YES NO Method Manual Manual Manual Manual Manual Manual Status Protocol administratively down down up up up up up up up up administratively down down show ip management-route View the IP addresses assigned to the Management interface.
Supported Modes Command History Example Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip protocols Routing Protocol is "bgp 1" Cluster Id is set to 20.20.20.3 Router Id is set to 20.20.20.
• Supported Modes Command History Usage Information Example EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip route all command in the following example.
Destination Gateway Dist/Metric Last Change ----------- ------- ----------- ----------R 3.0.0.0/8 via 100.10.10.10, So 2/8 120/1 00:07:12 via 101.10.10.10, So 2/9 100.10.10.0/24 Direct, So 2/8 0/0 00:08:54 > R 100.10.10.0/24 Direct, So 2/8 120/0 00:08:54 C 101.10.10.0/24 Direct, So 2/9 0/0 00:09:15 > R 101.10.10.
R R R R C Related Commands 2.1.0.0/24 2.1.1.0/24 2.1.2.0/24 2.1.3.0/24 2.1.4.0/24 via 2.1.4.1, Te via 2.1.4.1, Te via 2.1.4.1, Te via 2.1.4.1, Te Direct, Te 4/4 4/4 4/4 4/4 4/4 120/2 120/2 120/1 120/1 0/0 3d0h 3d1h 3d0h 3d1h 3d1h ip prefix-list — enters CONFIGURATION-IP PREFIX-LIST mode and configures a prefix list. show ip prefix-list summary — displays a summary of the configured prefix lists. show ip route summary View a table summarizing the IP routes in the switch.
show ip traffic View IP, ICMP, UDP, TCP and ARP traffic statistics. Syntax show ip traffic Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip traffic summary shown in the following example. Keyword Definition unknown protocol... No receiver for these packets.
Example • IP Statistics: Bcast: Sent: Object = f10BcastPktSent, OIDs = 1.3.6.1.4.1.6027.3.3.5.1.2 • IP Statistics: Mcast: Received: Object = f10McastPktRecv, OIDs = 1.3.6.1.4.1.6027.3.3.5.1.3 • IP Statistics: Mcast: Sent: Object = f10McastPktSent, OIDs = 1.3.6.1.4.1.6027.3.3.5.1.4 • ARP Statistics: Rcvd: Request: Object = f10ArpReqRecv, OIDs = 1.3.6.1.4.1.6027.3.3.5.2.1 • ARP Statistics: Rcvd: Replies: Object = f10ArpReplyRecv, OIDs = 1.3.6.1.4.1.6027.3.3.5.2.
Field Description • 0 checksum error... Example no port = number of packets received with no designated port Displays the number of packets received with the following: • checksum errors • bad offset to data • too short 329 packets... Displays the number of packets and bytes received in sequence. 17 dup... Displays the number of duplicate packets and bytes received. 0 partially... Displays the number of partially duplicated packets and bytes received. 7 out-of-order...
20 dup packets (2 bytes) 0 partially dup packets (0 bytes) 1 out-of-order packets (0 bytes) 0 packets ( 0 bytes) with data after window 0 packets after close 0 window probe packets, 0 window update packets 0 dup ack packets, 0 ack packets with unsend data 6671 ack packets (152813 bytes) Sent: 6778 Total, 0 urgent packets 7 control packets 6674 data packets (152822 bytes) 12 data packets (1222 bytes) retransmitted 85 ack only packets (5677 delayed) 0 window probe packets, 0 window update packets 0 Connection
24 Internet Protocol Security (IPSec) Internet protocol security (IPSec) is an end-to-end security scheme for securing IP communications by authenticating and encrypting all packets in a session. Use IPSec between hosts, gateways, or hosts and gateways. IPSec uses a series of protocol functions to achieve information security: • Authentication Headers (AH) — Connectionless integrity and origin authentication for IP packets.
To delete a transform set, use the no crypto ipsec transform-set name {ah-authentication {md5|sha1|null} | esp-authentication {md5|sha1|null} | esp-encryption {3des| cbc|des|null}} command. Parameters name Enter the name for the transform set. ah-authentication Enter the keywords ah-authentication then the transform type of operation to apply to traffic. The transform type represents the encryption or authentication applied to traffic.
crypto ipsec policy Create a crypto policy used by ipsec. Syntax crypto ipsec policy name seq-num ipsec-manual To delete a crypto policy entry, use the no crypto ipsec policy name seq-num ipsec-manual command. Parameters name Enter the name for the crypto policy set. seq-num Enter the sequence number assigned to the crypto policy entry. Defaults none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
match Match a sequence number to the transmission control protocol (TCP)/user datagram protocol (UDP) packets. Syntax match seq-num {tcp | udp} {ipv6 | ip} port-num dest-ip dest-port-num To remove the match filter for the crypto map, use the no match seq-num command. Parameters seq-num Enter the match command sequence number. The range is from 0 to 255. tcp Enter the keyword tcp to configure a TCP access list filter. udp Enter the keyword udp to configure a UDP access list filter.
Parameters name Enter the name of the host to delete. Enter * to delete all host table entries. inbound Specify the inbound session key for IPSec. outbound Specify the outbound session key for IPSec. ah Use the AH protocol when you select the AH transform set in the crypto policy. esp Use the ESP protocol when you select the ESP transform set in the crypto policy. spi Enter the security parameter index number. hex-key-string Enter the session key in hex format (a string of 8, 16, or 20 bytes).
ESP Encry Transform Dell(conf)# : show crypto ipsec policy Display the crypto policy configuration. Syntax show crypto ipsec policy name Parameters name Command Modes EXEC Supported Modes Full–Switch Command History Example Enter the name for the crypto policy set. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
transform-set Specify the transform set the crypto policy uses. Syntax transform-set transform-set-name To delete a transform set from the crypto policy, use the no transform-set transform-set-name command. Parameters transform-setname Enter the name for the crypto policy transform set. Defaults none Command Modes CONFIG-CRYPTO-POLICY Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
25 IPv6 Access Control Lists (IPv6 ACLs) IPv6 ACLs and IPv6 Route Map commands are supported on Dell Networking switch. NOTE: For IPv4 ACL commands, refer to the Access Control Lists (ACL) chapter. Important Points to Remember • Certain platforms require manual CAM usage space allotment. For more information, refer to the cam-acl (Configuration) command. • Egress IPv6 ACL and IPv6 ACL on the Loopback interface is not supported. • Reference to an empty ACL permits any traffic.
l2acl 1-10 ipv4acl 1-10 ipv6acl 0-10 ipv4qos 1-10 l2qos 1-10 Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information • L3 ACL (ipv4acl): 6 • L2 ACL(l2acl): 5 • IPv6 L3 ACL (ipv6acl): 0 • L3 QoS (ipv4qos): 1 • L2 QoS (l2qos): 1 Allocate space to support IPv6 ACLs. Enter all of the profiles and a range. Enter the CAM profile name then the amount to be allotted. The total space allocated must equal 13. The ipv6acl range must be a factor of 2.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. For the new settings to take effect, save the new CAM settings to the startup-config (write-mem or copy run start), then reload the system. The total amount of space allowed is 16 FP Blocks. System flow requires three blocks and these blocks cannot be reallocated. When configuring space for IPv6 ACLs, the total number of Blocks must equal 13.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for CoPP for OSPFv3 on the MXL 10/40GbE Switch IO Module. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The number of entries allowed per ACL is hardware-dependent. For detailed specification on entries allowed per ACL, refer to your line card documentation.
byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255).
mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all routes are subject to the filter. host ipv6-address Enter the keyword host then the IPv6 address of the host in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zero. destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128.
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
IpMacAcl VmanQos VmanDualQos EcfmAcl FcoeAcl iscsiOptAcl ipv4pbr vrfv4Acl Openflow fedgovacl : : : : : : : : : : 0 0 0 0 0 0 0 0 0 0 Dell# Related Commands cam-acl — configures CAM profiles to support IPv6 ACLs. show cam-acl-egress Show information on FP groups allocated for egress ACLs. Syntax Command Modes Supported Modes Command History Example show cam-acl-egress • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
26 IPv6 Basics This chapter describes IPv6 basic commands.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. clear ipv6 route Clear (refresh) all or a specific route from the IPv6 routing table. Syntax Parameters clear ipv6 route {* | ipv6-address prefix-length} * Enter the * to clear (refresh) all routes from the IPv6 routing table. ipv6-address prefixlength Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128.
To disable the address autoconfig operation on the management interface, use the no ipv6 address autoconfig command. Default Disabled Command Modes INTERFACE (management interface only) Supported Modes Full–Switch Command History Usage Infomation Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. • SAA can configure up to two addresses.
Usage Information • If two addresses are configured, delete an existing address before configuring a new address. • If the last manually-configured global IPv6 address is removed using the “no” form of the command, the linklocal IPv6 address is removed automatically. • IPv6 addresses on a single management interface cannot be members of the same subnet. • IPv6 secondary addresses on management interfaces across platform must be members of the same subnet.
ipv6 control-plane icmp error-rate-limit Configure the maximum number of ICMP error packets per second that can be sent per second. Syntax ipv6 control-plane icmp error-rate-limit {1-200} To restore the default value, use the no ipv6 control-plane icmp error-rate-limit command. Parameters pps Default 100 pps Command Modes CONFIGURATION Supported Modes Full–Switch Command History Enter the maximum number of error packets generated per second.
To remove an IP host, use the no ipv6 host name {ipv6–address}. Parameters name Enter a text string to associate with one IP address. ipv6-address Enter the IPv6 address (X:X:X:X::X) to be mapped to the name. Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 name-server Enter up to six IPv6 addresses of name servers.
To restore the default value, use the no ipv6 nd dad attempts command. Parameters number of attempts Enter the number of attempts to be made to detect a duplicate address. The range is from 0 to 15. Setting the value to 0 disables DAD on the interface. Default 3 attempts Command Modes INTERFACE (management interface only) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
A value of 0 indicates to the host that the RDNSS address should not be used. You must specify a lifetime using the lifetime or infinite parameter. infinite Enter the keyword infinite to specify that the RDNSS lifetime does not expire. Defaults Not Configured Command Modes INTERFACE CONFIG Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.
valid-lifetime | infinite Enter the amount of time that the prefix is advertised, or enter infinite for an unlimited amount of time. The range is from 0 to 4294967295. The default is 2592000. The maximum value means that the preferred lifetime does not expire for the valid-life time parameter. preferred-lifetime | infinite Enter the amount of time that the prefix is preferred, or enter infinite for an unlimited amount of time. The range is from 0 to 4294967295. The default is 2592000.
Configure the IPv6 route using a next-hop IPv6 address in order for the ping command to detect the destination address. ipv6-address (OPTIONAL) Enter the forwarding router IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. distance (OPTIONAL) Enter a number as the metric distance assigned to the route. The range is from 1 to 255. tag value (OPTIONAL) Enter the keyword tag then a tag value number. The range is from 1 to 4294967295.
Dell(conf)#ipv6 route 44::0 /64 tengigabitethernet 0/1 66::1 Dell(conf)# Related Commands show ipv6 route — views the IPv6 configured routes. ipv6 unicast-routing Enable IPv6 Unicast routing. Syntax ipv6 unicast-routing To disable unicast routing, use the no ipv6 unicast-routing command. Defaults Enabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults Command Modes Supported Modes Command History none • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Supported Modes Command History Usage Information • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Host tables are not stored in CAM tables. Entries for camIndex displays as zero (0) on the show ipv6 fib stack-unit output for neighbor entries, such as address resolution protocol (ARP) entries.
Defaults Command Modes Supported Modes Command History • For a tunnel interface, enter the keyword tunnel then the tunnel ID. • For a VLAN interface, enter the keyword VLAN. • For a port channel interface, enter the keywords port-channel. brief (OPTIONAL) View a summary of IPv6 interfaces. configured (OPTIONAL) View information on all IPv6 configured interfaces. gigabitethernet (OPTIONAL) View information for an IPv6 gigabitethernet interface.
ND advertised reachable time is 0 milliseconds ND advertised retransmit interval is 0 milliseconds ND router advertisements are sent every 198 to 600 seconds ND router advertisements live for 1800 seconds ND advertised hop limit is 64 IPv6 hop limit for originated packets is 64 IPv6 unicast RPF check is not supported Dell# Example Dell#show ipv6 interface managementethernet 0/0 (Managementethern ManagementEthernet 0/0 is up, line protocol is up IPV6 is enabled et) Link Local address: fe80::201:e8ff:fea7:497
IPv6 unicast RPF check is not supported Dell# show ipv6 mld_host Display the IPv6 MLD host counters. Syntax show ipv6 mld_host Command Modes EXEC Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ipv6 mld-host command shown in the following example.
Parameters ipv6-address prefixlength (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults (OPTIONAL) View information for this IPv6 routes with Host Name. all (OPTIONAL) View information for all IPv6 routes. bgp (OPTIONAL) View information for all IPv6 BGP routes. connected (OPTIONAL) View only the directly connected IPv6 routes.
Field Example Description • E2 = OSPF external type 2 • i = IS-IS • L1 = IS-IS level-1 • L2 = IS-IS level-2 • IA = IS-IS inter-area • * = candidate default • > = non-active route • + = summary routes Destination Identifies the route’s destination IPv6 address. Gateway Identifies whether the route is directly connected and on which interface the route is configured. Dist/Metric Identifies if the route has a specified distance or metric.
Command Modes CONFIGURATION-POLICY-MAP-IN Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When you configure trust IPv6 diffserv, matched bytes/packets counters are not incremented in the show qos statistics command. Trust diffserv (IPv4) can co-exist with trust ipv6-diffserv in an Input Policy Map.
27 IPv6 Border Gateway Protocol (IPv6 BGP) IPv6 Border Gateway Protocol (IPv6 BGP) is supported on Dell Networking platforms.
• debug ip bgp ipv6 dampening • debug ip bgp ipv6 unicast soft-reconfiguration • debug ip bgp keepalives • debug ip bgp notifications • debug ip bgp updates • default-metric • description • distance bgp • maximum-paths • neighbor activate • neighbor advertisement-interval • neighbor allowas-in • neighbor default-originate • neighbor description • neighbor distribute-list • neighbor ebgp-multihop • neighbor fall-over • neighbor filter-list • neighbor maximum-prefix • ne
• show ip bgp ipv6 unicast dampened-paths • show ip bgp ipv6 unicast detail • show ip bgp ipv6 unicast extcommunity-list • show ip bgp ipv6 unicast filter-list • show ip bgp ipv6 unicast flap-statistics • show ip bgp ipv6 unicast inconsistent-as • show ip bgp ipv6 unicast neighbors • show ip bgp ipv6 unicast peer-group • show ip bgp ipv6 unicast summary • show ip bgp next-hop • show ip bgp paths • show ip bgp paths as-path • show ip bgp paths community • show ip bgp paths extcommu
• show ip bgp ipv6 unicast inconsistent-as • show ip bgp ipv6 unicast neighbors • show ip bgp ipv6 unicast peer-group • show ip bgp ipv6 unicast summary IPv6 BGP Commands BGP is an external gateway protocol that transmits interdomain routing information within and between autonomous systems (AS). BGP version 4 (BGPv4) supports classless interdomain routing and the aggregation of routes and AS paths.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults Command Modes Supported Modes Command History Usage Information advertise-map map-name (OPTIONAL) Enter the keywords advertise-map then the name of a configured route map to set filters for advertising an aggregate route. as-set (OPTIONAL) Enter the keywords as-set to generate path attribute information and include it in the aggregate.
bgp always-compare-med Allows you to enable comparison of the MULTI_EXIT_DISC (MED) attributes in the paths from different external ASs. Syntax bgp always-compare-med To disable comparison of MED, use the no bgp always-compare-med command. Defaults Disabled (that is, the software only compares MEDs from neighbors within the same AS). Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
To disable MED comparison on BGP confederation paths, use the no bgp bestpath med confed command. Defaults Disabled. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The software compares the MEDs only if the path contains no external autonomous system numbers.
Supported Modes Command History Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Route reflection to clients is not necessary if all client routers are fully meshed. Related Commands bgp cluster-id — assigns and ID to a BGP cluster with two or more route reflectors. neighbor route-reflector-client — configures a route reflector and clients.
bgp confederation identifier Configure an identifier for a BGP confederation. Syntax bgp confederation identifier as-number To delete a BGP confederation identifier, use the no bgp confederation identifier as-number command. Parameters as-number Defaults Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Enter the AS number. The range is from 1 to 65535. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Usage Information The Autonomous Systems configured in this command are visible to the EBGP neighbors. Each Autonomous System is fully meshed and contains a few connections to other Autonomous Systems. After specifying autonomous systems numbers for the BGP confederation, recycle the peers to update their configuration. Related Commands bgp confederation identifier — configures a confederation ID. bgp dampening Enable BGP route dampening and configure the dampening parameters.
bgp default local-preference Change the default local preference value for routes exchanged between internal BGP peers. Syntax bgp default local-preference value To return to the default value, use the no bgp default local-preference command. Parameters value Defaults 100 Command Modes ROUTER BGP Supported Modes Full–Switch Command History Enter a number to assign to routes as the degree of preference for those routes.
bgp fast-external-fallover Enable the fast external fallover feature, which immediately resets the BGP session if a link to a directly connected external peer fails. Syntax bgp fast-external-fallover To disable fast external fallover, use the no bgp fast-external-fallover command. Defaults Enabled. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
bgp graceful-restart Enable graceful restart on a BGP neighbor, a BGP node, or designate a local router to support graceful restart as a receiver only. Syntax bgp graceful-restart [restart-time seconds] [stale-path-time seconds] [role receiver-only] To return to the default, enter the no bgp graceful-restart command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The bgp log-neighbor-changes command appears in the show config command output. Related Commands show config — views the current configuration. bgp non-deterministic-med Compare MEDs of paths from different autonomous systems (ASs). Syntax bgp non-deterministic-med To return to the default, use the no bgp non-deterministic-med command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command is a knob to disable BGP next-hop resolution using BGP learned routes. During the next-hop resolution, only the first route that the next-hop resolves through is verified for the route’s protocol source and is checked if the route is learned from BGP or not.
To delete a user-assigned IP address, use the no bgp router-id command. Parameters ip-address Enter an IP address in dotted decimal format to reset only that BGP neighbor. Defaults The router ID is the highest IP address of the Loopback interface or, if no Loopback interfaces are configured, the highest IP address of a physical interface on the router. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM.
Parameters Defaults Command Modes Supported Modes Command History Related Commands ipv6-address Enter the IPv6 address of the target BGP neighbor. direction {both | rx | tx} Enter the keyword direction and a direction — either rx for inbound, tx for outbound, or both. Not configured. • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
clear ip bgp * (asterisk) Reset all BGP sessions in the specified category. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection. Syntax clear ip bgp * [ipv4 multicast soft [in | out] | ipv6 unicast soft [in | out] | soft [in | out]] Parameters * Enter an asterisk ( * ) to reset all BGP sessions. ipv4 multicast soft [in | out] (OPTIONAL) Enter the keywords ipv4 multicast soft [in | out] to set options within the specified IPv4 address family.
unicast (OPTIONAL) Enter the keyword unicast to select the unicast option within the selected address family. multicast (OPTIONAL) Enter the keyword multicast to select the multicast option within the selected address family. Multicast is supported on IPv4 only. soft (OPTIONAL) Enter the keyword soft to configure and activate policies without resetting the BGP TCP session; that is, BGP Soft Reconfiguration. NOTE: If you enter clear ip bgp ipv6-address soft, both inbound and outbound policies are reset.
out Command Modes EXEC Privilege Supported Modes Full–Switch Command History (OPTIONAL) Enter the keyword out to activate only outbound policies. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. clear ip bgp peer-group Reset a peer-group’s BGP sessions.
clear ip bgp ipv6 flap-statistics Clear BGP flap statistics, which includes number of flaps and the time of the last flap. Syntax Parameters clear ip bgp ipv6 unicast flap-statistics [ipv6-address | filter-list as-pathname | regexp regular-expression] ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
as-number Clear and reapply policies for all neighbors belonging to the AS. The range is from 0 to 65535 (2 Byte), from 1 to 4294967295 (4 Byte), or from 0.1 to 0.65535.65535 (Dotted format). ipv4-neighbor-addr | ipv6-neighboraddr Clear and reapply policies for a neighbor. peer-group name Clear and reapply policies for all BGP routers in the specified peer group. ipv6 unicast Clear and reapply policies for all IPv6 unicast routes. in Reapply only inbound policies.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To view information on both incoming and outgoing routes, do not include the in and out parameters in the debugging command. The in and out parameters cancel each other; for example, if you enter debug ip bgp in and then enter debug ip bgp out, you do not see information on the incoming routes.
debug ip bgp ipv6 dampening View information on dampened (non-active) IPv6 routes. Syntax debug ip bgp ipv6 unicast dampening [in | out] To disable debugging, use the no debug ip bgp ipv6 unicast dampening command. Parameters in (OPTIONAL) Enter the keyword in to view only inbound dampened routes. out (OPTIONAL) Enter the keyword out to view only outbound dampened routes. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command turns on BGP soft-reconfiguration inbound debugging for IPv6 unicast routes. If no neighbor is specified, debug is turned on for all neighbors. Related Commands show ip bgp ipv6 unicast dampened-paths — views BGP dampened routes. debug ip bgp keepalives Allows you to view information about BGP keepalive messages.
Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group peergroup-name (OPTIONAL) Enter the keywords peer-group then the name of the peer group. in (OPTIONAL) Enter the keyword in to view BGP notifications received from neighbors. out (OPTIONAL) Enter the keyword out to view BGP notifications sent to neighbors.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Entering a no debug ip bgp command removes all configured debug commands for BGP. default-metric Allows you to change the metrics of redistributed routes to locally originated routes. Use this command with the redistribute command. Syntax default-metric number To return to the default setting, use the no default-metric command.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. router bgp — enters ROUTER mode on the switch. distance bgp Configure three administrative distances for routes. Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command.
maximum-paths Configure the maximum number of parallel routes (multipath support) BGP supports. Syntax maximum-paths {ebgp | ibgp} number To return to the default values, use the no maximum-paths command. Parameters ebgp Enter the keyword ebgp to enable multipath support for External BGP routes. ibgp Enter the keyword ibgp to enable multipath support for Internal BGP routes. number Enter a number as the maximum number of parallel paths. The range is from 1 to 16. The default is 1.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. By default, when you create a neighbor/peer group configuration in the Router BGP context, it is enabled for the IPv6/Unicast AFI/SAFI. By using activate in the new context, the neighbor/peer group is enabled for AFI/SAFI. neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group. number Enter a number of times to allow this neighbor ID to use the AS path. The range is from 1 to 10. Defaults Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
neighbor description Assign a character string describing the neighbor or group of neighbors (peer group). Syntax neighbor {ipv6-address | peer-group-name} description text To delete a description, use the no neighbor {ipv6-address | peer-group-name} description text command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group.
Supported Modes Command History Related Commands Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor filter-list — assigns a AS-PATH list to a neighbor or peer group. neighbor route-map — assigns a route map to a neighbor or peer group. neighbor ebgp-multihop Attempt and accept BGP connections to external peers on networks that are not directly connected.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Defaults Disabled. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Enter the name of the peer group. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enable fall-over, BGP keeps track of IP or IPv6 reachability to the peer remote address and the peer local address.
neighbor maximum-prefix Control the number of network prefixes received. Syntax neighbor {ipv6-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor {ipv6-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Parameters encrypt-pass Enter the encrypted password. clear-pass Enter the clear text password. Defaults Disabled. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The TCP session is authentication and prevents the data from being compromised.
To delete a peer from a peer group, use the no neighbor ipv6-address peer-group peer-groupname command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group peergroup-name Defaults Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Enter the keywords peer-group then the name of a configured peer group (maximum 16 characters).
neighbor peer-group (creating group) Allows you to create a peer group and assign it a name. Syntax neighbor peer-group-name peer-group To delete a peer group, use the no neighbor peer-group-name peer-group command. Parameters peer-group-name Defaults Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Enter a text string up to 16 characters long as the name of the peer group. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Related Commands neighbor subnet — assigns a subnet to a dynamically configured BGP neighbor. neighbor remote-as Create and specify the remote peer to the BGP neighbor. Syntax neighbor {ipv6-address | peer-group-name} remote-as number To delete a remote AS entry, use the no neighbor {ipv6-address | peer-group-name} remote-as number command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Applies to external border gateway protocol (EBGP) neighbors only. If the AS-PATH contains both public and private AS number or contains AS numbers of an EBGP neighbor, the private AS numbers are not removed.
If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. neighbor route-reflector-client Configure a neighbor as a member of a route reflector cluster.
peer-group-name Enter the name of the peer group. All routers in the peer group receive routes from a route reflector. Defaults Not configured and COMMUNITY attributes are not sent to neighbors. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor shutdown Disable a BGP neighbor or peer group.
neighbor soft-reconfiguration inbound Enable a BGP soft-reconfiguration and start storing updates for inbound IPv6 unicast routes. Syntax Parameters neighbor {ipv4-address | ipv6-address | peer-group-name} soft-reconfiguration inbound ipv4-address | ipv6address Enter the IP address of the neighbor for which you want to start storing inbound routing updates. peer-group-name Enter the name of the peer group for which you want to start storing inbound routing updates. Defaults Disabled.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor timers Set keepalive and hold time timers for a BGP neighbor or a peer group. Syntax neighbor {ipv6-address | peer-group-name} timers keepalive holdtime To return to the default values, use the no neighbor {ipv6-address | peer-group-name} timers command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format.
neighbor update-source Enable the software to use Loopback interfaces for TCP connections for BGP sessions. Syntax neighbor {ipv6-address | peer-group-name} update-source loopback interface To use the closest interface, use the no neighbor {ipv6-address | peer-group-name} updatesource loopback interface command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Supported Modes Command History Usage Information Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. In the system best path selection process, the path with the highest weight value is preferred. NOTE: To apply the weight to the connection and recompute the best path, reset the neighbor connection (the capture bgp-pdu max-buffer-size * command).
network backdoor Specify this IGP route as the preferred route. Syntax network ipv6-address prefix-length backdoor To remove a network, use the no network ipv6-address prefix-length backdoor command. Parameters ipv6-address prefixlength Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults Not configured.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you do not configure the default-metric command, in addition to the redistribute command, or there is no route map to set the metric, the metric for redistributed static and connected is “0”. To redistribute the default route (0::0/0), configure the neighbor default-originate command.
redistribute ospf Redistribute OSPFv3 routes into BGP. Syntax redistribute ospf process-id [[match external {1 | 2}] [match internal]] [route-map map-name] To stop redistribution of OSPF routes, use the no redistribute ospf process-id command. Parameters process-id Enter the number of the OSPFv3 process. The range is from 1 to 65535. match external {1 | 2} (OPTIONAL) Enter the keywords match external to redistribute OSPF external routes. You can specify 1 or 2 to redistribute those routes only.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show capture bgp-pdu neighbor Display BGP packet capture information for an IPv6 address. Syntax show capture bgp-pdu neighbor ipv6-address Parameters Defaults ipv6-address • EXEC • EXEC Privilege Command Modes CONFIGURATION Supported Modes Full–Switch Command History Related Command Enter the IPv6 address (X:X:X:X::X) of a BGP neighbor.
neighbor RR-CLIENT-PASSIV remote-as 18508 neighbor RR-CLIENT-PASSIV subnet 9000::9:0/120 neighbor RR-CLIENT-PASSIV no shutdown neighbor 1109::33 remote-as 18508 neighbor 1109::33 update-source Loopback 101 neighbor 1109::33 no shutdown neighbor 2222::220 remote-as 18508 neighbor 2222::220 route-reflector-client neighbor 2222::220 update-source Loopback 100 neighbor 2222::220 no shutdown neighbor 4000::33 remote-as 18508 neighbor 4000::33 no shutdown neighbor 4000::60 remote-as 18508 neighbor 4000::60 no shu
Parameters Command Modes Supported Modes Command History cluster-id • EXEC • EXEC Privilege (OPTIONAL) Enter the cluster id in dotted decimal format. Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast community View information on all routes with community attributes or view specific BGP community groups.
show ip bgp ipv6 unicast community-list View routes that are affected by a specific community list. Syntax Paramters Command Modes Supported Modes Command History show ip bgp ipv6 unicast community-list community-list-name [exact-match] community-listname Enter the name of a configured IP community list. exact-match (OPTIONAL) Enter the keywords exact-match to display only for an exact match of the communities. • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.
• Supported Modes Command History EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast extcommunity-list View information on all routes with Extended Community attributes.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes. Syntax Parameters show ip bgp ipv6 unicast flap-statistics [ipv6-address prefix-length] [filterlist as-path-name] [regexp regular-expression] ipv6-address prefixlength Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128.
show ip bgp ipv6 unicast inconsistent-as View routes with inconsistent originating autonomous system (AS) numbers; that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. Syntax show ip bgp ipv6 unicast inconsistent-as Command Modes Supported Modes Command History • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
NOTE: You must configure the neighbor soft-reconfiguration inbound command prior to viewing all the information received from the neighbors. denied-routes [network [networkmask] Command Modes Supported Modes Command History Usage Information • EXEC • EXEC Privilege (OPTIONAL) Enter the keywords denied-routes then either the network address (in dotted decimal format) or the network mask (in slash prefix format) to view all information on routes denied using neighbor inbound filters.
Example Lines Beginning With Description BGP table version Displays which version of the primary BGP routing table the router and the neighbor are using. Prefixes accepted Displays the number of network prefixes accepted by the router and the amount of memory used to process those prefixes. Prefixes advertised Displays the number of network prefixes advertised, the number rejected, and the number withdrawn from the BGP routing table.
BGP neighbor is 5ffe:11::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
9000::8:2 9000::9:2 9000::a:2 9000::b:14 Dell# 18508 18508 18508 18508 35 44 35 29 32 19 32 29 0 0 0 0 0 0 0 0 0 0 0 0 00:16:42 00:16:41 00:16:43 00:13:01 0 0 0 0 show ip bgp next-hop View all next hops (using learned routes only) with current reachability and flap status. This command only displays one path, even if the next hop is reachable by multiple paths.
Command Modes Supported Modes Command History • EXEC • EXEC Privilege • ^ = (caret) the beginning of the input string. If the caret is used at the beginning of a sequence or range, it matches on everything BUT the characters specified. • $ = (dollar sign) the end of the output string. Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp paths as-path View all unique AS-PATHs in the BGP database.
show ip bgp paths extcommunity View all unique extended community information in the BGP database. Syntax Command Modes Supported Modes Command History show ip bgp paths extcommunity • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp regexp Allows you to view the subset of BGP routing table matching the regular expressions specified.
timers bgp Allows you to adjust the BGP network timers for all neighbors. Syntax timers bgp keepalive holdtimer To return to the default values, use the no timers bgp command. Parameters Defaults keepalive Enter the time interval (in seconds) between which the system sends keepalive messages. The range is from 1 to 65535. The default is 60 seconds. holdtimer Enter the time interval (in seconds) that the the system waits since the last keepalive message before declaring a BGP peer dead.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. After this command is executed, all subsequent commands apply to this address family. You can exit from this AFI/ SAFI to the IPv6 Unicast (the default) family by entering the exit command and returning to the Router BGP context. aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table.
Do not add the as-set parameter to the aggregate. If routes within the aggregate are constantly changing, the aggregate flaps to keep track of the changes in the AS_PATH. In route maps used in the suppress-map parameter, routes meeting the deny clause are not suppress; in other words, they are allowed. The opposite is true: routes meeting the permit clause are suppressed.
dampening (OPTIONAL) Enter the keyword dampening to clear route flap dampening information. flap-statistics (OPTIONAL) Enter the keywords flap-statistics to reset the flap statistics on all prefixes from that neighbor. peer-group (OPTIONAL) Enter the keywords peer-group to clear all members of a peer-group. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes EXEC Privilege Supported Modes Full–Switch Command History • ? (question mark) matches sequences in a pattern (0 or 1 sequences). • [ ] (brackets) matches a range of single-character patterns. • ^ (caret) matches the beginning of the input string. (If the caret is used at the beginning of a sequence or range, it matches on everything BUT the characters specified.) • $ (dollar sign) matches the end of the output string. Version Description 9.9(0.0) Introduced on the FN IOM. 9.
out Command Modes EXEC Privilege Supported Modes Full–Switch Command History (OPTIONAL) Enter the keyword out to view only BGP updates sent to neighbors. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug ip bgp ipv6 unicast updates View information about BGP updates.
local-distance Defaults Enter a number to assign to routes learned from networks listed in the network command. The range is from 1 to 255. The default is 200. • external-distance = 20 • internal-distance = 200 • local-distance = 200 Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information By default, when a neighbor/peer group configuration is created in the Router BGP context, it is enabled for the IPv6/Unicast AFI/SAFI. By using activate in the new context, the neighbor/peer group is enabled for AFI/SAFI. Related Command address family — changes the context to SAFI. neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group.
route-map mapname (OPTIONAL) Enter the keywords route-map then the name of a configured route map. Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor distribute-list Distribute BGP information using an established prefix list.
neighbor filter-list Configure a BGP filter based on the AS-PATH attribute. Syntax neighbor [ipv6-address | peer-group-name] filter-list aspath access-list-name [in | out] To delete a BGP filter, use the no neighbor [ipv6-address | peer-group-name] filter-list aspath access-list-name [in | out] command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the software sends a message. The range is from 1 to 100 percent. The default is 75. warning-only (OPTIONAL) Enter the keyword warning-only to set the router to send a log message when the maximum value is reached. If this parameter is not set, the router stops peering when the maximum number of prefixes is reached.
To return to the default, use the no neighbor {ipv6-address | peer-group-name} removeprivate-as command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to remove the private AS numbers. Defaults Disabled (that is, the private AS number are not removed).
Usage Information When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. neighbor route-reflector-client Configure a neighbor as a member of a route reflector cluster.
route-map mapname (OPTIONAL) Enter the keywords route-map then the name of an established route map. If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
To redistribute the default route (0::0/0), configure the neighbor default-originate command. Related Commands neighbor default-originate — injects the default route. show ip bgp ipv6 unicast View the current BGP information.
show ip bgp ipv6 unicast community View information on all routes with community attributes or view specific BGP community groups. Syntax Paramters Command Modes Supported Modes Command History Usage Information show ip bgp ipv6 unicast community [community-number] [local-as] [no-export] [no-advertise] community-number Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast dampened-paths View BGP routes that are dampened (non-active). Syntax show ip bgp ipv6 unicast dampened-paths Command Modes Supported Modes Command History • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
NdModOptP 0x41a4d000 : NdModNHP : NdComSortBufP 0x41a19110 : NdComSortHdP 0x41a19d04 : NdUpdAFMsk 0 : AFRstSe t 0x41a1a298 : NHopDfrdHdP 0x41a1a3e0 : NumNhDfrd 0 : CfgHdrAFMsk 1 show ip bgp ipv6 unicast filter-list View the routes that match the filter lists. Syntax Parameters Command Modes Supported Modes Command History show ip bgp ipv6 unicast filter-list as-path-name as-path-name • EXEC • EXEC Privilege Enter the name of an AS-PATH. Full–Switch Version Description 9.9(0.
• Command Modes Supported Modes Command History Example • EXEC • EXEC Privilege $ = (dollar sign) the end of the output string. Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip bgp ipv6 unicast flap-statistics BGP table version is 8, local router ID is 5.5.10.
Parameters ipv6-address prefixlength (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Supported Modes Command History Usage Information advertised-routes (OPTIONAL) Enter the keywords advertised-routes to view only the routes the neighbor sent.
Example Lines Beginning With Description Minimum time Displays the minimum time, in seconds, between advertisements. (List of inbound and outbound policies) Displays the policy commands configured and the names of the Route map, AS-PATH ACL, or Prefix list configured for the policy. For address family: Displays IPv6 Unicast as the address family. BGP table version Displays which version of the primary BGP routing table the router and the neighbor are using.
Local host: 5ffe:10::4, Local port: 179 Foreign host: 5ffe:10::3, Foreign port: 35470 Notification History 'Connection Reset' Sent : 1 Recv: 0 BGP neighbor is 5ffe:11::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor peer-group (assigning peers) — assigns a peer to a peer-group. neighbor peer-group (creating group) — creates a peer group. show ip bgp ipv6 unicast summary Allows you to view the status of all BGP connections.
Field Description MsgSent Displays the number of BGP messages that neighbor sent. TblVer Displays the version of the BGP table that was sent to that neighbor. InQ Displays the number of messages from that neighbor waiting to be processed. OutQ Displays the number of messages waiting to be sent to that neighbor. If a number appears in parentheses, the number represents the number of messages waiting to be sent to the peer group.
28 iSCSI Optimization Internet small computer system interface (iSCSI) optimization enables quality-of-service (QoS) treatment for iSCSI storage traffic. To configure and verify the iSCSI optimization feature, use the following Dell Networking Operating System (OS) commands.
To remove the iSCSI session aging time, use the no iscsi aging time command. Parameters time Defaults 10 minutes Command Modes CONFIGURATION Supported Modes Full–Switch Command History Enter the aging time for the iSCSI session. The range is from 5 to 43,200 minutes. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. iscsi cos Set the QoS policy that is applied to the iSCSI flows.
iscsi enable Globally enable iSCSI optimization. Syntax iscsi enable To disable iSCSI optimization, use the no iscsi enable command. Parameters enable Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Enter the keyword enable to enable the iSCSI optimization feature. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Supported Modes Command History Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. iscsi target port Configure the iSCSI target ports and optionally, the IP addresses on which iSCSI communication is monitored. Syntax iscsi target port [tcp-port-2...tcp-port-16]ip-address [ip-address] To remove the configured iSCSI target ports or IP addresses, use the no iscsi target port command. Parameters tcpport-2...
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• show run iscsi — shows run iscsi. show iscsi session detailed Display detailed information on active iSCSI sessions on the switch. Syntax Parameters Command Modes Supported Modes Command History Example Related Commands show iscsi session detailed [session isid] isid • EXEC • EXEC Privilege Enter the session’s iSCSi ID to display detailed information about the specified iSCSi session. Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Command Modes EXEC Privilege Supported Modes Full–Switch Command History Related Commands 756 Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. • show iscsi — displays the currently configured iSCSI settings. • show iscsi sessions — show iscsi session — displays detailed information about active iSCSI sessions on the switch. • show iscsi sessions detailed — displays detailed information on active iSCSI sessions on the switch.
29 Intermediate System to Intermediate System (ISIS) The Dell Networking OS supports the intermediate system to intermediate system (IS-IS) protocol for IPv4 and IPv6. IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic. A router is considered an intermediate system. Networks are partitioned into manageable routing domains, called areas.
• hello padding • hostname dynamic • ignore-lsp-errors • ip router isis • ipv6 router isis • isis circuit-type • isis csnp-interval • isis csnp-interval • isis hello-multiplier • isis hello padding • isis ipv6 metric • isis metric • isis network point-to-point • isis password • isis priority • is-type • log-adjacency-changes • lsp-gen-interval • lsp-mtu • lsp-refresh-interval • max-area-addresses • max-lsp-lifetime • maximum-paths • metric-style • multi-topol
To disable adjacency check, use the no adjacency-check command. Defaults Command Modes Supported Modes Enabled. • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To perform protocol-support consistency checks on hello packets, use this command. The adjacency-check is enabled by default.
area-password Configure a hash message authentication code (HMAC) password for an area. Syntax area-password [hmac-md5 | encryption-type] password To delete a password, use the no area-password command. Parameters hmac-md5 (OPTIONAL) Enter the keywords hmac-md5 to encrypt the password. encryption-type (OPTIONAL) Enter 7 to encrypt the password using DES.
Usage Information CAUTION: Use caution when you enter this command. Back up your configuration prior to using this command or your IS-IS configuration will be erased. clear isis Restart the IS-IS process. All IS-IS data is cleared. Syntax Parameters clear isis [tag] {* | database | traffic} tag (Optional) Enter an alphanumeric string to specify the IS-IS routing tag area. * Enter the keyword * to clear all IS-IS information and restart the IS-IS process.
Related Commands hostname dynamic — enables dynamic learning of host names from routers in the domain and allows the routers to advertise the host names in LSPs. debug isis Enable debugging for all IS-IS operations. Syntax debug isis To disable debugging of IS-IS, use the no debug isis command. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
debug isis local-updates To debug IS-IS local update packets, enable debugging on a specific interface and provides diagnostic information. Syntax debug isis local-updates [interface] To turn off debugging, use the no debug isis local-updates [interface] command.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug isis spf-triggers Enable debugging on the events that triggered IS-IS shortest path first (SPF) events for debugging purposes. Syntax debug isis spf-triggers To turn off debugging, use the no debug isis spf-triggers command. Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
To disable the generation of a default route into the specified IS-IS routing domain, use the no defaultinformation originate [always] [metric metric] [route-map map-name] command. Parameters Defaults Command Modes Supported Modes Command History Usage Information always (OPTIONAL) Enter the keyword always to have the default route always advertised. metric metric (OPTIONAL) Enter the keyword metric then a number to assign to the route. The range is from 0 to 16777215.
Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. router isis — Enter ROUTER mode on the switch. distance Define the administrative distance for learned routes. Syntax distance weight [ip-address mask [prefix-list]] To return to the default values, use the no distance weight command.
Parameters Defaults Command Modes Supported Modes Command History Related Commands prefix-list-name Specify the prefix list to filter prefixes in routing updates. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
• Supported Modes Command History Usage Information Related Commands CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. You can assign a name to a routing process so a prefix list IS applied to only the routes derived from the specified routing process. • distribute-list in — filters the networks received in updates.
password Defaults No default password. Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information Related Commands Enter an alphanumeric string up to 16 characters long. If you do not specify an encryption type or hmac-md5 keywords, the password is processed as plain text which provides limited security. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
graceful-restart interval Set the graceful restart grace period, the time during that all graceful restart attempts are prevented. Syntax graceful-restart interval minutes To return to the default, use the no graceful-restart interval command. Parameters minutes Defaults 5 minutes Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Enter the graceful-restart interval minutes. The range is from 1 to 20 minutes. The default is 5 minutes. Version Description 9.9(0.
graceful-restart t2 Configure the wait time for the graceful restart timer T2 that a restarting router uses as the wait time for each database to synchronize. Syntax graceful-restart t2 {level-1 | level-2} seconds To return to the default, use the no graceful-restart t2 command. Parameters level-1, level-2 Enter the keywords level-1 or level-2 to identify the database instance type to which the wait interval applies. seconds Enter the gracefule-restart t2 time in seconds.
Override the default restart-wait time by entering the no graceful-restart restart-wait command. When you disable restart-wait, the current adjacency hold time is used. Set the t3 timer to adjacency on the restarting router when implementing this command. The restarting router gets the remaining time value from its peer and adjusts its T3 value so only when you have configured gracefulrestart t3 adjacency.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information IS-IS hellos are padded to the full maximum transmission unit (MTU) size. Padding IS-IS Hellos (IIHS) to the full MTU provides early error detection of large frame transmission problems or mismatched MTUs on adjacent interfaces. Related Commands isis hello padding — turns ON or OFF hello padding on an interface basis.
Usage Information IS-IS normally purges LSPs with an incorrect data link checksum causing the LSP source to regenerate the message. A cycle of purging and regenerating LSPs can occur when a network link continues to deliver accurate LSPs even though there is a link causing data corruption. This process could cause disruption to your system operation. ip router isis Configure IS-IS routing processes on an interface and attach an area tag name to the routing process.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Configure a network entity title (the net command) to specify the area address and the router system ID. To establish adjacencies and establish dynamic routing, enable routing on one or more interfaces. You can configure only one IS-IS routing process to perform Level 2 routing.
isis csnp-interval Configure the IS-IS complete sequence number PDU (CSNP) interval on an interface. Syntax isis csnp-interval seconds [level-1 | level-2] To return to the default values, use the no isis csnp-interval [seconds] [level-1 | level-2] command. Parameters seconds Interval of transmission time between CSNPs on multi-access networks for the designated intermediate system. The range is from 0 to 65535. The default is 10.
Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The default values of this command are typically satisfactory transmission times for a specific interface on a designated intermediate system. To maintain database synchronization, the designated routers send CSNPs. You can configure Level 1 and Level 2 CSNP intervals independently.
To return to the default, use the no isis hello padding command. Defaults Padding of hello PDUs is enabled (ON). Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Hello PDUs are “padded” only when both the global and interface padding options are ON. Turning either one OFF disables padding for the corresponding interface.
isis metric Assign a metric to an interface. Syntax isis metric default-metric [level-1 | level-2] To return to the default values, use the no isis metric [default-metric] [level-1 | level-2] command. Parameters default-metric Metric assigned to the link and used to calculate the cost from each other router via the links in the network to other destinations. You can configure this metric for Level 1 or Level 2 routing.
isis password Configure an authentication password for an interface. Syntax isis password [hmac-md5] password [level-1 | level-2] To delete a password, use the no isis password [password] [level-1 | level-2] command. Parameters encryption-type (OPTIONAL) Enter 7 to encrypt the password using DES. hmac-md5 (OPTIONAL) Enter the keywords hmac-md5 to encrypt the password using MD5. password Assign the interface authentication password.
level-2 (OPTIONAL) Specify the priority for Level 2. Defaults value = 64; level-1 (if not otherwise specified). Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. You can configure priorities independently for Level 1 and Level 2. Priorities determine which router on a LAN is the designated router. Priorities are advertised within hellos.
log-adjacency-changes Generate a log messages for adjacency state changes. Syntax log-adjacency-changes To disable this function, use the no log-adjacency-changes command. Defaults Adjacency changes are not logged. Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. LSP throttling slows down the frequency at which LSPs are generated during network instability. Even though throttling LSP generations slows down network convergence, no throttling can result in a network not functioning as expected. If network topology is unstable, throttling slows down the scheduling of LSP generations until the topology regains its stability.
Parameters seconds Defaults 900 seconds Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information The LSP refresh interval, in seconds. This value has to be less than the seconds value specified with the max-lsp-lifetime command. The range is from 1 to 65535 seconds. The default is 900. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
max-lsp-lifetime Set the maximum time that link-state packets (LSPs) exist without being refreshed. Syntax max-lsp-lifetime seconds To restore the default time, use the no max-lsp-lifetime command. Parameters seconds Defaults 1200 seconds Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information The maximum lifetime of LSP in seconds. This value must be greater than the lsprefresh-interval command. The higher the value the longer the LSPs are kept.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. metric-style To generate and accept old-style, new-style, or both styles of type, length, and values (TLV), configure a router. Syntax metric-style {narrow [transition] | transition | wide [transition]} [level-1 | level-2] To return to the default values, use the no metric-style {narrow [transition] | transition | wide [transition]} [level-1 | level-2] command.
Defaults Disabled Command Modes CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. net To configure an IS-IS network entity title (NET) for a routing process, use this mandatory command. If you did not configure a NET, the ISIS process does not start. Syntax net network-entity-title To remove a net, use the no net network-entity-title command.
Defaults Not configured. Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information • For a SONET interface, enter the keyword sonet then the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Defaults Command Modes Supported Modes Command History Usage Information • metric metric-value = 0 • metric-type= internal; level-2 • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To redistribute a default route (0.0.0.0/0), configure the default-information originate command.
metric metric-value (OPTIONAL) The value used for the redistributed route. Use a metric value that is consistent with the destination protocol. The range is from 0 to 16777215. The default is 0. metric-type {external| internal} (OPTIONAL) The external link type associated with the default route advertised into a routing domain. The two options are: route-map mapname • external • internal map-name is an identifier for a configured route map.
Parameters process-id Enter a number that corresponds to the OSPF process ID to be redistributed. The range is from 1 to 65355. metric metric-value (OPTIONAL) The value used for the redistributed route. Use a metric value that is consistent with the destination protocol. The range is from 0 to 16777215. The default is 0. metric-type {external | internal} (OPTIONAL) The external link type associated with the default route advertised into a routing domain.
router isis Allows you to enable the IS-IS routing protocol and to specify an IP IS-IS process. Syntax router isis [tag] To disable IS-IS routing, use the no router isis [tag] command. Parameters tag Defaults Not configured. Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information (OPTIONAL) This is a unique name for a routing process. A null tag is assumed if the tag option is not specified.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Set the overload bit when a router experiences problems, such as a memory shortage due to an incomplete link state database which can result in an incomplete or inaccurate routing table. If you set the overload bit in its LSPs, other routers ignore the unreliable router in their SPF calculations until the router has recovered.
show isis database Display the IS-IS link state database. Syntax show isis database [level-1 | level-2] [local] [detail | summary] [lspid] Parameters Command Modes Supported Modes Command History Usage Information level-1 (OPTIONAL) Displays the Level 1 IS-IS link-state database. level-2 (OPTIONAL) Displays the Level 2 IS-IS link-state database. local (OPTIONAL) Displays local link-state database information.
Example Field Description LSP Seq Num This value is the sequence number for the LSP that allows other systems to determine if they have received the latest information from the source. LSP Checksum This is the checksum of the entire LSP packet. LSP Holdtime This value is the amount of time, in seconds, that the LSP remains valid. A zero holdtime indicates that this is a purged LSP and is being removed from the link state database.
Metric: 10 IP 15.1.1.0 255.255.255.0 Metric: 20 IP 10.3.3.0 255.255.255.0 Metric: 10 IPv6 (MT-IPv6) 1011::/64 Metric: 10 IPv6 (MT-IPv6) 1511::/64 Metric: 10 IPv6 (MT-IPv6) 2511::/64 Metric: 20 IPv6 (MT-IPv6) 1033::/64 Metric: 10 IPv6 2511::/64 Metric: 20 IPv6 1033::/64 Hostname: ISIS Dell# show isis graceful-restart detail Display detailed IS-IS graceful restart related settings.
• Supported Modes Command History Example EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show isis hostname System Id Dynamic Name Static Name *F100.E120.0013 Force10 ISIS Dell# show isis interface Display detailed IS-IS interface status and configuration information.
LSP Interval: 33 GigabitEthernet 0/8 is up, line protocol is up MTU 1497, Encapsulation SAP Routing Protocol: IS-IS Circuit Type: Level-1-2 Interface Index 38371358, Local circuit ID 2 Level-1 Metric: 10, Priority: 64, Circuit ID: systest-3.02 Hello Interval: 10, Hello Multiplier: 3, CSNP Interval: 10 Number of active level-1 adjacencies: 1 Level-2 Metric: 10, Priority: 64, Circuit ID: systest-3.
Example Field Description Priority IS-IS priority the neighbor advertises. The neighbor with highest priority becomes the designated router for the interface. Uptime Displays the interfaces uptime. Circuit Id The neighbor’s interpretation of the designated router for the interface. The bold sections below identify that Multi-Topology IS-IS is enabled. Dell#show isis neighbors System Id Interface State Type Priority Uptime Circuit Id TEST Gi 7/1 Up L1L2(M) 127 09:28:01 TEST.
Generate narrow metrics: level-1-2 Accept narrow metrics: level-1-2 Generate wide metrics: none Accept wide metrics: none Multi Topology Routing is enabled in transition mode. Dell# show isis traffic This command allows you to display IS-IS traffic interface information.
Example Item Description Level-1/Level-2 LSPs PSNPs (sent/ rcvd) Displays the number of PSNP LPSs sent and received. Level-1/Level-2 DR Elections Displays the number of times designated router elections ran. Level-1/Level-2 SPF Calculations Displays the number of shortest path first calculations. LSP checksum errors received Displays the number of checksum errors LSPs received. LSP authentication failures Displays the number of LSP authentication failures.
second_wait_interv al seconds Defaults (OPTIONAL) Enter the wait interval, in seconds, between the first and second SPF calculations. The range is from 0 to 120 seconds. The default is 5 seconds. Refer to Parameters. Command Modes Supported Modes Command History Usage Information • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
30 Link Aggregation Control Protocol (LACP) This chapter contains commands for Dell Networks’s implementation of the link aggregation control protocol (LACP) for creating dynamic link aggregation groups (LAGs) — known as port-channels in the Dell Networking Operating System (OS). NOTE: For static LAG commands, refer to theInterfaces chapter), based on the standards specified in the IEEE 802.3 Carrier sense multiple access with collision detection (CSMA/CD) access method and physical layer specifications.
To disable LACP debugging, use the no [config | events | pdu [interface [in | out]]] command. Parameters config (OPTIONAL) Enter the keyword config to debug the LACP configuration. events (OPTIONAL) Enter the keyword events to debug the LACP event information. pdu (OPTIONAL) Enter the keyword pdu to debug the LACP Protocol Data Unit information.
Usage Information You can configure the optimal switchover functionality for LACP. This command applies to dynamic port-channel interfaces only. When applied on a static port-channel, this command has no effect If you configure the optimized booting-time capability and perform a reload of the system, the LACP application sends PDUs across all the active LACP links immediately. Related Commands show lacp — displays the LACP configuration.
lacp system-priority Configure the LACP system priority. Syntax lacp system-priority priority-value Parameters priority-value Defaults 32768 Command Modes INTERFACE Command History Enter the port-priority value. The higher the value number, the lower the priority. The range is from 1 to 65535. The default is 32768. Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. port-channel mode Configure the LACP port channel mode.
Mode Function passive An interface is not in an active negotiating state in this mode. LACP runs on any link configured in the passive state. Ports in a passive state respond to negotiation requests from other ports that are in active states. Ports in a passive state respond to LACP packets off An interface cannot be part of a dynamic port channel in off mode. LACP does not run on a port configured in off mode. port-channel-protocol lacp Enable LACP on any LAN port.
Command History Example (PortChannel-Number) Version 8.3.16.1 Dell#show lacp Port-channel 1 Actor System Partner System Introduced on the MXL 10/40GbE Switch IO Module. 1 admin up, oper up, mode lacp ID:Priority 32768, Address 0001.e800.a12b ID:Priority 32768, Address 0001.e801.
31 Layer 2 This chapter describes commands to configure Layer 2 features.
clear mac-address-table Clear the MAC address table. Syntax clear mac-address-table dynamic {address mac-address | all | interface interface | vlan vlan-id} Parameters address macaddress Enter the keyword address then a MAC address in nn:nn:nn:nn:nn:nn format. all Enter the keyword all to delete all MAC address entries in the MAC address table.
mac-address-table disable-learning Disable MAC address learning from LACP or LLDP BPDUs. Syntax Parameters mac-address-table disable-learning [lacp | lldp] lacp Enter lacp to disable MAC address learning from LACP BPDUs. lldp Enter LLDP to disable MAC address learning from LLDP BPDUs. Defaults Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History This guide is platform-specific.
Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mac-address-table station-move refresh-arp Ensure that address resolution protocol (ARP) refreshes the egress interface when a station move occurs due to a topology change. Syntax [no] mac-address-table station-move refresh-arp Defaults Enabled Command Modes CONFIGURATION Command History Usage Information Version 9.9(0.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command and its options are supported on physical interfaces, static LAGs, LACP LAGs, and VLANs. If you do not specify the vlan option, the MAC address counters are not VLAN-based. That is, the sum of the addresses learned on all VLANs (not having any learning limit configuration) is counted against the MAC learning limit.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command is supported on physical interfaces, static LAGs, and LACP LAGs. Related Commands show mac learning-limit — displays details of the mac learning-limit. mac learning-limit station-move-violation Specify the actions for a station move violation.
Supported Modes Command History Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mac port-security Enable or disable the port security feature globally in the system. Syntax mac port-security To disable the port security, use the no mac port-security command. Defaults Enabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History This guide is platform-specific.
static (OPTIONAL) Enter the keyword static to display only those MAC address specifically configured on the switch. interface interface (OPTIONAL) Enter the keyword interface then the interface type, slot and port information: vlan vlan-id Command Modes Command History • EXEC • EXEC Privilege Version 8.3.16.1 • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Command Modes Command History Usage Information interface interfacetype (OPTIONAL) Instead of entering the keyword interface then the interface type, slot and port information, as above, you can enter the interface type, then just a slot number. vlan vlan-id (OPTIONAL) Enter the keyword vlan then the VLAN ID to display the MAC address assigned to the VLAN. The range is 1 to 4094.
Column Heading Description State • po — Port Channel then a number. The range is from 1 to 255. \ • so — SONET then a slot/port. • te — 10–Gigabit Ethernet then a slot/port. Lists if the MAC address is in use (Active) or not in use (Inactive). The following describes the show mac-address-table count command shown in the following example. Example (Count) Related Commands Line Beginning With Description MAC Entries... Displays the number of MAC entries learned per VLAN. Dynamic Address...
show mac learning-limit Display MAC address learning limits set for various interfaces. Syntax Parameters Command Modes Supported Modes Command History Example show mac learning-limit [violate-action] [detail] [interface interface] violate-action (OPTIONALY) Enter the keywords violate-action to display the MAC learning limit violation status. detail (OPTIONAL) Enter the keyword detail to display the MAC learning limit in detail.
description Add a description about the selected VLAN. Syntax description description Parameters description Defaults none Command Modes INTERFACE VLAN Command History Related Commands Version 8.3.16.1 Enter a text string description to identify the VLAN (80 characters maximum). Introduced on the MXL 10/40GbE Switch IO Module. show vlan — displays the VLAN configuration. default vlan-id Specify a VLAN as the Default VLAN.
default-vlan disable Disable the default VLAN so that all switchports are placed in the Null VLAN until they are explicitly configured as a member of another VLAN. Defaults Enabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show config Display the current configuration of the selected VLAN. Syntax show config Command Modes INTERFACE VLAN Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-vl-100)#show config ! interface Vlan 1 description a no ip address mtu 2500 shutdown Dell(conf-if-vl-100)# show vlan Display the current VLAN configurations on the switch.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show vlan command shown in the following example. Column Heading Description (Column 1 — no heading) asterisk symbol (*) = Default VLAN • G = GVRP VLAN • P = primary VLAN • C = community VLAN • I = isolated VLAN • O = OpenFlow NUM Displays existing VLAN IDs. Status Displays the word Inactive for inactive VLANs and the word Active for active VLANs.
Example (VLAN ID) Dell# show vlan id 40 Codes: * - Default VLAN, G - GVRP VLANs, R - Remote Port Mirroring VLANs, P - Primary, C - Community, I - Isolated Q: U - Untagged, T - Tagged x - Dot1x untagged, X - Dot1x tagged G - GVRP tagged, M - Vlan-stack, H - VSN tagged i - Internal untagged, I - Internal tagged, v - VLT untagged, V - VLT tagged NUM Status Description Q Ports 1 Inactive a Dell# Example (Brief) Dell#show vlan brief VLAN Name STG MAC Aging IP Address ---- -----------------------------1 0 0 un
Supported Modes Command History Usage Information Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When you use the no tagged command, the interface is automatically placed in the Default VLAN as an untagged interface unless the interface is a member of another VLAN. If the interface belongs to several VLANs, remove it from all VLANs to change it to an untagged interface.
The Layer 2 state of the VLAN, and hence the Layer 2 traffic, is not affected by the track ip command configuration. Related Commands interface vlan — configures a VLAN. tagged — specifies which interfaces in a VLAN are tagged. untagged Add a Layer 2 interface to a VLAN as an untagged interface. Syntax untagged interface To remove an untagged interface from a VLAN, use the no untagged interface command.
32 Link Layer Discovery Protocol (LLDP) Link layer discovery protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management. The Dell Networking operating software implementation of LLDP is based on IEEE standard 801.1ab.
advertise dot1-tlv Advertise dot1 TLVs (Type, Length, Value). Syntax advertise dot1-tlv {port-protocol-vlan-id | port-vlan-id | vlan-name} To remove advertised dot1-tlv, use the no advertise dot1-tlv {port-protocol-vlan-id | portvlan-id | vlan-name} command. Parameters port-protocol-vlanid Enter the keywords port-protocol-vlan-id to advertise the port protocol VLAN identification TLV. port-vlan-id Enter the keywords port-vlan-id to advertise the port VLAN identification TLV.
Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. advertise interface-port-desc Advertise port descriptor. Syntax advertise interface-port-desc {description | port-id} To remove the advertised port descriptor, use the no advertise interface—port—desc {description | port-id} command. Parameters description Enter the keyword description then the interface description. port-id Enter the keyword port-id then the port-id. The range is from 0 to 7.
Command Modes Command History Usage Information CONFIGURATION (conf-lldp) Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The command options system-capabilities, system-description, and system-name can be invoked individually or together, in any sequence. clear lldp counters Clear LLDP transmitting and receiving counters for all physical interfaces or a specific physical interface.
debug lldp interface To display timer events, neighbor additions or deletions, and other information about incoming and outgoing packets, enable LLDP debugging. Syntax debug lldp interface {interface | all}{events | packet {brief | detail} {tx | rx | both}} To disable debugging, use the no debug lldp interface {interface | all}{events} {packet {brief | detail} {tx | rx | both}} command.
Command History Related Commands Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) — enables LLDP globally. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. hello Configure the rate at which the LLDP control packets are sent to its peer. Syntax hello seconds To revert to the default, use the no hello seconds command.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) — enables LLDP globally. show lldp neighbors — displays the LLDP neighbors. multiplier Set the number of consecutive misses before LLDP declares the interface dead. Syntax multiplier integer To return to the default, use the no multiplier integer command. Parameters integer Enter the number of consecutive misses before the LLDP declares the interface dead.
Command Modes Command History Usage Information INTERFACE (conf-if-interface-lldp) Version 8.3.16.1 Before LLDP can be configured on an interface, it must be enabled globally from CONFIGURATION mode. This command places you in LLDP mode on the interface; it does not enable the protocol. When you enter the LLDP protocol in the Interface context, it overrides global configurations.
Example Dell#show lldp statistics --------- LLDP GLOBAL STATISTICS ON CHASSIS -----------Total number of neighbors: 2 Last table change time: 1w5d4h, In ticks: 52729764 Total number of Table Inserts: 56 Total number of Table Deletes: 54 Total number of Table Drops: 0 Total number of Table Age Outs: 12 Dell# show running-config lldp Display the current global LLDP configuration.
• identify physical location • identify network policy advertise med guest-voice To advertise a separate limited voice service for a guest user with their own IP telephony handset or other appliances that support interactive voice services, configure the system. Syntax advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {prioritytagged number} To return to the default, use the no advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command.
layer2_priority Enter the Layer 2 priority. The range is from 0 to 7. DSCP_value Enter the DSCP value. The range is from 0 to 63. priority-tagged number Enter the keywords priority-tagged then the Layer 2 priority. The range is from 0 to 7. Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Supported Modes Full-Switch Command History Related Commands 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• Related Commands ELIN — Emergency location identification number, a valid North America Numbering Plan format telephone number supplied for ECS purposes. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. show running-config lldp — displays the LLDP running configuration. advertise med power-via-mdi To advertise the Extended Power via MDI TLV, configure the system.
Supported Modes Command History Related Commands Full-Switch 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. show running-config lldp — displays the LLDP running configuration. advertise med streaming-video To advertise streaming video services for broadcast or multicast-based video, configure the system.
Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094. priority-tagged number Enter the keywords priority-tagged then the Layer 2 priority. The range is from 0 to 7. Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Supported Modes Full-Switch Command History Related Commands 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors.
advertise med voice To advertise a dedicated IP telephony handset or other appliances supporting interactive voice services, configure the system. Syntax advertise med voice {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med voice {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094. priority-tagged number Enter the keywords priority-tagged then the Layer 2 priority. The range is from 0 to 7.
Related Commands debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. show running-config lldp — displays the LLDP running configuration.
33 Microsoft Network Load Balancing Network Load Balancing (NLB) is a clustering functionality that is implemented by Microsoft on Windows 2000 Server and Windows Server 2003 operating systems. NLB uses a distributed methodology or pattern to equally split and balance the network traffic load across a set of servers that are part of the cluster or group.
With multicast NLB mode, the data is forwarded to all the servers based on the port specified using the Layer 2 multicast command, which is the mac-address-table static multicast vlan output-range , command in CONFIGURATION mode. Limitations With Enabling NLB on Switches The following limitations apply to switches on which you configure NLB: • The NLB unicast mode uses switch flooding to transmit all packets to all the servers that are part of the VLAN.
mac-address-table static (for Multicast MAC Address) For multicast mode of network load balancing (NLB), configure a static multicast MAC address, associate the multicast MAC address with the VLAN used to switch Layer 2 multicast traffic, and add output ports that will receive multicast streams on the VLAN. To delete a configured static multicast MAC address from the MAC address table on the router, enter the no mac-address-table static multicast-mac-address command.
ip vlan-flooding Enable unicast data traffic flooding on VLAN member ports. Syntax ip vlan-flooding To disable, use the no ip vlan-flooding command. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL Switch . Default Disabled Usage Information By default this command is disabled.
34 Multicast Source Discovery Protocol (MSDP) Multicast source discovery protocol (MSDP) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections.
clear ip msdp sa-cache Clears the entire source-active cache, the source-active entries of a particular multicast group, rejected, or local source-active entries. Syntax clear ip msdp sa-cache [group-address | rejected-sa | local] Parameters group-address Enter the group IP address in dotted decimal format (A.B.C.D.).
debug ip msdp Turn on MSDP debugging. Syntax debug ip msdp {event peer address | packet peer address | pim} To turn debugging off, use the no debug ip msdp {event peer address | packet peer address | pim} command. Parameters event peer address Enter the keyword event then the peer address in a dotted decimal format (A.B.C.D.). packet peer address Enter the keyword packet then the peer address in a dotted decimal format (A.B.C.D.). pim Enter the keyword pim to debug advertisement from PIM.
Related Commands show ip msdp sa-cache rejected-sa — Displays the rejected SAs in the SA cache. ip msdp default-peer Define a default peer from which to accept all source-active (SA) messages. Syntax ip msdp default-peer peer address [list name] To remove the default peer, use the no ip msdp default-peer {peer address} list name command. Parameters peer address Enter the peer address in a dotted decimal format (A.B.C.D.
ip msdp mesh-group To be a member of a mesh group, configure a peer. Syntax ip msdp mesh-group {name} {peer address} To remove the peer from a mesh group, use the no ip msdp mesh-group {name} {peer address} command. Parameters name Enter a string of up to 16 characters long for as the mesh group name. peer address Enter the peer address in a dotted decimal format (A.B.C.D.). Defaults Not configured.
Supported Modes Command History Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip msdp peer Configure an MSDP peer. Syntax ip msdp peer peer address [connect-source] [description] [sa-limit number] To remove the MSDP peer, use the no ip msdp peer peer address [connect-source interface] [description name] [sa-limit number] command. Parameters peer address Enter the peer address in a dotted decimal format (A.B.C.D.).
Related Commands ip msdp sa-limit — configures the MSDP SA Limit. clear ip msdp peer — clears the MSDP peer. show ip msdp — displays the MSDP information. ip msdp redistribute Filter local PIM SA entries in the SA cache. SAs which the ACL denies time out and are not refreshed. Until they time out, they continue to reside in the MSDP SA cache. Syntax Parameters ip msdp redistribute [list acl-name] list acl-name Defaults Not configured.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip msdp sa-limit Configure the upper limit of source-active (SA) entries in SA-cache. Syntax ip msdp sa-limit number To return to the default, use the no ip msdp sa-limit number command.
Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Version 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip multicast-msdp Enable MSDP. Syntax ip multicast-msdp To exit MSDP, use the no ip multicast-msdp command. Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip msdp peer 100.1.1.1 Peer Addr: 100.1.1.1 Local Addr: 100.1.1.
00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 Dell# 225.1.2.9 10.1.1.3 225.1.2.10 10.1.1.4 225.1.2.11 10.1.1.3 225.1.2.11 10.1.1.3 225.1.2.12 10.1.1.4 225.1.2.13 10.1.1.3 225.1.2.14 10.1.1.4 225.1.2.15 10.1.1.3 225.1.2.16 10.1.1.4 225.1.2.17 10.1.1.3 225.1.2.18 10.1.1.4 225.1.2.19 10.1.1.3 110.1.1.1 110.1.1.1 110.1.1.1 110.1.1.1 110.1.1.1 110.1.1.1 110.1.1.1 110.1.1.1 110.1.1.1 110.1.1.1 110.1.1.1 110.1.1.1 13.1.1.2 13.1.1.2 13.1.1.2 13.1.1.
35 Multiple Spanning Tree Protocol (MSTP) Multiple spanning tree protocol (MSTP), as implemented by the Dell Networking Operating System (OS), conforms to IEEE 802.1s.
• events Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example For Transmit, enter the keyword out. (OPTIONAL) Enter the keyword events to debug MSTP events. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#debug spanning-tree mstp bpdu tengigabitethernet 0/16 ? in Receive (in) out Transmit (out) Dell# description Enter a description of the multiple spanning tree.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree mstp — enters MULTIPLE SPANNING TREE mode. disable Enable bridge protocol data units (BPDU) filter globally to filter transmission of BPDU on port-fast enabled interfaces. Syntax edge-port bpdufilter default To disable global bpdu filter default, use the no edge-port bpdufilter default command. Defaults disabled.
hello-time — changes the time interval between bridge protocol data units (BPDUs). hello-time Set the time interval between generation of MSTB bridge protocol data units (BPDUs). Syntax hello-time seconds To return to the default value, use the no hello-time command. Parameters seconds Enter a number as the time interval between transmission of BPDUs. The range is from 1 to 10. The default is 2 seconds.
Related Commands edge-port bpdufilter default — the amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. hello-time — changes the time interval between BPDUs. max-hops Configure the maximum hop count. Syntax max-hops number To return to the default values, use the no max-hops command. Parameters range Enter a number for the maximum hop count. The range is from 1 to 40. The default is 20.
Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, all VLANs are mapped to MST instance zero (0) unless you use the vlan range command to map it to a non-zero instance. Although MSTP instance IDs range from 0 to 4094, only 64 active instances are supported on the switch. name The name you assign to the multiple spanning tree region.
Supported Modes Command History Usage Information Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. MSTP is not enabled when you enter MULTIPLE SPANNING TREE mode. To enable MSTP globally on the switch, enter the no disable command while in MULTIPLE SPANNING TREE mode. For more information about the multiple spanning tree protocol, refer to the Dell Networking OS Configuration Guide.
Command Modes MULTIPLE SPANNING TREE Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-mstp)#show config ! protocol spanning-tree mstp no disable name CustomerSvc revision 2 MSTI 10 VLAN 101-105 max-hops 5 Dell(conf-mstp)# show spanning-tree mst configuration View the multiple spanning tree configuration.
guard Command Modes Supported Modes Command History • EXEC • EXEC Privilege (Optional) Enter the keyword guard to display the type of guard enabled on an MSTP interface and the current port state. Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Enable the multiple spanning tree protocol prior to using this command.
---------------------------------------------------------Gi 0/0 128.257 128 20000 EDS 0 32768 0001.e801.6aa8 128.257 Interface Name Role PortID Prio Cost Sts Cost Link-type Edge Boundary ---------------------------------------------------------Gi 0/0 ErrDis 128.257 128 20000 EDS 0 P2P No No Dell#show spanning-tree msti 0 MSTI 0 VLANs mapped 1-4094 Root Identifier has priority 32768, Address 0001.e801.
Parameters spanning-tree Defaults Enable. Command Modes INTERFACE Supported Modes Full–Switch Command History Enter the keywords spanning-tree to enable the MSTP on the interface. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. spanning-tree msti Configure multiple spanning tree instance cost and priority for an interface.
spanning-tree mstp Configures a Layer 2 MSTP interface as an edge port with (optionally) a bridge protocol data unit (BPDU) guard, or enables the root guard or loop guard feature on the interface. Syntax Parameters spanning-tree mstp {edge-port [bpduguard [shutdown-on-violation]] | bpdufilter| rootguard} edge-port Enter the keywords edge-port to configure the interface as a multiple spanning tree edge port.
tc-flush-standard Enable the MAC address flushing after receiving every topology change notification. Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information 870 Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, the sytem implements an optimized flush mechanism for MSTP.
36 Multicast The multicast commands are supported by Dell Networking Operating System (OS).
Related Commands Version Description 9.2.(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip pim tib — shows the PIM tree information base. ip mroute Assign a static mroute.
ip multicast-limit To limit the number of multicast entries on the system, use this feature. Syntax Parameters ip multicast-limit limit limit Defaults 15000 routes. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Enter the desired maximum number of multicast entries on the system. The range is from 1 to 50000. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
mtrace Trace a multicast route from the source to the receiver. Syntax mtrace [vrf vrf-name] {source-address/hostname} [destination-address/hostname] [group-address/hostname] Parameters Command Modes Command History Usage Information vrf vrf-name Enter the keyword vrf followed by the name of the VRF. If VRF name is not mentioned, the default VRF will be used. Mtrace is not supported for management VRF. source-address/ hostname Enter the source IP address in dotted decimal format (A.B.C.D).
-3 2.2.2.1 PIM 103.103.103.0/24 -4 103.103.103.3 --> Source -----------------------------------------------------------------The mtrace command traverses the path of the response data block in the reverse direction of the multicast data traffic. The mtrace command traverses the reverse path to the source from the destination.
Command Modes Supported Modes Command History Example (Static) • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2.(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip mroute static Mroute: 23.23.23.0/24, interface: Lo 2 Protocol: static, distance: 0, route-map: none, last change: 00:00:23 Example (Snooping) Dell#show ip mroute snooping IPv4 Multicast Snooping Table (*, 224.0.0.
Example Field Description uptime Displays the amount of time the entry has been in the multicast forwarding table. Incoming interface Displays the reverse path forwarding (RPF) information towards the source for (S,G) entries and the RP for (*,G) entries.
RPF RPF RPF RPF interface: Te 0/4 neighbor: 165.87.31.4 route/mask: 10.10.10.9/255.255.255.255 type: unicast IPv6 Multicast Commands The following section contains the IPv6 multicast commands. debug ipv6 mld_host Enable the collection of debug information for MLD host transactions. Syntax [no] debug ipv6 mld_host [int-count | interface type] [slot/port-range] To discontinue collection of debug information for the MLD host transactions, use the no debug ipv6 mld_host command.
Parameters limit Defaults 15000 routes. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Enter the desired maximum number of multicast entries on the system. The range is from 1 to 50000. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This feature allows you to limit the number of multicast entries on the system.
37 Neighbor Discovery Protocol (NDP) The Dell Networking Operating System (OS) supports the network discovery protocol for IPv6. The neighbor discovery protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4.
Command Modes Supported Modes Command History • EXEC • EXEC Privilege • For a Fast Ethernet interface, enter the keyword fastEthernet then the slot/port information. • For a Port Channel interface, enter the keywords port-channel then a number. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN, enter the keyword vlan then the VLAN ID. The range is from 1 to 4094. Full–Switch Version Description 9.9(0.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ipv6 neighbors Display IPv6 discovery information. Entering the command without options shows all the IPv6 neighbor addresses stored on the control processor (CP). Syntax show ipv6 neighbors [vrf vrf-name] [ipv6-address| interface interface] Parameters vrf vrf-name (OPTIONAL) Enter the keyword vrf followed by the name of the VRF to display the neighbors corresponding to that VRF.
38 Object Tracking Object Tracking supports IPv4 and IPv6, and is available on the Dell Networking platforms. Object tracking allows you to define objects of interest, monitor their state, and report to a client when a change in an object’s state occurs.
04:35:04: %RPM0-P:RP2 %OTM-5-STATE: track 6 - Interface TenGigabitEthernet 1/2 line-protocol DOWN 04:35:04: %RPM0-P:RP2 %OTM-5-NOTIF: VRRP notification: resource ID 6 DOWN delay Configure the time delay used before communicating a change in the status of a tracked object to clients. Syntax delay {[up seconds] [down seconds]} To return to the default setting, use the no delay command.
Command History Related Commands Version Description 9.7(0.0) Introduced on the MXL. • track interface ip routing – configures object tracking on the routing status of an IPv4 Layer 3 interface. • track interface line-protocol – configures object tracking on the line-protocol state of a Layer 2 interface. • track ip route metric threshold – configures object tracking on the threshold of an IPv4 route metric.
show track Display information about tracked objects, including configuration, current tracked state (UP or DOWN), and the clients which are tracking an object. Syntax show track [object-id [brief] | interface [brief] | ip route [brief] | resolution | [brief] | brief] Parameters Command Modes Command History Usage Information Example object-id (OPTIONAL) Display information on the specified tracked object. The range is 1 to 500.
First-hop interface is TenGigabitEthernet 1/2 Tracked by: VRRP TenGigabitEthernet 2/3 IPv6 VRID 1 Track 3 IPv6 route 2050::/64 reachability Reachability is Up (STATIC) 5 changes, last change 00:02:16 First-hop interface is TenGigabitEthernet 1/2 Tracked by: VRRP TenGigabitEthernet 2/3 IPv6 VRID 1 Usage Information Example (Brief) The following describes the show track brief command shown in the Example below. Output Description ResID Number of the tracked object. Resource Type of tracked object.
Usage Information Use this command to configure the UP and/or DOWN threshold for the scaled metric of a tracked IPv4 or IPv6 route. Determine the UP/DOWN state of a tracked route by the threshold for the current value of the route metric in the routing table. To provide a common tracking interface for different clients, route metrics are scaled in the range 0 to 255, where 0 is connected and 255 is inaccessible.
Command History Usage Information Version Description 9.7(0.0) Introduced on the MXL. Added support for tunnel interface. Use this command to create an object that tracks the routing state of an IPv4 Layer 2 interface: • The status of the IPv4 interface is UP only if the Layer 2 status of the interface is UP and the interface has a valid IP address.
track ip route metric threshold Configure object tracking on the threshold of an IPv4 route metric. Syntax track object-id ip route ip-address/prefix-len metric threshold To return to the default setting, use the no track object-id command. Parameters object-id Enter the ID number of the tracked object. The range is 1 to 500. ip-address/ prefixlen Enter an IPv4 address in dotted decimal format. The valid IPv4 prefix lengths are from /0 to /32.
track ip route reachability Configure object tracking on the reachability of an IPv4 route. Syntax track object-id ip route ip-address/prefix-len reachability [vrf vrf-name] To return to the default setting, use the no track object-id command. Parameters object-id Enter the ID number of the tracked object. The range is 1 to 500. ip-address/ prefixlen Enter an IPv4 address in dotted decimal format. The valid IPv4 prefix lengths are from /0 to /32.
Parameters interval Enter the refresh interval, in seconds, for object tracking reachability. The range is from 0 to 60 seconds. The default is 60. Defaults Enabled Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Related Commands Version Description 9.7(0.0) Introduced on the MXL.
The protocol-specific resolution value calculates the scaled metric by dividing a route's cost by the resolution value set for the route protocol: • For ISIS, you can set the resolution in the range 1 to 1000, where the default is 10. • For OSPF, you can set the resolution in the range 1 to 1592, where the default is 1. • The resolution value used to map static routes is not configurable. By default, Dell Networking OS assigns a metric of 0 to static routes.
Example Output Description number changes, last change time Number of times that the state of the tracked object has changed and the time since the last change in hours:minutes:seconds. First hop interface Displays the type and slot/port number of the first-hop interface of the tracked route. Tracked by Client that is tracking an object’s state; for example, VRRP.
Defaults none Command Modes CONFIGURATION Command History Usage Information Related Commands • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. • For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. • For a port channel interface, enter the keywords port-channel then a number.
A tracked IPv6 route is considered to match an entry in the routing table only if the exact IPv6 address and prefix length match a table entry. For example, when configured as a tracked route, 3333:100:200:300:400::/80 does not match routing table entry 3333:100:200:300::/64. If no route-table entry has the exact IPv6 address and prefix length, the status of the tracked route is considered to be DOWN.
A tracked route is considered to match an entry in the routing table only if the exact IPv6 address and prefix length match a table entry. For example, when configured as a tracked route, 3333:100:200:300:400::/80 does not match routing table entry 3333:100:200:300::/64. If no route-table entry has the exact IPv6 address and prefix length, the tracked route is considered to be DOWN.
Related Commands 898 • The resolution value used to map RIP routes is not configurable. The RIP hop-count is automatically multiplied by 16 to scale it. For example, a RIP metric of 16 (unreachable) scales to 256, which considers the route to be DOWN. • threshold metric – configures the metric threshold used to determine the UP and/or DOWN state of a tracked route. • track ipv6 route metric threshold– configures object tracking on the threshold of an IPv6 route metric.
39 Open Shortest Path First (OSPFv2 and OSPFv3) The Switch supports open shortest path first version 2 (OSPFv2) for IPv4 and version 3 (OSPFv3) for IPv6. Up to 16 OSPF instances can be run simultaneously on the Switch. OSPF is an Interior Gateway Protocol (IGP), which means that it distributes routing information between routers in a single Autonomous System (AS). OSPF is also a link-state protocol in which all routers contain forwarding tables derived from information about their links to their neighbors.
• ip ospf hello-interval • ip ospf message-digest-key • ip ospf mtu-ignore • ip ospf network • ip ospf priority • ip ospf retransmit-interval • ip ospf transmit-delay • log-adjacency-changes • maximum-paths • mib-binding • network area • passive-interface • redistribute • redistribute bgp • redistribute isis • router-id • router ospf • show config • show ip ospf • show ip ospf asbr • show ip ospf database • show ip ospf database asbr-summary • show ip ospf databa
• debug ipv6 ospf bfd • debug ipv6 ospf events • debug ipv6 ospf packet • debug ipv6 ospf spf • default-information originate • graceful-restart grace-period • graceful-restart mode • ipv6 ospf area • ipv6 ospf authentication • ipv6 ospf bfd all-neighbors • ipv6 ospf cost • ipv6 ospf dead-interval • ipv6 ospf encryption • ipv6 ospf graceful-restart helper-reject • ipv6 ospf hello-interval • ipv6 ospf priority • ipv6 router ospf • maximum-paths • passive-interface • red
Defaults cost = 1; no areas are configured. Command Modes ROUTER OSPF Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information In the Dell Networking operating software, cost is defined as reference bandwidth. Related Commands area stub — creates a stub area. area nssa Specify an area as a not so stubby area (NSSA).
Parameters area-id Specify the OSPF area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535. ip-address Specify an IP address in dotted decimal format. mask Specify a mask for the destination prefix. Enter the full mask (for example, 255.255.255.0). not-advertise (OPTIONAL) Enter the keywords not-advertise to set the status to DoNotAdvertise (that is, the Type 3 summary-LSA is suppressed and the component networks remain hidden from other areas.) Defaults Not configured.
Usage Information To configure all routers and access servers within a stub, use this command. Related Commands router ospf — enters ROUTER OSPF mode to configure an OSPF instance. auto-cost Specify how the OSPF interface cost is calculated based on the reference bandwidth method. Syntax auto-cost [reference-bandwidth ref-bw] To return to the default bandwidth or to assign cost based on the interface type, use the no auto-cost [reference-bandwidth] command.
clear ip ospf statistics Clear the packet statistics in interfaces and neighbors. Syntax Parameters clear ip ospf process-id statistics [interface name {neighbor router-id}] process-id Enter the OSPF Process ID to clear a specific process. If no Process ID is entered, all OSPF processes are cleared.
database-timer rate-limit Command Modes EXEC Privilege Supported Modes Full—Switch Command History Usage Information 906 (OPTIONAL) Enter the keywords database-timer rate-limit to display the LSA throttling timer information. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the debug ip ospf command shown in the Example below. Field Description 8:14 Displays the time stamp.
Field Example Description • N + (N-bit is set) • N - (N-bit is not set) • MC+ (bit used by MOSPF is set and router is able to forward IP multicast packets) • MC- (bit used by MOSPF is not set and router cannot forward IP multicast packets) • E + (router is able to accept AS External LSAs) • E - (router cannot accept AS External LSAs) • T + (router can support TOS) • T - (router cannot support TOS) hi: Displays the amount of time configured for the HELLO interval.
Supported Modes Command History Related Commands Full—Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. redistribute — redistributes routes from other routing protocols into OSPF. default-metric Change the metrics of redistributed routes to a value useful to OSPF. Use this command with the redistribute command. Syntax default-metric number To return to the default values, use the no default-metric [number] command.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip ospf asbr — displays the VLAN configuration. distance Define an administrative distance for particular routes to a specific IP address. Syntax distance weight [ip-address mask access-list-name] To delete the settings, use the no distance weight [ip-address mask access-list-name] command. Parameters weight Specify an administrative distance. The range is from 1 to 255. The default is 110.
• inter-area dist2 = 110 • intra-area dist1 = 110 Command Modes ROUTER OSPF Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To specify a distance for routes learned from other routing domains, use the redistribute command. distribute-list in Apply a filter to incoming routing updates from OSPF to the routing table.
Parameters prefix-list-name Enter the name of a configured prefix list. bgp (OPTIONAL) Enter the keyword bgp to specify that BGP routes are distributed. connected (OPTIONAL) Enter the keyword connected to specify that connected routes are distributed. isis (OPTIONAL) Enter the keyword isis to specify that IS-IS routes are distributed. rip (OPTIONAL) Enter the keyword rip to specify that RIP routes are distributed.
NOTE: The faster the convergence, the more frequent the route calculations and updates. This behavior impacts CPU utilization and may impact adjacency stability in larger topologies. Generally, convergence level 1 meets most convergence requirements. Higher convergence levels should only be selected following consultation with Dell Networking technical support. flood-2328 Enable RFC-2328 flooding behavior. Syntax flood-2328 To disable, use the no flood-2328 command. Defaults Disabled.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. graceful-restart helper-reject Specify the OSPF router to not act as a helper during graceful restart. Syntax graceful-restart helper-reject ip-address To return to default value, use the no graceful-restart helper-reject command. Parameters ip-address Defaults Not configured.
graceful-restart role Specify the role for your OSPF router during graceful restart. Syntax graceful-restart role [helper-only | restart-only] To disable graceful restart role, use the no graceful-restart role command. Parameters role helper-only (OPTIONAL) Enter the keywords helper-only to specify the OSPF router is a helper only during graceful restart. role restart-only (OPTIONAL) Enter the keywords restart-only to specify the OSPF router is a restart only during graceful-restart.
ip ospf authentication-key Enable authentication and set an authentication key on OSPF traffic on an interface. Syntax ip ospf authentication-key [encryption-type] key To delete an authentication key, use the no ip ospf authentication-key command. Parameters encryption-type (OPTIONAL) Enter 7 to encrypt the key. key Enter an eight-character string. Strings longer than eight characters are truncated. Defaults Not configured.
ip ospf dead-interval Set the time interval since the last hello-packet was received from a router. After the interval elapses, the neighboring routers declare the router dead. Syntax ip ospf dead-interval seconds To return to the default values, use the no ip ospf dead-interval command. Parameters seconds Defaults 40 seconds Command Modes INTERFACE Supported Modes Full—Switch Command History Enter the number of seconds for the interval. The range is from 1 to 65535. The default is 40 seconds.
ip ospf message-digest-key Enable OSPF MD5 authentication and send an OSPF message digest key on the interface. Syntax ip ospf message-digest-key keyid md5key To delete a key, use the no ip ospf message-digest-key keyid command. Parameters keyid Enter a number as the key ID. The range is from 1 to 255. key Enter a continuous character string as the password. Defaults No MD5 authentication is configured.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip ospf network Set the network type for the interface. Syntax ip ospf network {broadcast | point-to-point} To return to the default, use the no ip ospf network command. Parameters broadcast Enter the keyword broadcast to designate the interface as part of a broadcast network.
Usage Information Setting a priority of 0 makes the router ineligible for election as a designated router or backup designated router. Use this command for interfaces connected to multi-access networks, not point-to-point networks. ip ospf retransmit-interval Set the retransmission time between lost link state advertisements (LSAs) for adjacencies belonging to the interface. Syntax ip ospf retransmit-interval seconds To return to the default values, use the no ip ospf retransmit-interval command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. log-adjacency-changes To send a Syslog message about changes in the OSPF adjacency state, set the system. Syntax log-adjacency-changes To disable the Syslog messages, use the no log-adjacency-changes command. Defaults Disabled. Command Modes ROUTER OSPF Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
mib-binding Enable this OSPF process ID to manage the SNMP traps and process SNMP queries. Syntax mib-binding To mib-binding on this OSPF process, use the no mib-binding command. Defaults none. Command Modes ROUTER OSPF Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is either enabled or disabled.
Usage Information To enable OSPF on an interface, the network area command must include, in its range of addresses, the primary IP address of an interface. NOTE: An interface can be attached only to a single OSPF area. If you delete all the network area commands for Area 0, the show ip ospf command output does not list Area 0. passive-interface Suppress both receiving and sending routing updates on an interface.
• Save passive-interface interface into the running configuration. passive-interface default • All present and future OSPF interfaces are marked as passive. • Any adjacency is explicitly terminated from all OSPF interfaces. • All previous passive-interface interface commands are removed from the running configuration. • All previous no passive-interface interface commands are removed from the running configuration. no passive-interface interface • Remove the interface from the passive list.
Supported Modes Command History Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To redistribute the default route (0.0.0.0/0), configure the default-information originate command. Related Commands default-information originate — generates a default route into the OSPF routing domain. redistribute bgp Redistribute BGP routing information throughout the OSPF instance.
To disable redistribution, use the no redistribute isis [tag] [level-1 | level-1-2 | level-2] [metric metric-value | metric-type type-value] [route-map map-name] [tag tag-value] command. Parameters tag (OPTIONAL) Enter the name of the IS-IS routing process. level-1 (OPTIONAL) Enter the keywords level-1 to redistribute only IS-IS Level-1 routes. level-1-2 (OPTIONAL) Enter the keywords level-1-2 to redistribute both IS-IS Level-1 and Level-2 routes.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You can configure an arbitrary value in the IP address format for each router. However, each router ID must be unique. If you use this command on an OSPF router process, which is already active (that is, has neighbors), a prompt reminding you that changing the router-id brings down the existing OSPF adjacency.
Command Modes ROUTER OSPF Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-router_ospf)#show config ! router ospf 3 passive-interface FastEthernet 0/1 Dell(conf-router_ospf)# show ip ospf Display information on the OSPF process configured on the switch.
Line Beginning with Description “Number of...” Displays the number and type of areas configured for this process ID. Example Dell#show ip ospf 10 Routing Process ospf 10 with ID 1.1.1.
You can determine if an ASBR is in a directly connected area (or not) by the flags. For ASBRs in a directly connected area, E flags are set. In the following example, router 1.1.1.1 is in a directly connected area since the Flag is E/-/-/. For remote ASBRs, the E flag is clear (-/-/-/). Example Dell#show ip ospf 1asbr RouterID 3.3.3.3 1.1.1.1 Dell# Flags -/-/-/ E/-/-/ Cost Nexthop 2 10.0.0.2 0 0.0.0.0 Interface Area Gi 0/1 1 0 show ip ospf database Display all LSA information.
13.1.1.1 13.1.1.1 676 0x80000097 0x1035 192.68.135.2 192.68.135.2 1419 0x80000294 0x9cbd Link ID 10.2.3.2 10.2.4.2 Link ID 0.0.0.0 1.1.1.1 10.1.1.0 10.1.2.0 10.2.2.0 10.2.3.0 10.2.4.0 11.1.1.0 11.1.2.0 12.1.2.0 13.1.1.0 13.1.2.0 172.16.1.0 Dell> Related Commands 2 1 Network (Area 0.0.0.0) ADV Router Age Seq# Checksum 13.1.1.1 676 0x80000003 0x6592 192.68.135.2 908 0x80000055 0x683e Type-5 AS External ADV Router Age Seq# 192.68.135.2 908 0x80000052 192.68.135.2 908 0x8000002a 11.1.2.1 718 0x80000002 11.1.
Usage Information Example The following describes the show ip ospf database asbr-summary command shown in the following example. Field Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: • TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
show ip ospf database external Display information on the AS external (type 5) LSAs. Syntax show ip ospf process-id database external [link-state-id] [adv-router ipaddress] Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Example Field Description Checksum Displays the Fletcher checksum of the LSA’s complete contents. Length Displays the length in bytes of the LSA. Network Mask Displays the network mask implemented on the area. Metrics Type Displays the external type. TOS Displays the Type of Service (TOS) options. Option 0 is the only option. Metric Displays the LSA metric. Forward Address Identifies the address of the forwarding router. Data traffic is forwarded to this router.
show ip ospf database network Display the network (type 2) LSA information. Syntax show ip ospf process-id database network [link-state-id] [adv-router ipaddress] Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Example Field Description Length Displays the Fletcher checksum of an LSA’s complete contents. Network Mask Displays the length in bytes of the LSA. Attached Router Identifies the IP address of routers attached to the network. Dell#show ip ospf 1 data network OSPF Router with ID (20.20.20.5) (Process ID 1) Network (Area 0.0.0.0) LS age: 1372 Options: (No TOS-capability, DC, E) LS type: Network Link State ID: 202.10.10.2 Advertising Router: 20.20.20.
Command Modes Supported Modes Command History Related Commands • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip ospf database — displays OSPF database information. show ip ospf database opaque-area Display the opaque-area (type 10) LSA information.
Item Example Description • TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service. • DC or No DC is displayed depending on whether the originating router can support OSPF over demand circuits. • E or No E is displayed on whether the originating router can accept AS External LSAs. LS Type Displays the LSA’s type. Link State ID Displays the Link State ID. Advertising Router Identifies the advertising router’s ID.
adv-router ipaddress Command Modes Supported Modes Command History Related Commands • EXEC • EXEC Privilege • the network’s IP address for Type 3 LSAs or Type 5 LSAs • the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs • the default destination (0.0.0.0) for Type 5 LSAs (OPTIONAL) Enter the keywords adv-router and the ip-address to display only the LSA information about that router. Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
show ip ospf database router Display the router (type 1) LSA information. Syntax Parameters show ip ospf process-id database router [link-state-id] [adv-router ip-address] process-id Enter the OSPF Process ID to show a specific process. If you do not enter a process ID, the command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Example Item Description Length Displays the length in bytes of the LSA. Number of Links Displays the number of active links to the type of router (Area Border Router or AS Boundary Router) listed in the previous line. Link connected to: Identifies the type of network to which the router is connected. (Link ID) Identifies the link type and address. (Link Data) Identifies the router interface address. Number of TOS Metric Lists the number of TOS metrics.
(Link ID) Network/subnet number: 11.1.5.0 --More-Related Commands show ip ospf database — displays OSPF database information. show ip ospf database summary Display the network summary (type 3) LSA routing information. Syntax Parameters show ip ospf process-id database summary [link-state-id] [adv-router ipaddress] process-id Enter the OSPF process ID to show a specific process. If you do not enter a process ID, the command applies only to the first OSPF process.
Example Item Description Advertising Router Identifies the router ID of the LSA’s originating router. LS Seq Number Displays the link state sequence number. This number allows you to identify old or duplicate LSAs. Checksum Displays the Fletcher checksum of an LSA’s complete contents. Length Displays the length in bytes of the LSA. Network Mask Displays the network mask implemented on the area. TOS Displays the TOS options. Option 0 is the only option. Metric Displays the LSA metrics.
show ip ospf interface Display the OSPF interfaces configured. If OSPF is not enabled on the switch, no output is generated. Syntax Parameters Command Modes Supported Modes Command History Usage Information show ip ospf process-id interface [interface] process-id Enter the OSPF process ID to show a specific process. If you do not enter a process ID, the command applies only to the first OSPF process.
Example Item Description Neighbor Count... This line displays the number of neighbors and adjacent neighbors. Listed below this line are the details about each adjacent neighbor. Dell>show ip ospf int TenGigabitEthernet 1/1 is up, line protocol is up Internet Address 192.168.1.2/30, Area 0.0.0.1 Process ID 1, Router ID 192.168.253.2, Network Type BROADCAST, Cost: 1 Transmit Delay is 1 sec, State DR, Priority 1 Designated Router (ID) 192.168.253.2, Interface address 192.168.1.
Example Item Description Neighbor ID Displays the neighbor router ID. Pri Displays the priority assigned neighbor. State Displays the OSPF state of the neighbor. Dead Time Displays the expected time until the system declares the neighbor dead. Address Displays the IP address of the neighbor. Interface Displays the interface type slot/port information. Area Displays the neighbor’s area (process ID). Dell#show ip ospf 34 neighbor Neighbor ID 20.20.20.7 192.10.10.2 20.20.20.
Prefix Cost Nexthop 1.1.1.1 1 0.0.0.0 3.3.3.3 2 13.0.0.3 13.0.0.0 1 0.0.0.0 150.150.150.0 2 13.0.0.3 172.30.1.0 2 13.0.0.3 Dell# Interface Lo 0 Te 0/4 Te 0/4 Te 0/4 Te 0/4 Area 0 1 0 1 Type Intra-Area Intra-Area Intra-Area External Intra-Area show ip ospf statistics Display OSPF statistics. Syntax show ip ospf process-id statistics global | [interface name {neighbor routerid}] Parameters process-id Enter the OSPF Process ID to show a specific process.
Row Heading Description DDiscr Number of database description packets. LSReq Number of link state request packets. LSUpd Number of link state update packets. LSAck Number of link state acknowledgement packets. TxQ-Len The transmission queue length. RxQ-Len The reception queue length. Tx-Mark The highest number mark in the transmission queue. Rx-Mark The highest number mark in the reception queue. Hello-Q The queue, for transmission or reception, for the hello packets.
LSAck RX 2 TX 2 34 0 26 2 1 3 34 0 25 3 1 3 OSPF Global Queue Length TxQ-Len RxQ-Len Tx-Mark Rx-Mark Hello-Q 0 0 1 1 LSR-Q 0 0 1 1 Other-Q 0 0 2 2 Error packets (Receive statistics) Intf-Down 0 Non-Dr 0 Self-Org 0 Wrong-Len 0 Invld-Nbr 0 Nbr-State 0 Auth-Err 0 MD5-Err 0 Chksum 0 Version 0 AreaMis 0 Conf-Issues 0 No-Buffer 0 Seq-No 0 Socket 0 Q-OverFlow 0 Unknown-Pkt 0 RtidZero 0 Error packets (Transmit statistics) Socket Errors 0 Dell# Usage Information Example (Statistics) Related Commands
show ip ospf timers rate-limit Show the LSA currently in the queue waiting for timers to expire. Syntax Parameters Defaults Command Modes Supported Modes Command History Example show ip ospf process-id timers rate-limit process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. none • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Usage Information To isolate problems with inter-area and external routes, use this command. In OSPF inter-area and external routes are calculated by adding LSA cost to the cost of reaching the router. If an inter-area or external route is not of correct cost, the display can determine if the path to the originating router is correct or not. Example Dell#show ip ospf 1 topology Router ID 3.3.3.3 1.1.1.1 Dell# Flags Cost E/B/-/ 1 E/-/-/ 1 Nexthop 20.0.0.3 10.0.0.
To return to the default, use the no timers spf command. Parameters delay Enter a number as the delay. The range is from 0 to 2147483647. The default is 5 seconds. holdtime Enter a number as the hold time. The range is from 0 to 2147483647. The default is 10 seconds. msec Enter the keyword msec to specify the time interval value in milli seconds. NOTE: If you do not specify the msec option, the timer values are considered as seconds.
Defaults hold-interval Set the next interval to send the same LSA. This interval is the time between sending the same LSA after the start-interval has been attempted. The range is from 1 to 600,000 milliseconds. max-interval Set the maximum amount of time the system waits before sending the LSA. The range is from 1 to 600,000 milliseconds.
OSPFv3 Commands The fundamental mechanisms of OSPF (flooding, DR election, area support, SPF calculations, and so on) remain unchanged. However, OSPFv3 runs on a per-link basis instead of on a per-IP-subnet basis. Most changes were necessary to handle the increased address size of IPv6. The Dell Networking implementation of OSPFv3 is based on IETF RFC 2740. area authentication Configure an IPsec authentication policy for OSPFv3 packets in an OFSPFv3 area.
An SPI number must be unique to one IPsec security policy (authentication or encryption) on the router. If you have enabled IPsec encryption in an OSPFv3 area with the area encryption command, you cannot use the area authentication command in the area at the same time. The configuration of IPsec authentication on an interface-level takes precedence over an area-level configuration. If you remove an interface configuration, an area authentication policy that has been configured is applied to the interface.
Valid values: 0 (key is not encrypted) or 7 (key is encrypted). key Text string used in authentication. For MD5 authentication, the key must be 32 hex digits (non-encrypted) or 64 hex digits (encrypted). For SHA-1 authentication, the key must be 40 hex digits (non-encrypted) or 80 hex digits (encrypted). null Defaults Not configured.
no-redistribution (OPTIONAL) Specify that the redistribute command does not distribute routes into the NSSA. This command can be used when the router is an autonomous system boundary router (ASBR) or area border router (ABR). default-informationoriginate (OPTIONAL) Allows external routing information to be imported into the NSSA by using Type 7 default. no-summary (OPTIONAL) Specify that no summary LSAs should be sent into the NSSA. Defaults Not configured.
Parameters ref-bw (OPTIONAL) Specify a reference bandwidth in megabits per second. The range is from 1 to 4294967. The default is 100 megabits per second. Defaults 100 megabits per second. Command Modes ROUTER OSPFv3 Supported Modes Full-Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command.
debug ipv6 ospf Display debug information and interface types on OSPF IPv6 packets or events. Syntax debug ipv6 ospf {packet | events} [interface] Parameters interface Command Modes EXEC Privilege Supported Modes Full—Switch Command History (OPTIONAL) Enter one of the following keywords and slot/port or number information: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Usage Information Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following section describes the command fields. Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces. 05:21:01 Displays the time stamp. Sending Ver:3 Sending OSPF3 version..
• vrf vrf-name For a VLAN interface, enter the keyword vlan then a number from 1 to 4094. Enter the keyword vrf to view debugging information on OSPF corresponding to that VRF. Command Modes EXEC Privilege Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.
Lines Beginning With or Including Description Chksum: Displays the OSPFv3 checksum. debug ipv6 ospf packet Display debug information and interface types on OSPF IPv6 packets. Syntax Parameters debug ipv6 ospf packet [interface] [vrf vrf-name] [detail] interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Version Description 7.4.1.0 Introduced on E-Series. Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces. 05:21:01 Displays the time stamp. Sending Ver:3 Sending OSPF3 version..
Usage Information Example Version Description 9.11.0.0 Introduced the command. The following section describes the command fields. Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces. 05:21:01 Displays the time stamp. Sending Ver:3 Sending OSPF3 version..
metric-type typevalue route-map mapname Defaults Disabled. Command Modes ROUTER OSPFv3 Supported Modes Full—Switch Command History (OPTIONAL) Enter the keywords metric-type then an OSPFv3 link state type of 1 or 2 for default routes. The values are: • 1 = Type 1 external route • 2 = Type 2 external route (OPTIONAL) Enter the keywords route-map then the name of an established route map. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
When you enable the helper-reject role on an interface with the ipv6 ospf graceful-restart helper-reject command, you reconfigure OSPFv3 graceful restart to function in a “restarting-only” role. In a “restarting-only” role, OSPFv3 does not participate in the graceful restart of a neighbor. graceful-restart mode Specify the type of events that trigger an OSPFv3 graceful restart. Syntax graceful-restart mode {planned-only | unplanned-only} To disable graceful restart mode, enter no graceful-restart mode.
area area-id Defaults none Command Modes INTERFACE Supported Modes Full—Switch Command History Specify the OSPF area. The range is from 0 to 4294967295. Version Description 9.14(0.2) Increased the area ID value from 65535 to 4294967295. 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 ospf authentication Enable IPv6 OSPF on an interface.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Before you enable IPsec authentication on an OSPFv3 interface, first enable IPv6 unicast routing globally, configure an IPv6 address and enable OSPFv3 on the interface, and assign the interface to an area. An SPI value must be unique to one IPsec security policy (authentication or encryption) on the router.
Usage Information This command provides the flexibility to fine-tune the timer values based on individual interface needs when you configure the ipv6 ospf bfd command in CONFIGURATION mode. Any timer values specified with this command overrides timers set using the bfd all-neighbors command. Using the no form of this command does not disable BFD if you configured BFD in CONFIGURATION mode. To disable BFD on a specific interface while BFD is configured in CONFIGURATION mode, use the keyword disable.
Supported Modes Command History Usage Information Full—Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. By default, the dead interval is four times longer than the default ipv6 ospf hello-interval command. ipv6 ospf encryption Configure an IPsec encryption policy for OSPFv3 packets on an IPv6 interface.
key Text string used in authentication. For MD5 authentication, the key must be 32 hex digits (non-encrypted) or 64 hex digits (encrypted). For SHA-1 authentication, the key must be 40 hex digits (non-encrypted) or 80 hex digits (encrypted). Defaults Not configured. Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
ipv6 ospf hello-interval Specify the time interval between the hello packets sent on the interface. Syntax Parameters ipv6 ospf hello—interval seconds seconds Defaults 10 seconds (Ethernet). Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Enter the time interval in seconds as the time between hello packets. The range is from 1 to 65525 seconds. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
ipv6 router ospf Enable OSPF for IPv6 router configuration. Syntax ipv6 router ospf process-id To exit OSPF for IPv6, use the no ipv6 router ospf process-id command. Parameters process-id Defaults none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Enter the process identification number. The range is from 1 to 65535. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
To enable sending routing updates on an interface, use the no passive-interface interface command. To return all OSPF interfaces (current and future) to active, use the no passive-interface default command. Parameters Command Modes Default Enter the keyword default to make all OSPF interfaces (current and future) passive.
connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static to redistribute manually configured routes. metric metric-value Enter the keyword metric then the metric value. The range is from 0 to 16777214. The default is 20. metric-type typevalue (OPTIONAL) Enter the keywords metric-type then the OSPFv3 link state type of 1 or 2 for default routes.
router-id Designate a fixed router ID. Syntax router-id ip-address To return to the previous router ID, use the no router-id ip-address command. Parameters ip-address Enter the router ID in the dotted decimal format. Defaults The router ID is selected automatically from the set of IPv4 addresses configured on a router. Command Modes ROUTER OSPFv3 for OSPFv3 Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
EXEC Privilege Supported Modes Command History Usage Information Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The show crypto ipsec policy command output displays the AH and ESP parameters configured in IPsec security policies, including the SPI number, keys, and algorithms used. When configured in a helper-reject role, an OSPFv3 router ignores the Grace LSAs that it receives from a restarting OSPFv3 neighbor.
show ipv6 ospf database Display information in the OSPFv3 database, including link-state advertisements (LSAs). Syntax Parameters show ipv6 ospf database [database-summary | grace-lsa] database-summary (OPTIONAL) Enter the keywords database-summary to view a summary of database LSA information. grace-lsa (OPTIONAL): Enter the keywords grace-lsa to display the Type-11 Grace LSAs sent and received on an OSPFv3 router.
Supported Modes Command History Usage Information Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. If you enable BFD at the global level, show ipv6 ospf interface shows the BFD provisioning. If you enable BFD at the interface level, show ipv6 ospf interface shows the BFD interval timers.
snmp context Configure SNMPv3 context name to map multiple OSPFv3 VRF instances. Syntax snmp context {context-name} To clear snmp context, use the no snmp context {context-name} command. Parameters context-name Enter the SNMP context name. The maximum length is 32 alphanumeric characters. Defaults None. Command Modes IPv6 ROUTER OSPF Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide.
Defaults • delay = 5 seconds • holdtime = 10 seconds Command Modes ROUTER OSPFv3 for OSPFv3 Supported Modes Full–Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Usage Information Version Description 9.11(0.0) Introduced the msec keyword. 9.9(0.0) Introduced on the FN IOM. 9.8(0.
40 Policy-based Routing (PBR) Policy-based routing (PBR) allows you to apply routing policies to specific interfaces. To enable PBR, create a redirect list and apply it to the interface. After the redirect list is applied to the interface, all traffic passing through the interface is subject to the rules defined in the redirect list. PBR is supported by the Dell Networking operating software (OS).
ip redirect-group Apply a redirect list (policy-based routing) on an interface. You can apply multiple redirect lists to an interface by entering this command multiple times. Syntax ip redirect-group redirect-list-nametest [l2–switch] To remove a redirect list from an interface, use the no ip redirect-group name command. Parameters redirect-list-name Enter the name of a configured redirect list. l2–switch Enter the keyword l2–switch to enable PBR on Layer2 (switched) traffic.
• show ip redirect-list – displays the redirect-list configuration. ip redirect-list Configure a redirect list and enter REDIRECT-LIST mode. Syntax ip redirect-list redirect-list-name To remove a redirect list, use the no ip redirect-list command. Parameters redirect-list-name Defaults none Command Modes CONFIGURATION Supported Modes Full—Switch Command History Enter the name of a redirect list. Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all traffic is subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent.
• Parameters You can also use the no redirect {ip-address | slot/port}| tunnel tunnel-id}[track ]{ip-protocol-number [bit] | protocol-type} {source mask | any | host ip-address} {destination mask | any | host ip-address} [operator] command. ip-address Enter the IP address of the forwarding router. slot/port Enter the keyword slot / port followed by the slot/port information. ip-protocol-number Enter a number from 0 to 255 for the protocol identified in the IP protocol header.
Command Modes REDIRECT-LIST Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Added the keyword track-id on the MXL. 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 8.4.2.1 Introduced on the C-Series. 8.4.2.0 Introduced on the E-Series TeraScale. seq Configure a filter with an assigned sequence number for the redirect list.
host ip-address Enter the keyword host then the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent.
show cam pbr Displaysthe PBR CAM content. Syntax show cam pbr {[interface interface] | stack—unit slot-number port-set number]} [summary] Parameters interface interface Enter the keyword interface then the name of the interface. stack–unit number Enter the keyword stack-unit then the slot number. The range is from 0 to 11 . port-set number Enter the keywords port-set then the port-pipe number. The range is from 0 to 0. summary Enter the keyword summary to view only the total number of CAM entries.
Parameters Command Modes Supported Modes Command History Example redirect-list-name • EXEC • EXEC Privilege Enter the name of a configured Redirect list. Full—Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for removing the Sonet interface on the MXL. 7.4.1.0 Introduced. Dell#show ip redirect-list explicit_tunnel IP redirect-list explicit_tunnel: Defined as: seq 5 redirect tunnel 1 track 1 tcp 155.55.2.0/24 222.22.2.
41 PIM-Sparse Mode (PIM-SM) The protocol-independent multicast (PIM) commands are supported by the Dell Networking Operating System (OS).
• ipv6 pim neighbor-filter • ipv6 pim register-filter • ipv6 pim rp-address • ipv6 pim rp-candidate • ipv6 pim sparse-mode • ipv6 pim spt-threshold • show ipv6 pim bsr-router • show ipv6 pim interface • show ipv6 pim neighbor • show ipv6 pim rp • show ipv6 pim tib IPv4 PIM-Sparse Mode Commands The following describes the IPv4 PIM-sparse mode (PIM-SM) commands.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you use this command on a local VLT node, all multicast routes from the local PIM TIB, the entire multicast route table, and all the entries in the data plane are deleted. The local VLT node sends a request to the peer VLT node to download multicast routes learned by the peer. Both local and synced routes are removed from the local VLT node multicast route table.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip pim bsr-border Define the border of PIM domain by filtering inbound and outbound PIM-BSR messages per interface. Syntax ip pim bsr-border To return to the default value, use the no ip pim bsr-border command. Defaults Disabled. Command Modes INTERFACE Supported Modes Full—Swtich Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Supported Modes Command History Full—Swtich Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip pim dr-priority Change the designated router (DR) priority for the interface. Syntax ip pim dr-priority priority-value To remove the DR priority value assigned, use the no ip pim dr-priority command.
Usage Information Command History When you configure a join filter, it is applicable for both ingress and egress flows. There is no option to specify in or out parameters while configuring a join filter. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Example Dell(conf)# ip access-list extended iptv-channels Dell(config-ext-nacl)# permit ip 10.1.2.3/24 225.1.1.0/24 Dell(config-ext-nacl)# permit ip any 232.1.1.
Parameters access-list Defaults none Command Modes CONFIGURATION Supported Modes Full—Switch Command History Usage Information Enter the name of a standard access list. Maximum 16 characters. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Do not enter this command before creating the access-list. ip pim query-interval Change the frequency of PIM Router-Query messages.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The access name is an extended IP access list that denies PIM register packets to RP at the source DR based on the multicast and group addresses. Do not enter this command before creating the access-list. ip pim rp-address Configure a static PIM rendezvous point (RP) address for a group or access-list.
Parameters interface For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. (OPTIONAL) Enter the priority used in Bootstrap election process. The range is zero (0) to 255. The default is 192.
ip pim sparse-mode sg-expiry-timer Enable expiry timers globally for all sources, or for a specific set of (S,G) pairs an access list defines. Syntax ip pim sparse-mode sg-expiry-timer seconds [access-list name] To disable configured timers and return to default mode, use the no ip pim sparse-mode sg-expirytimer command. Parameters seconds Enter the number of seconds the S, G entries are retained. The range is from 211 to 86400.
no ip pim snooping dr-flood Disable the flooding of multicast packets to the PIM designated router. Syntax no ip pim snooping dr-flood To re-enable the flooding of multicast packets to the PIM designated router, use the ip pim snooping drflood command. Defaults Enabled. Command Modes CONFIGURATION Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example E600-7-rpm0#show ip pim bsr-router PIMv2 Bootstrap information This system is the Bootstrap Router (v2) BSR address: 7.7.7.7 (?) Uptime: 16:59:06, BSR Priority: 0, Hash mask length: 30 Next bootstrap message in 00:00:08 This system is a candidate BSR Candidate BSR address: 7.7.7.7, priority: 0, hash mask length: 30 show ip pim interface View information on the interfaces with IP PIM enabled.
172.21.110.1 172.21.203.1 te 1/6 te 1/7 v2/S 0 v2/S 0 30 1 30 1 172.21.110.1 172.21.203.1 show ip pim neighbor View PIM neighbors. Syntax show ip pim neighbor Command Modes Supported Modes Command History Usage Information • EXEC • EXEC Privilege Full—Swtich Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip pim neighbor command shown in the following example.
Parameters Command Modes Supported Modes Command History mapping (OPTIONAL) Enter the keyword mapping to display the multicast groups-to-RP mapping and information on how RP is learnt. group-address (OPTIONAL) Enter the multicast group address mask in dotted decimal format to view RP for a specific group. • EXEC • EXEC Privilege Full—Swtich Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
• Supported Modes Command History Usage Information Example (#2) EXEC Privilege Full—Swtich Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip pim snooping interface commands shown in the following example. Field Description Interface Displays the VLAN interfaces with PIM-SM snooping enabled.
Usage Information The following describes the show ip pim snooping neighbor commands shown in the following example. Field Description Neighbor address Displays the IP address of the neighbor learned through PIM-SM snooping. Interface Displays the VLAN ID number and slot/port on which the PIM-SM-enabled neighbor was discovered.
Usage Information Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip pim snooping tib commands shown in the following example. Field Description (S, G) Displays the entry in the PIM multicast snooping database. uptime Displays the amount of time the entry has been in the PIM multicast route table. expires Displays the amount of time until the entry expires and is removed from the database.
(165.87.1.7, 225.1.2.1), uptime 00:00:08, expires 00:02:52, flags: j Incoming interface: Vlan 2, RPF neighbor 0.0.0.0 Outgoing interface list: TenGigabitEthernet 4/7 Upstream Port -/TenGigabitEthernet 4/6 DR Port -/TenGigabitEthernet 4/8 RPF 165.87.32.10 00:00:08/00:02:52 show ip pim summary View information about PIM-SM operation. Syntax Command Modes Supported Modes Command History Example show ip pim summary • EXEC • EXEC Privilege Full—Swtich Version Description 9.9(0.
0/0 register messages sent/received Memory usage: TIB Nexthop cache Interface table Neighbor table RP Mapping : : : : : 3768 bytes 0 bytes 992 bytes 528 bytes 0 bytes show ip pim tib View the PIM tree information base (TIB). Syntax show ip pim tib [group-address [source-address]] Parameters Command Modes Supported Modes Command History Usage Information 1008 group-address (OPTIONAL) Enter the group address in dotted decimal format (A.B.C.D).
Example Field Description Incoming interface Displays the reverse path forwarding (RPF) interface towards the RP/ source. RPF neighbor Displays the next hop from this interface towards the RP/source.
Example Dell#show running-config pim ! ip pim snooping enable Related Commands ip pim sparse-mode — enables PIM-SM snooping. IPv6 PIM-Sparse Mode Commands The following describes the IPv6 PIM-sparse mode (PIM-SM) commands. ipv6 pim bsr-border Define the border of PIM domain by filtering inbound and outbound PIM-BSR messages per interface. Syntax ipv6 pim bsr-border Defaults Disabled. Command Modes INTERFACE Supported Modes Full—Swtich Command History Usage Information Version Description 9.
Defaults Refer to Parameters. Command Modes CONFIGURATION Supported Modes Full—Swtich Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 pim dr-priority Change the designated router (DR) priority for the IPv6 interface. Syntax ipv6 pim dr-priority priority-value To remove the DR priority value assigned, use the no ipv6 pim dr-priority command.
Supported Modes Command History Example Full—Swtich Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Do not enter this command before creating the access-list. ipv6 pim register-filter Configure the source DR so that it does not send register packets to the RP for the specified sources and groups.
override Enter the keyword override to override the BSR updates with static RP. The override takes effect immediately during enable/disable. NOTE: This option is applicable to multicast group range. Defaults none Command Modes CONFIGURATION Supported Modes Full—Swtich Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The RP addresses are stored in the order in which they are entered.
ipv6 pim sparse-mode Enable IPv6 PIM sparse mode on the interface. Syntax ipv6 pim sparse-mode To disable IPv6 PIM sparse mode, use the no ipv6 pim sparse-mode command. Defaults Disabled. Command Modes INTERFACE Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Enable the interface (use the no shutdown command) and not have the switchport command configured.
show ipv6 pim bsr-router View information on the Bootstrap router (v2). Syntax show ipv6 pim bsr-router Command Modes Supported Modes Command History Example • EXEC • EXEC Privilege Full—Swtich Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
DR : this router Dell# show ipv6 pim neighbor Displays IPv6 PIM neighbor information. Syntax Parameters Supported Modes Command Modes Command History Example show ipv6 pim neighbor [detail] detail (OPTIONAL) Enter the keyword detail to displayed PIM neighbor detailed information. Full—Swtich • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example Dellshow ipv6 pim rp Group RP ff0e::225:1:2:1 14::1 ff0e::225:1:2:2 14::1 ff0e::226:1:2:1 14::1 ff0e::226:1:2:2 14::1 Dell Example (Mapping) Dellshow ipv6 pim rp mapping PIM Group-to-RP Mappings Group(s): ff00::/8 RP: 14::1, v2 Info source: 14::1, via bootstrap, priority 192 Uptime: 00:03:37, expires: 00:01:53 Group(s): ff00::/8, Static RP: 14::2, v2 Dell show ipv6 pim tib View the IPv6 PIM multicast-routing database (tree information base — tib).
TenGigabitEthernet 1/1 (25::1, ff0e::225:1:2:2), uptime 00:09:54, expires 00:00:00,flags: CJ RPF neighbor: TenGigabitEthernet 0/3, fe80::201:e8ff:fe00:6265 Outgoing interface list: TenGigabitEthernet 1/1 (25::2, ff0e::225:1:2:2), uptime 00:09:54, expires 00:00:00,flags: CJ RPF neighbor: TenGigabitEthernet 0/3, fe80::201:e8ff:fe00:6265 Outgoing interface list: TenGigabitEthernet 1/1 (25::1, ff0e::226:1:2:1), uptime 00:09:54, expires 00:00:00,flags: CJ RPF neighbor: TenGigabitEthernet 0/3, fe80::201:e8ff:fe00
42 Port Monitoring The port monitoring feature allows you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port. Important Points to Remember • Port monitoring is supported on physical ports and logical interfaces, such as Port Channels and virtual local area networks (VLANs). • The monitoring (destination, “MG”) and monitored (source, “MD”) ports must be on the same switch.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for the RPM / ERPM. 8.3.16.1 Introduced on the M I/O Aggregator. monitor session — enables a monitoring session. erpm Configure the source and destination IP address for ERPM traffic. Syntax erpm source-ip ip-address dest-ip ip-address [gre-protocol value] To remove the configuration, use the no erpm source-ip IP-address dest-ip IP-address [greprotocol value] command.
To disable flow-based monitoring, use the no flow-based enable command. Defaults Disabled, that is flow-based monitoring is not applied. Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for the RPM/ERPM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. 8.1.1.0 Introduced on the E-Series ExaScale. 7.4.1.
Version Description 9.8(0.0) Added the drop parameter. 9.4(0.0) Added support for rpm / erpm. 8.3.16.1 Introduced on the M I/O Aggregator. Usage Information The monitor command is saved in the running configuration at Monitor Session mode level and can be restored after a chassis reload. Example Dell(conf)# monitor session 60 Dell(conf-mon-sess-60) Related Command show monitor session — displays the monitor session.
Defaults none Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Supported Modes Full—Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the M I/O Aggregator. Dell(conf-mon-sess-1)#show config ! monitor session 1 source TenGigabitEthernet 0/1 destination Port-channel 1 direction rx show monitor session Display the monitor information of a particular session or all sessions.
To display the running configuration for all monitor sessions, use the show running-config monitor session command. Parameters Defaults Command Modes Supported Modes Command History session-ID (OPTIONAL) Enter a session identification number. The range from 0 to 65535. none • EXEC • EXEC Privilege Full—Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the M I/O Aggregator.
NOTE: This option is applicable only with drop monitor session. destination interface direction {rx | tx | both} Enter the keyword destination to specify the destination interface. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a port channel interface, enter the keyword LAG then port channel and the portchannel id .
43 Private VLAN (PVLAN) Private VLANs extend the Dell Networking OS security suite by providing Layer 2 isolation between ports within the same private VLAN. A private VLAN partitions a traditional VLAN into subdomains identified by a primary and secondary VLAN pair. The Dell Networking OS private VLAN implementation is based on RFC 3069. For more information, refer to the following commands. The command output is augmented in the Dell Networking OS version 7.8.1.
Topics: • ip local-proxy-arp • private-vlan mapping secondary-vlan • private-vlan mode • show interfaces private-vlan • show vlan private-vlan • show vlan private-vlan mapping • switchport mode private-vlan ip local-proxy-arp Enable/disable Layer 3 communication between secondary VLANs in a private VLAN. Syntax [no] ip local-proxy-arp To disable Layer 3 communication between secondary VLANs in a private VLAN, use the no ip local-proxyarp command in INTERFACE VLAN mode for the primary VLAN.
private-vlan mapping secondary-vlan Map secondary VLANs to the selected primary VLAN. Syntax [no] private-vlan mapping secondary-vlan vlan-list To remove specific secondary VLANs from the configuration, use the no private-vlan mapping secondary-vlan vlan-list command syntax. Parameters vlan-list Defaults none Command Modes INTERFACE VLAN Supported Modes Full—Switch Command History Usage Information Related Commands Enter the list of secondary VLANs to associate with the selected primary VLAN.
isolated Enter the keyword isolated to configure the VLAN as an isolated VLAN. primary Enter the keyword primary to configure the VLAN as a primary VLAN. Defaults none Command Modes INTERFACE VLAN Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The VLAN: • can be in only one mode, either community, isolated, or primary.
Supported Modes Command History Usage Information Full—Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command has two types of display — a list of all PVLAN interfaces or for a specific interface. Examples of both types of output are shown below. The following describes the show interfaces private-vlan command shown in the following examples.
Defaults isolated (OPTIONAL) Enter the keyword isolated to display VLANs configured as isolated VLANs, along with their interfaces. primary (OPTIONAL) Enter the keyword primary to display VLANs configured as primary VLANs, along with their interfaces. primary_vlan (OPTIONAL) Enter a private VLAN ID or secondary VLAN ID to display interface details about the designated PVLAN.
Example (Isolated) Dell# show vlan private-vlan isolated Primary Secondary Type Active Ports ------- --------- --------- ------ ---------10 primary Yes Gi 2/1,3 100 isolated Yes Gi 2/2,4-6 200 isolated Yes Gi 3/2,4-6 Example (Community) Dell# show vlan private-vlan community Primary Secondary Type Active Ports ------- --------- --------- ------ ----------10 primary Yes Gi 2/1,3 101 community Yes Gi 2/7-10 20 primary Yes Po 10, 12-13 Gi 3/1 201 community No 202 community Yes Gi 3/11-12 Example (Specific)
• Supported Modes Command History EXEC Privilege Full—Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced the on MXL 10/40GbE Switch IO Module. Usage Information The output of this command, shown below, displays the community and isolated VLAN IDs that are associated with each primary VLAN.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The assignment of the various PVLAN port types to port and port channel (LAG) interfaces is shown in the following example.
44 Per-VLAN Spanning Tree Plus (PVST+) The Dell Networking Operating System (OS) implementation of per-VLAN spanning tree plus (PVST+) is based on the IEEE 802.1w standard spanning tree protocol, but it creates a separate spanning tree for each VLAN configured. NOTE: For easier command line entry, the plus (+) sign is not used at the command line.
disable Disable PVST+ globally. Syntax disable To enable PVST+, use the no disable command. Defaults Disabled. Command Modes CONFIGURATION (conf-pvst) Supported Modes Full—Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree pvst — enter PVST+ mode. edge-port bpdufilter default Enable BPDU Filter globally to filter transmission of BPDU on port fast enabled interfaces.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-pvst)#do show spanning-tree pvst vlan 2 brief VLAN 2 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 001e.c9f1.00f3 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32768, Address 001e.c9f1.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#conf Dell(conf)#protocol spanning-tree pvst Dell(conf-pvst)#no disable Dell(conf-pvst)#vlan 2 bridge-priority 4096 Dell(conf-pvst)#vlan 3 bridge-priority 16384 Dell(conf-pvst)# Dell(conf-pvst)#show config ! protocol spanning-tree pvst no disable vlan 2 bridge-priority 4096 vlan 3 bridge-priority 16384 Dell# Usage Information After you enable PVST+, the device runs an STP instance for each VLAN it supports.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show spanning-tree pvst command shown in the following examples. Field Description Interface Name PVST interface. Instance PVST instance. Sts Port state: root-inconsistent (INCON Root), forwarding (FWD), listening (LIS), blocking (BLK), or shut down (EDS Shut). Guard Type Type of STP guard configured (Root, Loop, or BPDU guard).
Port 450 (TenGigabitEthernet 0/1) is disabled Discarding Port path cost 2000, Port priority 128, Port Identifier 128.450 Designated root has priority 32768, address 001e.c9f1.00:f3 Designated bridge has priority 32768, address 001e.c9f1.00:f3 Designated port id is 128.
spanning-tree pvst Configure a PVST+ interface with one of these settings: edge port with optional bridge port data unit (BPDU) guard, port disablement if an error condition occurs, port priority or cost for a VLAN range, loop guard, or root guard.
Disable state if a BPDU appears, and a message is logged so that the administrator can take corrective action. When BPDU guard and BPDU filter is enabled on the port, then BPDU filter takes the highest precedence. NOTE: A port configured as an edge port, on a PVST switch, will immediately transition to the forwarding state. Only ports connected to end-hosts should be configured as an edge port. Consider an edge port similar to a port with a spanning-tree portfast enabled.
tc-flush-standard Enable the MAC address flushing after receiving every topology change notification. Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, the system implements an optimized flush mechanism for PVST+.
show spanning-tree pvst — displays the PVST+ configuration. vlan forward-delay Set the amount of time the interface waits in the Listening state and the Learning state before transitioning to the Forwarding state. Syntax vlan vlan-id forward-delay seconds To return to the default setting, use the no vlan forward-delay command. Parameters vlan vlan-range Enter the keyword vlan then the VLAN numbers. The range is from 1 to 4094.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. vlan bridge-priority — sets the bridge-priority value. vlan forward-delay — changes the time interval before the system transitions to the forwarding state. vlan max-age — changes the time interval before PVST+ refreshes. show spanning-tree pvst — displays the PVST+ configuration.
45 Quality of Service (QoS) The Dell Networking Operating System (OS) commands for quality of service (QoS) include traffic conditioning and congestion control.
• service-policy output • service-queue • set • show qos class-map • show qos policy-map • show qos policy-map-input • show qos policy-map-output • show qos qos-policy-input • show qos qos-policy-output • show qos statistics • show qos wred-profile • test cam-usage • trust • wred • wred ecn • wred-profile • dscp • qos dscp-color-map • qos dscp-color-policy • show qos dscp-color-policy • show qos dscp-color-map Global Configuration Commands There are only two global
service-class dot1p-mapping This command maps an 802.1p priority to an internal traffic class. Syntax Parameters service-class dot1p-mapping user-priority user-priority Command Modes CONFIGURATION Supported Modes Full–Switch Command History The user-priority value ranges from 0 to 7. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The dot1p-priority command changes the priority of incoming traffic on the interface. The system places traffic marked with a priority in the correct queue and processes that traffic according to its queue.
For each physical interface, you can configure three rate police commands specifying different VLANs. Related Commands rate-police — specifies traffic policing on the selected interface. rate shape Shape the traffic output on the selected interface. Syntax Parameters rate shape [kbps] rate [burst-KB] kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Make the following value a multiple of 64. The range is from 0 to 40000000.
Command Modes Supported Modes Command History Usage Information dot1p Queue ID 5 3 6 3 7 3 • INTERFACE • CONFIGURATION Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To honor all incoming 802.1p markings on incoming switched traffic on the interface, enter this command. By default, this facility is not enabled (that is, the 802.
Usage Information Guarantee a minimum bandwidth to different queues globally using the service-class bandwidthpercentage command from CONFIGURATION mode. The command is applied in the same way as the bandwidth-percentage command in an output QoS policy. The bandwidth-percentage command in QOS-POLICY-OUT mode supersedes the service-class bandwidth-percentage command.
bandwidth-percentage Assign a percentage of weight to the class/queue. Syntax bandwidth-percentage percentage To remove the bandwidth percentage, use the no bandwidth-percentage command. Parameters percentage Enter the percentage assignment of weight to the class/queue. The range is from 1 to 100% (granularity 1%). Defaults none Command Modes CONFIGURATION (conf-qos-policy-out) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Packets arriving at the input interface are checked against the match criteria configured using this command to determine if the packet belongs to that class. This command accesses CLASS-MAP mode, where the configuration commands include thematch ip and match mac options.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you issue this command, statistical information stored regarding QoS clears and resets to 0. You can access these statistics using the show qos statistics command in EXEC mode. When the traffic pattern matches the QoS classification criteria flows, the corresponding counters increment.
Parameters time minutes Enter the keywords time then the amount of time in minutes. The range is from 10 to 1440 minutes. The default is 60 minutes volume rekeylimit Enter the keywords volume then the amount of volume in megabytes. The range is from 1 to 4096 to megabytes. The default is 1024 megabytes Defaults The default time is 60 minutes. The default volume is 1024 megabytes. Command Modes CONFIGURATION mode Command History This guide is platform-specific.
Command History Version Description 9.9(0.0) Introduced on the FN IOM.. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. For class-map match-any, a maximum of five ACL match criteria are allowed. For class-map match-all, only one ACL match criteria is allowed. Related Commands class-map — identifies the class map.
Parameters vlan vlan-id Enter the keyword vrf and then the ID of the VRF. The range is from 1 to 63. Defaults none Command Modes CONF-CLASS-MAP Supported Modes Full–Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Usage Information Version Description 9.9(0.0) Introduced on the FN IOM.
match ip dscp Use a differentiated services code point (DSCP) value as a match criteria. Syntax match {ip | ipv6 | ip-any} dscp dscp-list [set-ip-dscp value] To remove a DSCP value as a match criteria, use the no match {ip | ipv6 | ip-any} dscp dscplist [[multicast] set-ip-dscp value] command. Parameters ip Enter the keyword ip to support IPv4 traffic. ipv6 Enter the keyword ipv6 to support IPv6 traffic ip-any Enter the keyword ip-any to support IPv4 and IPv6 traffic.
To remove IP precedence as a match criteria, use the no match {ip | ipv6 | ip-any} precedence ip-precedence-list [[multicast] set-ip-dscp value] command. Parameters ip Enter the keyword ip to support IPv4 traffic. ipv6 Enter the keyword ipv6 to support IPv6 traffic. ip-any Enter the keyword ip-any to support IPv4 and IPv6 traffic. ip-precedence-list Enter the IP precedence value(s) as the match criteria.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. Related Commands class-map — identifies the class map. match mac dot1p Configure a match criterion for a class map based on a dot1p value.
Usage Information To access this command, enter the class-map command. You can match against only one VLAN ID. Related Commands class-map — identifies the class map. policy-aggregate Allow an aggregate method of configuring per-port QoS via policy maps. An aggregate QoS policy is part of the policy map (input/output) applied on an interface. Syntax policy-aggregate qos-policy-name To remove a policy aggregate configuration, use the no policy-aggregate qos-policy-name command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The input policy map is used to classify incoming traffic to different flows using class-map, QoS policy, or incoming packets DSCP. This command enables Policy-Map-Input Configuration mode (conf-policy-map-in). Related Commands service-queue — assigns a class map and QoS policy to different queues.
qos-policy-input Create a QoS input policy on the router. Syntax qos-policy-input qos-policy-name [layer2] To remove an existing input QoS policy from the router, use the no qos-policy-input qos-policy-name [layer2] command. Parameters qos-policy-name Enter the name for the policy map in character format (32 characters maximum). layer2 (OPTIONAL) Enter the keyword layer2 to specify a Layer 2 Class Map. The default is Layer 3.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To specify the name of the output QoS policy, use this command. After the output policy is specified, rate shape, scheduler strict, bandwidth-percentage, and WRED can be defined. This command enables Qos-Policy-Output Configuration mode — (conf-qos-policy-out).
rate shape Shape the traffic output on the selected interface. Syntax Parameters rate shape [kbps] rate [burst-KB] kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Make the following value a multiple of 64. The range is from 0 to 40000000. The default granularity is Megabits per second (Mbps). rate Enter the outgoing rate in multiples of 10 Mbps. The range is from 10 to 10000. burst-KB (OPTIONAL) Enter the burst size in KB. The range is from 0 to 10000.
Usage Information Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can attach a single policy-map to one or more interfaces to specify the service-policy for those interfaces. A policy map attached to an interface can be modified. NOTE: The service-policy commands are not allowed on a port channel.
Parameters queue-id Enter the value used to identify a queue. The range is from 0 to 3 (four queues per interface; four queues are reserved for control traffic). class-map classmap-name (OPTIONAL) Enter the keyword class-map then the class map name assigned to the queue in character format (32 character maximum). NOTE: This option is available under policy-map-input only.
Usage Information After the IP DSCP bit is set, other QoS services can then operate on the bit settings. show qos class-map View the current class map information. Syntax show qos class-map [class-name] Parameters Defaults class-name (Optional) Enter the name of a configured class map. none Command Modes Supported Modes Command History Example • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
• Supported Modes Command History Example (IPv4) EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos policy-map-input Policy-map-input PolicyMapInput Aggregate Qos-policy-name AggPolicyIn Queue# Class-map-name Qos-policy-name 0 ClassMap1 qosPolicyInput Dell# show qos policy-map-output View the output QoS policy map details. Syntax show qos policy-map-output [policy-map-name] [qos-policy-output qos-policyname] Parameters Defaults policy-map-name Enter the policy map name.
Command Modes Supported Modes Command History Example • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos qos-policy-input Qos-policy-input QosInput Rate-police 100 50 peak 100 50 Dscp 32 Dell# show qos qos-policy-output View the output QoS policy details.
show qos statistics View QoS statistics. Syntax show qos statistics {egress—queue [interface]} | {wred-profile [interface]} | [interface Parameters egress-queue interface Enter the keyword egress-queue to display the egress-queue statistics and optionally one of the fo or number information.
show qos wred-profile View the WRED profile details. Syntax Parameters Defaults Command Modes Supported Modes Command History Example show qos wred-profile wred-profile-name wred-profile-name Enter the WRED profile name to view the profile details. none • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information This feature allows you to determine if the CAM has enough space available before applying the configuration on an interface. An input policy map with both Trust and Class-map configuration, the Class-map rules are ignored and only the Trust rule is programmed in the CAM. In such an instance, the Estimated CAM output column contains the size of the CAM space required for the Trust rule and not the Class-map rule.
trust Specify dynamic classification (DSCP) or dot1p to trust. Syntax Parameters trust {diffserv [fallback]| dot1p [fallback]} diffserv Enter the keyword diffserv to specify trust of DSCP markings. dot1p Enter the keyword dot1p to specify trust dot1p configuration. fallback Enter the keyword fallback to classify packets according to their DSCP value as a secondary option in case no match occurs against the configured class maps.
wred Designate the WRED profile to yellow or green traffic. Syntax wred [[{yellow | green} profile-name] ecn] To remove the WRED drop precedence, use the no wred {yellow | green} [profile-name] command. Parameters yellow | green Enter the keyword yellow for yellow traffic. A DSCP value of xxx110 and xxx101 maps to yellow. Enter the keyword green for green traffic. A DSCP value of xxx0xx maps to green. profile-name Enter your WRED profile name in character format (16 character maximum).
Supported Modes Full–Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.0.2.0 Introduced on the S6000. 8.3.19.0 Introduced on the S4820t. 8.3.11.1 Introduced on the Z9000. 8.3.7.0 Introduced on the S4810.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Use the default pre-defined profiles or configure your own profile. You cannot delete the pre-defined profiles or their default values. This command enables WRED configuration mode — (conf-wred).
Usage Information Version Description 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL. If the specified color-map does not exist, the Diffserv Manager (DSM) creates a color map and sets all the DSCP values to green (low drop precedence). The default setting for each DSCP value (0-63) is green (low drop precedence). This command allows setting the number of specific DSCP values to yellow or red.
Version Description 9.5(0.1) Introduced on the Z9500. 9.7(0.0) Introduced on the S6000-ON. 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL. Usage Information A color map outlines the codepoint mappings to the appropriate color mapping (green, yellow, red) for the traffic. The system uses this information use to handle the traffic on the interface based on the traffic priority and places it into the appropriate shaping queue.
Version Description Version 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL. Usage Information If the specified color-map does not exist, the Diffserv Manager (DSM) creates a color map and sets all the DSCP values to green (low drop precedence). Example The following example assigns the color map, bat-enclave-map, to interface. Related Commands • dscp— sets the number of specific DSCP values for color map profile to yellow or red.
show qos dscp-color-map Display the DSCP color map for one or all interfaces. Syntax show qos dscp-color-map map-name Parameters map-name Enter the name of the color map. Defaults None Command Modes EXEC Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Example Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.
46 Routing Information Protocol (RIP) Routing information protocol (RIP) is a distance vector routing protocol. The Dell Networking Operating System (OS) supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2). The implementation of RIP is based on IETF RFCs 2453 and RFC 1058. For more information about configuring RIP, refer to the Dell Networking OS Configuration Guide.
Defaults Enabled. Command Modes ROUTER RIP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip rip Update all the RIP routes in the routing table. Syntax clear ip rip Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. default-information originate Generate a default route for the RIP traffic. Syntax default-information originate [always] [metric metric-value] [route-map mapname] To return to the default values, use the no default-information originate command.
Command Modes ROUTER RIP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command ensures that route information being redistributed is converted to the same metric value. Related Commands redistribute — allows you to redistribute routes learned by other methods. description Enter a description of the RIP routing protocol.
Defaults weight = 120 Command Modes ROUTER RIP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. default-metric — assigns one distance metric to all routes learned using the redistribute command. distribute-list in Configure a filter for incoming routing updates.
Parameters prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. (OPTIONAL) Enter the keyword connected to filter only directly connected routes. ospf (OPTIONAL) Enter the keyword ospf to filter all OSPF routes.
ip rip receive version To receive specific versions of RIP, set the interface. The RIP version you set on the interface overrides the version command in ROUTER RIP mode. Syntax ip rip receive version [1] [2] To return to the default, use the no ip rip receive version command. Parameters 1 (OPTIONAL) Enter the number 1 for RIP version 1. 2 (OPTIONAL) Enter the number 2 for RIP version 2.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To enable the interface to send both version of RIP packets, use the ip rip send version 1 2 command. Related Commands ip rip receive version — sets the RIP version for the interface to receive traffic. version — sets the RIP version for the switch software. ip split-horizon Enable split-horizon for RIP data on the interface.
Usage Information RIP supports a maximum of 16 ECMP paths. neighbor Define a neighbor router with which to exchange RIP information. Syntax neighbor ip-address To delete a neighbor setting, use the no neighbor ip-address command. Parameters ip-address Defaults Not configured. Command Modes ROUTER RIP Supported Modes Full–Switch Command History Usage Information Enter the IP address, in dotted decimal format, of a router with which to exchange information. Version Description 9.9(0.
Usage Information You can enable an unlimited number of RIP networks. RIP operates over interfaces configured with any address the network command specifies. offset-list Specify a number to add to the incoming or outgoing route metrics learned using RIP. Syntax offset-list prefix-list-name {in | out} offset [interface] To delete an offset list, use the no offset-list prefix-list-name {in | out} offset [interface] command.
Defaults Not configured. Command Modes ROUTER RIP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is intended for low-speed interfaces. passive-interface Suppress routing updates on a specified interface. Syntax passive-interface interface To delete a passive interface, use the no passive-interface interface command.
To disable redistribution, use the no redistribute {connected | static} command. Parameters connected Enter the keyword connected to specify that information from active routes on interfaces is redistributed. static Enter the keyword static to specify that information from static routes is redistributed. Defaults Not configured. Command Modes ROUTER RIP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. router rip To configure and enable RIP, enter ROUTER RIP mode. Syntax router rip To disable RIP, use the no router rip command. Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show ip rip database Display the routes that RIP learns. If the switch learned no RIP routes, no output is generated. Syntax show ip rip database [ip-address mask] Parameters ip-address (OPTIONAL) Specify an IP address in dotted decimal format to view RIP information on that network only. If you enter an IP address, also enter a mask for that IP address. mask (OPTIONAL) Specify a mask, in /network format, for the IP address.
show running-config rip Display the current RIP configuration. Syntax show running-config rip Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show running-config rip ! router rip distribute-list Test1 in distribute-list Test21 out network 10.0.0.0 passive-interface TenGigabitEthernet 1/4 neighbor 20.20.20.
• invalid = 180 seconds • holddown = 180 seconds • flush = 240 seconds Command Modes ROUTER RIP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If you change the timers on one router, also synchronize the timers on all routers in the RIP domain. version Specify either RIP version 1 or RIP version 2.
47 Remote Monitoring (RMON) The Dell Networking Operating System (OS) remote monitoring (RMON) is based on IEEE standards, providing both 32-bit and 64-bit monitoring and long-term statistics collection.
rmon alarm Set an alarm on any MIB object. Syntax rmon alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon alarm number command. Parameters number Enter the alarm integer number from 1 to 65535. The value must be unique in the RMON alarm table. variable Enter the MIB object to monitor. The variable must be in the SNMP OID format; for example, 1.3.6.1.2.1.1.3.
rmon collection history Enable the RMON MIB history group of statistics collection on an interface. Syntax rmon collection history {controlEntry integer} [owner name] [buckets number] [interval seconds] To remove a specified RMON history group of statistics collection, use the no rmon collection history {controlEntry integer} command. Parameters controlEntry integer Enter the keyword controlEntry to specify the RMON group of statistics using a value.
Supported Modes Command History Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rmon event Add an event in the RMON event table. Syntax rmon event number [log] [trap community] [description string] [owner name] To disable RMON on an interface, use the no rmon event number command. Parameters number Assign an event number in integer format from 1 to 65535. The number value must be unique in the RMON event table.
variable The MIB object to monitor. The variable must be in the SNMP OID format; for example, 1.3.6.1.2.1.1.3 The object type must be a 64-bit integer. interval Time, in seconds, the alarm monitors the MIB variables; this is the alarmSampleType in the RMON alarm table. The range is from 5 to 3600 seconds. delta Enter the keyword delta to test the change between MIB variables. This is the alarmSampleType in the RMON alarm table. absolute Enter the keyword absolute to test each MIB variable directly.
ether statistics table: 8 entries, 4608 bytes ether history table: 8 entries, 6000 bytes alarm table: 390 entries, 102960 bytes high-capacity alarm table: 5 entries, 1680 bytes event table: 500 entries, 206000 bytes log table: 2 entries, 552 bytes Dell# show rmon alarms Display the contents of the RMON alarm table. Syntax show rmon alarms [index] [brief] Parameters index (OPTIONAL) Enter the table index number to display just that entry.
16 17 18 19 20 21 22 Dell# 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 show rmon events Display the contents of the RMON event table. Syntax Parameters show rmon events [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON event table in an easy-toread format.
18 19 20 21 22 Dell# 18 19 20 21 22 show rmon hc-alarm Display the contents of RMON High-Capacity alarm table. Syntax show rmon hc-alarm [index] [brief] Parameters index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON High-Capacity alarm table in an easy-to-read format. Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
show rmon history Display the contents of the RMON Ethernet history table. Syntax Parameters show rmon history [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON Ethernet history table in an easy-to-read format Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The log table has a maximum of 500 entries. If the log exceeds that maximum, the oldest log entry is purged to allow room for the new entry.
under-size packets: 0 over-size packets: 0 fragment errors: 0 jabber errors: 0 collision: 0 64bytes packets: 0 65-127 bytes packets: 0 128-255 bytes packets: 0 256-511 bytes packets: 0 512-1023 bytes packets: 0 1024-1518 bytes packets: 0 owner: 1 status: OK HC packets received overflow: 0 HC packets received: 0 HC bytes received overflow: 0 HC bytes received: 0 HC 64bytes packets overflow: 0 HC 64bytes packets: 0 HC 65-127 bytes packets overflow: 0 HC 65-127 bytes packets: 0 HC 128-255
48 Rapid Spanning Tree Protocol (RSTP) The Dell Networking Operating System (OS) implementation of rapid spanning tree protocol (RSTP) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged local area network (LAN) that is comprised of LANs interconnected by bridges. bridge-priority Set the bridge priority for RSTP. Syntax bridge-priority priority-value To return to the default value, use the no bridge-priority command.
• For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. Optionally, enter an in or out parameter with the optional interface: events Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example • For Receive, enter in. • For Transmit, enter out. (OPTIONAL) Enter the keyword events to debug RSTP events. Version Description 9.9(0.0) Introduced on the FN IOM 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Defaults RSTP is disabled. Command Modes CONFIGURATION RSTP (conf-rstp) Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree rstp — enters SPANNING TREE mode on the switch. forward-delay Configure the amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State.
Defaults 2 seconds Command Modes CONFIGURATION RSTP (conf-rstp) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The hello time is encoded in BPDUs in increments of 1/256ths of a second. The standard minimum hello time in seconds is 1 second, which is encoded as 256.
edge-port bpdufilter default To filter transmission of BPDU on port fast enabled interfaces, enable BPDU Filter globally. Syntax edge-port bpdufilter default To disable global bpdu filter default, use the no edge-port bpdufilter default command. Parameters priority-value Enter a number as the bridge priority value in increments of 4096. The range is from 0 to 61440. The default is 32768.
show config View the current configuration for the mode. Only non-default values are displayed. Syntax show config Command Modes CONFIGURATION RSTP (conf-rstp) Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
priority priority Enter keyword priority then a value in increments of 16 as the priority. The range is from 0 to 240. The default is 128. rootguard Enter the keyword rootguard to enable root guard on an RSTP port or port-channel interface. Defaults Not configured. Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
spanning-tree rstp Configure an RSTP interface with one of these settings: port cost, edge port with optional bridge port data unit (BPDU) guard, port priority, loop guard, or root guard. Syntax Parameters spanning-tree rstp {cost port-cost | edge-port [bpduguard [shutdown-onviolation]] | bpdufilter | priority priority | {rootguard}} cost port-cost Enter the keyword cost then the port cost value. The range is from 1 to 200000.
NOTE: A port configured as an edge port, on an RSTP switch, immediately transitions to the Forwarding state. Only configure ports connected to end-hosts as edge ports. Consider an edge port similar to a port with a spanning-tree portfast enabled. If you do not enable shutdown-on-violation, BPDUs are still sent to the RPM CPU. You cannot enable STP root guard and loop guard at the same time on a port.
49 Security This chapter contains various types of security commands offered in the Dell Networking Operating System (OS). The commands are listed in the following sections: • AAA Accounting Commands • Authorization and Privilege Commands • Authentication and Password Commands • RADIUS Commands • TACACS+ Commands • SSH Server and SCP Commands • Secure DHCP Commands For configuration details, refer to the Security chapter in the Dell Networking OS Configuration Guide.
To disable AAA Accounting, use the no aaa accounting {system | exec | command level} {name | default}{start-stop | wait-start | stop-only} {radius | tacacs+} command. Parameters system Enter the keyword system to send accounting information of any other AAA configuration. exec Enter the keyword exec to send accounting information when a user has logged in to EXEC mode.
Related Commands enable password — changes the password for the enable command. login authentication — enables AAA login authentication on the terminal lines. password — creates a password. tacacs-server host — specifies a TACACS+ server host. aaa accounting suppress Prevent the generation of accounting records of users with the user name value of NULL.
Supported Modes Command History Related Commands Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced the support for roles on the MXL 10/40GbE Switch. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. aaa accounting — enables AAA Accounting and creates a record for monitoring the accounting function. crypto key zeroize rsa Removes the generated RSA host keys and zeroize the key storage location.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command steps through all active sessions and then displays the accounting records for the active account functions.
Related Commands aaa authorization commands — sets the parameters that restrict (or permit) a user’s access to EXEC and CONFIGURATION level commands aaa authorization exec — sets the parameters that restrict (or permit) a user’s access to EXEC level commands. aaa authorization commands Set parameters that restrict (or permit) a user’s access to EXEC and CONFIGURATION level commands.
inherit existing-rolename Enter the inherit keyword then specify the system defined role to inherit permissions from (sysadmin, secadmin, netadmin, netoperator). Defaults none Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, the aaa authorization commands command configures the system to check both EXEC level and CONFIGURATION level commands. To enable only EXEC-level command checking, use the command no aaa authorization config-commands. role method is supported only on Full-Switch mode. aaa authorization exec Set parameters that restrict (or permit) a user’s access to EXEC-level commands.
level level • route-map for ROUTE-MAP mode • router for ROUTER OSPF, ROUTER RIP, ROUTER ISIS and ROUTER BGP modes Enter the keyword level then a number for the access level. The range is from 0 to 15. Level 1 is EXEC mode and Level 15 allows access to all CLI modes and commands. reset Enter the keyword reset to return the security level to the default setting. command Enter the command’s keywords to assign the command to a certain access level. You can enter one or all of the keywords.
Authentication and Password Commands To manage access to the system, use the following the commands. aaa authentication enable Configure AAA Authentication method lists for user access to EXEC privilege mode (the “Enable” access). Syntax aaa authentication enable {default | method-list-name} method [... method2] To return to the default setting, use the no aaa authentication enable {default | method-listname} method [... method2] command.
the system proceeds to the next authentication method. The TACACS+ is incorrect, but the user is still authenticated by the secondary method. Related Commands enable password — changes the password for the enable command. login authentication — enables AAA login authentication on the terminal lines. password — creates a password. radius-server host — specifies a RADIUS server host. tacacs-server host — specifies a TACACS+ server host.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, the locally configured username password is used. If you configure aaa authentication login default, the system uses the methods this command defines for login instead. Methods configured with the aaa authentication login command are evaluated in the order they are configured. If users encounter an error with the first method listed, the Dell Networking OS applies the next method configured.
Once re-authentication is enabled, Dell EMC Networking OS prompts the users to re-authenticate whenever there is a change in authenticators. The change in authentication happens when: • Add or remove an authentication server (RADIUS/TACACS+) • Modify an AAA authentication/authorization list • Change to role-only (RBAC) mode The re-authentication is also applicable for authenticated 802.1x devices.
To delete a password, use the no enable password [encryption-type] password [level level] command. Parameters level level (OPTIONAL) Enter the keyword level then a number as the level of access. The range is from 1 to 15. encryption-type (OPTIONAL) Enter the number 7 or 0 as the encryption type. Enter a 7 then a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Networking router.
Parameters encryption-type (OPTIONAL) Enter the number 7 as the encryption type. Enter 7 followed a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Networking router. Use this parameter only with a password that you copied from the show runningconfig file of another Dell Networking router. password Defaults Not configured.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To control access to command modes, use this command to define a password for a level and use the privilege level (CONFIGURATION mode) command. Passwords must meet the following criteria: • Start with a letter, not a number. • Passwords can have a regular expression as the password. To create a password with a regular expression in it, use CNTL + v prior to entering regular expression.
• privilege level (CONFIGURATION mode) — controls access to the command modes within the switch. login authentication To designate the terminal lines, apply an authentication method list. Syntax login authentication {method-list-name | default} To use the local user/password database for login authentication, use the no login authentication command.
Defaults No password is configured. Command Modes LINE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The system prompts users for these passwords when the method for authentication or authorization used is "line". Related Commands enable password — sets the password for the enable command.
lower number (OPTIONAL) Enter the keyword lower then the lower number. The range is from 0 to 31. numeric number (OPTIONAL) Enter the keyword numeric then the numeric number. The range is from 0 to 31. special-char number (OPTIONAL) Enter the keywords special-char then the number of special characters permitted. The range is from 0 to 31. The following special characters are supported: !"#%&'();<=>?[\]*+,-.
To view passwords, use the show running-config command. show privilege View your access level. Syntax show privilege Command Modes Supported Modes Command History Example • EXEC • EXEC Privilege All Modes Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show privilege Current privilege level is 15 Dell# Dell#show privilege Current privilege level is 14. Dell# Dell#show privilege Current privilege level is 10.
Example Related Commands Field Description (untitled) Indicates with an asterisk (*) which terminal line you are using. Line Displays the terminal lines currently in use. User Displays the user name of all users logged in. Host(s) Displays the terminal line status. Location Displays the IP address of the user.
username Establish an authentication system based on user names. Syntax username name [access-class access-list-name] [nopassword | {password | secret | sha256-password} [encryption-type] password] [privilege level] [role rolename] If you do not want a specific user to enter a password, use the nopassword option. To delete authentication for a user, use the no username name command. Parameters name Enter a text string for the name of the user up to 63 characters.
Version Description 9.5(0.0) Introduced the support for roles on the MXL 10/40GbE Switch. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To view the defined user names, use the show running-config user command. Related Commands password — specifies a password for users on terminal lines. show running-config — views the current configuration. RADIUS Commands The following RADIUS commands are supported by Dell Networking operating system.
client Configures trusted DAC clients. Syntax client {ipv4-addr | ipv6-addr | hostname} [vrf vrf-name] [key [encryption-type] key] To undo the DAC client configuration, enter the no client host command. Defaults If VRF is not configured, default VRF is considered. Parameters ipv4–addr Enter the keyword ipv4–addr to specify the IPv4 address of the DAC. ipv6–addr Enter the keyword ipv6–addr to specify the IPv6 address of the DAC. hostname Enter the keyword hostname to enter the name of the host.
client-key Configures global shared key for the trusted DAC clients. Syntax client—key [encryption-type] key To remove the shared key configuration, enter the no client-key command. Defaults Parameters None. encryption-type: key Command Modes Usage Information Command History (OPTIONAL) Enter either 0 or 7 as the encryption type for the key entered. The options are: • 0 — is the default and means the key is not encrypted and stored as clear text. • 7 — means that the key is encrypted and hidden.
Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010– ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL.
Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010– ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL.
The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010– ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL. disconnect-user Configure NAS to allow or reject DM requests corresponding to AAA users-sessions coming from the DAC.
Usage Information Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010– ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL. If this configuration is not enabled, then dynamic authorization messages are not handled by the NAS. ip radius source-interface Specify an interface’s IP address as the source IP address for RADIUS connections.
Command Modes Usage Information Command History • CONF-DYNAMIC-AUTH • Optionally specify dynamic authorization port number. Default port is 3799. This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.13(0.
Parameters seconds Defaults 0 seconds Command Modes CONFIGURATION Supported Modes Full–Switch Command History Enter a number of seconds during which non-responsive RADIUS servers are skipped. The range is from 0 to 2147483647 seconds. The default is 0 seconds. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. radius-server host Configure a RADIUS server host.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To configure any number of RADIUS server hosts for each server host that is configured, use this command. The system searches for the RADIUS hosts in the order they are configured in the software.
If you configure the key parameter in the radius-server host command, the key configured with the radius-server key command is the default key for all RADIUS communications. Related Commands radius-server host — configures a RADIUS host. radius-server retransmit Configure the number of times the switch attempts to connect with the configured RADIUS host server before declaring the RADIUS host server unreachable.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. radius-server host — configures a RADIUS host. role Changes command permissions for roles.
Related Commands Version Description 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000-ON. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, and MXL. • userrole — creates user roles. rate-limit Configure NAS to allow or reject RADIUS dynamic authorization (DA) packets based on the configurable rate limit value.
Defaults 5 Minutes. Parameters Command Modes Usage Information Command History minutes Enter the number of minutes to drop the packets. The range is from 1 to 10 minutes. • CONF-DYNAMIC-AUTH • Duplicate packets are dropped within replay-protection-window period if packet has same source IP address, source UDP port and identifier. This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide.
TACACS+ Commands The Dell Networking OS supports TACACS+ as an alternate method for login authentication. debug tacacs+ To assist with troubleshooting, view TACACS+ transactions. Syntax debug tacacs+ To disable debugging of TACACS+, use the no debug tacacs+ command. Defaults Disabled. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. tacacs-server host Specify a TACACS+ host. Syntax tacacs-server host {hostname | ipv4-address} [port number] [timeout seconds] [key key] Parameters hostname Enter the name of the TACACS+ server host. ipv4-address Enter the IPv4 address (A.B.C.D) of the TACACS+ server host. port number (OPTIONAL) Enter the keyword port then a number as the port to be used by the TACACS+ server. The range is from zero (0) to 65535.
tacacs-server key Configure a key for communication between a TACACS+ server and a client. Syntax tacacs-server key [encryption-type] key To delete a key, use the no tacacs-server key key command. Parameters encryption-type key Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the key entered.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The host keys are required for key-exchange by the SSH server. If the keys are not found when you enable the server (ip ssh server enable), the keys are automatically generated. This command requires user interaction and generates a prompt prior to overwriting any existing host keys. NOTE: Only a user with superuser permissions should generate host-keys.
ip scp topdir Identify a location for files used in secure copy transfer. Syntax ip scp topdir directory To return to the default setting, use the no ip scp topdir command. Parameters directory Enter a directory name. Defaults The internal flash (flash:) is the default directory. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ip ssh challenge–response–authentication Enable challenge response authentication for SSHv2. Syntax ip ssh challenge-response-authentication enable To disable the challenge response authentication, use the no ip ssh challenge-responseauthentication enable command. Parameters enable Enter the keyword enable to enable the challenge response authentication for SSHv2. Defaults Disabled. Command Modes CONFIGURATION Command History This guide is platform-specific.
• aes256-cbc • aes192-ctr • aes192-cbc • aes128-ctr • aes128-cbc • 3des-cbc Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Usage Information Version Description 9.10(0.0) Introduced on the S6100–ON, S6000, S6000–ON, S5000, S4810, S4820T, S3048–ON, S4048–ON, MXL, C9010, S3100 series, and Z9100-ON.
To disable hostbased-authentication for SSHv2 server, use the no ip ssh hostbased-authentication enable command. Parameters enable Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Enter the keyword enable to enable hostbased-authentication for SSHv2 server. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ip ssh mac Configure the list of MAC algorithms supported on both SSH client and SCP. Syntax Parameters ip ssh mac mac-list mac mac-list Enter the keyword mac then a space-delimited list of message authentication code (MAC) algorithms supported by the SSH client. The following MAC algorithms are available.
Usage Information • You can select one or more MAC algorithms from the list. • Client-supported MAC list gets preference over the server-supported MAC list in selecting the MAC algorithm for the SSH session. • When the MAC (-m) option is used with the SSH CLI, it overrides the configured or default MAC list. • When FIPS is enabled or disabled, the client MACs get default configuration. ip ssh password-authentication Enable password authentication for the SSH server.
Usage Information This command specifies the file used for the host-based authentication. The creates/ file overwrites the flash://ADMIN_DIR/ssh/knownhosts file and deletes the user-specified file. Even though this command is a global configuration command, it does not appear in the running configuration because you only need to run this command once. The file contains the OpenSSH-compatible public keys of the host for which host-based authentication is allowed.
Version Description 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000–ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, MXL ip ssh rhostsfile Specify the rhost file used for host-based authorization. Syntax ip ssh rhostsfile {WORD} Parameters WORD Defaults none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Enter the rhost file name for the host-based authentication. Version Description 9.9(0.
Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Enabling RSA authentication allows the user to log in without being prompted for a password. In addition, the OpenSSH compatible SSHv2 RSA public key must be added to the list of authorized keys (ip ssh rsaauthentication my-authorized-keys device://filename command).
ip ssh server Configure an SSH server. Syntax ip ssh server {ciphers cipher-list} {enable | port port-number} [kex keyexchange-algorithm] [mac hmac-algorithm] [version {1 | 2}] To disable SSH server functions, use the no ip ssh server {ciphers cipher-list} {enable | port port-number} {kex key-exchange-algorithm command. Parameters enable Enter the keyword enable to start the SSH server.
kex key-exchangealgorithm • hmac-sha1 • hmac-sha1-96 • hmac-sha2-256 Enter the keyword kex and then a space-delimited list of key exchange algorithms supported by the SSH server. The following key exchange algorithms are available: • diffie-hellman-group-exchange-sha1 • diffie-hellman-group1-sha1 • diffie-hellman-group14-sha1 When FIPS is enabled, the default key-exchange-algorithm is diffie-hellmangroup14-sha1.
ip ssh server dns enable Enable or disable the DNS in SSH server configuration to resolve hostname for host-based authenticatioin. Syntax ip ssh server dns enable To disable the DNS in SSH server configuration, use the no ip ssh server dns enable command. NOTE: This command is applicable only in Full-Switch mode. Defaults Disabled. Command Modes CONFIGURATION Command History This guide is platform-specific.
Active accounted actions on tty5, User ad Priv 1 Role sysadmin Task ID 16, EXEC Accounting record, 00:00:04 Elapsed, service=shell Dell# Related Commands aaa accounting — enables AAA Accounting and creates a record for monitoring the accounting function. show crypto Displays the public part of the SSH host-keys. Syntax Parameters show crypto key mypubkey {rsa | rsa1} Key Enter the keyword key to display the host public key. mypubkey Enter the keyword mypubkey to display the host public key.
show ip ssh Display information about established SSH sessions. Syntax show ip ssh Command Modes Supported Modes Command History Example • EXEC • EXEC Privilege Full–Switch Version Description 9.11(0.0) Updated the output to include challenge-response-authentication option. 9.10(0.0) Removed the support for hmac-sha2-256-96 algorithm. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip ssh SSH server : enabled.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command displays the contents of the flash://ADMIN_DIRssh/knownhosts file. Example Dell# show ip ssh client-pub-keys 4.8.1.
Related Commands ip ssh rsa-authentication (Config) — configures the RSA authorized keys. show role Display information on permissions assigned to a command, including user role and/or permission level. Syntax show role mode {mode} {command} Parameters command Enter the command’s keywords to assign the command to a certain access level. You can enter one or all of the keywords. mode mode Enter keyword then one of the following modes.
Related Commands • userrole — create user roles. show users Allows you to view information on all users logged in to the switch. Syntax Parameters show users [all] all Command Modes EXEC Privilege Supported Modes All Modes Command History Usage Information Example Related Commands (OPTIONAL) Enter the keyword all to view all terminal lines in the switch. Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced the support for roles on the MXL 10/40GbE Switch. 8.3.16.
Example DellEMC# show userroles Role Inheritance netoperator netadmin secadmin sysadmin netoperator testadmin netadmin Modes Exec Exec Config Interface Line Router IP Route-map Protocol MAC Exec Config Exec Config Interface Line Router IP Route-map Protocol MAC Exec Config Interface Line Router IP Route-map Protocol MAC Command Modes EXEC Privilege Command History This guide is platform-specific.
Parameters hostname (OPTIONAL) Enter the IP address or the host name of the remote device. ipv4 address (OPTIONAL) Enter the IP address in dotted decimal format A.B.C.D. -l username (OPTIONAL) Enter the keyword -l then the user name used in this SSH session. The default is the user name of the user associated with the terminal. -p port-number (OPTIONAL) Enter the keyword -p then the port number. The range is from 1 to 65536. The default is 22.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp snooping — displays the contents of the DHCP binding table. ip dhcp relay Enable Option 82. Syntax ip dhcp relay information-option [trust-downstream] Parameters trust-downstream Defaults Disabled.
ip dhcp snooping database Delay writing the binding table for a specified time. Syntax Parameters ip dhcp snooping database write-delay minutes minutes Defaults none Command Modes CONFIGURATION Supported Modes Full–Switch Command History The range is from 5 to 21600. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping binding Create a static entry in the DHCP binding table.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp snooping — displays the contents of the DHCP binding table. ip dhcp snooping database renew Renew the binding table. Syntax ip dhcp snooping database renew Defaults none Command Modes Supported Modes • EXEC • EXEC Privilege Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.19.
Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs. Syntax Parameters [no] ip dhcp snooping vlan name name Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Enter the name of a VLAN on which to enable DHCP Snooping.
Related Commands clear ip dhcp snooping — clears the contents of the DHCP binding table. secure-cli enable Enable the secured CLI mode. Syntax secure-cli enable Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.11(0.0) Introduced this command.
• 8 to indicate that a password encrypted using a sha256 hashing algorithm follows. This encryption type is available with the sha256-password option only, and is the default encryption type for this option. • 7 to indicate that a password encrypted using a DES hashing algorithm follows. This encryption type is available with the password option only. • 5 to indicate that a password encrypted using an MD5 hashing algorithm follows.
Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.
ICMP Vulnerabilities The Internet Control Message Protocol (ICMP) is a network-layer Internet protocol that provides message packets to report errors and other information regarding IP packet processing back to the source. Dell Networking OS mainly addresses the following ICMP vulnerabilities: • ICMP Mask Reply • ICMP Timestamp Request • ICMP Replies • IP ID Values Randomness You can configure the Dell Networking OS to drop ICMP reply messages.
ICMPv6 Message Types Who are you reply (140) Mtrace response (200) Mtrace messages (201) NOTE: The Dell Networking OS does not suppress the following ICMPv6 message types: • Packet too big (2) • Echo request (128) • Multicast listener query (130) • Multicast listener report (131) • Multicast listener done (132) • Router solicitation (133) • Router advertisement (134) • Neighbor solicitation (135) • Neighbor advertisement (136) • Redirect (137) • Router renumbering (138) • MLD v2 liste
System Security Commands The following section lists the system security commands. generate hash Generate a hash checksum for the given file or the startup configuration using the MD5, SHA1, or SHA256 algorithm. Syntax Parameters generate hash {md5 | sha1 | sha256} {flash://filename | startup-config} md5 | sha1 | sha256 Enter the keyword md5, sha1, or sha256 to generate .
root-password Defaults Not configured Command Modes Full–Switch Command History Usage Information • 7 directs the system to store the password with a dynamic salt. • 9 directs the system to encrypt the clear text password and store the encrypted password in an inaccessible location. Enter the root password. Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.14(0.0) Introduced on the S5048F–ON. 9.13(0.
Command History Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.14(0.0) Introduced on the S5048F–ON. 9.13(0.0) Introduced on the S3100 series, S3048–ON, S4048–ON, S4048T-ON, S5000, S6000, S6000–ON, S6010–ON, S6100–ON, Z9100–ON, MXL, and FN-IOM. Usage Information When you reboot the system using the reload command, the system performs OS image verification on the primary boot image.
verified startup-config Enable hash validation for the startup configuration during system startup. Syntax verified startup-config To disable hash validation for the startup configuration, use the no verified startup-config command. Defaults Not configured Command Modes Full–Switch Command History Example 1192 Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.14(0.0) Introduced on the S5048F–ON. 9.13(0.
50 sFlow sFlow monitoring system includes an sFlow Agent and an sFlow Collector. • The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector. • The sFlow Collector analyses the sFlow Datagrams received from the different devices and produces a network-wide view of traffic flows.
sflow collector Configure a collector device to which sFlow datagrams are forwarded. Syntax sflow collector {ip-address} agent-addr {ip-address} [number [max-datagram-size number]] | [max-datagram-size number] To delete a configured collector, use the no sflow collector {ip-address} agent-addr {ipv4address} [number [max-datagram-size number]] | [max-datagram-size number] command. Parameters sflow collector ipaddress Enter the IPv4 (A.B.C.D) of the sFlow collector device.
sflow enable (Global) Enable sFlow globally. Syntax sflow enable To disable sFlow, use the no sflow enable command. Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information sFlow is disabled by default. In addition to this command, you must enable sFlow on individual interfaces where you want sFlow sampling.
sflow extended-switch enable Enable packing information on a switch only. Syntax sflow extended-switch enable To disable packing information, use the no sflow extended-switch [enable] command. Parameters enable Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Enter the keyword enable to enable global extended information. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL switch. Dell(conf)#sflow max-header-size extended sflow polling-interval (Global) Set the sFlow polling interval at a global level. Syntax sflow polling-interval interval value To return to the default, use the no sflow polling-interval interval command.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command sets the counter polling interval for an interface. Related Commands sflow polling-interval (Global) — globally sets the polling interval. sflow sample-rate (Global) Change the global default sampling rate. Syntax sflow sample-rate value To return to the default sampling rate, use the no sflow sample-rate command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command changes the sampling rate for an interface. By default, the sampling rate of an interface is set to the same value as the current global default sampling rate. If the value you enter is not a correct power of 2, the command generates an error message with the previous and next power-of-2 value.
sflow enable sflow sample-rate 2048 Dell#show running-config interface tengigabitethernet 0/1 ! interface TenGigabitEthernet 0/1 no ip address sflow enable sflow sample-rate 256 no shutdown show sflow stack-unit Display the sFlow information on a stack unit. Syntax show sflow stack-unit {unit number} Parameters Command Modes Supported Modes Command History unit number • EXEC • EXEC Privilege (OPTIONAL) Enter a unit number to view information on the stack unit in that slot.
51 Service Provider Bridging Service provider bridging is composed of virtual local area network (VLAN) Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the Dell Networking OS Configuration Guide. This chapter includes commands for the Dell Networking operating software Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel. For more information, see VLAN Stacking, Spanning Tree Protocol (STP), and GARP VLAN Registration (GVRP).
in | out | both Enter the keyword in, out, or both to debug incoming interfaces, outgoing interfaces, or both incoming and outgoing interfaces. vlan vlan-id Enter the keyword vlan then the VLAN ID. The range is from 1 to 4094. count value Enter the keyword count then the number of debug outputs. The range is from 1 to 100. Defaults Debug disabled. Command Modes EXEC Privilege Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
protocol-tunnel destination-mac Overwrite the BPDU destination MAC address with a specific value. Syntax Parameters protocol-tunnel destination-mac xstp address stp Change the default destination MAC address used for L2PT to another value. Defaults The default destination MAC is 01:01:e8:00:00:00. Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Parameters rate Defaults 75 frames per second. Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Enter the rate in frames per second. The range is from 75 to 3000. The default is 75. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Example Dell# Dell#conf Dell(conf)#protocol-tunnel rate-limit 1000 Dell(conf)# Related Commands show protocol-tunnel — displays tunneling information for all VLANs.
Te1/2 Dell# Related Commands 2 STP, PVST show running-config — displays the current configuration.
52 Simple Network Management Protocol (SNMP) and Syslog This chapter contains commands to configure and monitor the simple network management protocol (SNMP) v1/v2/v3 and Syslog.
• logging console • logging facility • logging history • logging history size • logging monitor • logging on • logging source-interface • logging synchronous • logging trap • logging version • show logging • show logging driverlog stack-unit • show logging auditlog • terminal monitor SNMP Commands The following SNMP commands are available in the Dell Networking OS.
Example Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100–ON. 9.9(0.0) Introduced on the FN IOM. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100–ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the MXL.
29078 Trap PDUs Dell# Related Commands snmp-server community — enables the SNMP and set community string. show snmp engineID Display the identification of the local SNMP engine and all remote engines that are configured on the router. Syntax Command Modes Supported Modes Command History Example show snmp engineID • EXEC • EXEC Privilege Full–Switch Mode Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
notifyview: nview row status: active Dell# Related Commands snmp-server group — configures an SNMP server group. show snmp supported-mibs Display the list of SNMP MIBs supported by the platform. Syntax show snmp supported-mibs Command Modes Command History Example • EXEC • EXEC Privilege This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.14(0.
• Command History Example EXEC Privilege This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.14(0.0) Introduced on the C9010, FN-IOM, MIOA, MXL, S3048–ON, S3100, S4048–ON, S4048T-ON, S5048F-ON, S6000, S6000–ON, S6010–ON, S6100–ON and Z9100–ON. DellEMC#show snmp supported-traps TRAP OID ----------------------------------------------------------------------COLDSTART 1.3.6.1.6.3.1.1.
Dell# snmp context Enables you to map a BGP VRF instance within an SNMP context through community mapping in SNMPv2c and SNMPv3. Syntax [no] snmp context [context name] Parameters context name Enter a unique name for the context. Defaults None Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.14.1.
> snmpwalk -c public 10.10.10.130 .1.3.6.1.2.1.31 | grep -i alias | more IF-MIB::ifAlias.134530304 = STRING: This is a port connected to Router2. This is a port connected to Router2. This is a port connected to Router2. This is a port connected to Router2. This is a port connected to Router2. IF-MIB::ifAlias.134792448 = STRING: snmp-server community Configure a new community string access for SNMPv1 v2 and v3.
of the three sub-options as a sub-option, and so forth. The second Example shows the creation of a standard IPv4 ACL called snmp-ro-acl and then assigning it to the SNMP community guest. NOTE: For IPv6 ACLs, only IPv6 and UDP types are valid for SNMP; TCP and ICMP rules are not valid for SNMP. In IPv6 ACLs, port rules are not valid for SNMP.
Parameters notification-type notification-option Enter the type of notification from the following list: • ecfm — Notification of changes to ECFM. • entity — Notification of changes to entity. • envmon — For Dell Networking device notifications when an environmental threshold is exceeded. • eoam — Notification of changes to the EOAM state. • ets — Notification of changes to the ets traps. • fips — Notification of changes to the FIP snooping state. • lacp — Notification of changes.
snmp-server engineID Configure the name for both the local and remote SNMP engines on the router. Syntax snmp-server engineID [local engineID] [remote ip-address udp-port port-number engineID] To return to the default, use the no snmp-server engineID [local engineID] [remote ipaddress udp-port port-number engineID] command. Parameters local engineID Enter the keyword local then the engine ID number that identifies the copy of the SNMP on the local device. Format (as specified in RFC 3411): 12 octets.
snmp-server group Configure a new SNMP group or a table that maps SNMP users to SNMP views. Syntax snmp-server group [group_name {1 | 2c | 3 {auth | noauth | priv}}] [read name] [write name] [notify name] [ access-list-name | access-list-name]] To remove a specified group, use the no snmp-server group [group_name {v1 | v2c | v3 {auth | noauth | priv}}] [read name] [write name] [notify name] [access-list-name | access-list-name]] command.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following Example specifies the group named harig as a version 3 user requiring both authentication and encryption and read access limited to the read named rview. NOTE: The number of configurable groups is limited to 16 groups.
NOTE: For version 1 and version 2c security models, this string represents the name of the SNMP community. The string can be set using this command; however, Dell Networking OS recommends setting the community string using the snmp-server community command before executing this command. For version 3 security model, this string is the USM user security name. udp-port portnumber (OPTIONAL) Enter the keywords udp-port then the port number of the remote host to use. The range is from 0 to 65535.
notifications, at least one snmp-server enable command and the snmp-server host command for that host must be enabled. NOTE: For v1 / v2c trap configuration, if the community-string is not defined using the snmp-server community command prior to using this command, the default form of the snmp-server community command automatically is configured with the community-name the same as specified in the snmpserver host command.
Parameters byte-count Defaults 8 Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Enter one of the following values 8, 16, 24 or 32. Packet sizes are 8000 bytes, 16000 bytes, 32000 bytes, and 64000 bytes. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. snmp-server trap-source Configure a specific interface as the source for SNMP traffic.
priv-password [access access-list-name | ipv6 access-list-name | access-listname ipv6 access-list-name] To remove a user from the SNMP group, use the no snmp-server user name {group_name remote ip-address udp-port port-number} [1 | 2c | 3] [encrypted] [auth {md5 | sha} auth-password] [priv des56 | aes128–cfb} priv password] [access access-listname | ipv6 access-list-name] command. Parameters name Enter the name of the user (not to exceed 20 characters), on the host that connects to the agent.
Defaults If no authentication or privacy option is configured, then the messages are exchanged (attempted anyway) without any authentication or encryption. Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Added support for the AES128-CFB encryption algorithm on the MXL 10/40GbE Switch IO Module platform. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
To remove a user from the SNMP group, use the no snmp-server user name {group_name remote ip-address udp-port port-number} [1 | 2c | 3] [encrypted] [auth {md5 | sha} auth-password] [priv {des56 | aes128–cfb} priv-password] [access access-listname | ipv6 access-list-name | access-list-name ipv6 access-list-name] command. Parameters auth-password (OPTIONAL) Enter a text string (up to 20 characters long) password that enables the agent to receive packets from the host and to send packets to the host.
Parameters view-name Enter the name of the view (not to exceed 20 characters). oid-tree Enter the OID sub tree for the view (not to exceed 20 characters). included (OPTIONAL) Enter the keyword included to include the MIB family in the view. excluded (OPTIONAL) Enter the keyword excluded to exclude the MIB family in the view. Defaults none Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
clear logging Clear the messages in the logging buffer. Syntax clear logging Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Mode Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show logging — displays logging settings and system messages in the internal buffer. default logging buffered Return to the default setting for messages logged to the internal buffer.
Related Commands logging console — sets the logging console parameters. logging extended Logs security and audit events to a system log server. Syntax logging extended Defaults none Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.
default logging monitor Return to the default settings for messages logged to the terminal. Syntax default logging monitor Defaults level = 7 or debugging Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging monitor — sets the logging monitor parameters. terminal monitor — sends system messages to the terminal/monitor.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. hostname Enter the name of a host already configured and recognized by the switch. udp Enter the keyword udp to enable transmission of log message over UDP followed by port number. The default port is 514 tcp Enter the keyword tcp to enable transmission of log message over TCP followed by port number. Defaults Disabled.
Usage Information When you decrease the buffer size, all messages stored in the buffer are lost. Increasing the buffer size does not affect messages stored in the buffer. Related Commands clear logging — clears the logging buffer. default logging buffered — returns the logging buffered parameters to the default setting. show logging — displays the logging setting and system messages in the internal buffer. logging console Specify which messages are logged to the console.
• cron (Cron/at facility) • deamon (system deamons) • kern (kernel) • local0 (local use) • local1 (local use) • local2 (local use) • local3 (local use) • local4 (local use) • local5 (local use) • local6 (local use) • local7 (local use) • lpr (line printer system) • mail (mail system) • news (USENET news) • sys9 (system use) • sys10 (system use) • sys11 (system use) • sys12 (system use) • sys13 (system use) • sys14 (system use) • syslog (Syslog process) • user (user
Parameters level Defaults warnings or 4 Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Indicate a value from 0 to 7 or enter one of the following equivalent words: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging. The default is 4 or warnings. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
logging monitor Specify which messages are logged to Telnet applications. Syntax logging monitor [level] To disable logging to terminal connections, use the no logging monitor command. Parameters level Defaults 7 or debugging Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Related Commands Indicate a value from 0 to 7 or enter one of the following parameters: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging.
logging monitor — sets the logging parameters for the terminal connections. logging source-interface Specify that the IP address of an interface is the source IP address of Syslog packets sent to the Syslog server. Syntax logging source-interface interface To disable this command and return to the default setting, use the no logging source-interface command. Parameters interface Defaults Not configured.
all Enter the keyword all to turn off all. limit number-ofbuffers Enter the keyword limit then the number of buffers to be queued for the terminal after which new messages are dropped. The range is from 20 to 300. The default is 20. Defaults Disabled. If enabled without the level or number-of-buffers options specified, level = 2 and number-ofbuffers = 20 are the defaults. Command Modes LINE Supported Modes Full–Switch Mode Command History Usage Information Version Description 9.9(0.
logging on — enables logging. logging version Displays syslog messages in a RFC 3164 or RFC 5424 format. Syntax logging version {0|1} Defaults 0 Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.
Command Modes Supported Modes Command History history (OPTIONAL) Enter the keyword history to view only information in the Syslog history table. reverse (OPTIONAL) Enter the keyword reverse to view the Syslog messages in FIFO (first in, first out) order. summary (OPTIONAL) Enter the keyword summary to view a table showing the number of messages per type and per slot. Slots *7* and *8* represent RPMs. • EXEC • EXEC Privilege Full–Switch Mode Version Description 9.9(0.
May 22 08:53:09: %STKUNIT0-M:CP %SEC-3-AUTHENTICATION_ENABLE_SUCCESS: Enable password authentication success on vty0 ( 10.11.68.22 ) Dell# show logging driverlog stack-unit Display the driver log for the specified stack member. Syntax show logging driverlog stack-unit unit# Parameters defaults stack-unit unit# Enter the keywords stack-unit then the stack member ID of the switch for which you want to display the driver log. The range is from 0 to 1.
Example Related Commands Version Description 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the S4810, S4820T, S6000, Z9000, and MXL. DellEMC(conf)# show logging auditlog • clear logging auditlog — clear the audit log. terminal monitor Configure the system to display messages on the monitor/terminal. Syntax terminal monitor To return to default settings, use the terminal no monitor command. defaults Command Modes Supported Modes Command History Related Commands Disabled.
53 Stacking For more information about using the Switch stacking feature, see the Stacking FN IOM Switches chapter in the Dell Networking OS Configuration Guide. NOTE: The terms stack-unit-id, unit-id, stack-unit-number, stack-number, and unit-number mentioned in this chapter refers to the stack-unit-number.
When members are issued as part of the CLI, all the units part of the stack are prevented from rebooting after failure. The unit does not reboot until it is manually rebooted. Related Commands show redundancy — displays the current redundancy status. redundancy force-failover stack-unit Force the standby unit in the stack to become the management unit. Syntax redundancy force-failover stack-unit Defaults Not enabled.
Example Dell# show system brief Stack MAC : 00:1e:c9:f1:00:7b Reload Type : jump-start [Next boot : normal-reload] -- Stack Info -Unit UnitType Status =ReqTyp CurTyp Version Ports ---------------------------------------------------------------------------0 Management online PE-FN-410S-IOM PE-FN-410S-IOM 1-0(0-82) 12 1 Standby online PE-FN-410S-IOM PE-FN-410S-IOM 1-0(0-82) 12 2 Member online PE-FN-410S-IOM PE-FN-410S-IOM 1-0(0-82) 12 3 Member online PE-FN-410S-IOM PE-FN-410S-IOM 1-0(0-82) 12 4 Member online
Link to Peer: Peer Stack-unit: Down not present -- Stack-unit Redundancy Configuration ------------------------------------------------Primary Stack-unit: mgmt-id 0 Auto Data Sync: Full Failover Type: Hot Failover Auto reboot Stack-unit: Enabled Auto failover limit: 3 times in 60 minutes -- Stack-unit Failover Record ------------------------------------------------Failover Count: 0 Last failover timestamp: None Last failover Reason: None Last failover type: None -- Last Data Block Sync Record: -----------
Example Field Description Topology Lists the topology of stack ports connected: Ring, Daisy chain, or Standalone. Interface The unit/port ID of the connected stack port on this unit. Link Speed Link Speed of the stack port (10 or 40) in Gb/s. Admin Status The only currently listed status is Up. Connection The stack port ID to which this unit’s stack port is connected.
Related Commands • redundancy disable-auto-reboot — resets the designated stack member. • show hardware stack-unit — displays the data plane or management plane input and output statistics of the designated component of the designated stack member. • show system — displays the current status of all stack members or a specific member. show system stack-unit stack-group Display the stack-groups present/configured for a switch stack unit.
stack-unit priority Configure the ability of switch to become the management unit of a stack. Syntax stack-unit 0–5 priority 1-14 Parameters 0–5 Enter the stack member unit identifier, from 0 to 5, of the switch on which you want to set the management priority. 1–14 This preference parameter allows you to specify the management priority of one backup switch over another, with 1 the lowest priority and 14 the highest.
• show system — displays the status of all stack members or a specific member. stack-unit renumber Change the stack member ID of any stack member or a stand-alone unit. Syntax Parameters stack-unit stack-unit-number renumber stack-unit-number stack-unit-number The first instance of this value is the stack member unit identifier, from 0 to 5, of the switch that you want add to the stack. The range is from 0 to 5. The second instance of this value is the desired new unit identifier number.
54 Storm Control The Dell Networking Operating System (OS) storm control feature allows you to limit or suppress traffic during a traffic storm. Storm control is supported on the Dell Networking OS. Important Points to Remember • Interface commands can only be applied on physical interfaces (virtual local area networks [VLANs] and link aggregation group [LAG] interfaces are not supported). • An INTERFACE-level command only supports storm control configuration on ingress.
Supported Modes Command History Example Full–Switch Mode Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show storm-control broadcast tengigabitethernet 3/8 Broadcast storm control configuration Interface Direction Packets/Second ---------------------------------------TenGig 3/8 Ingress 1000 Dell# show storm-control multicast Display the storm control multicast configuration.
show storm-control unknown-unicast Display the storm control unknown-unicast configuration. Syntax show storm-control unknown-unicast [interface] Parameters interface (OPTIONAL) Enter one of the following interfaces to display the interface specific storm control configuration: • Defaults For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Broadcast storm control is valid on Layer 2/Layer 3 interfaces only. Layer 2 broadcast traffic is treated as unknown-unicast traffic. storm-control broadcast (Interface) Configure the percentage of broadcast traffic allowed on an interface.
Usage Information Version Description 9.9(0.0) Introduced on the MXL 10/40GbE Switch IO Module. NOTE: PFC/LLFC storm control enabled interfaces disable the interfaces if it receives continuous PFC/ LLFC packets. It can be a result of a faulty NIC/Switch that sends spurious PFC/LLFC packets. storm-control multicast (Configuration) Configure the packets per second (pps) of multicast traffic.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. storm-control unknown-unicast (Configuration) Configure the percentage of unknown-unicast traffic allowed on the switch (ingress rate only). Syntax storm-control unknown-unicast [packets_per_second in] To disable storm control for unknown-unicast traffic, use the no storm-control unknown-unicast [packets_per_second in] command.
Storm Control Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
55 Spanning Tree Protocol (STP) The commands in this chapter configure and monitor the IEEE 802.1d spanning tree protocol (STP). Topics: • bridge-priority • debug spanning-tree • description • disable • forward-delay • hello-time • max-age • portfast bpdufilter default • protocol spanning-tree • show config • show spanning-tree 0 • spanning-tree 0 bridge-priority Set the bridge priority of the switch in an IEEE 802.1D spanning tree.
debug spanning-tree Enable debugging of the spanning tree protocol and view information on the protocol. Syntax debug spanning-tree {stp-id [all | bpdu | events | exceptions] | protocol} To disable debugging, use the no debug spanning-tree command. Parameters stp-id Enter zero (0). The switch supports one spanning tree group with a group ID of 0. protocol Enter the keyword for the type of STP to debug, either mstp, pvst, or rstp.
disable Disable the spanning tree protocol globally on the switch. Syntax disable To enable Spanning Tree Protocol, use the no disable command. Defaults Enabled (that is, the spanning tree protocol is disabled.) Command Modes SPANNING TREE Supported Modes Full–Switch Mode Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. portfast bpdufilter default — enters SPANNING TREE mode.
hello-time Set the time interval between generation of the spanning tree bridge protocol data units (BPDUs). Syntax hello-time seconds To return to the default value, use the no hello-time command. Parameters seconds Defaults 2 seconds Command Modes SPANNING TREE Supported Modes Full–Switch Mode Command History Related Commands Enter a number as the time interval between transmission of BPDUs. The range is from 1 to 10. The default is 2 seconds. Version Description 9.9(0.
hello-time — changes the time interval between BPDUs. portfast bpdufilter default Enable BPDU Filter globally to filter transmission of BPDU on port fast enabled interfaces. Syntax portfast bpdufilter default To disable global bpdu filter default, use the no edge-port bpdufilter default command. Defaults Disabled Command Modes SPANNING TREE Command History Version Description 9.9(0.0) Introduced on the FN MXL. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show config Display the current configuration for the mode. Only non-default values display. Syntax show config Command Modes SPANNING TREE Supported Modes Full–Switch Mode Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Enable spanning tree group 0 prior to using this command. The following describes the show spanning-tree 0 command shown in the example. Example Field Description “Bridge Identifier...” Lists the bridge priority and the MAC address for this STP bridge. “Configured hello...” Displays the settings for hello time, max age, and forward delay. “We are.
Timers: message age 0, forward_delay 0, hold 0 Number of transitions to forwarding state 1 BPDU: sent:18, received 0 The port is not in the portfast mode Port 3 (TenGigabitEthernet 1/2) is Forwarding Port path cost 4, Port priority 8, Port Identifier 8.27 Designated root has priority 32768, address 0001.e800.0a56 Designated bridge has priority 32768, address 0001.e800.0a56 Designated port id is 8.
To disable Spanning Tree group on an interface, use the no spanning-tree stp-id {cost cost | {rootguard} | portfast [bpduguard [shutdown-on-violation] | bpdufilter] | priority priority} command. Parameters stp-id Enter the STP instance ID. The range is 0. cost cost Enter the keyword cost then a number as the cost. The range is 1 to 65535. The defaults are: • 10-Gigabit Ethernet interface = 2. • Port Channel interface with 10-Gigabit Ethernet = 1.
56 SupportAssist SupportAssist sends troubleshooting data securely to Dell. SupportAssist in this Dell EMC Networking OS release does not support automated email notification at the time of hardware fault alert, automatic case creation, automatic part dispatch, or reports. SupportAssist requires Dell EMC Networking OS 9.9(0.0) and SmartScripts 9.7 or later to be installed on the Dell EMC Networking device. For more information on SmartScripts, see Dell EMC Networking Open Automation guide.
Usage Information Example Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. • When you run the command, the system displays a message with the information directing to the URL for further information.
Reject the EULA: DellEMC(conf)#eula-consent support-assist reject Aug 24 22:35:38: %STKUNIT1-M:CP %SUPPORT_ASSIST-6-SUPASSIST_EVT: Event monitor service stopped I do not accept the terms of the license agreement. The SupportAssist feature has been deactivated and can no longer be used. To enable SupportAssist configurations, accept the terms of the license agreement by configuring this command 'eula-consent support-assist accept'.
Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
NOTE: The full transfer includes the core files as well in the information sent. The core transfer does not send core files that are older than 30 days. SupportAssist Commands Dell EMC Networking OS supports the following SupportAssist mode commands. activity Move to the SupportAssist Activity mode for an activity. Allow the user to configure customized details for a specific activity.
contact-company Configure the contact information for the company. Syntax contact-company name {company-name}[company-next-name] ... [company-next-name] To remove the contact company information, use the no contact-company command. Parameters company-name Enter the name for the company. If there are multiple words in the name, use optional additional fields. company-nextname (OPTIONAL) Enter the next components of the company name, up to 5 components are allowed.
Command Modes SUPPORTASSIST Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
server Configure the name of the remote SupportAssist Server and move to SupportAssist Server mode. Syntax server {default | server-name} To delete a server, use the no server server-name command. Parameters default Enter the keyword default for the default server. server-name Enter the name of the custom server to which the logs would be transferred. To include a space, enter a space within double quotes. Defaults Default server has URL stor.g3.ph.dell.
Parameters file-specification local-file-name Command Modes Enter the full file specification for the action-manifest file. For example: • tftp://hostip/filepath • ftp://userid:password@hostip/filepath • scp://userid:password@hostip/filepath Enter the name of the local action-manifest file, up to 32 characters long. Allowable characters are: a to z, A to Z, 0 to 9, -, _, and space.
Defaults Default Command Modes SUPPORTASSIST ACTIVITY FULL-TRANSFER SUPPORTASSIST ACTIVITY EVENT-TRANSFER Command History Usage Information Related Commands This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.
Usage Information Related Commands Version Description 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. To revert to the default action-manifest file, use the action-manifest install command. If necessary, you can then remove the custom action-manifest file. • action-manifest get — copy an action-manifest file for an activity to the system. • action-manifest install — configure the action-manifest to use for a specific activity.
To disable a particular SupportAssist activity, use the no enable command. Defaults Enabled Command Modes SUPPORTASSIST ACTIVITY FULL-TRANSFER SUPPORTASSIST ACTIVITY CORE-TRANSFER SUPPORTASSIST ACTIVITY EVENT-TRANSFER Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.
province | region | state name (OPTIONAL) Enter the keyword province, region or state then the name of province, region or state for the company site. To include a space, enter a space within double quotes. country companycountry (OPTIONAL) Enter the keyword country then the country for the company site. To include a space, enter a space within double quotes.
Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
email-address Configure the email addresses to reach the contact person. Syntax email-address primary email-address [alternate email-address] To remove an email address, use the no email-address command. To remove the primary and the alternate email addresses, use the no email-address primary and no email-address alternate commands respectively. Parameters primary emailaddress Enter the keyword primary then the primary email address for the person.
alternate phone Enter the keyword alternate then the alternate phone number for the person. Command Modes SUPPORTASSIST PERSON Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.
Related Commands Version Description 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. • email-address — configure email addresses to reach the contact person. • phone — configure phone numbers to reach the contact person. time-zone Configure the time zone for contacting the person. Syntax time-zone zone +-HH:MM[start-time HH:MM] [end-time HH:MM] To remove the time zone, use the no time-zone [zone | start-time | end-time] command.
proxy-ip-address Configure a proxy for reaching the SupportAssist remote server. Syntax proxy-ip-address {ipv4-address | ipv6-address} port port-number [ username userid password [encryption-type] password ] To remove the proxy, use the no proxy-ip-address command. Parameters ipv4-address Enter the IP address of the proxy server in a dotted decimal format (A.B.C.D). ipv6-address Enter the IPv6 address of the proxy server in the x:x:x:x::x format.
enable Enable communication with the SupportAssist server. Syntax enable To disable communication to a specific SupportAssist server, use the no enable command. Defaults Enabled Command Modes SUPPORTASSIST SERVER Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Related Commands Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.
Usage Information Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. The URL should be formatted to follow the ISO format. show eula-consent Display the EULA for the feature.
& performance information and related data (Collected Data) and transmits this information to Dell. By downloading SupportAssist and agreeing to be bound by these terms and the Dell end user license agreement, available at: www.dell.com/ aeula, you agree to allow Dell to provide remote monitoring services of your IT environment and you give Dell the right to collect the Collected Data in accordance with Dells Privacy Policy, available at: www.dell.
enable all ! activity event-transfer enable action-manifest install default ! activity core-transfer enable ! contact-company name Dell street-address F lane , Sector 30 address city Brussels state HeadState country Belgium postalcode S328J3 ! contact-person first Fred last Nash email-address primary des@sed.com alternate sed@dol.com phone primary 123422 alternate 8395729 preferred-method email time-zone zone +05:30 start-time 12:23 end-time 15:23 ! server Dell enable url http://1.1.1.
09:43:56 IST event-transfer 09:48:21 IST full-transfer 09:38:27 IST DellEMC# 1286 SupportAssist Success Feb 15 2016 09:47:43 IST Feb 15 2016 Success Feb 15 2016 09:36:12 IST Feb 15 2016
57 System Time and Date The commands in this chapter configure time values on the system, either using the Dell Networking Operating System (OS), or the hardware, or using the network time protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For more information, refer to the “Network Time Protocol” section of the Management chapter in the Dell Networking OS Configuration Guide.
Defaults Not configured. Command Modes EXEC Privilege Command History Usage Information Version Description 9.9(0.0) Introduced on the FN MXL. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can change the order of the month and day parameters to enter the time and date as time day month year. You cannot delete the software clock. The software clock runs only when the software is up. The clock restarts, based on the hardware clock, when the switch reboots.
offset Defaults Not configured. Command Modes CONFIGURATION Command History Related Commands (OPTIONAL) Enter the number of minutes to add during the summer-time period. The range is from 1 to1440. The default is 60 minutes. Version Description 9.9(0.0) Introduced on the FN MXL. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clock summer-time recurring — sets a date (and time zone) on which to convert the switch to daylight saving time each year.
end-day Enter the weekday name that you want daylight saving time to end. Enter the weekdays using the three letter abbreviations; for example Sun, Sat, Mon, and so on. The range is from Sun to Sat. end-month Enter the name of one of the 12 months in English. end-time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format; example, 17:15:00 is 5:15 pm. offset (OPTIONAL) Enter the number of minutes to add during the summer-time period. The range is from 1 to 1440.
debug ntp Display network time protocol (NTP) transactions and protocol messages for troubleshooting. Syntax debug ntp {level level-number} To disable debugging of NTP transactions, use the no debug ntp {level level-number} command. Parameters level level-number Command Modes EXEC Privilege Supported Modes Full–Switch Command History Enter the keyword level then the level–number to display information about NTP logs. The log level range is from 1 to 6. • 1 is the most important log level.
ntp authentication-key Specify a key for authenticating the NTP server. Syntax ntp authentication-key number md5 [0 | 7] key Parameters number Specify a number for the authentication key. The range is from 1 to 65534. This number must be the same as the number parameter configured in the ntp trusted-key command. md5 Specify that the authentication key is encrypted using MD5 encryption algorithm. 0 Specify that authentication key is entered in an unencrypted format (default).
To delete the control key, use the no ntp control-key-passwd [encryption-type] password command. Parameters encryption-type password (OPTIONAL) Enter one of the following numbers: • 0 (zero) for an unencrypted (clear text) password • 7 (seven) for a hidden text or DES encrypted Enter a string up to 32 characters as the password. Defaults Not configured. Command Modes CONFIGURATION Command History This guide is platform-specific.
ntp disable Prevent an interface from receiving NTP packets. Syntax ntp disable To re-enable NTP on an interface, use the no ntp disable command. Defaults Disabled (that is, if you configure an NTP host, all interfaces receive NTP packets) Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ntp master Configure the switch as NTP Server.
To disable the threshold value, use the no ntp offset-threshold command. Parameters offset-threshold threshold-value (Optional) Enter the keyword offset-threshold and then the threshold value. The range is from 0 to 999. Defaults Zero (0). Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.14(0.0) The trusted-key range value is increased from 1 to 65534. Also, introduced the minpoll and maxpoll polling interval options. 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Added support for VRF. 8.3.11.1 Introduced on the MXL 10/40GbE Switch IO Module. You can configure multiple time-serving hosts (up to 250).
ntp trusted-key Set a key to authenticate the system to which NTP synchronizes. Syntax ntp trusted-key number To delete the key, use the no ntp trusted-key number command. Parameters number Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Enter a number as the trusted key ID. The range is from 1 to 65534. Version Description 9.14(0.0) The trusted-key range value is increased from 1 to 65534. 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Example Dell#show clock 12:30:04.402 pacific Tue May 22 2012 Dell# Example (Detail) Dell#show clock detail 12:30:26.892 pacific Tue May 22 2012 Time source is RTC hardware Summer time starts 00:00:00 UTC Wed Mar 14 2012 Summer time ends 00:00:00 pacific Wed Nov 7 2012 Dell# Related Commands clock summer-time recurring — displays the time and date from the switch hardware clock. show ntp associations Display the NTP master and peers.
Field Description offset Displays the relative time of the NTP peer’s clock to the switch clock (in milliseconds). disp Displays the dispersion. Example (without ntp master configuration) Dell#show ntp associations remote ref clock st when poll reach delay offset disp ============================================================= 10.10.120.5 0.0.0.0 16 256 0 0.00 0.000 16000.0 *172.16.1.33 127.127.1.0 11 6 16 377 -0.08 -1499.9 104.16 172.31.1.33 0.0.0.0 16 256 0 0.00 0.000 16000.0 192.200.0.2 0.0.0.
show ntp status Display the current NTP status. Syntax show ntp status Command Modes Supported Modes Command History Usage Information • EXEC • EXEC Privilege Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ntp status command shown in the following example. Field Description “Clock is...
58 Tunneling Tunneling is supported on the Dell Networking OS. tunnel-mode Enable a tunnel interface. Syntax tunnel mode {ipip | ipv6 | ipv6ip}[decapsulate-any] To disable an active tunnel interface, use the no tunnel mode command. Parameters ipip Enable tunnel in RFC 2003 mode and encapsulate IPv4 and/or IPv6 datagrams inside an IPv4 tunnel. ipv6 Enable tunnel in RFC 2473 mode and encapsulate IPv4 and/or IPv6 datagrams inside an IPv6 tunnel.
tunnel source Set a source address for the tunnel. Syntax tunnel source {ip-address | ipv6–address | interface-type-number} To delete the current tunnel source address, use the no tunnel source command. Parameters ip-address Enter the source IPv4 address in A.B.C.D format. ipv6–address Enter the source IPv6 address in X:X:X:X::X format. interface-typenumber • For a Port Channel interface, enter the keywords port-channel then a number from 1 to 128.
count (OPTIONAL) Enter the keyword count to count packets processed by the filter. The range is from 3-10, Default range is 3. unlimited Enter the keyword unlimited to specify the unlimited number of keepalive probe packets. Defaults Tunnel keepalive is disabled. Command Modes INTERFACE TUNNEL Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL.
This command will fail if the address family entered does not match the outer header address family of the tunnel mode, tunnel source, or any other tunnel allow-remote. If any allow-remote are configured, the tunnel source or tunnel mode commands will fail if the outer header address family does not match that of the configured allow-remote. tunnel dscp Configure the method to set the DSCP in the outer tunnel header.
Command Modes INTERFACE TUNNEL (conf-if-tu) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The tunnel interface is inoperable without a valid tunnel destination address for the configured Tunnel mode. To establish a logical tunnel to the particular destination address, use the destination address of the outer tunnel header.
Command Modes INTERFACE TUNNEL (conf-if-tu) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. A value of 0 copies the inner packet hop limit (ipv6) or time-to-live (ipv4) in the encapsulated packet to the tunnel header hop limit (ipv6) or time-to-live (ipv4) value.
ipv6 unnumbered Configure a tunnel interface to operate without a unique explicit IPv6 address and select the interface from which the tunnel will borrow its address. Syntax ipv6 unnumbered {interface-type interface-number} Use the no ipv6 unnumbered command to set the tunnel back to default logical address. If the tunnel was previously operational, this will make the tunnel interface operationally down, unless the tunnel also has an IPv4 address configured.
59 u-Boot All commands in this chapter are in u-Boot mode. These commands are supported on the Dell Networking Operating System (OS) FN IOM platform. To access this mode, press any key when the following line appears on the console during a system boot. Hit any key to stop autoboot: Enter u-Boot immediately, as the BOOT_USER# prompt. NOTE: This chapter describes only a few commands available in u-Boot mode. NOTE: You cannot use the Tab key to complete commands in this mode.
Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. boot selection Change the ROM bootstrap bootflash partition. Syntax boot selection [a | b] Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Supported Modes Command History Example Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # boot write net config retries 2 Updated number of Network Boot Config retries to 2. BOOT_USER # boot zero Clears the primary, secondary, or default boot parameters. Syntax boot zero [primary | secondary | default] Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. help Display the help menu. Syntax help Command Modes uBoot Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. enable sha256-password Configure SHA-256 based password for the enable command. Syntax enable sha256-password [level level] [encryption-type] password To delete a password, use the no enable sha256-password [encryption-type] password [level level] command. Parameters sha256-password Enter the keyword sha256-password then the encryption-type or the password. level level (OPTIONAL) Enter the keyword level then a number as the level of access.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. interface management ethernet ip address Set the management port IP address and mask. Syntax interface management ethernet ip address Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
reload Reload the FN IOM switch. Syntax reload Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show boot blc Show the boot loop counter value. Syntax show boot blc Command Modes uBoot Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
8.3.16.1 Example Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show boot selection ROM BOOTSTRAP SELECTOR PARMETERS: ================================ Next ROM bootstrap set to occur from Bootflash partition A. Last ROM bootstrap occurred from Bootflash partition B. BOOT_USER # show bootflash Show summary of boot flash information. Syntax show bootflash Command Modes uBoot Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show bootvar PRIMARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== boot device : tftp file name : premnath Management Etherenet IP address : 10.16.130.134/16 Server IP address : 10.16.127.35 Default Gateway IP address : 15.0.0.
show interface management Ethernet Show the management port IP address and mask. Syntax show interface management ethernet Command Modes uBoot Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show interface management ethernet Management ethernet IP address: 10.16.130.
Supported Modes Command History Example 1318 Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # help ***** Dell Force10 Boot Interface Help Information ***** Current access level: USER LEVEL Use "syntax help" for more information on syntax.
60 Uplink Failure Detection (UFD) Uplink failure detection (UFD) provides detection of the loss of upstream connectivity and, if you use this with network interface controller (NIC) teaming, automatic recovery from a failed link.
Related Commands 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. • downstream — assigns a port or port-channel to the uplink-state group as a downstream interface. • upstream — assigns a port or port-channel to the uplink-state group as an upstream interface. • uplink-state-group — creates an uplink-state group and enables the tracking of upstream links.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell(conf-uplink-state-group-3)#description Testing UFD feature Dell(conf-uplink-state-group-3)#show config ! uplink-state-group 3 description Testing UFD feature Related Commands uplink-state-group — creates an uplink-state group and enables the tracking of upstream links. downstream Assign a port or port-channel to the uplink-state group as a downstream interface.
downstream auto-recover Enable auto-recovery so that UFD-disabled downstream ports in an uplink-state group automatically come up when a disabled upstream port in the group comes back up. Syntax downstream auto-recover To disable auto-recovery on downstream links, use the no downstream auto-recover command. Defaults The auto-recovery of UFD-disabled downstream ports is enabled. Command Modes UPLINK-STATE-GROUP Supported Modes Full–Switch Command History Related Commands Version Description 9.
If all upstream interfaces in an uplink-state group go down, all downstream interfaces in the same uplink-state group are put into a link-down state. Related Commands • downstream — assigns a port or port-channel to the uplink-state group as a downstream interface. • upstream — assigns a port or port-channel to the uplink-state group as an upstream interface. • uplink-state-group — creates an uplink-state group and enables the tracking of upstream links.
Example 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show running-config uplink-state-group ! uplink-state-group 3 no enable description Testing UFD feature downstream disable links 2 downstream TenGigabitEthernet 0/1-2,5,9,11-12 upstream TenGigabitEthernet 0/3-4 Related Commands • show uplink-state-group — displays the status information on a specified uplink-state group or all groups.
Uplink State Group Upstream Interfaces Downstream Interfaces 13/6(Up) : 3 Status: Enabled, Up : Gi 0/46(Up) Gi 0/47(Up) : Te 13/0(Up) Te 13/1(Up) Te 13/3(Up) Te 13/5(Up) Te Uplink State Group : 5 Status: Enabled, Down Upstream Interfaces : Gi 0/0(Dwn) Gi 0/3(Dwn) Gi 0/5(Dwn) Downstream Interfaces : Te 13/2(Dis) Te 13/4(Dis) Te 13/11(Dis) Te 13/12(Dis) Te 13/13(Dis) Te 13/14(Dis) Te 13/15(Dis) Related Commands Uplink State Group Upstream Interfaces Downstream Interfaces : 6 Status: Enabled, Up : : Upli
An uplink-state group is considered to be operationally down if no upstream interfaces in the group are in the LinkUp state. No uplink-state tracking is performed when a group is disabled or in an operationally down state. Example Dell(conf)#uplink-state-group 16 Dell(conf)# 02:23:17: %STKUNIT0-M:CP %IFMGR-5-ASTATE_UP: Changed uplink state group Admin state to up: Group 16 Related Commands • show running-config uplink-state-group — displays the current configuration of one or more uplink-state groups.
9.9(0.0) Introduced on the FN MXL. Example Dell(conf-uplink-state-group-16)# upstream Tengigabitethernet 1/1-8 Dell(conf-uplink-state-group-16)# Related Commands • downstream — assigns a port or port-channel to the uplink-state group as a downstream interface. • upstream — assigns a port or port-channel to the uplink-state group as an upstream interface. • uplink-state-group — creates an uplink-state group and enables the tracking of upstream links.
61 VLAN Stacking With the virtual local area network (VLAN)-stacking feature (also called stackable VLANs and QinQ), you can “stack” VLANs into one tunnel and switch them through the network transparently. For more information about basic VLAN commands, refer to the Virtual LAN (VLAN) Commands section in the Layer 2 chapter.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. dei honor Honor the incoming DEI value by mapping it to a system drop precedence. Enter the command once for 0 and once for 1. Syntax Parameters dei honor {0 | 1} {green | red | yellow} 0|1 Enter the bit value you want to map to a color. green | red | yellow Choose a color: • Green: High priority packets that are the least preferred to be dropped.
Supported Modes Command History Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You must first enable DEI for this configuration to take effect. Related Commands dei enable — enables DEI. member Assign a stackable VLAN access or trunk port to a VLAN. The VLAN must contain the vlan-stack compatible command in its configuration.
Supported Modes Command History Example Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
vlan-stack access Specify a Layer 2 port or port channel as an access port to the stackable VLAN network. Syntax vlan-stack access To remove access port designation, use the no vlan-stack access command. Defaults Not configured. Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
2 Active 3 Active 4 Active 5 Active Dell# M M M M M M M M M M M Te 1/2 Te 1/0-2 Po1(Te 1/3-4) Te 1/5 Te 1/3 Po1(Te 1/3-5) Te 1/6 Te 1/4 Po1(Te 1/5-6) Te 1/6 Te 1/5 vlan-stack dot1p-mapping Map C-Tag dot1p values to an S-Tag dot1p value. You can separate the C-Tag values by commas and dashed ranges are permitted. Dynamic mode CoS overrides any Layer 2 QoS configuration if there is conflicts.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information For specific interoperability limitations regarding the S-Tag TPID, refer to the Dell Networking OS Configuration Guide. Related Commands portmode hybrid — sets a port (physical ports only) to accept both tagged and untagged frames. A port configured this way is identified as a hybrid port in report displays.
interface TenGigabitEthernet 0/42 no ip address switchport vlan-stack trunk no shutdown Dell(conf-if-Te-0/42)#interface vlan 100 Dell(conf-if-vl-100)#vlan-stack compatible Dell(conf-if-vl-100-stack)#member TenGigabitethernet 0/12 Dell(conf-if-vl-100-stack)#show config ! interface Vlan 100 no ip address vlan-stack compatible member TenGigabitEthernet 0/42 shutdown Dell(conf-if-vl-100-stack)#interface vlan 20 Dell(conf-if-vl-20)#tagged Tengigabitethernet 0/12 Dell(conf-if-vl-20)#show config ! interface Vlan 2
62 Virtual Link Trunking (VLT) VLT allows physical links between two chassis to appear as a single virtual link to the network core. VLT eliminates the requirement for Spanning Tree protocols by allowing link aggregation group (LAG) terminations on two separate distribution or core switches, and by supporting a loop-free topology.
Parameters ip–address Enter the IPv4 or IPv6 address of the backup destination. interval seconds Enter the keyword interval to specify the time interval to send hello messages. The range is from 1 to 5 seconds. The default is 1 second. Defaults Not configured. Command Modes VLT DOMAIN Supported Modes Full–Switch Usage Information You can only enable either IPv4 or IPv6. Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you use this command on a local VLT node, all multicast routes from the local PIM TIB, the entire multicast route table, and all the entries in the data plane are deleted. The entries in Peer PIM TIB (Sync) are not deleted but are marked for re-download. Both local and synced routes are removed from the multicast route table.
Supported Modes Command History Usage Information Full–Switch Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. LACP on the VLT ports (on a VLT switch or access device), which are members of the virtual link trunk, is not brought up until the VLT domain is recognized on the access device.
9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. peer-routing Enable L3 VLT peer-routing. This command is applicable for both IPV6/ IPV4. Syntax peer-routing To disable L3 VLT peer-routing, use the no peer-routing command. Defaults Disabled. Command Modes VLT DOMAIN (conf-vlt-domain) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the IPV6/IPV4 support on the MXL. 9.2(0.
primary-priority Reconfigure the primary role of VLT peer switches. Syntax Parameters primary-priority value value Default 32768 Command Modes VLT DOMAIN Supported Modes Full–Switch Command History Usage Information To configure the primary role on a VLT peer, enter a lower value than the priority value of the remote peer. The range is from 1 to 65535. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Supported Modes Command History Usage Information summary (OPTIONAL) Enter the keyword summary to view routes in a tabular format. vlt (OPTIONAL) Enter the keyword vlt to view multicast routes with a spanned incoming interface. Enter a multicast group address in dotted decimal format (A.B.C.D) to limit the information displayed to the multicast routes for a specified multicast group. count Enter the keyword count to display VLT route and packet data.
TenGigabitEthernet 4/4 TenGigabitEthernet 4/5 Example (detail) Dell#show ip mroute IP Multicast Routing Table (*, 224.10.10.1), uptime 00:05:12 Incoming interface: TenGigabitEthernet 3/1 Outgoing interface list: GigabitEthernet 3/2 (1.13.1.100, 224.10.10.1), uptime 00:04:03 Incoming interface: TenGigabitEthernet 3/4 Outgoing interface list: TenGigabitEthernet 3/4 TenGigabitEthernet 3/5 (*, 224.20.20.
Default Not configured. Command Modes EXEC Supported Modes Full–Switch Command History Example (Brief) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show vlt inconsistency Display deviations in VLT multicast traffic. Syntax show vlt inconsistency ip mroute Command Modes EXEC Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show vlt inconsistency ip mroute Spanned Multicast Routing IIF Inconsistency Multicast Route --------------(22.22.22.200, 225.1.1.2) (*, 225.1.1.
Example for Q-in-Q Dell#show vlt mismatch Implementation over Domain -----VLT Parameters Local -------------PB for stp Enabled Peer ---Disabled Vlan-type-config ---------------Codes:: P - Primary, C - Community, I - Isolated, N - Normal vlan, M - Vlanstack Vlan-ID ------- Local ----- 100 N Peer ---M Port-type-config ---------------Codes:: p - PVLAN Promiscuous port, h - PVLAN Host port, t - PVLAN Trunk port, mt - Vlan-stack trunk port, mu - Vlan-stack access port, n - Normal port Vlt Lag ------128 L
VLT Role: System MAC address: Primary Role Priority: Local System MAC address: Local System Role Priority: Local Unit Id: Dell# Primary 00:00:00:0a:0a:0a 700 00:01:e8:d7:3f:bd 700 0 show vlt statistics Displays statistics on VLT operations. Syntax show vlt statistics Default Not configured. Command Modes EXEC Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.9(0.0) Introduced on the FN IOM. 9.2(0.
NDP NA VLT Tunnel Pkts Rcvd:0 NDP NA Non-VLT Tunnel Pkts sent:0 NDP NA Non-VLT Tunnel Pkts Rcvd:0 Ndp-sync Pkts Sent:0 Ndp-sync Pkts Rcvd:0 Ndp Reg Request sent:17 Ndp Reg Request rcvd:15 VLT Multicast Statistics ------------------------------Info Pkts Sent: 0 Info Pkts Rcvd: 0 Reg Request Sent: 0 Reg Request Rcvd: 0 Reg Response Sent: 0 Reg Response Rcvd: 0 Route updates sent to Peer: 0 Route updates rcvd from Peer: 0 Route update pkts sent to Peer: 0 Route update pkts rcvd from Peer: 0 system-mac Reconfi
Parameters id Enter the system unit ID for VLT. The range is from 0 to 1. Defaults Automatically assigned based on the MAC address of each VLT peer. The peer with the lower MAC address is assigned unit 0; the peer with the higher MAC address is assigned unit 1. Command Modes VLT DOMAIN Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes INTERFACE PORT-CHANNEL Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show vlt private-vlan Display the association of private VLAN (PVLAN) with the VLT LAG. You can configure VLT peer nodes in a PVLAN on the switch. Syntax show vlt private-vlan Command Modes EXEC Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.
63 Virtual Router Redundancy Protocol (VRRP) Virtual router redundancy protocol (VRRP) is supported by the Dell Networking Operating System (OS) for IPv4 and IPv6. The following commands apply to both VRRP IPv4 and IPv6: • advertise-interval • description • disable • hold-time • preempt • priority • show config • track • virtual-address VRRP Ipv6 are in the VRRP for IPv6 Commands section.
advertise-interval Set the time interval between VRRP advertisements. Syntax advertise-interval {seconds | centisecs centisecs} To return to the default settings, use the no advertise-interval command. Parameters seconds Enter a number of seconds. The range is from 1 to 255. The default is 1 second. centisecs centisecs Enter the keyword centisecs followed by the number of centisecs in multiple of 25 centisecs. The range is 25 to 4075 centisecs in multiples of 25 centisecs.
Usage Information 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The given password is encrypted by the system and the show config displays an encrypted text string for any of the encrypted typed used. clear counters vrrp Clear the counters maintained on VRRP operations. Syntax Parameters clear counters vrrp [vrrp-id] vrrp-id Command Modes EXEC Privilege Supported Modes Full–Switch Command History (OPTIONAL) Enter the number of the VRRP group ID.
packets Enter the keyword packets to enable debugging of VRRP control packets. state Enter the keyword state to enable debugging of VRRP state changes. timer Enter the keyword timer to enable debugging of the VRRP timer. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To enable VRRP traffic, assign an IP address to the VRRP group using the virtual-address command and enter no disable. Related Commands virtual-address — specifies the IP address of the virtual router. hold-time Specify a delay (in seconds) before a switch becomes the MASTER virtual router. By delaying the initialization of the VRRP MASTER, the new switch can stabilize its routing tables.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. priority Specify a VRRP priority value for the VRRP group. The VRRP protocol uses this value during the MASTER election process. Syntax priority priority To return to the default value, use the no priority command. Parameters priority Defaults 100 Command Modes VRRP Supported Modes Full–Switch Command History Usage Information Enter a number as the priority.
Example 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-vrid-4)#show con vrrp-group 4 virtual-address 119.192.182.124 ! show vrrp View the VRRP groups that are active. If no VRRP groups are active, the system returns No Active VRRP group. Syntax Parameters show vrrp [vrrp-id] [interface] [brief] vrrp-id (OPTIONAL) Enter the Virtual Router Identifier for the VRRP group to view only that group. The range is from 1 to 255.
Item Description • State Example (Brief) N = Preempt is not enabled. Displays the operational state of the interface by using one of the following: • NA/IF (the interface is not available). • MASTER (the interface associated with the MASTER router). • BACKUP (the interface associated with the BACKUP router). Master addr Displays the IP address of the MASTER router. Virtual addr(s) Displays the virtual IP addresses of the VRRP routers associated with the interface.
Example Item Description Tracking states.. This line is displayed if the track command is configured on an interface. Below this line, the following information on the tracked interface is displayed: • Dn or Up states whether the interface is down or up. • the interface type slot/port information. Dell>show vrrp -----------------TenGigabitEthernet 1/3, VRID: 1, Net: 10.1.1.253 VRF: 0 default State: Master, Priority: 105, Master: 10.1.1.
cost Defaults cost = 10 Command Modes VRRP Supported Modes Full–Switch Command History Usage Information (OPTIONAL) Enter a number as the amount to be subtracted from the priority value. The range is 1 to 254. The default is 10. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
vrrp delay minimum Set the delay time for VRRP initialization after an interface comes up. Syntax Parameters vrrp delay minimum seconds seconds Defaults 0 Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Related Command Enter the number of seconds for the delay for VRRP initialization after an interface becomes operational. The range is from 0 to 900 (0 indicates no delay). Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Usage Information This command applies to all the VRRP configured interfaces on a system. When used with the vrrp delay minimum CLI, the later timer rules the VRRP enabling. For example, if vrrp delay reload is 600 and the vrrp delay minimum is 300: • When the system reloads, VRRP waits 600 seconds (10 minutes) to bring up VRRP on all interfaces that are up and configured for VRRP.
Defaults Not configured Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information NOTE: This command also enables you to clear the port configurations corresponding to a range of ports. • You can specify multiple ports as slot/port-range.
show vrrp ipv6 View the IPv6 VRRP groups that are active. If no VRRP groups are active, the system returns No Active VRRP group. Syntax show vrrp ipv6 [vrid] [interface] [brief] Parameters vrid (OPTIONAL) Enter the virtual router identifier for the VRRP group to view only that group. The range is from 1 to 255.
Example Line Beginning with Description Adv rcvd:... This line displays counters for the following: • Adv rcvd displays the number of VRRP advertisements received on the interface. • Adv sent displays the number of VRRP advertisements sent on the interface. • Bad pkts rcvd displays the number of invalid packets received on the interface. Virtual MAC address Displays the virtual MAC address of the VRRP group.
Usage Information The VRRP group only becomes active and sends VRRP packets when a link-local virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets. • When VRF microcode is not loaded in CAM, the VRID for a VRRP group is the same as the VRID number configured with the vrrp-group or vrrp-ipv6-group command.
Usage Information You can use the both command to migrate from VRRPv2 to VRRPv3. When you set the VRRP protocol version to both, the switch sends only VRRPv3 advertisements but can receive either VRRPv2 or VRRPv3 packets. To migrate an IPv4 VRRP group from VRRPv2 to VRRPv3: 1 Set the switches with the lowest priority to both. 2 Set the switch with the highest priority to version 3. 3 Set all the switches from both to version 3.
64 ICMP Message Types This chapter lists and describes the possible ICMP message type resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. Table 5. ICMP messages and their definitions Symbol Type Code . Description Query Error Timeout (no reply) ! 0 U 3 C 3 . destination unreachable: 0 network unreachable . 1 host unreachable . 2 protocol unreachable . 3 port unreachable .
Symbol Type & 11 Code Description Query Error time exceeded: 0 time-to-live equals 0 during transit . 1 time-to-live equals 0 during reassembly . 12 parameter problem: 1 IP header bad (catchall error) . 2 required option missing . 13 0 timestamp request . 14 0 timestamp reply . 15 0 information request (obsolete) . 16 0 information reply (obsolete) . 17 0 address mask request . 18 0 address mask reply .
65 SNMP Traps This chapter lists the traps sent by the Dell Networking Operating System (OS). Each trap is listed by the fields Message ID, Trap Type, and Trap Option. Table 6.
Message ID Trap Type Trap Option NONE NONE ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE PROTO NONE PROTO NONE %RPM0-P:CP %SNMP-4-RMON_HC_FALLING_THRESHOLD: RMON highcapacity falling threshold alarm from SNMP OID RESV N/A CHM_MIN_ALRM_TEMP %CHMGR-2-MINOR_TEMP: Minor alarm: chassis temperature CHM_MIN_ALRM_TEMP_CLR %CHMRG-5-MINOR_TEMP_CLR: Minor alarm cleared: chassis temperature normal
Message ID Trap Type Trap Option PROTO NONE PROTO NONE PROTO NONE ETS NONE ETS NONE ETS NONE ETS NONE PFC NONE PFC NONE %VRRP-6-VRRP_MASTER: vrid-%d on %s entering MASTER VRRP_PROTOCOL_ERROR VRRP_PROTOERR: VRRP protocol error on %S BGP4_ESTABLISHED %TRAP-5-PEER_ESTABLISHED: Neighbor %a, state %s BGP4_BACKW_XSITION %TRAP-5-BACKWARD_STATE_TRANS: Neighbor %a, state %s ETS_TRAP_TYPE_MODULE_STATUS_CHA NGE %DIFFSERV-5-ETS_TRAP_TYPE_MODULE_STATUS_CHANGE: ETS Module status changed to enabled %D
Message ID Trap Type Trap Option PFC NONE PFC NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE ENTITY NONE %DIFFSERV-5-PFC_TRAP_TYPE_ADMIN_MODE_CHANGE : PFC Admin mode changed to off for port %s PFC_TRAP_TYPE_OPER_STATE_CHANGE %DIFFSERV-5-PFC_TRAP_TYPE_OPER_STATE_CHANGE: PFC Oper state changed to init for port %s %DIFFSERV-5-PFC_TRAP_TYPE_OPER_STATE_CHANGE: PFC Oper state changed to off for port %s %DIFFSERV-5-PFC_TRAP_TYPE_OPER_STATE_CHANGE: PFC Oper state c
66 FC Flex IO Modules This part provides a generic, broad-level description of the operations, capabilities, and configuration commands of the Fiber Channel (FC) Flex IO module. FC Flex IO Module mentioned in this guide refers to FCF Port Combo Card.
description (for FCoE maps) In an FCoE map, add a text description of the FCoE and FC parameters used to transmit storage traffic over an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway in a converged fabric. M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax Parameters description text text Defaults None Command Modes FCOE MAP Command History Version 9.3(0.0) Enter a maximum of 32 characters.
operate as an FCoE-FC bridge between an FC SAN and an FCoE network by providing FCoE-enabled servers and switches with the necessary parameters to log in to a SAN fabric. Use the fcoe-map command to create an FCoE map. On an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway, you cannot apply an FCoE map on fabric-facing FC ports and server-facing Ethernet ports.
You must first create a VLAN and then specify the configured VLAN ID in the fabric-id vlan command. Otherwise, the following error message is displayed. FTOS(conf-fcoe-f)#fabric-id 10 vlan 10 % Error: Vlan 10 does not exist Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show fcoe-map— displays the Fibre Channel and FCoE configuration parameters in FCoE maps.
The range of FC-MAP values is from 0EFC00 to 0EFCFF. Defaults None Command Modes FCoE MAP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Supported on the FN 2210S Aggregator. 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. The FC-MAP value you enter must match the FC-MAP value used by an FC switch or FCoE forwarder (FCF) in the fabric.
Command Modes • Fka-adv-period: 8000mSec • Keepalive: enable • Vlan priority: 3 CONFIGURATION INTERFACE Command History Usage Information Version 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. An FCoE map is a template used to map FCoE and FC parameters in a converged fabric.
Command History Version 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. Usage Information To delete the FIP keepalive time period from an FCoE map, enter the no fka-adv-erpiod command. Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show fcoe-map— displays the Fibre Channel and FCoE configuration parameters in FCoE maps.
show fcoe-map— displays the Fibre Channel and FCoE configuration parameters in FCoE maps. keepalive In an FCoE map, enable the monitoring of FIP keepalive messages (if it is disabled). M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax keepalive Parameters None Defaults FIP keepalive monitoring is enabled on Ethernet and Fibre Channel interfaces. Command Modes FCOE MAP Command History Usage Information Version 9.3(0.
Command History Usage Information Version 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. Use the show fcoe-map command to display the FC and FCoE parameters used to configure server-facing Ethernet (FCoE) and fabric-facing FC ports in all FCoE maps on an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway.
Example Field Description Config-State Indicates whether the configured FCoE and FC parameters in the FCoE map are valid: Active (all mandatory FCoE and FC parameters are correctly configured) or Incomplete (either the FC-MAP value, fabric ID, or VLAN ID are not correctly configured).
Command History Usage Information Version 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. Use the show npiv devices command to display information on the server CNA, server-facing Ethernet and fabric-facing FC ports, and the SAN fabric in each server-fabric connection over an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway. The following table describes the show npiv devices brief output shown in the example below.
Example Related Commands Field Description FCoE VLAN ID of the dedicated VLAN used to transmit FCoE traffic from a server CNA to a fabric and configured on both the server-facing M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module port and server CNA port. Fabric Map Name of the FCoE map containing the FCoE/FC configuration parameters for the server CNA-fabric connection. Enode WWPN Worldwide port name of the server CNA port. Enode WWNN Worldwide node name of the server CNA.
67 X.509v3 X.509v3 is a standard for public key infrastructure (PKI) to manage digital certificates and public key encryption. This standard specifies a format for public-key certificates or digital certificates. Dell EMC Networking OS supports X.509v3 standards.
Usage Information The following RBAC roles are allowed to issue this command: • sysadmin • secadmin Before deleting a CA certificate, the system checks whether that certificate is an issuer of other installed certificate on the system. If so, the system informs you to delete other installed certificates first. Related Commands crypto ca-cert installcrypto cert generatecrypto ca-cert install crypto ca-cert install Downloads and installs the certificate of a Certificate Authority (CA) on to the device.
crypto cert delete Deletes a trusted certificate. Syntax crypto cert delete Defaults NA. Command Modes EXEC Privilege Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command: Usage Information Version Description 9.11.0.0 Introduced the command.
cert-path Enter the path to locally store the self-signed certificate or CSR. The path can be a full path or a relative path. If the system accepts this path, a notification is sent indicating the location where the CSR file is stored. You can then export the CSR to a CA using the “copy” command. Following is an example of a path that you can specify: flash:// certs/s4810-001-request.csr. key-file Enter the keyword key-file to specify the private key.
Usage Information Version Description 9.11.0.0 Introduced the command. The following RBAC roles are allowed to issue this command: • sysadmin • secadmin If the cert-file option is not specified in the command, then the system interactively prompts you to fill in various fields of the certificate signing request (CSR). You are prompted to fill out some metadata information for the certificate.
NOTE: After the certificate is successfully installed, the private key is deleted from the specified location and copied to the hidden location in NVRAM. password passphrase (Optional) Enter the keyword password followed by the password phrase used to decrypt the private key. NOTE: You can generate the private key and certificate on another host. While doing so, you must keep the private key encrypted with a passphrase so that the private key is not compromised during transport.
crypto x509 ocsp Configures the OCSP behavior. Syntax crypto x509 ocsp [nonce] [sign-requests] Parameters nonce Enter the keyword nonce to use the nonce feature for the OCSP requests to OCSP responder communication. This is a one-time value that must be returned in the OCSP response. If the OCSP responder is using precomputed responses, then it does not reply with the nonce. The nonce feature is off by default. The no version of the command disables the nonce feature.
reject Defaults Command Modes Command History Enter the keyword reject to reject the presented certificate and log in if OCSP retrieval fails. crypto x509 revocation ocsp accept • CONFIGURATION Mode This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command: Related Commands Version Description 9.11.0.
logging secure Creates a log file for various events related to X.509v3 certificates. Syntax logging {hostname} {secure | tcp | udp} [vrf vrf-name] [sha1 fingerprint] [port port-number] Parameters hostname Enter the name of the host or device for which you wish to record logs corresponding to the certificates. NOTE: The hostname can be an IPV4 address, an IPV6 address, or a DNS hostname—with or without DNS suffix.
Related Commands • crypto cert install • crypto ca-cert install • crypto cert generate crypto x509 ca-keyid Creates a per-certificate configuration context using the specified subject key identifier. Syntax crypto x509 ca-keyid subject-key-identifier Use to the no crypto x509 ca-keyid command to remove this configuration. Parameters Defaults Command Modes Command History subject-keyidentifier Enter the content of the SubjectKeyIdentifier field from the CA certificate.
ocsp-server Configures OCSP server on a CA. Syntax ocsp-server url [nonce] [sign-requests] Parameters url Enter the URL for the OCSP responder using standard URI format. Either http or https protocol can be used. For example, http://[1100::101]:8888. nonce Enter the keyword nonce to use the nonce feature for the OCSP requests to OCSP responder communication. This number is a one-time value that must be returned in the OCSP response.
Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command: Usage Information Version Description 9.11.0.0 Introduced this command.
show crypto cert Displays the certificate information that is specified. Syntax show crypto cert {path} Parameters path (OPTIONAL) Enter the path to a local file where a certificate chain is stored in PEM format. If a path is not specified, display the certificate that is currently installed on the system. Defaults None. Command Modes EXEC Privilege Command History This guide is platform-specific.
