Dell Networking Command Line Reference Guide for the MXL 10/40GbE Switch I/O Module 9.8(0.
Notes, cautions, and warnings NOTE: A NOTE indicates important information that helps you make better use of your computer. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. Copyright © 2015 Dell Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws.
Contents 1 About this Guide.............................................................................................................41 Objectives......................................................................................................................................................................... 41 Audience...........................................................................................................................................................................
banner exec......................................................................................................................................................................72 banner login......................................................................................................................................................................73 banner motd............................................................................................................................................
show processes ipc flow-control.....................................................................................................................................104 show processes memory................................................................................................................................................ 105 show software ifm..........................................................................................................................................................
show ip accounting access-list....................................................................................................................................... 135 Standard IP ACL Commands.......................................................................................................................................... 135 deny (for Standard IP ACLs)...........................................................................................................................................
match ip address.............................................................................................................................................................179 match ip next-hop...........................................................................................................................................................179 match ip route-source..........................................................................................................................................
member vlan.................................................................................................................................................................. 244 ip access-group..............................................................................................................................................................244 show acl-vlan-group .........................................................................................................................................
bgp fast-external-failover............................................................................................................................................... 272 bgp four-octet-as-support............................................................................................................................................. 272 bgp graceful-restart...................................................................................................................................................
neighbor shutdown.........................................................................................................................................................297 neighbor soft-reconfiguration inbound........................................................................................................................... 298 neighbor timers..............................................................................................................................................................
ipv6 prefix-list................................................................................................................................................................ 335 show ipv6 prefix-list....................................................................................................................................................... 335 IPv6 MBGP Commands........................................................................................................................................
show stack-unit stack-ports ets details..........................................................................................................................368 dcb pfc-shared-buffer-size............................................................................................................................................ 369 dcb-buffer-threshold .....................................................................................................................................................
show ip dhcp binding..................................................................................................................................................... 403 show ip dhcp configuration............................................................................................................................................ 403 show ip dhcp conflict..................................................................................................................................................
show config....................................................................................................................................................................424 show link-bundle distribution.......................................................................................................................................... 424 16 FC FLEXIO FPORT.................................................................................................... 425 feature fc...........................
mode...............................................................................................................................................................................451 protocol frrp...................................................................................................................................................................452 show frrp............................................................................................................................................
interface ManagementEthernet..................................................................................................................................... 478 interface null...................................................................................................................................................................479 interface range......................................................................................................................................................
show ip udp-helper........................................................................................................................................................ 522 Enhanced Validation of Interface Ranges....................................................................................................................... 522 23 IPv4 Routing............................................................................................................. 524 arp.........................................
show ip route summary..................................................................................................................................................554 show ip traffic................................................................................................................................................................ 555 show tcp statistics..............................................................................................................................................
show ipv6 mld_host.......................................................................................................................................................586 show ipv6 route............................................................................................................................................................. 586 trust ipv6-diffserv...............................................................................................................................................
distance bgp................................................................................................................................................................... 612 maximum-paths.............................................................................................................................................................. 612 neighbor activate...........................................................................................................................................
show ip bgp ipv6 unicast inconsistent-as....................................................................................................................... 636 show ip bgp ipv6 unicast neighbors............................................................................................................................... 636 show ip bgp ipv6 unicast peer-group.............................................................................................................................
show ip bgp ipv6 unicast summary................................................................................................................................ 664 28 iSCSI Optimization.................................................................................................... 666 advertise dcbx-app-tlv................................................................................................................................................... 666 iscsi aging time..............................
isis circuit-type............................................................................................................................................................... 687 isis csnp-interval.............................................................................................................................................................687 isis csnp-interval......................................................................................................................................
31 Layer 2....................................................................................................................... 718 MAC Addressing Commands.......................................................................................................................................... 718 clear mac-address-table .................................................................................................................................................718 mac-address-table aging-time...........
advertise med power-via-mdi......................................................................................................................................... 744 advertise med softphone-voice...................................................................................................................................... 744 advertise med streaming-video......................................................................................................................................
show spanning-tree msti................................................................................................................................................ 767 spanning-tree................................................................................................................................................................. 769 spanning-tree msti...............................................................................................................................................
ip ospf auth-change-wait-time.......................................................................................................................................795 ip ospf authentication-key..............................................................................................................................................795 ip ospf cost................................................................................................................................................................
area authentication........................................................................................................................................................ 830 area encryption............................................................................................................................................................... 831 clear ipv6 ospf process......................................................................................................................................
ip pim dr-priority.............................................................................................................................................................862 ip pim join-filter.............................................................................................................................................................. 862 ip pim ingress-interface-map............................................................................................................................
show monitor session.....................................................................................................................................................888 show running-config monitor session.............................................................................................................................888 source (port monitoring)................................................................................................................................................
match ip vlan.................................................................................................................................................................. 918 match ip vrf.................................................................................................................................................................... 918 description............................................................................................................................................
distribute-list in.............................................................................................................................................................. 946 distribute-list out............................................................................................................................................................ 947 ip poison-reverse......................................................................................................................................
spanning-tree rstp...........................................................................................................................................................971 spanning-tree rstp.......................................................................................................................................................... 973 tc-flush-standard.............................................................................................................................................
tacacs-server host....................................................................................................................................................... 1000 tacacs-server key..........................................................................................................................................................1001 SSH Server and SCP Commands.................................................................................................................................
sflow polling-interval (Global)....................................................................................................................................... 1026 sflow polling-interval (Interface)....................................................................................................................................1027 sflow sample-rate (Global)............................................................................................................................................
logging facility...............................................................................................................................................................1054 logging history.............................................................................................................................................................. 1055 logging history size.....................................................................................................................................
protocol spanning-tree..................................................................................................................................................1078 show config.................................................................................................................................................................. 1079 show spanning-tree 0............................................................................................................................................
ignore enable password................................................................................................................................................. 1105 ignore startup config..................................................................................................................................................... 1106 interface management ethernet ip address...................................................................................................................
lacp ungroup member-independent vlt.......................................................................................................................... 1128 multicast peer-routing timeout...................................................................................................................................... 1128 peer-link port-channel...................................................................................................................................................
63 SNMP Traps............................................................................................................. 1156 64 FC Flex IO Modules.................................................................................................. 1160 FC Flex IO Modules....................................................................................................................................................... 1160 Data Center Bridging (DCB) for FC Flex IO Modules...................................
1 About this Guide This book provides information about the Dell Networking Operating System (OS) command line interface (CLI). This book also includes information about the protocols and features found in the Dell OS and on the Dell Networking systems supported by the Dell OS.
x|y Keywords and parameters separated by a bar require you to choose one option. x||y Keywords and parameters separated by a double bar allows you to choose any or all of the options. Information Icons This book uses the following information symbols: NOTE: The Note icon signals important operational information. CAUTION: The Caution icon signals information about situations that could result in equipment damage or loss of data.
2 CLI Basics This chapter describes the command line interface (CLI) structure and command modes. The Dell operating software commands are in a text-based interface that allows you to use the launch commands, change command modes, and configure interfaces and protocols. Accessing the Command Line When the system boots successfully, you are positioned on the command line in EXEC mode and not prompted to log in. You can access the commands through a serial console port or a Telnet session.
In this case, the user is “admin” on vty2. Navigating the CLI The Dell Networking Operating System (OS) displays a command line interface (CLI) prompt comprised of the host name and CLI mode. • Host name is the initial part of the prompt and is “Dell” by default. You can change the host name with the hostname command. • CLI mode is the second part of the prompt and reflects the current CLI mode.
Example The following is an example of typing ip ? at the prompt: Dell(conf)#ip ? igmp Internet Group Management Protocol route Establish static routes telnet Specify telnet options When entering commands, you can take advantage of the following timesaving features: • The commands are not case-sensitive. • You can enter partial (truncated) command keywords. For example, you can enter int gig int interface for the interface gigabitethernet interface command.
Using the Keyword no Command To disable, delete or return to default values, use the no form of the commands. For most commands, if you type the keyword no in front of the command, you disable that command or delete it from the running configuration. In this guide, the no form of the command is described in the Syntax portion of the command description.
Command Modes To navigate and launch various CLI modes, use specific commands. Navigation to these modes is described in the following sections. EXEC Mode When you initially log in to the switch, by default, you are logged in to EXEC mode. This mode allows you to view settings and enter EXEC Privilege mode, which is used to configure the device. When you are in EXEC mode, the > prompt is displayed following the host name prompt, which is “Dell” by default.
Prompt Interface Type Dell(conf-ifnu-0)# Null Interface then zero Dell(conf-ifpo-0)# Port-channel interface number Dell(conf-ifvl-0)# VLAN Interface then VLAN number (range 1–4094) Dell(conf-ifma-0/0)# Management Ethernet interface then slot/port information Dell(conf-ifrange)# Designated interface range (used for bulk configuration).
1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the protocol spanning-tree mstp command. You can return to CONFIGURATION mode by using the exit command. Per-VLAN SPANNING TREE (PVST+) Plus Mode To enable and configure the Per-VLAN Spanning Tree (PVST+) protocol, use PVST+ mode. For more information, refer to Per-VLAN Spanning Tree Plus (PVST+). NOTE: The protocol name is PVST+, but the plus sign is dropped at the CLI prompt. To enter PVST+ mode: 1.
2. Use the route-map map-name [permit | deny] [sequence-number] command. The prompt changes to include (config-route-map). You can return to CONFIGURATION mode by using the exit command. ROUTER OSPF Mode To configure OSPF, use ROUTER OSPF mode. For more information, refer to Open Shortest Path First (OSPF). To enter ROUTER OSPF mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the router ospf {process-id} command. The prompt changes to include (conf-router_ospf-id).
3 File Management This chapter contains command line interface (CLI) commands needed to manage the configuration files as well as other file management commands. The commands in this chapter are supported by the Dell Networking Operating System (OS). boot system Tell the system where to access the Dell Networking OS image used to boot the system.
Usage Information Version Description 9.7(0.0) Introduced the support for bmp-boot on the MXL switch. 8.3.19.0 Introduced on the S4820T. 8.3.17.0 Introduced on the MXL switch. 8.3.11.1 Introduced on the Z9000. 8.3.7.0 Introduced on the S4810. To display these changes in the show bootvar command output, save the running configuration to the startup configuration (using the copy command) and reload system. The keyword bmp-boot is used only when the device boots up from BMP.
Command Modes Command History Usage Information To copy the startup configuration Enter the keywords startup-config. To copy a file on the external FLASH Enter the keyword slot0:// then the filename. EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The Dell Networking OS supports a maximum of 100 files at the root directory level, on both the internal and external Flash. The usbflash commands are supported.
Example Dell#copy scp: flash: Address or name of remote host []: 10.11.199.134 Port number of the server [22]: 99 Source file name []: test.cfg User name to login remote host: admin Password to login remote host: Destination file name [test.cfg]: test1.cfg Related Commands cd – changes the working directory. copy running-config startup-config Copy running configuration to the startup configuration.
7 -rwx 4260 Mar 03 2010 22:04:50 +00:00 prem-23-5-12 8 -rwx 31969685 Mar 05 2010 17:56:26 +00:00 DellS-XL-8-3-16-148.bin 9 -rwx 3951 Mar 06 2010 00:36:18 +00:00 startup-config flash: 2143281152 bytes total (1389801472 bytes free) Dell# Related Commands cd — Changes the working directory. format flash Erase all existing files and reformat the filesystem in the internal flash memory. After the filesystem is formatted, files cannot be restored.
User name to login remote host: x Password to login remote host: Destination file name [sample_file]: Defaults None. Command Modes EXEC Privilege Command History Version Description 9.3(0.1) Introduced on the S6000, Z9000, S4810, and S4820T. Example copy http://admin:admin123@10.16.206.77/sample_file flash://sample_file Related Commands copy ftp:flash Copy files from FTP server to switch logging coredump Enable coredump.
type Enter the password type: password • Enter 0 to enter an unencrypted password. • Enter 7 to enter a password that has already been encrypted using a Type 7 hashing algorithm. Enter a password to access the target server. Defaults Crash kernel files are uploaded to flash by default. Command Modes CONFIGURATION Command History Usage Information Version 8.4.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. restore factory-defaults Restore factory defaults. Syntax restore factory-defaults stack-unit {0-5 | all} {clear-all | bootvar | nvram} Parameters factory-defaults Return the system to its factory default mode. 0-5 Enter the stack member unit identifier to restore only the mentioned stack-unit. all Enter the keyword all to restore all units in the stack.
Following are the factory-default environment variables: • baudrate • primary_boot • secondary_boot • default_boot • ipaddr • gatewayip • netmask • macaddr • mgmtautoneg • mgmtspeed100 • mgmtfullduplex Each boot path variable (primary_boot, secondary_boot, and default_boot) is further split into the following three independent variables: • primary_server, primary_file, and primary_type • secondary_server, secondary_file, and secondary_type • default_server, default_file, and defau
Power-cycling the unit(s). Dell# Example (NvRAM all Dell#restore factory-defaults stack-unit all nvram ************************************************************** stack units) * Warning - Restoring factory defaults will delete the existing * * persistent settings (stacking, fanout, etc.) * * All the units in the stack will be split into standalone units. * * After restoration the unit(s) will be powercycled immediately.
Example Dell#show boot system stack-unit all Current system image information in the system: ============================================= Type Boot Type A B --------------------------------------------Stack-unit 0 is not present. Stack-unit 1 is not present. Stack-unit 2 is not present. Stack-unit 3 is not present. Stack-unit 4 is not present. Stack-unit 5 DOWNLOAD BOOT 9-1-0-675 9-1-0-684 show file Display contents of a text file in the local filesystem.
show file-systems Display information about the file systems on the system. Syntax show file-systems Command Modes EXEC Privilege Command History Example Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module.
Defaults none Command Modes EXEC Privilege • For a file on an FTP server, enter ftp://user:password@hostip/ filepath. • For a file on a TFTP server, enter tftp://hostip/filepath. • For a file on the external Flash, enter usbflash://filepath then the filename. Command History Version 8.3.16.1 Usage Information Example Introduced on the MXL 10/40GbE Switch IO Module. NOTE: A filepath that contains a dot ( . ) is not supported.
File Management acl for the current ACL configuration arp for the current static ARP configuration boot for the current boot configuration class-map for the current class-map configuration fefd for the current FEFD configuration ftp for the current FTP configuration fvrp for the current FVRP configuration host for the current host configuration hardwaremonitor for hardware-monitor action-on-error settings igmp for the current IGMP configuration interface for the current interface c
Command Modes Command History tacacs+ for the current TACACS+ configuration tftp for the current TFTP configuration users for the current users configuration wred-profile for the current wred-profile configuration configured (OPTIONAL) Enter the keyword configuration to display line card interfaces with non-default configurations only. status (OPTIONAL) Enter the keyword status to display the checksum for the running configuration and the start-up configuration. EXEC Privilege Version 8.3.16.
Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show startup-config ! Version E8-3-16-29 ! Last configuration change at Thu Apr 26 19:19:02 2012 by default ! Startup-config last updated at Thu Apr 26 19:19:04 2012 by default ! boot system stack-unit 0 primary system: A: boot system stack-unit 0 secondary tftp://10.11.200.241/ dt-m1000e-5-c2 boot system gateway 10.11.209.
Command Fields Lines Beginning With Description Dell Force10 Network... Name of the operating system Dell Force10 Operating... OS version number Dell Force10 Application... Software version Copyright (c)... Copyright information Build Time... Software build’s date stamp Build Path... Location of the software build files loaded on the system Dell Force10 uptime is... Amount of time the system has been up System image...
tftp: After entering the keyword tftp:, you can either follow it with the location of the source file in this form: //hostlocation/filepath or press Enter to launch a prompt sequence. flash: After entering the keyword flash:, you can either follow it with the location of the source file in this form: //filepath or press Enter to launch a prompt sequence.
usbflash After entering the keyword usbflash you can either follow it with the location of the source file in this form://filepath, or press Enter to launch a prompt sequence. A: Enter this keyword to upgrade the bootflash partition A. B: Enter this keyword to upgrade the bootflash partition B. Defaults none Command Modes EXEC Privilege Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Example Version Description 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, and MXL. You can enter this command in the following ways: • verify md5 flash://img-file • verify md5 flash://img-file • verify sha256 flash://img-file • verify sha256 flash://img-file Without Entering the Hash Value for Verification using SHA256 Dell# verify sha256 flash://FTOS-SE-9.5.0.0.bin SHA256 hash for FTOS-SE-9.5.0.0.
4 Control and Monitoring This chapter describes control and monitoring for the MXL 10/40GbE Switch IO Module. asset-tag Assign and store a unique asset-tag to the stack member. Syntax asset-tag stack-unit unit id Asset-tag ID To remove the asset tag, use no stack-unit unit-id Asset-tag ID command. Parameters stack-unit unit-id Enter the keywordsstack-unit then the unit-id to assign a tag to the specific member. The range is from 0 to 5.
Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You must save the configuration and reload the system to implement ASF. When you enter the command, the system sends a message stating that the new mode is enabled when the system reloads. banner exec Configure a message that is displayed when your enter EXEC mode.
banner login Set a banner to display when logging on to the system. Syntax Parameters banner login {keyboard-interactive | no keyboard-interactive} [c line c] keyboardinteractive Enter the keyword keyboard-interactive to require a carriage return (CR) to get the message banner prompt. c Enter a delineator character to specify the limits of the text banner. The delineator is a percent character (%). line Enter a text string for your text banner message ending the message with your delineator.
banner motd Set a message of the day (MOTD) banner. Syntax banner motd c line c Parameters c Enter a delineator character to specify the limits of the text banner. The delineator is a percent character (%). line Enter a text string for your message of the day banner message ending the message with your delineator. The delineator is a percent character (%). Defaults No banner is configured. Command Modes CONFIGURATION Command History Version 8.3.16.
clear line Reset a terminal line. Syntax Parameters Command Modes Command History clear line {line-number | console 0 | vty number} line-number Enter a number for one of the 12 terminal lines on the system. The range is from 0 to 11. console 0 Enter the keywords console 0 to reset the console port. vty number Enter the keyword vty then a number to clear a terminal line. The range is from 0 to 9. EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
The following message is an indication that collection of CPU traffic is automatically turned on. To view the traffic statistics, use the show cpu-traffic-stats command. If the CPU receives excessive traffic, traffic is rate controlled. NOTE: You must enable this command before the show cpu-traffic-stats command displays traffic statistics. Dell Networking OS recommends disabling debugging (no debug cputraffic-stats) after troubleshooting is complete.
Command Modes Command History Usage Information Example • CONFIGURATION • INTERFACE Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
enable optic-info-update interval Enable polling intervals of optical information updates for simple network management protocol (SNMP). Syntax enable optical-info-update interval seconds To disable optical power information updates, use the no enable optical-info-update interval command. Parameters interval seconds Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Enter the keyword interval then the polling interval in seconds.
Command Modes Command History LINE Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Optionally, use the banner exec command to create a text string that is displayed when you access EXEC mode. This command toggles that display. Related Commands banner exec — configures a banner to display when entering EXEC mode. line — enables and configures console and virtual terminal lines to the system.
Command History Related Commands • SPANNING TREE • MULTIPLE SPANNING TREE • MAC ACCESS LIST • ACCESS-LIST • PREFIX-LIST • ROUTER OSPF • ROUTER RIP Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. end — returns to EXEC Privilege mode. ftp-server enable Enable FTP server functions on the system. Syntax ftp-server enable Defaults Disabled Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ftp-server topdir Specify the top-level directory to be accessed when an incoming FTP connection request is made. Syntax Parameters ftp-server topdir directory directory Enter the directory path. Defaults The internal flash is the default directory. Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
hostname Set the host name of the system. Syntax hostname name Parameters name Defaults Dell Command Modes CONFIGURATION Command History Usage Information Enter a text string, up to 32 characters long. Version 9.3(0.0) Modified the default hostname as Dell. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The hostname is used in the prompt. You cannot specify spaces in the hostname. Starting with Dell Networking OS version 9.3(0.
ip ftp source-interface Specify an interface’s IP address as the source IP address for FTP connections. Syntax Parameters ip ftp source-interface interface interface Enter the following keywords and slot/port or number information: • For Loopback interfaces, enter the keyword loopback then a number from zero (0) to 16383. • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
To disable the Telnet server, use the no ip telnet server enable command. Defaults Enabled Command Modes CONFIGURATION Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip ssh server — enables the secure shell (SSH) server on the system. ip telnet source-interface Set an interface’s IP address as the source address in outgoing packets for Telnet sessions.
• For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For VLAN interface, enter the keyword vlan then a number from 1 to 4094. Defaults The IP address on the system that is closest to the Telnet address is used in the outgoing packets. Command Modes CONFIGURATION Command History Verison 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters limit number-ofsessions Sets the number of concurrent sessions that any user can have on console and virtual terminal lines. The range is from 1 to 12 (10 VTY lines, one console, and one AUX line). clear-line enable Enables you to clear your existing sessions. Defaults Not configured. You can use all the available sessions. Command Modes CONFIGURATION Command History This guide is platform-specific.
When you try to create more than the permitted number of sessions, the following message appears, prompting you to close one of your existing sessions. You must close any of your existing sessions to login to the system . $ telnet 10.11.178.14 Trying 10.11.178.14... Connected to 10.11.178.14. Escape character is '^]'. Login: admin Password: Maximum concurrent sessions for the user reached. Current sessions for user admin: Line Location 2 vty 0 10.14.1.97 3 vty 1 10.14.1.97 4 vty 2 10.14.1.97 5 vty 3 10.14.
Usage Information Only the system and security administrators can configure login activity tracking and view the login activity details of other users. If you enable user login statistics, the system displays the last successful login details of the current user and the details of any failed login attempts by others. If you use the login statistics time-period days command to set a custom time period, the system only reports the login statistics during that interval.
Defaults Enabled on all lines. Command Modes LINE Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ping Test connectivity between the system and another device by sending echo requests and waiting for replies.
validate-reply (IPv4 only) Enter Y or N for reply validation. • N: Do not validate reply data. • Y: Do validate reply data. Default is No. Defaults pattern pattern (IPv4 only) Enter the IPv4 data pattern. Range: 0-FFFF. Default: 0xABCD. sweep-min-size Enter the minimum size of datagram in sweep range. The range is from 52 to 15359 bytes. sweep-max-size Enter the maximum size of datagram in sweep range. The range is from 53 to 15359 bytes.
!!!!! Success rate is 100.0 percent (5/5), round-trip min/avg/max = 0/0/0 (ms) Dell# reload Reboot the Dell Networking OS. Syntax reload Command Modes EXEC Privilege Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If there is a change in the configuration, the Dell Networking OS prompts you to save the new configuration. Or you can save your running configuration with the copy running-config command.
Parameters debug (OPTIONAL) Enter the keyword debug to add timestamps to debug messages. log (OPTIONAL) Enter the keyword log to add timestamps to log messages with severity from 0 to 6. datetime (OPTIONAL) Enter the keyword datetime to have the current time and date added to the message. localtime (OPTIONAL) Enter the keyword localtime to include the localtime in the timestamp. msec (OPTIONAL) Enter the keyword msec to include milliseconds in the timestamp.
Dell# show command-history Display a buffered log of all commands all users enter along with a time stamp. Syntax show command-history Defaults none Command Modes Command History • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information One trace log message is generated for each command. No password information is saved to this file.
show command-tree Display the entire CLI command tree, and optionally, display the utilization count for each command and its options. Syntax show command-tree [count | no] Parameters Defaults count Display the command tree with a usage counter for each command. no Display all of the commands that may be preceded by the keyword no, which is the keyword used to remove a command from the running-configuration. none Command Modes Command History • EXEC • EXEC Privilege Version 8.3.16.
clear ip route Dell# command usage:1 show cpu-traffic-stats View the CPU traffic statistics. Syntax Parameters show cpu-traffic-stats [port number | all] port number (OPTIONAL) Enter the port number to display traffic statistics on that port only. The range is from 1 to 1568. all (OPTIONAL) Enter the keyword all to display traffic statistics on all the interfaces receiving traffic, sorted based on the traffic. Defaults all Command Modes EXEC Command History Usage Information Version 8.3.16.
TenGigabitEthernet 0/16 ICMP packet debugging is on for TenGigabitEthernet 0/16 OSPF:1 OSPF packet debugging is on DHCP: DHCP debugging is on Dell# show environment View system component status (for example, temperature or voltage). Syntax show environment [all | stack-unit unit-id] Parameters Command Modes Command History all Enter the keyword all to view all components. stack-unit unit-id Enter the keyword stack-unit then the unit-id to display information on a specific stack member.
Example (thermalsensor) Dell#show environment thermal-sensor -- Thermal Sensor Readings (deg C) -Unit Sensor0 Sensor1 Sensor2 Sensor3 Sensor4 Sensor5 Sensor6 Sensor7 Sensor8 Sensor9 ---------------------------------------------------------------------------------0 50 52 53 53 54 48 57 5753 56 * Management Unit Dell# show inventory Display the switch type, components (including media), and Dell Networking OS version including hardware identification numbers and configured protocols.
0 49 0 50 0 51 0 52 0 53 0 54 0 55 0 56 Dell# Related Commands Media not present or accessible Media not present or accessible Media not present or accessible Media not present or accessible QSFP 40GBASE-SR4 MK50012 QSFP 40GBASE-SR4 MK50012 QSFP 40GBASE-SR4 MK50012 QSFP 40GBASE-SR4 MK50012 No No No No show interfaces — displays a specific interface configuration. show interfaces transceiver — displays the physical status and operational status of an installed transceiver.
Usage Information Use the show login statistics command to view the successful and failed login details of the current user in the last 30 days or the custom defined time period. Use the show login statistics all command to view the successful and failed login details of all users in the last 30 days or the custom defined time period. You can use this command only if you have system or security administrator rights.
The following is sample output of the show login statistics unsuccessful-attempts command. Dell#show login statistics unsuccessful-attempts There were 3 unsuccessful login attempt(s) for user admin in last 30 day(s). The following is sample output of the show login statistics unsuccessful-attempts timeperiod days command. Dell#show login statistics unsuccessful-attempts time-period 15 There were 0 unsuccessful login attempt(s) for user admin in last 15 day(s).
show processes cpu Display CPU usage information based on processes running. Syntax Parameters show processes cpu [management-unit 1-99 [details] | stack-unit 0–5 | summary | ipc | memory [stack-unit 0–5]] management-unit 1-99 [details] (OPTIONAL) Display processes running in the control processor. The 1-99 variable sets the number of tasks to display in order of the highest CPU usage in the past five (5) seconds. Add the keyword details to display all running processes (except sysdlp).
frrp Dell# Example (stack-unit) Dell#show process cpu stack-unit 0 CPU utilization for five seconds: 4%/0%; one minute: 3%; five minutes: 2% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 0x763a7000 96806080 9680608 10000 3.00% 3.25% 2.93% 0 KP 0x760d5000 26384050 2638405 10000 1.00% 0.50% 0.32% 0 frrpagt 0x762da000 491370 49137 10000 0.00% 0.00% 0.00% 0 F10StkMgr 0x762f9000 665580 66558 10000 0.00% 0.00% 0.00% 0 lcMgr 0x7631d000 37580 3758 10000 0.00% 0.00% 0.
f10appioserv vrrp f10appioserv frrp f10appioserv xstp f10appioserv pim f10appioserv igmp f10appioserv mrtm f10appioserv l2mgr f10appioserv l2pm f10appioserv arpm Dell# 225280 335872 225280 180224 225280 2740224 225280 1007616 225280 401408 225280 5496832 225280 1036288 225280 172032 225280 192512 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 208896 8048640 208896 7512064 208896 9801728 208896 7757824 208896 7639040 208896 11124736 208896 16134144 208896 7483392 208896 7057408
show processes ipc flow-control Display the single window protocol queue (SWPQ) statistics. Syntax show processes ipc flow-control [cp] Parameters Defaults cp (OPTIONAL) Enter the keyword cp to view the control processor’s SWPQ statistics. none Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ACL0 RTM0 ACL0 DIFFSERV0 ACL0 IGMP0 ACL0 PIM0 ARPMGR0 MRTM0 LACP0 IFMGR0 RTM0 OTM0 RTM0 OTM0 Dell# Len Mark Out 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ies Sent Rcvd Retra Retra 0 0 0 10 10 0 0 0 10 10 0 0 0 10 10 0 0 0 10 10 0 0 0 100 100 0 0 0 25 25 0 0 0 60 60 0 0 0 60 60 show processes memory Display memory usage information based on the running processes.
show processes memory output Description Frees Total dynamic memory freed Max Maximum dynamic memory allocated Current Current dynamic memory in use Field The output for the show process memory command displays the memory usage statistics running on CP part (sysd) of the system. The sysd is an aggregate task that handles all the tasks running on the MXL 10/40GbE Switch IO Module’s CP. The output of the show memory command and this command differ based on which the Dell OS processes are counted.
show software ifm Display interface management (IFM) data. Syntax Parameters Defaults Command Modes Command History Example show software ifm {clients [summary] | ifagt number | ifcb interface | stack-unit unit-ID | trace-flags} clients Enter the keyword clients to display IFM client information. summary (OPTIONAL) Enter the keyword summary to display brief information about IFM clients.
LLDP 0 0x007f2433 0x0408c000 0x007f2433 0x0408c000 60 --More-- show system Display the current status of all stack members or a specific member. Syntax show system [brief | stack-unit unit-id] Parameters Command Modes Command History Example (brief) brief (OPTIONAL) Enter the keyword brief to view an abbreviated list of system information. stack-unit unit-id (OPTIONAL) Enter the keyword stack-unit then the stack member ID for information on that stack member. The range is 0 to 5.
Voltage : ok Switch Power : GOOD Product Name : Force10 MXL 10/40GbE Mfg By : DELL Mfg Date : 2012-01-05 Serial Number : DELL123456 Part Number : 0NVH81X01 Piece Part ID : N/A PPID Revision : N/A Service Tag : N/A Expr Svc Code : N/A Chassis Svce Tag: RTWB200 Fabric Id : C2 Asset tag : test PSOC FW Rev : 0xb ICT Test Date : 0-0-0 ICT Test Info : 0x0 Max Power Req : 31488 Fabric Type : 0x3 Fabric Maj Ver : 0x1 Fabric Min Ver : 0x0 SW Manageability: 0x4 HW Manageability: 0x1 Max Boot Time : 6 minutes Link Tun
save Command Modes Command History Usage Information Enter the keyword save to save the command output. flash: Save to local flash drive (flash://filename [max 20 chars] ). EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Without the page or stack-unit option, the command output is continuous. Use Ctrl-z to interrupt the command output. The save option works with other filtering commands. This allows you to save specific information of a show command.
Directory of flash: Directory of flash: 1 drwx 4096 2 drwx 2048 3 drwx 4096 4 drwx 4096 5 d--4096 6 -rwx 10303 7 -rwx 7366 8 -rwx 4 9 -rwx 12829 10 drwx 4096 11 -rwx 7689 Jan May Jan Jan Jan Mar Apr Feb Feb Mar Feb 01 16 24 24 24 15 20 19 18 08 21 1980 2012 2012 2012 2012 2012 2012 2012 2012 2012 2012 01:00:00 10:49:01 19:38:32 19:38:32 19:38:34 18:37:20 10:57:02 07:05:02 02:24:14 22:58:54 04:45:40 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 . ..
Rcvd: 4618 total, 0 checksum errors, 0 no port Sent: 5023 total ARP statistics: Rcvd: 43988 requests, 24518 replies, 10 wrong interface Sent: 42 requests, 6 replies (0 proxy) Related Commands show version — Displays the Dell Networking OS version. show system — Displays the current switch status. show environment — Displays the system component status. show processes memory — Displays memory usage based on running processes. telnet Connect through Telnet to a server.
terminal xml Enable XML mode in Telnet and SSH client sessions. Syntax terminal xml To exit XML mode, use the terminal no xml command. Defaults Command Modes Command History Usage Information Disabled • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command enables the XML input mode where you can either cut and paste XML requests or enter the XML requests line-by-line.
----------------------------------------------Tracing the route to www.force10networks.com (10.11.84.18), 30 hops max, 40 byte packets ----------------------------------------------TTL Hostname Probe1 Probe2 Probe3 1 10.11.199.190 001.000 ms 001.000 ms 002.000 ms 2 gwegress-sjc-02.force10networks.com (10.11.30.126) 005.000 ms 001.000 ms 001.000 ms 3 fw-sjc-01.force10networks.com (10.11.127.254) 000.000 ms 000.000 ms 000.000 ms 4 www.force10networks.com (10.11.84.18) 000.000 ms 000.000 ms 000.
write Copy the current configuration to either the startup-configuration file or the terminal. Syntax Parameters Command Modes Command History Usage Information write {memory | terminal} memory Enter the keyword memory to copy the current running configuration to the startup configuration file. This command is similar to the copy runningconfig startup-config command. terminal Enter the keyword terminal to copy the current running configuration to the terminal.
5 802.1X An authentication server must authenticate a client connected to an 802.1X switch port. Until the authentication, only extensible authentication protocol over LAN (EAPOL) traffic is allowed through the port to which a client is connected. After authentication is successful, normal traffic passes through the port. The Dell Networking operating software supports remote authentication dial-in service (RADIUS) and active directory environments using 802.1X Port Authentication.
Defaults Disabled Command Modes EXEC Privilege Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x auth-fail-vlan Configure an authentication failure VLAN for users and devices that fail 802.1X authentication. Syntax dot1x auth-fail-vlan vlan-id [max-attempts number] To delete the authentication failure VLAN, use the no dot1x auth-fail-vlan vlan-id [maxattempts number] command. Parameters vlan-id Enter the VLAN Identifier. The range is from 1 to 4094.
Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x auth-type mab-only To authenticate a device with MAC authentication bypass (MAB), only use the host MAC address. Syntax dot1x auth-type mab-only Defaults Disabled Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The prerequisites for enabling MAB-only authentication on a port are: • Enable 802.
dot1x authentication (Interface) Enable dot1x on an interface. Enable dot1x both globally and at the interface level. Syntax dot1x authentication To disable dot1x on an interface, use the no dot1x authentication command. Defaults Disabled Command Modes INTERFACE Command History Related Commands Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x authentication (Configuration) — Enable dot1x globally.
dot1x host-mode Enable single-host or multi-host authentication. Syntax dot1x host-mode {single-host | multi-host | multi-auth} Parameters single-host Enable single-host authentication. multi-host Enable multi-host authentication. multi-auth Enable multi-supplicant authentication. Defaults single-host Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Parameters number Defaults 2 Command Modes INTERFACE Command History Version 9.2(0.0) Enter the number of times an EAP request is transmitted before a session timeout. The range is from 1 to 10. The default is 2. Introduced on the MXL 10/40GbE Switch IO Module. dot1x max-supplicants Restrict the number of supplicants that can be authenticated and permitted to access the network through the port. This configuration is only takes effect in Multi-Auth mode.
dot1x quiet-period Set the number of seconds that the authenticator remains quiet after a failed authentication with a client. Syntax dot1x quiet-period seconds To disable quiet time, use the no dot1x quiet-time command. Parameters seconds Defaults 60 seconds Command Modes INTERFACE Command History Version 9.2(0.0) Enter the number of seconds. The range is from 1 to 65535. The default is 60. Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x server-timeout Configure the amount of time after which exchanges with the server time-out. Syntax dot1x server-timeout seconds To return to the default, use the no dot1x server-timeout command. Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Enter a time-out value in seconds. The range is from 1 to 300, where 300 is implementation dependant.
Command Modes Command History INTERFACE Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x tx-period Configure the intervals at which EAPOL PDUs the Authenticator PAE transmits. Syntax dot1x tx-period seconds To return to the default, use the no dot1x tx-period command. Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Version 9.2(0.0) Enter the interval time, in seconds, that EAPOL PDUs are transmitted. The range is from 1 to 65535.
Usage Information To display CoS mapping information only for the specified supplicant, enter a supplicant’s MAC address using the mac-address option. You can display the CoS mapping information applied to traffic from authenticated supplicants on 802.1Xenabled ports that are in Single-Hot, Multi-Host, and Multi-Supplicant authentication modes. Example Dell#show dot1x cos-mapping interface tengigabitethernet 0/32 802.
Defaults none Command Modes Command History • EXEC • EXEC privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you enable 802.1X multi-supplicant authentication on a port, additional 802.1X configuration details (Port Authentication status, Untagged VLAN ID, Authentication PAE state, and Backend state) are displayed for each supplicant, as shown in the following example. Example Dell#show dot1x interface fortyGigE 0/48 802.
Auth PAE State: Backend State: Dell# Authenticated Idle Dell#show dot1x interface tengigabitethernet 0/32 mac-address 00:00:00:00:00:10 Supplicant Mac: 0 0 0 0 0 10 Lookup for Mac: 802.
Backend State: Dell# Example (Interface) Idle Dell#show dot1x interface g 0/21 802.
6 Access Control Lists (ACL) Access control lists (ACLs) are supported by the Dell Networking Operating System (OS).
remark Enter a description for an ACL entry. Syntax remark [remark-number] [description] Parameters remark-number Enter the remark number. The range is from 0 to 4294967290. NOTE: You can use the same sequence number for the remark and an ACL rule. description Defaults Enter a description of up to 80 characters. Not configured.
Defaults Command Modes Command History StartingSeqNum Enter the starting sequence number to resequence. The range is from 0 to 4294967290. Step-to-Increment Enter the step to increment the sequence number. The range is from 1 to 4294967290. none • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you have exhausted all the sequence numbers, this feature permits re-assigning a new sequence number to entries of an existing access-list.
show config Display the current ACL configuration. Syntax show config Command Modes • CONFIGURATION-IP ACCESS-LIST-STANDARD • CONFIGURATION-IP ACCESS-LIST-EXTENDED • CONFIGURATION-MAC ACCESS LIST-STANDARD • CONFIGURATION-MAC ACCESS LIST-EXTENDED Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(config-std-nacl)#show conf ! ip access-list standard test remark 5 Permit traffic from XYZ Inc. seq 5 permit 1.1.1.
Usage Information When you use the access-class access-list-name command without specifying the ipv4 or ipv6 attribute, both IPv4 as well as IPv6 rules that are defined in that ACL are applied to the terminal. This is a generic way of configuring access restrictions. To be able to filter access exclusively using either IPv4 or IPv6 rules, you must use either the ipv4 or ipv6 attribute along with the access-class access-list-name command.
vlan vlan-id Defaults Not enabled.. Command Modes INTERFACE Command History Usage Information Version 8.3.16.1 (OPTIONAL) Enter the keyword vlan then the ID numbers of the VLANs. Introduced on the MXL 10/40GbE Switch IO Module platform. You can assign one ACL (standard or extended ACL) to an interface.. NOTE: This command is not supported on the MXL Switch Loopback interfaces.
show ip accounting access-list Display the IP access-lists created on the switch and the sequence of filters. Syntax Parameters Command Modes Command History Usage Information show ip accounting {access-list access-list-name | cam_count} interface interface access-list-name Enter the name of the ACL to be displayed. cam_count List the count of the CAM rules for this ACL.
NOTE: Also refer to the Commands Common to all ACL Types and Common IP ACL Commands sections. deny (for Standard IP ACLs) To drop packets with a certain IP address, configure a filter. Syntax deny {source | any | host {ip-address}}[count [byte]] [dscp value] [order] [fragments] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: Parameters Defaults • Use the no seq sequence-number command if you know the filter’s sequence number.
Version 9.3(0.0) Usage Information Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platforms. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
Related Commands ip access-list extended — creates an extended access list. resequence access-list — Displays the current configuration. permit (for Standard IP ACLs) To permit packets from a specific source IP address to leave the switch, configure a filter.
Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes Command History Usage Information CONFIGURATION-STANDARD-ACCESS-LIST Version 9.8(0.0) Added the no-drop parameter. Version 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. Version 9.3(0.
permit Enter the keyword permit to configure a filter to forward packets meeting this criteria. source Enter an IP address in dotted decimal format of the network from which the packet was received. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces.
Defaults any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter.
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
• Parameters Use the no deny tcp {source mask | any | host ip-address} {destination mask | any | host ip-address} command. source Enter the IP address of the network or host from which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter.
Defaults fragments Enter the keyword fragments to use ACLs to control packet fragments. threshold-in-msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
Example An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
Defaults • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port command) port port Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535. destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces Example An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
Related Commands ip access-list standard — configures a standard IP access list. resequence access-list — Displays the current configuration. permit (for Extended IP ACLs) To pass IP packets meeting the filter criteria, configure a filter.
Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes Command History Usage Information CONFIGURATION-EXTENDED-ACCESS-LIST Version 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. Version 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform.
Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or noncontiguous. any Enter the keyword any to match and drop specific Ethernet traffic on the interface. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces.
port port • eq = equal to • neq = not equal to • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port parameter) Enter the application layer port number. Enter two port numbers if you are using the range logical operand. The range is from 0 to 65535.
Version 8.3.16.1 Usage Information Introduced on the MXL 10/40GbE Switch IO Module platform. The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the “Quality of Service” chapter of the Dell Networking OS Configuration Guide. The MXL 10/40GbE System IO Module cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. Most ACL rules require one entry in the CAM.
permit — assigns a permit filter for IP packets. permit udp — assigns a permit filter for UDP packets. permit udp To pass UDP packets meeting the filter criteria, configure a filter.
threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
Total Ports: 4001 Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM. Dell# Data Mask From To 1 0000000000000000 1111110000000000 0 #Covered 1023 1024 Total Ports: 1024 Related Commands ip access-list extended — creates an extended ACL. permit — assigns a permit filter for IP packets. permit tcp — assigns a permit filter for TCP packets. seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.
port port • eq = equal to • neq = not equal to • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port parameter.) (OPTIONAL) Enter the application layer port number. Enter two port numbers if you are using the range logical operand. The range is from 0 to 65535.
Usage Information The order option is relevant in the context of the Policy QoS feature only. The following applies: • The seq sequence-number command is applicable only in an ACL group. • The order option works across ACL groups that have been applied on an interface via the QoS policy framework. • The order option takes precedence over seq sequence-number. • If sequence-number is not configured, the rules with the same order value are ordered according to their configuration order.
clear counters mac access-group Clear counters for all or a specific MAC ACL. Syntax Parameters Command Modes Command History clear counters mac access-group [mac-list-name] mac-list-name (OPTIONAL) Enter the name of a configured MAC access list. EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mac access-group Apply a MAC ACL to traffic entering or exiting an interface. Enter into the Interface mode and apply the MAC ACL in the following manner.
4. Related Commands If the MAC ACL is applied on a VLAN ACL group, then none of the VLANs in that group should have an access list applied on it. mac access-list standard — configures a standard MAC ACL. mac access-list extended — configures an extended MAC ACL. show mac access-lists Display all of the Layer 2 ACLs configured in the system, whether or not they are applied to an interface, and the count of matches/ mismatches against each ACL entry displayed.
in | out Command Modes Command History • EXEC • EXEC Privilege Version 8.3.16.1 • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet and then enter the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE and then enter the slot/port information. • For a VLAN interface enter the keyword VLAN and then the vlan id Identify whether ACL is applied on ingress or egress side. Introduced on the MXL 10/40GbE Switch IO Module.
mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter.
Related Commands permit — configures a MAC address filter to pass packets. seq — configures a MAC address filter with a specified sequence number. mac access-list standard To configure a standard MAC ACL, name a new or existing MAC access control list (MAC ACL) and enter MAC ACCESS LIST mode. Syntax Parameters mac access-list standard mac-list-name mac-list-name Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.
mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
seq —configure a MAC ACL filter with a specified sequence number. seq To a deny or permit filter in a MAC access list while creating the filter, assign a sequence number. Syntax seq sequence-number {deny | permit} {any | mac-source-address [mac-sourceaddress-mask]} [count [byte]] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, use the no seq sequence-number command. Parameters sequence-number Enter a number from 0 to 65535.
Usage Information Version 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
• Parameters Use the no deny {any | host mac-address | mac-source-address mac-sourceaddress-mask} {any | host mac-address | mac-destination-address macdestination-address-mask} command. any Enter the keyword any to drop all packets. host mac-address Enter the keyword host and then enter a MAC address to drop packets with that host address. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask Specify which bits in the MAC address must match.
mac access-list extended Name a new or existing extended MAC access control list (extended MAC ACL). Syntax mac access-list extended access-list-name [cpu-qos] Parameters access-list-name Enter a text string as the MAC access list name, up to 140 characters. cpu-qos Enter the keyword cpu-qos to assign this ACL to control plane traffic only (CoPP). Defaults None Command Modes CONFIGURATION Command History This guide is platform-specific.
• Parameters Use the no permit {any | host mac-address | mac-source-address mac-sourceaddress-mask} {any | mac-destination-address mac-destination-addressmask} command. any Enter the keyword any to forward all packets. host Enter the keyword host then a MAC address to forward packets with that host address. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match.
seq Configure a filter with a specific sequence number. Syntax seq sequence-number {deny | permit} {any | host mac-address | mac-sourceaddress mac-source-address-mask} {any | host mac-address | mac-destinationaddress mac-destination-address-mask} [ethertype operator] [count [byte]] Parameters sequence-number Enter a number as the filter sequence number. The range is from zero (0) to 65535. deny Enter the keyword deny to drop any traffic matching this filter.
permit — configures a filter to forward packets. IP Prefix List Commands When you create an access-list without any rule and then apply it to an interface, the ACL behavior reflects implicit permit. To configure or enable IP prefix lists, use these commands. clear ip prefix-list Reset the number of times traffic mets the conditions (“hit” counters) of the configured prefix lists.
If you do not use the ge or le options, only packets with an exact match to the prefix are filtered. Related Commands permit — configures a filter to pass packets. seq — configures a drop or permit filter with a specified sequence number. ip prefix-list Enter the PREFIX-LIST mode and configure a prefix list. Syntax ip prefix-list prefix-name Parameters Command Modes Command History prefix-name Enter a string up to 16 characters long as the name of the prefix list, up to 140 characters long.
Related Commands deny — configures a filter to drop packets. seq — configures a drop or permit filter with a specified sequence number. seq To a deny or permit filter in a prefix list while configuring the filter, assign a sequence number. Syntax Parameters seq sequence-number {deny | permit} {any} | [ip-prefix /nn {ge min-prefixlength} {le max-prefix-length}] | [bitmask number] sequence-number Enter a number. The range is from 1 to 4294967294.
Command Modes Command History Example PREFIX-LIST Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-nprefixl)#show config ! ip prefix-list snickers Dell(conf-nprefixl)# show ip prefix-list detail Display details of the configured prefix lists. Syntax show ip prefix-list detail [prefix-name] Parameters Command Modes Command History Example prefix-name • EXEC • EXEC Privilege Version 8.3.16.
ip prefix-list PL_OSPF_to_RIP: count: 3, range entries: 1, sequences: 5 - 25 Route Map Commands When you create an access-list without any rule and then applied to an interface, the ACL behavior reflects implicit permit. To configure route maps and their redistribution criteria, use the following commands. continue To a route-map entry with a higher sequence number, configure a route-map.
Related Commands • If a set action occurs in the first route map entry and then the same set action occurs with a different value in a subsequent route map entry, the last set of actions overrides the previous set of actions with the same set command. • If set community additive and set as-path prepend are configure, the communities and AS numbers are prepended.
Command History Related Commands Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. match ip address — redistributes routes that match an IP address. match ip next-hop — redistributes routes that match the next-hop IP address. match ip route-source — redistributes routes that match routes advertised by other routers. match metric — redistributes routes that match a specific metric. match route-type — redistributes routes that match a route type.
prefix-list prefix-listname Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version 8.3.16.1 Enter the keywords prefix-list and then enter the name of configured prefix list, up 10 140 characters. Introduced on the MXL 10/40GbE Switch IO Module. match interface — redistributes routes that match the next-hop interface. match ip address — redistributes routes that match an IP address.
match metric To match on a specified value, configure a filter. Syntax Parameters match metric metric-value metric-value Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version 8.3.16.1 Enter a value to match. The range is from zero (0) to 4294967295. Introduced on the MXL 10/40GbE Switch IO Module. match interface — redistributes routes that match the next-hop interface. match ip address — redistributes routes that match an IP address.
match metric — redistributes routes that match a specific metric. match tag — redistributes routes that match a specific tag. match tag To redistribute only routes that match a specified tag value, configure a filter. Syntax match tag tag-value Parameters tag-value Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version 8.3.16.1 Enter a value as the tag on which to match. The range is from zero (0) to 4294967295. Introduced on the MXL 10/40GbE Switch IO Module.
If you do not define a keyword (permit or deny) for the route map, the permit action is the default. Command Modes Command History CONFIGURATION Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module Usage Information Use caution when you delete route maps because if you do not specify a sequence number, all route maps with the same map-name are deleted when you use the no route-map map-name command.
Command Modes Command History Related Commands ROUTE-MAP Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. set automatic-tag — computes the tag value of the route. set metric-type — specifies the route type assigned to redistributed routes. set tag — specifies the tag assigned to redistributed routes. set metric-type To assign a new route type for routes redistributed to OSPF, configure a filter.
Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. set automatic-tag — computes the tag value of the route. set metric — specifies the metric value assigned to redistributed routes. set metric-type — specifies the route type assigned to redistributed routes. show config Display the current route map configuration. Syntax show config Command Modes ROUTE-MAP Command History Example Version 8.3.16.
deny (for Standard IP ACLs) To drop packets with a certain IP address, configure a filter. Syntax deny {source | any | host {ip-address}}[count [byte]] [dscp value] [order] [fragments] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: Parameters Defaults • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no deny {source [mask] | any | host ip-address} command.
Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
Defaults order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) If you did not use the keyword order, the ACLs have the lowest order by default (255). monitor OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface.
forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny tcp — assigns a filter to deny TCP packets. deny udp — assigns a filter to deny UDP packets. ip access-list extended — creates an extended ACL. seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.
Command History Usage Information Version 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. Version 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only. The following applies: • The seq sequence-number command is applicable only in an ACL group.
deny tcp Configure a filter that drops transmission control protocol (TCP) packets meeting the filter criteria. Syntax deny tcp {source mask | any | host ip-address} [bit] [operator port [port]] {destination mask | any | host ip-address} [dscp] [bit] [operator port [port]] [count [byte] [order] [fragments] [threshold-in-msgs [count]] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
Defaults mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists.
Defaults host ip-address Enter the keyword host then the IP address to specify a host IP address. dscp Enter this keyword dscp to deny a packet based on the DSCP value. The range is from 0 to 63. operator (OPTIONAL) Enter one of the following logical operand: • eq = equal to • neq = not equal to • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port command) port port Enter the application layer port number.
Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators (for example, gt, lt or range) may require more than one entry. The range of ports is configured in the CAM based on bit mask boundaries; the space required depends on exactly what ports are included in the range. When the configured maximum threshold is exceeded, generation of logs is stopped.
• Parameters Use the no deny arp {destination-mac-address mac-address-mask | any} vlan vlan-id {ip-address | any | opcode code-number} command. destination-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match. The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly.
Command Modes Command History Usage Information CONFIGURATION-EXTENDED-ACCESS-LIST Version 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. Version 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platforms. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.
deny icmp To drop all or specific internet control message protocol (ICMP) messages, configure a filter. Syntax deny icmp {source mask | any | host ip-address} {destination mask | any | host ip-address} [dscp] [count [byte]] [order] [fragments][threshold-inmsgs] [count]] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command, if you know the filter’s sequence number.
When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
vlan vlan-id Enter the keyword vlan and then enter the VLAN ID to filter traffic associated with a specific VLAN. The range is 1 to 4094 and 1 to 2094 for ExaScale ( you can use IDs 1 to 4094). To filter all VLAN traffic, specify VLAN 1. source-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
You can activate flow-based monitoring for a monitoring session by entering the flow-based flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
Command History Usage Information Version 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. Version 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped.
Defaults mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous (discontiguous). any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address only. count (OPTIONAL) Enter the keyword count to count packets processed by the filter.
MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces. You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode.
Defaults fragments Enter the keyword fragments to use ACLs to control packet fragments. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100.
permit arp Configure a filter that forwards ARP packets meeting this criteria. This command is supported only on 12-port GE line cards with SFP optics; refer to your line card documentation for specifications.
log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated.
traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists.
count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255).
The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to Port Monitoring. You cannot include IP, TCP, or UDP filters in an ACL configured with ARP filters. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
message-type (OPTIONAL) Enter an ICMP message type, either with the type (and code, if necessary) numbers or with the name of the message type. The range is 0 to 255 for ICMP type and 0 to 255 for ICMP code. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
permit udp To pass UDP packets meeting the filter criteria, configure a filter. Syntax permit udp {source mask | any | host ip-address} [operator port [port]] {destination mask | any | host ip-address} [dscp] [operator port [port]] [count [byte]] [order] [fragments] [threshold-in-msgs [count]] To remove this filter, you have two choices: Parameters 212 • Use the no seq sequence-number command if you know the filter’s sequence number.
Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only.
1 0000000000000000 1111110000000000 0 1023 1024 Total Ports: 1024 Related Commands ip access-list extended — creates an extended ACL. permit — assigns a permit filter for IP packets. permit tcp — assigns a permit filter for TCP packets. permit (for Extended IP ACLs) To pass IP packets meeting the filter criteria, configure a filter.
monitor Defaults (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes Command History Usage Information CONFIGURATION-EXTENDED-ACCESS-LIST Version 9.
• Parameters Use the no permit {any | mac-source-address mac-source-address-mask} command. any Enter the keyword any to forward all packets received with a MAC address. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match).
malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny — configures a MAC ACL filter to drop packets. seq —configure a MAC ACL filter with a specified sequence number.
Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-MAC ACCESS LIST-STANDARD Command History Usage Information Version 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. Version 9.3(0.
Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address.
threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The threshold range is from 1 to 10 minutes.
Example An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
vlan vlan-id Enter the keyword vlan followed by the VLAN ID to filter traffic associated with a specific VLAN. The range is 1 to 4094 and 1 to 2094 for ExaScale (you can use IDs 1 to 4094). To filter all VLAN traffic specify VLAN 1. ip-address Enter an IP address in dotted decimal format (A.B.C.D) as the target IP address of the ARP. opcode codenumber Enter the keyword opcode and then enter the number of the ARP opcode. The range is 1 to 16.
The order option is relevant in the context of the Policy QoS feature only. The following applies: • The seq sequence-number command is applicable only in an ACL group. • The order option works across ACL groups that have been applied on an interface via the QoS policy framework. • The order option takes precedence over seq sequence-number. • If sequence-number is not configured, the rules with the same order value are ordered according to their configuration order.
Parameters sequence-number Enter a number from 0 to 4294967290. deny Enter the keyword deny to drop all traffic meeting the filter criteria.. permit Enter the keyword permit to forward all traffic meeting the filter criteria. destination-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Command History Usage Information Version 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. Version 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform.
forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.
Usage Information Version 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only. The following applies: • The seq sequence-number command is applicable only in an ACL group. • The order option works across ACL groups that have been applied on an interface via the QoS policy framework.
Parameters sequence-number Enter a number from 0 to 4294967290. The range is from 1 to 65534. deny Enter the keyword deny to configure a filter to drop packets meeting this condition. permit Enter the keyword permit to configure a filter to forward packets meeting this criteria. ipv6-protocolnumber Enter a number from 0 to 255 to filter based on the protocol identified in the IP protocol header. icmp Enter the keyword icmp to configure an ICMP access list filter.
lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port.
count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands.
permit tcp Configure a filter to pass TCP packets that match the filter criteria. Syntax permit tcp {source address mask | any | host ipv6-address} [operator port [port]] {destination address | any | host ipv6-address} [bit] [operator port [port]] [count [byte]] [log [interval minutes] [threshold-in-msgs [count][monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
• urg: urgent field count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
permit icmp To allow all or specific internet control message protocol (ICMP) messages, configure a filter. Syntax permit icmp {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} [message-type] [count [byte]] | [log] [interval minutes] [threshold-in-msgs [count]][monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
Usage Information Version 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments. log OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
port Defaults • eq = equal to • neq = not equal to • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port command) Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces.
• port range = inclusive range of ports (you must specify two ports for the port command) Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535. The following list includes some common TCP port numbers: Defaults • 23 = Telnet • 20 and 21= FTP • 25 = SMTP • 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent.
MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces. You can activate flow-based monitoring for a monitoring session by entering theflow-based enable command in the Monitor Session mode.
Defaults interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The time interval range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
• Parameters Use the no deny {ipv6-protocol-number | icmp | ipv6 | tcp | udp} command count OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. dscp (OPTIONAL) Enter the keyword dscp to match to the IP DSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order of priority for the ACL entry.
standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG).
7 Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM) This chapter describes the access control list (ACL) virtual local area network (VLAN) group and content addressable memory (CAM) enhancements. member vlan Add VLAN members to an ACL VLAN group. Syntax member vlan {VLAN-range} Parameters VLAN-range Enter the member VLANs using comma-separated VLAN IDs, a range of VLAN IDs, a single VLAN ID, or a combination.
Parameters group-name Enter the name of the ACL VLAN group where you want the egress IP ACLs applied, up to 140 characters. out Enter the keyword out to apply the ACL to outgoing traffic. implicit-permit Enter the keyword implicit-permit to change the default action of the ACL from implicit-deny to implicit-permit (that is, if the traffic does not match the filters in the ACL, the traffic is permitted instead of dropped).
Acl Test test Ingress V6 Acl - Vlan Members 1-100 The following sample output is displayed when using the show acl-vlan-group group-name option. NOTE: The access list name is truncated. Dell#show acl-vlan-group TestGroupSeventeenTwenty Group Name Egress IP Acl Ingress IP Acl Ingress IPV6 Acl Vlan Members Test test 1-100 Dell# The following sample output shows the line-by-line style display when using the show acl-vlan-group detail option.
Example Field Description Current Settings(in block sizes) Information about the number of FP blocks that are currently in use or allocated. VlanOpenFlow Number of FP blocks for VLAN open flow operations. VlanIscsi Number of FP blocks for VLAN internet small computer system interface (iSCSI) counters. VlanHp Number of FP blocks for VLAN high performance processes. VlanFcoe Number of FP blocks for VLAN Fiber Channel over Ethernet (FCoE) operations.
Usage Information The VLAN ContentAware Processor (VCAP) application is a pre-ingress CAP that modifies the VLAN settings before packets are forwarded. To support the ACL CAM optimization functionality, the CAM carving feature is enhanced. A total of four VACP groups are present, of which two are for fixed groups and the other two are for dynamic groups. Out of the total of two dynamic groups, you can allocate zero, one, or two flow processor (FP) blocks to iSCSI Counters, OpenFlow and ACL Optimization.
Example: Dell#show cam-usage Stackunit|Portpipe| CAM Partition | Total CAM | Used CAM |Available CAM ========|========|=================|=============|=============| ============== 0 | 0 | IN-L3 ACL | 512 | 1 | 511 | | IN-V6 ACL | 0 | 0 | 0 | | IN-L2 ACL | 512 | 0 | 512 | | IN-NLB ACL | 256 | 0 | 256 | | IPMAC ACL | 0 | 0 | 0 | | OUT-L3 ACL | 158 | 6 | 152 | | OUT-V6 ACL | 158 | 1 | 157 1 | 0 | IN-L3 ACL | 512 | 1 | 511 | | IN-V6 ACL | 0 | 0 | 0 | | IN-L2 ACL | 512 | 0 | 512 | | IN-NLB ACL | 256 | 0 | 256
acl-vlan-group Create an ACL VLAN group. Syntax acl-vlan-group {group name} To remove an ACL VLAN group, use the no acl-vlan-group {group name} command. Parameters group-name Specify the name of the ACL VLAN group. The name can contain a maximum 140 characters. Default No default behavior or values Command Modes CONFIGURATION Command History Usage Information Version 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform.
Command History Version 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. Usage Information The output for this command displays in a line-by-line format. This allows the ACL-VLAN-Group names (or the Access List Group Names) to display in their entirety. Examples The following sample output shows the line-by-line style display when using the show acl-vlan-group detail option.
8 Bidirectional Forwarding Detection (BFD) Bidirectional forwarding detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The Dell Networking Operating System (OS) implementation is based on the standards specified in the IETF Draft draft-ietf-bfdbase-03 and supports BFD on all Layer 3 physical interfaces including virtual local area network (VLAN) interfaces and portchannels.
ROUTER ISIS INTERFACE (BFD for VRRP only) Command History Usage Information Related Commands Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. All neighbors inherit the timer values configured with the bfd neighbor command except in the following cases: • Timer values configured with the isis bfd all-neighbors commands in INTERFACE mode override timer values configured with the bfd neighbor command.
Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bfd enable (Interface) Enable BFD on an interface. Syntax bfd enable Defaults BFD is enabled on all interfaces when you enable BFD from CONFIGURATION mode. Command Modes INTERFACE Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bfd interval Specify non-default BFD session parameters beginning with the transmission interval.
Example Dell(conf-if-gi-0/3)#bfd interval 250 min_rx 300 multiplier 4 role passive Dell(conf-if-gi-0/3)# bfd neighbor Establish a BFD session with a neighbor. Syntax Parameters bfd neighbor ip-address ip-address Defaults none Command Modes INTERFACE Command History Related Commands Version 9.2(0.0) Enter the IP address of the neighbor in dotted decimal format (A.B.C.D). Introduced on the MXL 10/40GbE Switch IO Module.
Parameters interval milliseconds (OPTIONAL) Enter the keywords interval to specify non-default BFD session parameters beginning with the transmission interval. The range is from 50 to 1000. The default is 100. min_rx milliseconds Enter the keywords min_rx to specify the minimum rate at which the local system receives control packets from the remote system. The range is from 50 to 1000. The default is 100.
role [active | passive] Enter the role that the local system assumes: • Active — The active system initiates the BFD session. Both systems can be active for the same session. • Passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system. The default is Active. Defaults See Parameters Command Modes INTERFACE Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command provides the flexibility to fine-tune the timer values based on individual interface needs when ISIS BFD is configured in CONFIGURATION mode. Any timer values specified with this command overrides timers set using the bfd all-neighbors command. Using the no form of this command does not disable BFD if BFD is configured in CONFIGURATION mode.
neighbor bfd disable Explicitly disable a BFD session with a BGP neighbor or a BGP peer group. Syntax Parameters neighbor {ip-address | peer-group-name} bfd disable ip-address Enter the IP address of the BGP neighbor that you want to explicitly disable for BFD sessions in dotted decimal format (A.B.C.D). peer-group-name Enter the name of the peer group that you want to explicitly disable for BFD sessions. Defaults none Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.
detail Defaults (OPTIONAL) Enter the keyword detail to view detailed information about BFD neighbors. none Command Modes Command History Example • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show bfd neighbors * - Active session role Ad Dn - Admin Down B - BGP C - CLI I - ISIS O - OSPF R - Static Route (RTM) LocalAddr * 10.1.3.2 Example (Detail) RemoteAddr 10.1.3.
vrrp bfd neighbor Establish a BFD for VRRP session with a neighbor. Syntax Parameters vrrp bfd neighbor ip-address neighbor ip-address Defaults none Command Modes INTERFACE Command History Version 9.2(0.0) Enter the IP address of the BFD neighbor. Introduced on the MXL 10/40GbE Switch IO Module.
9 Border Gateway Protocol IPv4 (BGPv4) For detailed information about configuring BGP, refer to the BGP chapter in the Dell Networking OS Configuration Guide.
Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. aggregate-address To minimize the number of entries in the routing table, summarize a range of prefixes. Syntax Parameters aggregate-address ip-address mask [advertise-map map-name] [as-set] [attribute-map map-name] [summary-only] [suppress-map map-name] ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.
The summary-only parameter suppresses all advertisements. If you want to suppress advertisements to only specific neighbors, use the neighbor distribute-list command. In the show ip bgp command, aggregates contain an ‘a’ in the first column and routes suppressed by the aggregate contain an ‘s’ in the first column. bgp add-path Allow the advertisement of multiple paths for the same address prefix without the new paths replacing any previous ones.
If you enable this command, use the clear ip bgp * command to recompute the best path. bgp asnotation Allows you to implement a method for AS number representation in the command line interface (CLI). Syntax bgp asnotation [asplain | asdot+ | asdot] To disable a dot or dot+ representation and return to ASPLAIN, enter the no bgp asnotation command. Defaults asplain Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
bgp bestpath as-path ignore Ignore the AS PATH in BGP best path calculations. Syntax bgp bestpath as-path ignore To return to the default, enter the no bgp bestpath as-path ignore command. Defaults Disabled (that is, the software considers the AS_PATH when choosing a route as best). Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you enable this command, use the clear ip bgp * command to recompute the best path.
Usage Information The software compares the MEDs only if the path contains no external autonomous system numbers. If you enable this command, use the clear ip bgp * command to recompute the best path. bgp bestpath med missing-as-best During path selection, indicate preference to paths with missing MED (MULTI_EXIT_DISC) over paths with an advertised MED attribute. Syntax bgp bestpath med missing-as-best To return to the default selection, use the no bgp bestpath med missing-as-best command.
Command Modes Command History ROUTER BGP Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Route reflection to clients is not necessary if all client routers are fully meshed. Related Commands bgp cluster-id — assigns an ID to a BGP cluster with two or more route reflectors. neighbor route-reflector-client — configures a route reflector and clients. bgp cluster-id Assign a cluster ID to a BGP cluster with more than one route reflector.
To delete a BGP confederation identifier, use the no bgp confederation identifier as-number command. Parameters as-number Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.0) Enter the AS number. The range is from 0 to 65535 (2 byte), from 1 to 4294967295 (4 byte), or from 0.1 to 65535.65535 (dotted format). Introduced on the MXL 10/40GbE Switch IO Module. To accept 4-byte formats before entering a 4-byte AS number, configure your system.
After specifying autonomous systems numbers for the BGP confederation, recycle the peers to update their configuration. Related Commands bgp confederation identifier — configures a confederation ID. bgp four-octet-as-support — enables 4-byte support for the BGP process. bgp dampening Enable BGP route dampening and configure the dampening parameters.
Usage Information If you enter the bgp dampening command, the default values for half-life, reuse, suppress, and max-suppress-time are applied. The parameters are position-dependent; therefore, if you configure one parameter, configure the parameters in the order they appear in the CLI. Related Commands show ip bgp dampened-paths — views the BGP paths. bgp default local-preference Change the default local preference value for routes exchanged between internal BGP peers.
If you disable the enforce-first-as command, it can be viewed using the show ip protocols command. Related Commands show ip bgp neighbors — views the information the BGP neighbors exchange. show ip protocols — views information on routing protocols. bgp fast-external-failover Enable the fast external failover feature, which immediately resets the BGP session if a link to a directly connected external peer fails.
bgp graceful-restart To support graceful restart as a receiver only, enable graceful restart on a BGP neighbor, a BGP node, or designate a local router. Syntax bgp graceful-restart [restart-time seconds] [stale-path-time seconds] [role receiver-only] To return to the default, use the no bgp graceful-restart command. Parameters restart-time seconds Enter the keyword restart-time then the maximum number of seconds to restart and bring-up all the peers. The range is from 1 to 3600 seconds.
When you change the path selection from Deterministic to Non-Deterministic, the path selection for the existing paths remains Deterministic until you enter the clear ip bgp command to clear existing paths. bgp recursive-bgp-next-hop Enable next-hop resolution through other routes learned by BGP. Syntax bgp recursive-bgp-next-hop To disable next-hop resolution, use the no bgp recursive-bgp-next-hop command. Defaults Enabled Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.
reusing regular expression evaluation results. This caching and reuse may be at the expensive of RP1 processor memory. Examples Dell(conf-router_bgp)#no bgp regex-eval-optz-disable Dell(conf-router_bgp)#do show ip protocols Routing Protocol is "ospf 22222" Router ID is 2.2.2.2 Area Routing for Networks 51 10.10.10.0/00 Routing Protocol is "bgp 1" Cluster Id is set to 10.10.10.0 Router Id is set to 10.10.10.
Command Modes Command History ROUTER BGP Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enable soft-reconfiguration for a neighbor and you execute the clear ip bgp soft in command, the update database stored in the router is replayed and updates are re-evaluated. With this command, the replay and update process is triggered only if route-refresh request is not negotiated with the peer.
Command History Related Commands Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. capture bgp-pdu neighbor — enables capture of an IPv4 BGP neighbor packet. show capture bgp-pdu neighbor — displays BGP packet capture information for an IPv6 address. clear ip bgp Reset BGP sessions. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection.
Parameters Command Modes Command History Usage Information ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and the prefix mask in slash format (/x) to clear dampening information only that BGP neighbor. EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. After you enter this command, the software deletes the history routes and returns the suppressed routes to the Active state.
show ip bgp flap-statistics — views the BGP flap statistics. undebug all — disables all debugging operations. clear ip bgp peer-group Reset a peer-group’s BGP sessions. Syntax clear ip bgp peer-group peer-group-name Parameters Command Modes peer-group-name Enter the peer group name to reset the BGP sessions within that peer group. EXEC Privilege Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
debug ip bgp keepalives — views information about BGP keepalives. debug ip bgp notifications — views information about BGP notifications. debug ip bgp updates — views information about BGP updates. show debugging — views enabled debugging operations. debug ip bgp dampening View information on routes being dampened. Syntax debug ip bgp dampening [in | out] To disable debugging, use the no debug ip bgp dampening command.
Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To remove all configured debug commands for BGP, enter the no debug ip bgp command. debug ip bgp keepalives Display information about BGP keepalive messages. Syntax debug ip bgp [ip-address | peer-group peer-group-name] keepalives [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-groupname] keepalives [in | out] command.
Command Modes Command History Usage Information EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To remove all configured debug commands for BGP, enter the no debug ip bgp command. debug ip bgp soft-reconfiguration Enable soft-reconfiguration debug. Syntax debug ip bgp {ip-address | peer-group-name} soft-reconfiguration To disable, use the no debug ip bgp {ip-address | peer-group-name} softreconfiguration command.
peer-group-name Command Modes Command History Usage Information (OPTIONAL) Enter the name of the peer group to disable or enable all routers within the peer group. EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To remove all configured debug commands for BGP, enter the no debug ip bgp command. default-metric Allows you to change the metric of redistributed routes to locally originated routes. Use this command with the redistribute command.
Command History Related Commands Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. router bgp — enters ROUTER mode on the switch. max-paths Configure the maximum number of parallel routes (multipath support) BGP supports. Syntax max-paths {ebgp | ibgp} number To return to the default values, enter the no maximum-paths command. Parameters ebgp Enter the keyword ebgp to enable multipath support for External BGP routes.
Usage Information By default, when you create a neighbor/peer group configuration in the Router BGP context, this enables IPv4/Unicast AFI/SAFI. When you use activate in the new context, the neighbor/peer group enables for AFI/SAFI. neighbor add-path This command allows the specified neighbor/peer group to send/receive multiple path advertisements.
Defaults Command Modes Command History • seconds = 5 seconds (internal peers) • seconds = 30 seconds (external peers) ROUTER BGP Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor advertisement-start To send BGP routing updates, set the minimum interval before starting. Syntax neighbor {ip-address} advertisement-start seconds To return to the default value, use the no neighbor {ip-address} advertisement-start command.
Command History Related Commands Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bgp four-octet-as-support — enables 4-byte support for the BGP process. neighbor default-originate Inject the default route to a BGP peer or neighbor. Syntax neighbor {ip-address | peer-group-name} default-originate [route-map mapname] To remove a default route, use the no neighbor {ip-address | peer-group-name} defaultoriginate command.
Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor distribute-list Distribute BGP information via an established prefix list. Syntax neighbor {ip-address | peer-group-name} distribute-list prefix-list-name {in | out} To delete a neighbor distribution list, use the no neighbor {ip-address | peer-group-name} distribute-list prefix-list-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
ttl Defaults Disabled. Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.0) (OPTIONAL) Enter the number of hops as the Time to Live (ttl) value. The range is from 1 to 255. The default is 255. Introduced on the MXL 10/40GbE Switch IO Module. To prevent loops, the neighbor ebgp-multihop command does not install the default routes of the multihop peer. Networks not directly connected are not considered valid for best-path selection.
restart-time seconds Enter the keyword restart-time then the maximum number of seconds to restart and bring-up all the peers. The range is from 1 to 3600 seconds. The default is 120 seconds. stale-path-time seconds Enter the keyword stale-path-time then the maximum number of seconds to wait before restarting a peer’s stale paths. The default is 360 seconds. role receiver-only Enter the keyword role receiver-only to designate the local router to support graceful restart as a receiver only.
neighbor maximum-prefix Control the number of network prefixes received. Syntax neighbor {ip-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor {ip-address | peer-group-name} maximum-prefix maximum command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group.
password Enter a text string up to 80 characters long. The first character of the password must be a letter. You cannot use spaces in the password. Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Configure the same password on both BGP peers or a connection does not occur.
Usage Information You can assign up to 256 peers to one peer group. When you add a peer to a peer group, it inherits all the peer group’s configured parameters.
neighbor peer-group passive Enable passive peering on a BGP peer group, that is, the peer group does not send an OPEN message, but responds to one. Syntax neighbor peer-group-name peer-group passive [limit sessions] To delete a passive peer-group, use the no neighbor peer-group-name peer-group passive command. Parameters peer-group-name Enter a text string up to 16 characters long as the name of the peer group.
Usage Information To accept 4-byte formats before entering a 4 byte AS Number, configure your system. If the number parameter is the same as the AS number used in the router bgp command, the remote AS entry in the neighbor is considered an internal BGP peer entry. This command creates a peer and the newly created peer is disabled (Shutdown). Related Commands router bgp — enters ROUTER BGP mode and configures routes in an AS. bgp four-octet-as-support — enables 4-byte support for the BGP process.
To remove the route map, use the no neighbor {ip-address | peer-group-name} routemap map-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. map-name Enter the name of an established route map. If the Route map is not configured, the default is deny (to drop all routes). in Enter the keyword in to filter inbound routes. out Enter the keyword out to filter outbound routes.
Usage Information A route reflector reflects routes to the neighbors assigned to the cluster. Neighbors in the cluster do not need not to be fully meshed. By default, when you use no route reflector, the internal BGP (IBGP) speakers in the network must be fully meshed. The first time you enter this command, the router configures as a route reflector and the specified BGP neighbors configure as clients in the route-reflector cluster.
neighbor soft-reconfiguration inbound Enable soft-reconfiguration for BGP. Syntax neighbor {ip-address | peer-group-name} soft-reconfiguration inbound To disable, use the no neighbor {ip-address | peer-group-name} softreconfiguration inbound command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to disable or enable all routers within the peer group.
• Command Modes Command History Usage Information holdtime = 180 seconds ROUTER BGP Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Timer values configured with the neighbor timers command override the timer values configured with any other command.
To remove a weight value, use the no neighbor {ip-address | peer-group-name} weight command. Parameters ip-address Enter the IP address of the peer router in dotted decimal format. peer-group-name Enter the name of the peer group to disable all routers within the peer group. weight Enter a number as the weight. The range is from 0 to 65535. The default is 0. Defaults 0 Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History ROUTER BGP Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The system software resolves the network address the network command configures with the routes in the main routing table to ensure that the networks are reachable using non-BGP routes and non-default routes. Related Commands redistribute — redistributes routes into BGP. network backdoor Specify this IGP route as the preferred route.
route-map mapname (OPTIONAL) Enter the keyword route-map then the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ip address • set metric • set tag If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. With the Dell Networking OS version 8.3.1.
Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. With the Dell Networking OS version 8.3.1.0 and later, you can use the redistribute command to advertise the IGP cost as the MED on redistributed routes. When you set the route-map with metric-type internal and apply outbound to an EBGP peer/peer-group, the advertised routes corresponding to those peer/peer-groups have the IGP cost set as MED.
Command History Example Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-router_bgp)#show capture bgp-pdu neighbor 20.20.20.2 Incoming packet capture enabled for BGP neighbor 20.20.20.
show ip bgp View the current BGP IPv4 routing table for the system. Syntax Parameters Command Modes Command History Usage Information show ip bgp [ipv4 unicast] [network [network-mask] [longer-prefixes]] ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. network (OPTIONAL) Enter the network address (in dotted decimal format) of the BGP network to view information only on that network.
*> *> 4.24.118.16/30 *> 4.24.145.0/30 *> 4.24.187.12/30 *> 4.24.202.0/30 *> 4.25.88.0/30 *> 5.0.0.0/9 *> 5.0.0.0/10 *> 5.0.0.0/11 --More-Related Commands 63.114.8.33 63.114.8.33 63.114.8.33 63.114.8.33 63.114.8.33 63.114.8.33 63.114.8.33 63.114.8.33 63.114.8.33 0 0 0 0 0 0 0 0 0 0 0 0 18508 18508 18508 18508 18508 18508 18508 18508 18508 701 209 209 209 209 209 ? ? ? 6461 16422 i i i i i 3561 3908 i show ip bgp community — views the BGP communities.
Network * I 10.10.10.1/32 * I *>I * I * I * I * I 10.19.75.5/32 * I *>I * I * I * I * I 10.30.1.0/24 * I *>I * I * I * I Next Hop 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.
All routes with the NO_EXPORT (0xFFFFFF01) community attribute must not be advertised outside a BGP confederation boundary. Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To view the total number of COMMUNITY attributes found, use the show ip bgp summary command. The text line above the route table states the number of COMMUNITY attributes found.
show ip bgp community-list View routes that a specific community list affects. Syntax Parameters Command Modes Command History Usage Information show ip bgp [ipv4 unicast] community-list community-list-name [exact-match] ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. community-listname Enter the name of a configured IP community list (maximum 140 characters). exact-match Enter the keyword for an exact match of the communities.
Command Modes Command History Usage Information Example • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp damp command shown in the following example. Field Description Network Displays the network ID to which the route is dampened. From Displays the IP address of the neighbor advertising the dampened route. Reuse Displays the hour:minutes:seconds until the dampened route is available.
NdOrgNHP 0 : NdModPathP 0x419efcc0 : NdModASPAP 0x41a4c000 : NdModCommP 0x41a4c800 NdModOptP 0x41a4d000 : NdModNHP : NdComSortBufP 0x41a19110 : NdComSortHdP 0x41a19d04 : NdUpdAFMsk 0 : AFRstSet 0x41a1a298 : NHopDfrdHdP 0x41a1a3e0 : NumNhDfrd 0 : CfgHdrAFMsk 1 AFChkNetTmrP 0x41ee705c : AFRtDamp 0 : AlwysCmpMed 0 : LocrHld 10 : LocrRem 10 : softReconfig 0x41a1a58c DefMet 0 : AutoSumm 1 : NhopsP 0x41a0d100 : Starts 0 : Stops 0 : Opens 0 Closes 0 : Fails 0 : Fatals 0 : ConnExps 0 : HldExps 0 : KeepExps 0 RxOpen
show ip bgp extcommunity-list View information on all routes with Extended Community attributes. Syntax show ip bgp [ipv4 unicast] extcommunity-list [list name] Parameters Command Modes Command History Usage Information ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. list name Enter the extended community list name you wish to view. The range is 140 characters. • EXEC • EXEC Privilege Version 9.2(0.
Field Example Description • c = external confederation route entry • n = network route entry • r = redistributed route entry Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight.
mask (OPTIONAL) Enter the network mask (in slash prefix (/x) format) of the BGP network address. filter-list as-pathname (OPTIONAL) Enter the keyword filter-list then the name of a configured AS-PATH ACL. The range is 140 characters. regexp regularexpression Enter a regular expression then use one or a combination of the following characters to match. The range is 256 characters. • . = (period) any single character (including a white space).
show ip bgp inconsistent-as View routes with inconsistent originating autonomous system (AS) numbers; that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. Syntax Command Modes Command History Usage Information Example show ip bgp [ipv4 unicast] inconsistent-as • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp inconsistent-as command shown in the following example.
show ip bgp neighbors Allows you to view the information BGP neighbors exchange. Syntax show ip bgp [ipv4 unicast] neighbors [ip-address [advertised-routes | dampened-routes | detail | flap-statistics | routes | {received-routes [network [network-mask]]} | {denied-routes [network [network-mask]]}] Parameters ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes.
Example ( ) The Lines Beginning with: Description BGP version Displays the BGP version (always version 4) and the remote router ID. BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state.
ADD_PATH (69) CISCO_ROUTE_REFRESH(128) Example Dell#show ip bgp neighbors BGP neighbor is 100.10.10.2, remote AS 200, external link BGP version 4, remote router ID 192.168.2.
redistributed n - network, D - denied, S - stale Origin codes: i - IGP, e - EGP, ? - incomplete Network D 70.70.21.0/24 D 70.70.22.0/24 D 70.70.23.0/24 D 70.70.24.0/24 *> 70.70.25.0/24 *> 70.70.26.0/24 *> 70.70.27.0/24 *> 70.70.28.0/24 *> 70.70.29.0/24 Dell# Example (deniedroutes) Metric LocPrf 0 0 0 0 0 0 0 0 0 0 0 0 0 Weight Path 0 100 200 ? 0 100 200 ? 0 100 200 ? 0 100 200 ? 0 100 200 ? 0 100 200 ? 0 100 200 ? 0 100 200 ? 0 100 200 ? Dell#show ip bgp neighbors 100.10.10.
Example Field Description Flaps Displays the number of times the next hop has flapped. Time Elapsed Displays the time elapsed since the next hop was learned. If the route is down, this field displays time elapsed since the route went down. Dell>show ip bgp next-hop Next-hop Via 63.114.8.33 63.114.8.33, 63.114.8.34 63.114.8.34, 63.114.8.35 63.114.8.35, 63.114.8.60 63.114.8.
Example Field Description Address Displays the internal address where the path attribute is stored. Hash Displays the hash bucket where the path attribute is stored. Refcount Displays the number of BGP routes using this path attribute. Metric Displays the MED attribute for this path attribute. Path Displays the AS path for the route, with the origin code for the route listed last. Numbers listed between braces {} are AS_SET information.
Example Dell#show ip bgp paths as-path Total 13 AS-Paths Address Hash Refcount AS-Path 0x1ea3c1ec 251 1 42 0x1ea3c25c 251 1 22 0x1ea3c1b4 507 1 13 0x1ea3c304 507 1 33 0x1ea3c10c 763 1 {92 93} 0x1ea3c144 763 1 {102 103} 0x1ea3c17c 763 1 12 0x1ea3c2cc 763 1 32 0x1ea3c09c 764 1 {72 73} 0x1ea3c0d4 764 1 {82 83} 0x1ea3c224 1019 1 43 0x1ea3c294 1019 1 23 0x1ea3c02c 1021 4 Dell# show ip bgp paths community View all unique COMMUNITY numbers in the BGP database.
0x1ce6be44 80 2 209:209 209:999 209:40832 0x1c6e2374 80 2 209:777 209:41528 0x1f58ad6c 82 46 209:209 209:41528 0x1c6e2064 83 2 209:777 209:40832 0x1f588ecc 85 570 209:209 209:40832 0x1f57cc0c 98 2 209:209 209:21226 286:3031 13646:1044 13646:1124 13646:1154 13646:1164 13646:1184 13646:1194 13646:1204 13646:1214 13646:1224 13646:1234 13646:1244 13646:1254 13646:1264 13646:3000 0x1d65b2ac 117 6 209:209 209:999 209:31272 0x1f5854ac 119 18 209:209 209:21226 286:108 286:111 286:777 286:3033 517:5104 show ip bgp
Example ( ) Line beginning with: Description Number of peers Displays the number of peers currently configured for this peer group. Peer-group members: Lists the IP addresses of the peers in the peer group. If the address is outbound optimized, an * is displayed next to the IP address.
show ip bgp regexp Display the subset of the BGP routing table matching the regular expressions specified. Syntax Parameters show ip bgp regexp regular-expression [character] regular-expression [character] Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (zero or more sequences). • + = (plus) the sequences in a pattern (one or more sequences).
11853 11853 6496 *>I 4.17.226.0/23 11853 11853 6496 *>I 4.17.251.0/24 11853 11853 6496 *>I 4.17.252.0/23 11853 11853 6496 *>I 4.19.2.0/23 *>I 4.19.16.0/23 *>I 4.21.80.0/22 *>I 4.21.82.0/24 *>I 4.21.252.0/23 i *>I 4.23.180.0/24 *>I 4.36.200.0/21 *>I 4.67.64.0/22 *>I 4.78.32.0/21 *>I 6.1.0.0/16 *>I 6.2.0.0/22 *>I 6.3.0.0/18 1.1.1.2 0 100 0 2914 11853 11853 11853 1.1.1.2 0 100 0 2914 11853 11853 11853 1.1.1.2 0 100 0 2914 11853 11853 11853 1.1.1.2 1.1.1.2 1.1.1.2 1.1.1.2 1.1.1.
Field Description Dampening enabled Displayed only when you enable dampening. Displays the number of paths designated as history, dampened, or penalized. Neighbor Displays the BGP neighbor address. AS Displays the AS number of the neighbor. MsgRcvd Displays the number of BGP messages that neighbor received. MsgSent Displays the number of BGP messages that neighbor sent. TblVer Displays the version of the BGP table that was sent to that neighbor.
120.10.10.2 300 Dell# 40 47 34 0 0 00:37:10 0 show running-config bgp To display the current BGP configuration, use this feature. Syntax show running-config bgp Defaults none Command Modes EXEC Privilege Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. timers bgp Adjust the BGP Keep Alive and Hold Time timers. Syntax timers bgp keepalive holdtime To return to the default, use the no timers bgp command.
debug ip bgp dampening View information on routes being dampened. Syntax debug ip bgp ipv4 multicast dampening To disable debugging, use the no debug ip bgp ipv4 multicast dampening command. Parameters Command Modes dampening Enter the keyword dampening to clear route flap dampening information. EXEC Privilege Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. distance bgp Define an administrative distance for routes.
show ip bgp dampened-paths View BGP routes that are dampened (non-active). Syntax show ip bgp [ipv4 unicast] dampened-paths Command Modes Command History Usage Information Example • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp damp command shown in the following example. Field Description Network Displays the network ID to which the route is dampened.
Parameters as4 ASN4:NN Enter the keyword as4 then the 4-octet AS specific extended community number in the format ASN4:NN (4-byte AS number:2-byte community value). ASN:NNNN Enter the 2-octet AS specific extended community number in the format ASN:NNNN (2-byte AS number:4-byte community value). IPADDR:NN Enter the IP address specific extended community in the format IPADDR:NN (4byte IPv4 Unicast Address:2-byte community value).
Command History Usage Information Related Commands Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If the set community rt and soo are in the same route-map entry, the behavior defines as: • If the rt option comes before soo, with or without the additive option, soo overrides the communities rt sets. • If the rt option comes after soo, without the additive option, rt overrides the communities soo sets.
Parameters Command Modes Command History Usage Information ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. list name Enter the extended community list name you wish to view. The range is 140 characters. • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To view the total number of COMMUNITY attributes found, use the show ip bgp summary command.
Related Commands clear ip bgp — activates inbound policies without resetting the BGP TCP session. clear ip bgp ipv6 unicast soft Clear and reapply policies for IPv6 unicast routes without resetting the TCP connection; that is, perform BGP soft reconfiguration. Syntax clear ip bgp {* | as-number | ipv4-neighbor-addr | ipv6-neighbor-addr | peer-group name} ipv6 unicast soft [in | out] Parameters * Clear and reapply an asterisk ( * ) for all BGP sessions.
ipv6 unicast Defaults Disabled. Command Modes EXEC Privilege Command History Usage Information Version 9.2(0.0) Debug soft reconfiguration for IPv6 unicast routes. Introduced on the MXL 10/40GbE Switch IO Module. This command turns on BGP soft-reconfiguration inbound debugging for IPv6 unicast routes. If no neighbor is specified, debug is turned on for all neighbors. ipv6 prefix-list Configure an IPv6 prefix list.
IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). MBGP is implemented as per IETF RFC 1858. show ipv6 mbgproutes Display the selected IPv6 MBGP route or a summary of all MBGP routes in the table.
10 Content Addressable Memory (CAM) Content addressable memory (CAM) commands are supported on the Dell Networking MXL 10/40GbE Switch IO Module. WARNING: If you are using these features for the first time, contact Dell Networking Technical Assistance Center (TAC) for guidance. CAM Profile Commands The CAM profiling feature allows you to partition the CAM to best suit your application. For example: • Configure more Layer 2 forwarding information base (FIB) entries when the system is deployed as a switch.
• IPv6 L3 ACL (ipv6acl): 0 • L3 QoS (ipv4qos): 1 • L2 QoS (l2qos): 1 • L2PT (L2PT): 0 • MAC ACL (IpMacAcl): 0 • VmanDualQos: 0 • EcfmAcl: 0 • nlbclusteracl: 0 • FcoeAcl: 4 • iscsiOptAcl: 2 l2acl number Enter the keyword l2acl and then the number of l2acl blocks. The range is from 1 to 8. ipv4acl number Enter the keyword ipv4acl and then the number of FP blocks for IPv4. The range is from 0 to 8. ipv6acl number Enter the keyword ipv6acl and then the number of FP blocks for IPv6.
Command Modes Command History Usage Information Openflow number Enter the keyword openflow and then the number of FP blocks for open flow (multiples of 4). The range is from 0 to 8. fcoeacl number Enter the keyword fcoeacl and then the number of FP blocks for FCOE ACL. The range is from 0 to 6. Iscsioptacl number Enter the keyword iscsioptacl and then the number of FP blocks for iSCSI optimization ACL. The range is from 0 to 2.
Parameters qos Optimize CAM usage for QoS. Defaults Disabled. Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When you enable this command, if a Policy Map containing classification rules (ACL and/or dscp/ ipprecedence rules) is applied to more than one physical interface on the same port pipe, only a single copy of the policy is written (only one FP entry is used).
Ipv6Acl : Ipv4Qos : L2Qos : L2PT : IpMacAcl : VmanQos : VmanDualQos : EcfmAcl : FcoeAcl : iscsiOptAcl : ipv4pbr : vrfv4Acl : Openflow : fedgovacl : nlbclusteracl: 0 2 1 0 0 0 0 0 0 0 0 0 0 0 0 -- stack-unit 1 -Current Settings(in block sizes) 1 block = 128 entries L2Acl : 6 Ipv4Acl : 4 Ipv6Acl : 0 Ipv4Qos : 2 L2Qos : 1 L2PT : 0 IpMacAcl : 0 VmanQos : 0 VmanDualQos : 0 EcfmAcl : 0 FcoeAcl : 0 iscsiOptAcl : 0 ipv4pbr : 0 vrfv4Acl : 0 Openflow : 0 fedgovacl : 0 nlbclusteracl: 0 show cam-acl-egress Display t
Ipv6Acl : Dell# 342 Content Addressable Memory (CAM) 2
11 Control Plane Policing (CoPP) The CoPP commands are supported on the Dell Networking MXL 10/40GbE Switch IO Module. control-plane-cpuqos To manage control-plane traffic, enter control-plane mode and configure the switch. Syntax control-plane-cpuqos Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
service-policy rate-limit-protocols Apply a policy for the system to rate limit control protocols on a per-protocol basis. Syntax service-policy rate-limit-protocols policy-name Parameters policy-name Enter the service-policy name, using a string up to 32 characters. Defaults Not configured. Command Modes CONTROL-PLANE-CPUQOS Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Q5 Q6 Q7 Q8 Q9 Q10 Q11 300 400 400 400 600 300 300 50 50 50 50 50 50 50 show ip protocol-queue-mapping Display the queue mapping for each configured protocol. Syntax show ip protocol-queue-mapping Defaults Not configured. Command Modes EXEC Privilege Command History Example Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
ICMPV6 RA ICMPV6 NS ICMPV6 RS ICMPV6 VRRPV6 OSPFV3 Dell# any any any any any any any any any any any any _ _ _ _ _ _ Q6 Q5 Q5 Q6 Q10 Q9 _ _ _ _ _ _ _ _ _ _ _ _ show mac protocol-queue-mapping Display the queue mapping for the MAC protocols. Syntax show mac protocol-queue-mapping Defaults Not configured. Command Modes EXEC Privilege Command History Example Version 9.2(0.
12 Data Center Bridging (DCB) Data center bridging (DCB) refers to a set of IEEE Ethernet enhancements that provide data centers with a single, robust, converged network to support multiple traffic types, including local area network (LAN), server, and storage traffic. The Dell Networking Operating System (OS) commands for data center bridging features include 802.1Qbb priority-based flow control (PFC), 802.1Qaz enhanced transmission selection (ETS), and the data center bridging exchange (DCBX) protocol.
Parameters {ets-conf | ets-reco | pfc} Enter the PFC and ETS TLVs advertised, where: • ets-conf: enables the advertisement of ETS configuration TLVs. • ets-reco: enables the advertisement of ETS recommend TLVs. • pfc: enables the advertisement of PFC TLVs. Defaults All PFC and ETS TLVs are advertised. Command Modes PROTOCOL LLDP Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
the priority group. The sum of the allocated bandwidth to all queues in a priority group must be 100% of the bandwidth on the link. ETS-assigned bandwidth allocation applies only to data queues, not to control queues. The configuration of bandwidth allocation and strict-queue scheduling is not supported at the same time for a priority group. If you configure both, the configured bandwidth allocation is ignored for priority-group traffic when you apply the output policy on an interface.
stack-unit all Enter the stack unit identification. Indicates the specific the stack unit or units. Entering all shows the status for all stacks. stack-port all Enter the port number of a port in a switch stack. Default None Command Modes CONFIGURATION mode Command History Version 9.3(0.0) Introduced on the MXL platform. Usage Information You can configure up to a maximum of four lossless (PFC) queues.
dcbx port-role Configure the DCBX port role the interface uses to exchange DCB information. Syntax dcbx port-role {config-source | auto-downstream | auto-upstream | manual} To remove DCBX port role, use the no dcbx port-role {config-source | auto-downstream | auto-upstream | manual} command. Parameters config-source | auto-downstream | auto-upstream | manual Enter the DCBX port role, where: • config-source: configures the port to serve as the configuration source on the switch.
• ieee-v2: configures the port to use IEEE 802.1az (Draft 2.5). Defaults Auto Command Modes INTERFACE PROTOCOL LLDP Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. DCBX requires that you enable LLDP to advertise DCBX TLVs to peers. Configure DCBX operation at the INTERFACE level on a switch or globally on the switch.
description Enter a text description of the DCB policy (PFC input or ETS output). Syntax description text To remove the text description, use the no description command. Parameters Defaults Command Modes Command History text Enter the description of the output policy. The maximum is 32 characters. none • DCB INPUT POLICY • DCB OUTPUT POLICY Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters priority-bitmap Defaults 0x10 Command Modes PROTOCOL LLDP Command History Usage Information Enter the priority-bitmap range. The range is from 1 to FF. Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is available at the global level only. priority Configure the priority for the PFC threshold to be allocated to the buffer space parameters.
packets. When PFC detects congestion on a queue for a specified priority, it sends a pause frame for the 802.1p priority traffic to the transmitting device. You can use thepriority command to set up both the administrative and peer-related PFC priorities. For example, you can configure the intended buffer configuration for all 8 priorities.
Parameters queue-range Enter the queue range. Separate the queue values with a comma; specify a priority range with a dash; for example, pfc no-drop queues 1,3 or pfc no-drop queues 2-3. The range is from 0 to 3. Defaults No lossless queues are configured. Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information By default: • All 802.1p priorities are grouped in priority group 0. • 100% of the port bandwidth is assigned to priority group 0. The complete bandwidth is equally assigned to each priority class so that each class has 12 to 13%. NOTE: Please note that Dell Networking does not recommended to use this command as it has been deprecated in the current 9.4(0.0) release.
• werr: weighted elastic round robin (werr) provides low-latency scheduling for priority traffic on port queues. Defaults Weighted elastic round robin (WERR) scheduling is used to queue priority traffic. Command Modes POLICY-MAP-OUT-ETS Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. dot1p priority traffic on the switch is scheduled to the current queue mapping.
show interface dcbx detail Displays the DCBX configuration on an interface. Syntax Parameters Command Modes Command History Usage Information show interface port-type slot/port dcbx detail port-type Enter the port type. slot/port Enter the slot/port number. CONFIGURATION Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To clear DCBX frame counters, use the clear dcbx counters interface stack-unit/port command.
Field Description Local DCBX Status: Protocol State Current operational state of the DCBX protocol: ACK or IN-SYNC. Peer DCBX Status: DCBX Operational Version DCBX version advertised in Control TLVs received from the peer device. Peer DCBX Status: DCBX Max Version Supported Highest DCBX version supported in Control TLVs received from the peer device. Peer DCBX Status: Sequence Number Sequence number transmitted in Control TLVs received from the peer device.
Example Field Description Total DCBX Frames received Number of DCBX frames received from the remote peer port. Total DCBX Frame errors Number of DCBX frames with errors received. Total DCBX Frames unrecognized Number of unrecognizable DCBX frames received.
Parameters Command Modes Command History Usage Information port-type slot/port ets Enter the port-type slot and port ETS information. {summary | detail} Enter the keyword summary for a summary list of results or enter the keyword detail for a full list of results. CONFIGURATION Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To clear ETS TLV counters, use the clear ets counters interface port-type slot/port command.
Field Description ETS TLV Statistic: Input Conf TLV pkts Number of ETS Configuration TLVs received. ETS TLV Statistic: Output Conf TLV pkts Number of ETS Configuration TLVs transmitted. ETS TLV Statistic: Error Conf TLV pkts Number of ETS Error Configuration TLVs received.
Example (Detail) Dell(conf)# show interfaces tengigabitethernet 0/0 ets detail Interface TenGigabitEthernet 0/0 Max Supported TC Groups is 4 Number of Traffic Classes is 8 Admin mode is on Admin Parameters : -----------------Admin is enabled TC-grp Priority# Bandwidth TSA 0 0,1,2,3,4,5,6,7 100% ETS 1 0% ETS 2 0% ETS 3 0% ETS 4 0% ETS 5 0% ETS 6 0% ETS 7 0% ETS Priority# 0 1 2 3 4 5 6 7 Remote Parameters: ------------------Remote is disabled Local Parameters : -----------------Local is enabled TC-grp Priori
show interface pfc Displays the PFC configuration applied to ingress traffic on an interface, including priorities and link delay. Syntax Parameters Command Modes Command History Usage Information show interface port-type slot/port pfc {summary | detail} port-type slot/ port pfc Enter the port-type slot and port PFC information. {summary | detail} Enter the keyword summary for a summary list of results or enter the keyword detail for a full list of results. INTERFACE Version 9.2(0.
Field Description Application Priority TLV: FCOE TLV Tx Status Status of FCoE advertisements in application priority TLVs from the local DCBX port: enabled or disabled. Application Priority TLV: SCSI TLV Tx Status Status of ISCSI advertisements in application priority TLVs from the local DCBX port: enabled or disabled. Application Priority TLV: Local FCOE Priority Map Priority bitmap the local DCBX port uses in FCoE advertisements in application priority TLVs.
Admin mode is on Admin is enabled Remote is enabled Remote Willing Status is enabled Local is enabled Oper status is recommended PFC DCBX Oper status is Up State Machine Type is Feature TLV Tx Status is enabled PFC Link Delay 45556 pause quanta Application Priority TLV Parameters : -------------------------------------FCOE TLV Tx Status is disabled ISCSI TLV Tx Status is disabled Local FCOE PriorityMap is 0x8 Local ISCSI PriorityMap is 0x10 Remote FCOE PriorityMap is 0x8 Remote ISCSI PriorityMap is 0x8 0 In
show qos priority-groups Displays the ETS priority groups configured on the switch, including the 802.1p priority classes and ID of each group. Syntax show qos priority-groups Command Modes EXEC Privilege Command History Usage Information Example Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. NOTE: Please note that Dell Networking does not recommended to use this command as it has been deprecated in the current 9.4(0.
5 6 7 8 - - Stack unit 1 stack port all Max Supported TC Groups is 4 Number of Traffic Classes is 1 Admin mode is on Admin Parameters: -------------------Admin is enabled TC-grp Priority# Bandwidth TSA -----------------------------------------------0 0,1,2,3,4,5,6,7 100% ETS 1 2 3 4 5 6 7 8 - dcb pfc-shared-buffer-size Configure the maximum amount of shared buffer size for PFC packets in kilobytes. You must configure the shared buffer size to be less than the total PFC buffer size.
S4810-YU-MR-FTOS (conf)#dcb pfc-shared-buffer-size 2000 %ERROR: pfc shared buffer size configured cannot accommodate existing buffer requirement in the system. Example Dell(conf)#dcb pfc-shared-buffer-size 5000 dcb-buffer-threshold Configure the profile name for the DCB buffer threshold. Syntax dcb buffer—threshold profile-name Parameters profile-name Enter the name of the profile, which can be a string of up to 32 characters in length.
dcb {ets | pfc} enable Enable priority flow control or enhanced transmission selection on interface. Syntax dcb {ets | pfc} enable • To disable ETS on interface, use “no dcb ets enable” command. • To disable PFC on interface, use “no dcb pfc enable” command. Defaults Enable Command Modes INTERFACE Command History Usage Information Limitations Version 9.3 (0.1) Introduced on S6000, S4810, and S4820T.
each priority and the pause or resume thresholds for the buffer. This method of configuration enables you to effectively manage and administer the behavior of lossless queues. Example Dell(conf-if-te-0/0)#dcb-policy buffer-threshold test dcb-policy buffer-threshold (Global Configuration) Assign the DCB policy to the DCB buffer threshold profile on stack ports that applies globally throughout the system.
dot1p3_group-num dot1p4_group-num dot1p5_group-num dot1p6_group-num dot1p7_group-num Defaults None Command Modes DCB MAP Command History Usage Information Version 9.3(0.0) Introduced on the FC Flex IO module installed in the MXL 10/40GbE Switch module platform. PFC and ETS settings are not pre-configured on Ethernet ports. You must use the dcb-map command to configure different groups of 802.1p priorities with PFC and ETS settings. Using the priority-pgid command, you assign each 802.
pause Pause frames to be sent at the specified buffer limit levels and pause packet settings no-drop The packets for this queue must not be dropped value Enter a number in the range of 0 to 7 to denote the priority to be allocated to the dynamic buffer control mechanism buffer-size Ingress buffer size size Size of the ingress buffer in KB. Enter a number in the range of 0 to 7787. The default is 45 KB.
show qos dcb-map Display the DCB parameters configured in a specified DCB map. FC Flex IO Modules with MXL Syntax Parameters Command Modes Command History Usage Information show qos dcb-map map-name map-name • EXEC • EXEC Privilege Version 9.3(0.0) Displays the PFC and ETS parameters configured in the specified map. Introduced on the FC Flex IO module installed in the MXL 10/40GbE Switch.
show stack-unit stack-ports pfc details Displays the PFC configuration applied to ingress traffic on stacked ports, including PFC Operational mode on each unit with the configured priorities, link delay, and number of pause packets sent and received. Syntax show stack-unit {all | stack-unit} stack-ports {all | port-number} pfc details Parameters Command Modes Command History Example stack-unit Enter the stack unit. port-number Enter the port number. CONFIGURATION Version 9.2(0.
13 Debugging and Diagnostics The basic debugging and diagnostic commands are supported by the Dell Networking Operating System (OS). This chapter contains the following sections: • Offline Diagnostic Commands • Hardware Commands Offline Diagnostic Commands The offline diagnostics test suite is useful for isolating faults and debugging hardware. While tests are running, the Dell operating system results are saved as a text file (TestReport-SU-X.txt) in the flash directory.
level2 Enter the keyword level2 to run Level 2 diagnostics. Level 2 diagnostics are a full set of diagnostic tests with no support for automatic partitioning. Level 2 diagnostics are used primarily for on-board loopback tests and more extensive component diagnostics. Various components on the board are put into Loopback mode and test packets are transmitted through those components. These diagnostics also perform snake tests using VLAN configurations.
Command Modes Command History Usage Information EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The system reboots when the off-line diagnostics complete. This reboot is an automatic process. A warning message appears when the offline stack-unit command is implemented. Warning - Diagnostic execution will cause stack-unit to reboot after completion of diags. Proceed with Offline-Diags [confirm yes/no]:y online stack-unit Place a stack unit in the online state.
cpu data-plane statistics Enter the keywords cpu data-plane statistics to clear the data plane statistics. cpu party-bus statistics Enter the keywords cpu party-bus statistics to clear the management statistics. stack-port 33–56 Enter the keywords stack-port then the port number of the stacking port to clear the statistics of the particular stacking port. The range is from 33 to 56. NOTE: You can identify stack port numbers by physical inspection of the rear modules.
Parameters stack-unit0–5 Enter the keyword stack-unit then 0 to 5 to select a stack ID. port-set 0–0 Enter the keywords port-set with a port-pipe number. Defaults none Command Modes EXEC Privilege Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show hardware layer3 Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe.
forwarding plane statistics containing the packet buffer statistics per COS per port, enter the keywords buffer unit, and queue (0-14 or all), and bufferinfo. The buffer unit default is 1. phy-firmwareversion Each member of the stack is updated automatically with the latest firmware while booting as well as during OIR. To dump the physical firmware version for stack units, enter the keywords phy-firmware-version.
46 01.06 47 01.06 48 01.06 49 N/A Dell# Present 01.06 Present 01.06 Present 01.06 Not Present N/A In the above example, the Status field represents presence of OPTM ports, Programmed versionfield represents loaded firmware version, and SW version represents the SDK version.
2 3 4 Dell# 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 Example (portstatistics) Dell#show hardware stack-unit 0 unit 0 port-stats ena/ speed/ link auto STP lrn port link duplex scan neg? state pause discrd ops xe0 !ena 1G FD SW Yes Forward Tag F xe1 !ena 1G FD SW Yes Forward Tag F xe2 up 1G FD SW Yes Forward None FA xe3 !ena 1G FD SW Yes Forward Tag F xe4 down 10G FD SW Yes Block None FA xe5 !ena 1G FD SW Yes Forward Tag F xe6 !ena 1G FD SW Yes Forward Tag F xe7 !ena 1G FD SW Yes Forward Tag F xe8 !ena 1G FD SW Y
0x03339000 ASF_PORT_SPEED.
Example displaying queue range Dell#show hardware stack-unit 0 buffer unit 0 interface all queue 6 bufferinfo Buffer Stats for Front End Ports ================================ ----- Buffer Stats for Interface Te 1/0 Queue 6 ----Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: 8 Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue 6 ----Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: 8 Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1
show interfaces stack-unit — displays information on all interfaces on a specific stack member. show processes cpu — Displays CPU usage information based on running processes. show system stack-ports — Displays information about the stacking ports on all switches in the stack. show system — Displays the current status of all stack members or a specific member. show hardware buffer interface Display buffer statistics for a specific interface.
Dell# Example displaying queue range Dell#show hardware buffer interface tengigabitethernet 1/1 queue all buffer-info ----- Buffer Stats for Interface Te 1/1 Queue 0 ----Maximum Shared Limit: 29514 Default Packet Buffer allocate for the Queue: 8 Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue 1 ----Maximum Shared Limit: 29514 Default Packet Buffer allocate for the Queue: 8 Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue 2 ----Maximum Shared Limit: 29514 Default Packe
Parameters Defaults Command Modes Command History counters Enter the keywords counters to display counter value for the specified stackmember the port-pipe. interface interface Enter any of the following keywords and slot/port or number information: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
RX - PFC Frame Priority 1 RX - PFC Frame Priority 2 RX - PFC Frame Priority 3 RX - PFC Frame Priority 4 RX - PFC Frame Priority 5 RX - PFC Frame Priority 6 RX - PFC Frame Priority 7 RX - Debug Counter 0 RX - Debug Counter 1 RX - Debug Counter 2
Usage Information The following information is displayed based on the buffer-info type, such as device-level details, queuebased snapshots, or priority group-level snapshot in the egress and ingress direction of traffic: • Device-ingress – Displays total buffer accounting usage for the unit. • Device-egress –Display total buffer usage for the unit, total multicast buffer usage for the unit and also on per-service-pool basis.
Unit 1 unit: 3 port: 37 (interface Fo 1/180) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------- show hardware buffer-stats-snapshot Displays buffer statistics tracking resource information for a specific interface.
UCAST UCAST UCAST UCAST UCAST UCAST MCAST MCAST MCAST MCAST MCAST MCAST MCAST MCAST MCAST Example displaying egress queue-level snapshot for unicast packets for the specific interface 6 7 8 9 10 11 0 1 2 3 4 5 6 7 8 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 Del#show hardware buffer-stats-snapshot resource interface fortyGigE 0/0 queue ucast 10 Unit 0 unit: 0 port: 1 (interface Fo 0/0) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------UCAST 10 0 Dell#show hard
Example displaying ingress prioritygroup level snapshot for the specific interface Dell#show hardware buffer-stats-snapshot resource interface fortyGigE 0/0 priority-group 7 Unit 0 unit: 0 port: 1 (interface Fo 0/0) --------------------------------------PG# SHARED CELLS HEADROOM CELLS --------------------------------------7 0 0 Dell#show hardware buffer-stats-snapshot resource interface fortyGigE 0/0 priority-group all Unit 0 unit: 0 port: 1 (interface Fo 0/0) --------------------------------------PG# SHAR
2042 2041 2040 2039 2036 2000 1999 1998 1997 1995 1917 1916 1915 1792 1791 25 Dell# Example (noncounters) 802.
action={act=CopyToCpu, param0=0(0x00), param1=0(0x00)}, action={act=UpdateCounter, param0=1(0x01), param1=0(0x00)}, meter=NULL, counter={idx=2, mode=0x01, entries=1} ################# FP Entry for redirecting GVRP traffic to RSM ########### EID 2044: gid=1, slice=15, slice_idx=0x03, prio=0x7fc, flags=0x82, Installed tcam: color_indep=0, higig=0, higig_mask=0, KEY=0x00000000 00000000 00000000 0180c200 00210000 00000000 00000000 , FPF4=0x00 MASK=0x00000000 00000000 00000000 ffffffff ffff0000 00000000 00000000
EXEC Privilege Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version Description 9.8(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
14 Dynamic Host Configuration Protocol (DHCP) Dynamic host configuration protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on the configuration policies the network administrators determine. An MXL switch can operate as a DHCP server or DHCP client. As a DHCP client, the switch requests an IP address from a DHCP server.
debug ip dhcp server Display the Dell Networking OS debugging messages for DHCP. Syntax Parameters debug ip dhcp server [events | packets] events Enter the keyword events to display the DHCP state changes. packet Enter the keyword packet to display packet transmission/reception. Defaults none Command Modes EXEC Privilege Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug ipv6 dhcp To enable debug logs for DHCPv6 relay agent transactions.
disable Disable the DHCP server. Syntax disable DHCP Server is disabled by default. To enable the system to be a DHCP server, use the no disable command. Defaults Disabled Command Modes DHCP Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. dns-server Assign a DNS server to clients based on address pool. Syntax dns-server address [address2...address8] Parameters address Defaults none Command Modes DHCP Command History Version 8.3.16.
excluded-address Prevent the server from leasing an address or range of addresses in the pool. Syntax Parameters excluded-address [address | low-address high-address] address Enter a single address to be excluded from the pool. low-address Enter the lowest address in a range of addresses to be excluded from the pool. high-address Enter the highest address in a range of addresses to be excluded from the pool. Defaults none Command Modes DHCP Command History Version 8.3.16.
lease Specify a lease time for the addresses in a pool. Syntax lease {days [hours] [minutes] | infinite} Parameters days Enter the number of days of the lease. The range is from 0 to 31. hours Enter the number of hours of the lease. The range is from 0 to 23. minutes Enter the number of minutes of the lease. The range is from 0 to 59. infinite Specify that the lease never expires. Defaults 24 hours Command Modes DHCP Command History Version 8.3.16.
Defaults Hybrid Command Modes DHCP Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. network Specify the range of addresses in an address pool. Syntax Parameters network network /prefix-length network/ prefixlength Defaults none Command Modes DHCP Command History Version 8.3.16.1 Specify a range of addresses. Prefix-length range is from 17 to 31. Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp conflict Display the address conflict log. Syntax show ip dhcp conflict address Parameters address Defaults none Command Modes EXEC Privilege Command History Version 8.3.16.1 Display a particular conflict log entry. Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp server Display the DHCP server statistics.
Usage Information The ip address dhcp command enables an Ethernet interface to acquire a DHCP server-assigned dynamic IP address. This setting persists after a switch reboot. If you enter the shutdown command on the interface, DHCP transactions are stopped and the dynamically-acquired IP address is saved. To display the dynamic IP address and DHCP as the mode of IP address assignment, use the show interface type slot/port command.
debug ip dhcp clients events Enable the display of log messages for the following events on DHCP client interfaces: IP address acquisition, IP address release, Renewal of IP address and lease time, and Release of an IP address. Syntax debug ip dhcp client events [interface type slot/port] Parameters interface type slot/ port Defaults none Command Modes EXEC Privilege Command History Version 8.3.16.1 Display log messages for DHCP events on the specified interface.
Parameters interface type slot/ port Defaults none Command Modes EXEC Privilege Command History Usage Information Version 8.3.16.1 • For a 10-GigabitEthernet Ethernet interface, enter TenGigabitEthernet then the slot/port numbers; for example, tengigabitethernet 1/3. • For a 40-GigabitEthernet Ethernet interface, enter FortyGigabitEthernet then the slot/port numbers; for example, fortygigabitethernet 0/2. Introduced on the MXL 10/40GbE Switch IO Module.
show ip dhcp client statistics Display DHCP client statistics, including the number of DHCP messages sent and received on an interface. Syntax show ip dhcp client statistics {all | interface type slot/port} Parameters all Display DHCP client statistics on all DHCP client-enabled interfaces on the switch. interface type slot/ port Display DHCP client statistics on the specified interface. Defaults none Command Modes EXEC Privilege Command History Version 8.3.16.
Commands to Configure Secure DHCP DHCP, as defined by RFC 2131, provides no authentication or security mechanisms. Secure DHCP is a suite of features that protects networks that use dynamic address allocation from spoofing and attacks. arp inspection Enable dynamic arp inspection (DAI) on a VLAN. Syntax arp inspection Defaults Disabled Command Modes INTERFACE VLAN Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
clear ipv6 dhcp snooping binding Clear all the DHCPv6 snooping binding database entries. Syntax clear ipv6 dhcp snooping binding Defaults none Command Modes EXEC Privilege Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version 9.7(0.0) Example Introduced on the MXL.
Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version 9.7(0.0) Introduced on the MXL. ip dhcp snooping database Delay writing the binding table for a specified time.
ip dhcp snooping binding Create a static entry in the DHCP binding table. Syntax [no] ip dhcp snooping binding mac address vlan-id vlan-id ip ip-address interface type slot/port lease number Parameters Defaults mac address Enter the keyword mac then the MAC address of the host to which the server is leasing the IP address. vlan-id vlan-id Enter the keywords vlan-id then the VLAN to which the host belongs. The range is from 2 to 4094.
Defaults Command Modes Command History ipv6 ipv6-address Enter the keyword ipv6 then the IPv6 address that is leased to the client. interface type Enter the keyword interface then the type of interface to which the host is connected: • For an 10/100 Ethernet interface, enter the keyword fastethernet. • For a Gigabit Ethernet interface, enter the keyword gigabitethernet. • For a Ten-Gigabit Ethernet interface, enter the keyword tengigabitethernet.
Command Modes Command History • EXEC Privilege This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version 9.7(0.0) Introduced on the MXL. ip dhcp snooping trust Configure an interface as trusted. Syntax [no] ip dhcp snooping trust Defaults Untrusted Command Modes INTERFACE Command History Version 8.3.16.
Parameters ipmac Defaults Disabled Command Modes INTERFACE Command History Usage Information Version 8.3.16.1 Enable IP+MAC Source Address Validation. Introduced on the MXL 10/40GbE Switch IO Module. Allocate at least one FP block to ipmacacl before you can enable IP+MAC Source Address Validation. 1. Use the cam-acl l2acl command from CONFIGURATION mode. 2. Save the running-config to the startup-config. 3. Reload the system. ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs.
Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command-Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version 9.7(0.0) Introduced on the MXL. ip dhcp relay Enable Option 82. Syntax ip dhcp relay information-option [remote-id | trust-downstream] Parameters remote-id Configure the system to enable the remote-id string in option-82.
show ipv6 DHCP snooping Display the DHCPv6 snooping database. Syntax show ipv6 dhcp snooping Defaults none Command Modes EXEC Privilege Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version 9.7(0.0) Example Introduced on the MXL.
Defaults Disabled Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version 9.7(0.0) 418 Introduced on the MXL.
15 Equal Cost Multi-Path (ECMP) Equal cost multi-path (ECMP) is supported on the Dell Networking MXL 10/40GbE Switch IO Module. ecmp-group Provides a mechanism to monitor traffic distribution on an ECMP link bundle. A system log is generated when the standard deviation of traffic distribution on a member link exceeds a defined threshold. Syntax ecmp-group {ecmp-group-id interface interface | link-bundle-monitor} To remove the selected interface, use the ecmp-group no interface command.
To return to the default hash algorithm, use the no hash-algorithm command. To return to the default ECMP hash algorithm, use the no hash-algorithm ecmp algorithmvalue command. To remove the hash algorithm on a particular line card, use the no hash-algorithm linecard number command. Parameters algorithm-number Enter the algorithm number. The range is from 0 to 47.
The hash value calculated with the hash-algorithm command is unique to the entire chassis. The hash algorithm command with the line card option changes the hash for a particular line card by applying the mask specified in the IPSA and IPDA fields. The line card option is applicable with the lag-hash-align microcode only (refer to CAM Profile Commands).
• Command Modes Command History Usage Information dest-ip enabled CONFIGURATION Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The hash value calculated with the hash-algorithm command is unique to the entire chassis. The default ECMP hash configuration is crc-lower. This command takes the lower 32 bits of the hash key to compute the egress port and is the “fall-back” configuration if you have not configured anything else.
ip ecmp-group Enable and specify the maximum number of ecmp that the L3 CAM hold for a route, By default, when maximum paths are not configured, the CAM can hold a maximum of 16 ecmp per route. Syntax ip ecmp-group {maximum-paths | {number} {path-fallback} To negate a command, use the no ip ecmp-group maximum-paths command. Parameters maximum-paths Specify the maximum number of ECMP for a route. The range is 2 to 64. path-fallback Use the keywords path-fallback to enable this feature.
Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show config Display the ECMP configuration. Syntax show config Command Modes CONFIGURATION-ECMP-GROUP Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
16 FC FLEXIO FPORT The MXL blade switch is a Trident+ based switch which is plugged into the Dell M1000 Blade server chassis. The blade module contains two slots for pluggable flexible module. The goal is to provide support for direct connectivity to FC equipments through Fibre channel ports by FC Flex IO optional module. The FC Flex IO utilizes Broadcom Montreal (BCM84757) FC/FCOE mapper to provide FCOE to FC functionality. feature fc Enable feature fc with FPort functionality.
Version Description 9.1(1.0) Introduced on the S5000. Example without member Dell(conf)# fc zone z1 Dell(conf-fc-zone-z1)# Example with member Dell(conf)#fc zone test Dell(conf-fc-zone-test)#member ? WORD WWN(00:00:00:00:00:00:00:00), portID(000000), or Alias name(word) Dell(conf-fc-zone-test)#member Related Commands show fc zone — displays the configured zone. show fcoe-map — displays the fabric parameters. fc alias Create a zone alias name.
fc zoneset Create a zoneset. Syntax fc zoneset zoneset_name [member] To delete a zoneset, use the no fc zoneset zoneset_name [member] command. Parameters Command Modes Command History zoneset_namemem ber Enter the zoneset name. Enter the WWPN, FC-ID, or Alias name. CONFIGURATION Version 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000.
forwarder (FCF) ports on an FCoE network. When applied to FC and Ethernet ports on an NPIV proxy gateway, an FCoE map allows the switch to operate as an FCoE-FC bridge between an FC SAN and an FCoE network. It provides necessary parameters to FCoE-enabled servers and switches to log in to a SAN fabric. On an MXL NPIV proxy gateway, an FCoE map is applied on fabric-facing FC ports and server-facing Ethernet ports. Use the fcoe-map command to apply an FCoE map on an Ethernet port.
To remove an FCoE map from an FC interface, enter the no fabric map-name command in Interface configuration mode. Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show fcoe-map— displays the Fibre Channel and FCoE configuration parameters in FCoE maps. active-zoneset Activate the zoneset. Syntax active-zoneset zoneset_name To change to the default zone behavior, use the no active-zoneset zoneset_name command.
Command History Example Version Description 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000. Dell#show fc ns switch Total number of devices = 1 Switch Name 10:00:5c:f9:dd:ef:0a:00 Domain Id 1 Switch Port 53 Port Id 01:35:00 Port Name 10:00:8c:7c:ff:17:f8:01 Node Name 20:00:8c:7c:ff:17:f8:01 Class of Service 8 IP Address Symbolic Port Name Brocade-1860 | 3.0.3.
Class of Service IP Address Symbolic Port Name Symbolic Node Name Port Type Registered with NameServer Registered for SCN Dell# Dell#show fc ns Total number of Intf# Domain 9 2 00:00:00:88 11 2 00:00:00:77 Dell# 8 Brocade-1860 | 3.0.3.0 | DV-SP-SERVER2 | (NULL) Node port Yes Yes | fabric brief devices = 2 FC-ID 02:09:00 Enode-WWPN Enode-WWNN 32:11:0e:fc:00:00:00:88 22:11:0e:fc: 02:0b:00 31:11:0e:fc:00:00:00:77 21:11:0e:fc: show fc switch Display the switch configuration for Fibre Channel capability.
show fc zoneset Display the configured and active zoneset. Syntax show fc zoneset [ zoneset_name | active ] Parameters Command Modes Command History Example zoneset_name Enter the zoneset name to display the zoneset name active Enter the keyword active to display the active zonesets. merged Enter the keyword merged to display the merge active zones. • EXEC • EXEC Privilege Version Description 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000.
show fc zone Display the configured zone. Syntax show fc zone [zonename ] Parameters Command Modes zonename • EXEC • EXEC Privilege Command History Example Enter the zone name to display the details. Version Description 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000.
Related Commands fc alias — creates a zone alias name. show fcoe-map Display the Fibre Channel and FCoE configuration parameters in FCoE maps. Syntax show fcoe-map Parameters None Command Modes Command History Usage Information • EXEC • EXEC Privilege Version Description 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1.1.0 Introduced on the S5000.
17 FIPS Cryptography To configure federal information processing standards (FIPS) cryptography, use the following commands on the MXL 10/40GbE Switch IO Module. fips mode enable Enable the FIPS cryptography mode on the platform. Syntax [no] fips mode enable To disable the FIPS cryptography mode, use the no fips mode enable command. Default Disabled Command Modes CONFIGURATION Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
FIPS Mode Dell# : Enabled show ip ssh Display information about established SSH sessions Syntax show ip ssh Defaults none Command Modes EXEC EXEC Privilege Command History Example Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip ssh SSH server SSH server version Password Authentication Hostbased Authentication RSA Authentication Vty Encryption 1 3des-cbc 2 3des-cbc : enabled. : v1 and v2. : enabled. : disabled. : disabled. HMAC Remote IP hmac-md5 10.1.20.
-c encryption cipher Enter the following encryption cipher to use. (For v2 clients only.) Without the FIPS mode enabled: • 3des-cbc: Force ssh to use 3des-cbc encryption cipher. With the FIPS mode enabled: • aes128–cbc: Force ssh to use the aes128–cbc encryption cipher. • aes256–cbc: Force ssh to use the aes256–cbc encryption cipher. -l username (OPTIONAL) Enter the keyword —l then the user name used in this SSH session. The default is the user name of the user associated with the terminal.
hmac-sha1-96 Force ssh to use hmac-sha1-96 HMAC algorithm hmac-md5 Force ssh to use hmac-md5 HMAC algorithm hmac-md5-96 Force ssh to use hmac-md5-96 HMAC algorithm With FIPS mode enabled: Dell#ssh 10.11.8.12 ? -c Encryption cipher to use (for v2 client -l User name option -m HMAC algorithm to use (for v2 clients only) -p SSH server port option (default 22) Dell#ssh 10.11.8.
18 FIP Snooping In a converged Ethernet network, an MXL Switch can operate as an intermediate Ethernet bridge to snoop on Fibre Channel over Ethernet initialization protocol (FIP) packets during the login process on Fibre Channel over Ethernet (FCoE) forwarders (FCFs). Acting as a transit FIP snooping bridge, the switch uses dynamically-created ACLs to permit only authorized FCoE traffic to be transmitted between an FCoE end-device and an FCF.
Command Modes Command History EXEC Privilege Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. feature fip-snooping Enable FCoE transit and FIP snooping on a switch. Syntax feature fip-snooping To disable the FCoE transit feature, use the no feature fip-snooping command. Defaults Disabled Command Modes CONFIGURATION Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
fip-snooping fc-map Configure the FC-MAP value FIP snooping uses on all VLANs. Syntax fip-snooping fc-map fc-map-value To return the configured FM-MAP value to the default value, use the no fip-snooping fc-map command. Parameters Defaults Command Modes Command History fc-map-value Enter the FC-MAP value FIP snooping uses. The range is from 0EFC00 to 0EFCFF. 0x0EFC00 • CONFIGURATION • VLAN INTERFACE Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
Example Dell# show fip-snooping config FIP Snooping Feature enabled Status: Enabled FIP Snooping Global enabled Status: Enabled Global FC-MAP Value: 0X0EFC00 FIP Snooping enabled VLANs VLAN Enabled FC-MAP ----------------100 TRUE 0X0EFC00 show fip-snooping enode Display information on the ENodes in FIP-snooped sessions, including the ENode interface and MAC address, FCF MAC address, VLAN ID and FC-ID.
Parameters Command Modes Command History Usage Information Example fcf-mac-address • EXEC • EXEC Privilege Version 8.3.16.1 Enter the MAC address of the FCF to display. Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show fip-snooping fcf command shown in the following example. Field Description FCF MAC MAC address of the FCF. FCF Interface Slot/port number of the interface to which the FCF is connected. VLAN VLAN ID number the session uses.
Example Field Description ENode Interface Slot/ port number of the interface connected to the ENode. FCF MAC MAC address of the FCF. FCF Interface Slot/ port number of the interface to which the FCF is connected. VLAN VLAN ID number the session uses. FCoE MAC MAC address of the FCoE session the FCF assigns. FC-ID Fibre Channel ID the FCF assigns. Port WWPN Worldwide port name of the CNA port. Port WWNN Worldwide node name of the CNA port.
Usage Information The following describes the show fip-snooping statistics command shown in the following example. Field Description Number of VLAN Requests Number of FIP-snoop VLAN request frames received on the interface. Number of VLAN Notifications Number of FIP-snoop VLAN notification frames received on the interface. Number of Multicast Discovery Solicits Number of FIP-snoop multicast discovery solicit frames received on the interface.
Example Field Description Number of Session failures due to Hardware Config Number of session failures due to hardware configuration that occurred on the interface.
Number Number Number Number Number Number Number Number of of of of of of of of FDISC Accepts :16 FDISC Rejects :0 FLOGO Accepts :0 FLOGO Rejects :0 CVL :0 FCF Discovery Timeouts :0 VN Port Session Timeouts :0 Session failures due to Hardware Config :0 show fip-snooping system Display information on the status of FIP snooping on the switch (enabled or disabled), including the number of FCoE VLANs, FCFs, ENodes, and currently active sessions.
19 Force10 Resilient Ring Protocol (FRRP) Force10 resilient ring protocol (FRRP) is supported on Dell Networking MXL 10/40GbE Switch IO Module. FRRP is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the spanning tree protocol (STP). The resilient ring protocol is an efficient protocol that transmits a high-speed token across a ring to verify the link status.
Example Dell#clear frrp Clear frrp statistics counter on all ring [confirm] yes Dell#clear frrp 4 Clear frrp statistics counter for ring 4 [confirm] yes Dell# Related Commands show frrp — displays the resilient ring protocol configuration. debug frrp Clear the FRRP statistics counters. Syntax debug frrp {event | packet | detail} [ring-id] [count number] To disable debugging, use the no debug frrp {event | packet | detail} {ring-id} [countnumber] command.
Parameters Word Enter a description of the ring. Maximum: 255 characters. Defaults none Command Modes CONFIGURATION (conf-frrp) Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. disable Disable the resilient ring protocol. Syntax disable To enable the Resilient Ring Protocol, use the no disable command. Defaults Disabled Command Modes CONFIGURATION (conf-frrp) Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
control-vlan vlan-id • Port Channel interface: enter the keyword port-channel then a number. The range is from 1 to 128. • 10-Gigabit Ethernet interface: enter the keyword TenGigabitEthernet then the slot/port information • 40-Gigabit Ethernet interface: enter the keyword fortyGigE then the slot/port information Enter the keyword control-vlan then the VLAN ID. The range is from 1 to 4094. Defaults none Command Modes CONFIGURATION (conf-frrp) Command History Version 9.2(0.
Parameters master Enter the keyword master to set the Ring node to Master mode. transit Enter the keywordtransit to set the Ring node to Transit mode. Defaults Mode None Command Modes CONFIGURATION (conf-frrp) Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. protocol frrp Enter the Resilient Ring Protocol and designate a ring identification. Syntax protocol frrp {ring-id} To exit the ring protocol, use the no protocol frrp {ring-id} command.
• hello Rx and Tx counters • Topology change Rx and Tx counters • The number of state change counters Example (Summary) Dell#show frrp summary Ring-ID State Mode Ctrl_Vlan Member_Vlans ---------------------------------------------2 UP Master 2 11-20, 25,27-30 31 UP Transit 31 40-41 50 Down Transit 50 32 Dell# Example (1) Dell#show frrp 1 Ring protocol 1 is in Master mode Ring Protocol Interface: Primary : GigabitEthernet 0/16 State: Forwarding Secondary: Port-channel 100 State: Blocking Control Vlan:
NOTE: The configured dead interval must be at least three times the hello interval. Defaults Command Modes Command History Usage Information 454 • 500 ms for hello-interval milliseconds • 1500 ms for dead-intervalmilliseconds CONFIGURATION (conf-frrp) Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The hello interval command is the interval at which ring frames are generated from the primary interface of the master node.
20 GARP VLAN Registration (GVRP) The Dell Networking Operating System (OS) supports the basic GVRP commands. The generic attribute registration protocol (GARP) mechanism allows the configuration of a GARP participant to propagate through a network quickly. A GARP participant registers or de-registers its attributes with other participants by making or withdrawing declarations of attributes. At the same time, based on received declarations or withdrawals, GARP handles attributes of other participants.
clear gvrp statistics Clear GVRP statistics on an interface. Syntax clear gvrp statistics interface interface Parameters interface interface Defaults none Command Modes EXEC Command History Related Commands Version 8.3.16.1 Enter the following keywords and slot/port or number information: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable Globally disable GVRP. Syntax disable To re-enable GVRP, use the no disable command. Defaults Enabled. Command Modes CONFIGURATION-GVRP Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. gvrp enable — enables GVRP on physical interfaces and LAGs. protocol gvrp — access GVRP protocol. garp timers Set the intervals (in milliseconds) for sending GARP messages.
Command Modes Command History Usage Information Related Commands CONFIGURATION-GVRP Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. • Join Timer — Join messages announce the willingness to register some attributes with other participants. For reliability, each GARP application entity sends a Join message twice and uses a join timer to set the sending interval. • Leave Timer — Leave announces the willingness to de-register with other participants.
Defaults normal Command Modes CONFIGURATION-INTERFACE Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Fixed registration prevents an interface, configured using the command line, to belong to a VLAN (static configuration) from being unconfigured when it receives a Leave message. Therefore, Registration mode on that interface is fixed. Normal registration is the default registration. The port’s membership in the VLAN depends on GVRP.
show garp timers Display the GARP timer settings for sending GARP messages. Syntax show garp timers Defaults none Command Modes Command History • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show garp timers GARP Timers Value (milliseconds) ---------------------------------------Join Timer 200 Leave Timer 600 LeaveAll Timer 10000 Dell# Related Commands garp timers — sets the intervals (in milliseconds) for sending GARP messages.
Example R3#show gvrp brief GVRP Feature is currently enabled. Port GVRP Status Edge-Port ---------------------------------------------Gi 3/0 Disabled No Gi 3/1 Disabled No Gi 3/2 Enabled No Gi 3/3 Disabled No Gi 3/4 Disabled No Gi 3/5 Disabled No Gi 3/6 Disabled No Gi 3/7 Disabled No Gi 3/8 Disabled No R3#show gvrp brief Related Commands show gvrp statistics — displays the GVRP statistics. clear gvrp statistics Clear GVRP statistics on an interface.
Example • Join requests were received on a port that was blocked from learning dynamic VLANs (GVRP Blocking state). • An entry for a new GVRP VLAN could not be created in the GVRP database.
21 Internet Group Management Protocol (IGMP) The IGMP commands are supported by the Dell Networking Operating System (OS). IGMP Snooping Commands The Dell Networking OS supports IGMP Snooping version 2 and 3 on all Dell Networking systems. Important Points to Remember for IGMP Snooping • The Dell Networking OS supports version 1, version 2, and version 3 hosts.
To remove the feature, use the no ip igmp access-group access-list command. Parameters access-list Enter the name of the extended ACL (16 characters maximum). Defaults Not configured Command Modes INTERFACE (conf-if-interface-slot/port) Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The access list accepted is an extended ACL.
ip igmp query-interval Change the transmission frequency of IGMP general queries the Querier sends. Syntax ip igmp query-interval seconds To return to the default values, use the no ip igmp query-interval command. Parameters seconds Defaults 60 seconds Command Modes INTERFACE Command History Version 8.3.16.1 Enter the number of seconds between queries sent out. The range is from 1 to 18000. The default is 60 seconds. Introduced on the MXL 10/40GbE Switch IO Module.
ip igmp snooping enable Enable IGMP snooping on all or a single VLAN. This command is the master on/off switch to enable IGMP snooping. Syntax ip igmp snooping enable To disable IGMP snooping, use the no ip igmp snooping enable command. Defaults Disabled. Command Modes Command History Usage Information • CONFIGURATION • INTERFACE VLAN Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To enable IGMP snooping, enter this command.
Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When you disable flooding, unregistered multicast data traffic is forwarded to only multicast router ports, both static and dynamic, in a VLAN. If there is no multicast router port in a VLAN, unregistered multicast data traffic is dropped. On the MXL switch, when you configure no ip igmp snooping flood, the system forwards the frames on mrouter ports for first 96 IGMP snooping enabled VLANs.
• For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. Defaults Not configured. Command Modes INTERFACE VLAN — (conf-if-vl-n) Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The Dell Networking OS provides the capability of statically configuring the interface to which a multicast router is attached.
Vlan 2 Gi 13/3, Po 1 Dell# Internet Group Management Protocol (IGMP) 469
22 Interfaces The commands in this chapter are supported by Dell Networking Operating System (OS). This chapter contains the following sections: • Basic Interface Commands • Port Channel Commands Basic Interface Commands The following commands are for Physical, Loopback, and Null interfaces. clear counters Clear the counters used in the show interfaces commands for all virtual router redundancy protocol (VRRP) groups, virtual local area networks (VLANs), and physical interfaces, or selected ones.
learning-limit (OPTIONAL) Enter the keywords learning-limit to clear unknown source address (SA) drop counters when MAC learning limit is configured on the interface. Defaults Without an interface specified, the command clears all interface counters. Command Modes EXEC Privilege Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
dampening — configures dampening on an interface. cx4-cable-length Configure the length of the cable to be connected to the selected CX4 port. Syntax [no] cx4-cable-length {long | medium | short} Parameters long | medium | short Defaults medium Command Modes INTERFACE Command History Usage Information Enter the keyword that matches the cable length to be used at the selected port: • short = For 1-meter and 3-meter cable lengths. • medium = For 5-meter cable length.
dampening Configure dampening on an interface. Syntax dampening [[[[half-life] [reuse-threshold]] [suppress-threshold]] [maxsuppress-time]] To disable dampening, use the no dampening [[[[half-life] [reuse-threshold]] [suppress-threshold]] [max-suppress-time]] command. Parameters half-life Enter the number of seconds after which the penalty is decreased. The penalty decreases half after the half-life period expires. The range is from 1 to 30 seconds. The default is 5 seconds.
description Assign a descriptive text string to the interface. Syntax description desc_text To delete a description, use the no description command. Parameters desc_text Defaults none Command Modes INTERFACE Command History Usage Information Related Commands Enter a text string up to 240 characters long. To use special characters as a part of the description string, you must enclose the whole string in double quotes. Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
Usage Information This command applies to any physical interface with speed set to 1000/10000. NOTE: Starting with the Dell Networking OS version 7.8.1.0, when you use a copper SFP2 module with catalog number GP-SFP2-1T in the S25P module, you can manually set its speed with the speed command. When you set the speed to 10 Mbps or 100 Mbps, you can also execute the duplex command. Related Commands speed (for 1000/10000/auto interfaces) — sets the speed on the Base-T Ethernet interface.
• Ends when both the packet pointer and the buffer threshold fall below 50% of the threshold settings. The discard threshold defines when the interface starts dropping the packet on the interface. This may be necessary whe connected device does not honor the flow control frame sent by the switch. The discard threshold should be larger than t buffer threshold so that the buffer holds at least hold at least three packets.
Related Commands off off off off off off on off off off on off off off off off off on on on off off on on off off on on off on on on off off on on off off on on off off on on off off on on show running-config — displays the flow configuration parameters (non-default values only). show interfaces — displays the negotiated flow control parameters. interface Configure a physical interface on the switch. Syntax Parameters interface interface interface Defaults Not configured.
The tunnel interface operates as an ECMP (equal cost multi path) only when the next hop to the tunnel destination is over a physical interface. If you select any other interface as the next hop to the tunnel destination, the tunnel interface does not operate as an ECMP. Example Dell(conf)#interface tengig 0/0 Dell(conf-if-tengig-0/0)#exit# Related Commands interface port-channel — configures a port channel. interface vlan — configures a VLAN. show interfaces — displays the interface configuration.
Parameters slot/port Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Enter the keyword ManagementEthernet, then the slot number (0 or 1) and port number zero (0). Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You cannot delete a Management port. The Management port is enabled by default (no shutdown). To assign an IP address to the Management port, use the ip address command.
interface range This command permits configuration of a range of interfaces to which subsequent commands are applied (bulk configuration). Using the interface range command, you can enter identical commands for a range of interface. Syntax interface range interface, interface,... Parameters interface, interface,... Enter the keywords interface range and one of the interfaces — slot/port, port-channel, or VLAN number. Select the range of interfaces for bulk configuration.
Example (Overlapping Ports) Dell(conf)#interface range gi 2/1 - 11, gi 2/1 - 23 Dell(conf-if-range-gi-2/1-23# Usage Information Only VLAN and port-channel interfaces created using the interface vlan and interface portchannel commands can be used in the interface range command. Use the show running-config command to display the VLAN and port-channel interfaces.
interface, interface,... Enter the keywords interface range and one of the interfaces — slot/port, port-channel, or VLAN number. Select the range of interfaces for bulk configuration. You can enter up to six comma-separated ranges. Spaces are not required between the commas. Comma-separated ranges can include VLANs, portchannels, and physical interfaces. Slot/Port information must contain a space before and after the dash.
Command Modes Command History Example (Single Range) CONFIGURATION Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This example shows the macro named test that was defined earlier. Dell(config)#interface range macro test Dell(config-if-range-te-0/0-3,gi-5/0-47,gi-13/0-89)# Related Commands interface range — configures a range of command (bulk configuration).
intf-type cr4 autoneg Set the interface type as CR4 with auto-negotiation enabled. Syntax intf-type cr4 autoneg If you configure intf-type cr4 autoneg, use the no intf-type cr4 autoneg command to set the interface type as cr4 with autonegotiation disabled. Defaults Not configured Command Modes CONFIGURATION Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
load-balance By default, Dell Networking OS uses an IP 4-tuple (IP SA, IP DA, Source Port, and Destination Port) to distribute IP traffic over members of a Port Channel as well as equal-cost paths. To designate another method to balance traffic over Port Channel members, use the load-balance command.
• TCP/UDP destination port load-balance hg Choose the traffic flow parameters the hash calculation uses while distributing the traffic across internal higig links.
• ipv4-over-gre-ipv4 — Use ipv4-over-gre-ipv4 field in hash calculation. • mac-in-mac — Use mac-in-mac field in hash calculation. Defaults IP selection 5-tuples (source-ip dest-ip vlan protocol L4-source-port L4-dest-port). Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. monitor interface Monitor counters on a single interface or all interfaces on a line card. The screen is refreshed every five seconds and the CLI prompt disappears.
Example (Single Interface) Key Description b Change the counters displayed from Packets on the interface to Bytes. r Change the [delta] column from change in the number of packets/bytes in the last interval to rate per second. l Change the view to the next interface on the line card, or if in line card mode, the next line card in the chassis. a Change the view to the previous interface on the line card, or if in line card mode, the previous line card in the chassis.
Defaults 1554 Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If the packet includes a Layer 2 header, the difference between the link MTU and IP MTU (ip mtu command) must be enough bytes to include the Layer 2 header. • The IP MTU is adjusted automatically when you configure the Layer 2 MTU with the mtu command.
negotiation auto Enable auto-negotiation on an interface. Syntax negotiation auto To disable auto-negotiation, use the no negotiation auto command. Defaults Enabled. Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The no negotiation auto command is only available if you first manually set the speed of a port to 10Mbits or 100Mbits.
MTU 1554 bytes, IP MTU 1500 bytes LineSpeed 1000 Mbit, Mode full duplex, Master ARP type: ARPA, ARP Timeout 04:00:00 Last clearing of "show interfaces" counters 00:12:42 Queueing strategy: fifo Input Statistics: ... User Information Both sides of the link must have auto-negotiation enabled or disabled for the link to come up. The following details the possible speed and auto-negotiation combinations for a line between two 10/100/1000 Base-T Ethernet interfaces.
Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the interface command shown in the following example. This example sets a port as hybrid, makes the port a tagged member of VLAN 20, and an untagged member of VLAN 10, which becomes the native VLAN of the port.
Native VlanId: 20. Dell(conf)# Example (unconfigure the hybrid port) Dell(conf-if-vl-20)#interface vlan 10 Dell(conf-if-vl-10)#no untagged tengig 0/20 Dell(conf-if-vl-10)#interface vlan 20 Dell(conf-if-vl-20)#no tagged tengig 0/20 Dell(conf-if-vl-20)#interface tengig 0/20 Dell(conf-if-te-0/20)#no portmode hybrid Dell(conf-if-vl-20)# Related Commands show interfaces switchport — displays the configuration of switchport (Layer 2) interfaces on the switch.
Command Modes Command History INTERFACE CONFIGURATION Version 9.7(0.0) Introduced on the MXL switch. Usage Information By default, MXL module processes RFI errors transmitted by remote peers and brings down the interface when an RFI error is detected. Example Dell(conf-if-te-1/3)#remote-fault-signaling rx ? on Enable off Disable show config Display the interface configuration. Syntax show config Command Modes INTERFACE Command History Example Version 8.3.16.
no shutdown Dell(conf-if-range-gi-1/1-2)# show interfaces Display information on a specific physical interface or virtual interface. Syntax Parameters Command Modes Command History Usage Information show interfaces interface interface • EXEC • EXEC Privilege Version 8.3.16.1 Enter one of the following keywords and slot/port or number information: • For a Loopback interface, enter the keyword loopback then a number from 0 to 16383.
Line Description TenGigabitEthernet 2/0... Interface type, slot/port, and administrative and line protocol status. Hardware is... Interface hardware information, assigned MAC address, and current address. Interface index... Displays the interface index number used by SNMP to identify the interface. Internet address... States whether an IP address is assigned to the interface. If an IP address is assigned, that address is displayed. MTU 1554... Displays link and IP MTU information.
Line Description – wred=count both packets discarded in the MAC and in the hardware-based queues Rate information... Estimate of the input and output traffic rate over a designated interval (30 to 299 seconds). Traffic rate is displayed in bits, packets per second, and percent of line rate. Time since... Elapsed time since the last interface status change (hh:mm:ss format).
0 Multicasts, 94322888 Broadcasts 0 runts, 0 giants, 0 throttles 0 CRC, 0 overrun, 0 discarded Output Statistics: 180384 packets, 11926850 bytes, 0 underruns 172622 64-byte pkts, 7762 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 7762 Multicasts, 87726 Broadcasts, 84896 Unicasts 0 throttles, 0 discarded, 0 collisions Rate info (interval 299 seconds): Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Output 00.00 Mbits/sec, 0 packets/sec, 0.
show interfaces configured Display any interface with a non-default configuration. Syntax Command Modes Command History show interfaces configured • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show interfaces configured GigabitEthernet 13/18 is up, line protocol is up Hardware is Force10Eth, address is 00:01:e8:05:f7:fc Current address is 00:01:e8:05:f7:fc Interface index is 474791997 Internet address is 1.1.1.
• summary (OPTIONAL) Enter the keyword summary to display the current summary of dampening data, including the number of interfaces configured and the number of interfaces suppressed, if any. detail (OPTIONAL) Enter the keyword detail to display detailed interface dampening data. Defaults none Command Modes EXEC Command History For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History Usage Information Example Related Commands • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show interfaces description command shown in the Example below. Field Description Interface Displays the type of interface and associated slot and port number. OK? Indicates if the hardware is functioning properly.
• Command History EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• Defaults Command Modes Command History For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. none • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History Usage Information Example • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show interfaces switchport command for the following example. Items Description Name Displays the interface’s type, slot, and port number. 802.1QTagged Displays whether if the VLAN tagged (“True”), untagged (“False”), or hybrid (“Hybrid”), which supports both untagged and tagged VLANs by port 13/0.
show interfaces — displays information on a specific physical interface or virtual interface. show interfaces transceiver — displays the physical status and operational status of an installed transceiver. The output also displays the transceiver’s serial number. show interfaces transceiver Display the physical status and operational status of an installed transceiver. The output also displays the transceiver’s serial number.
Interfaces Line Description TX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. RX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. Temp High Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Voltage High Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Bias High Warning threshold Factory-defined setting. Value can differ between SFP and SFP+.
Line Description Rx LOS state This is the digital state of the Rx_LOS output pin. This is set to true if the operating status is down. Tx Fault state This is the digital state of the Tx Fault output pin. Rate Select state This is the digital state of the SFP rate_select input pin. RS state This is the reserved digital state of the pin AS(1) per SFF-8079 and RS(1) per SFF-8431. Tx Disable state If the admin status of the port is down then this flag is set to true.
Example Line Description Tx Bias Low Warning Flag This can be either true or false, depending on the present Tx bias current value displayed above. Tx Power Low Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Rx Power Low Warning Flag This can be either true or false, depending on the Current Rx power value displayed above. Dell#show interfaces gigabitethernet 1/0 transceiver SFP is present.
SFP 1 Rx Power = 0.
shutdown Disable an interface. Syntax shutdown To activate an interface, use the no shutdown command. Defaults The interface is disabled. Command Modes INTERFACE Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The shutdown command marks a physical interface as unavailable for traffic. To discover if an interface is disabled, use the show ip interface brief command. Disabled interfaces are listed as down.
Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is found on the 1000/10000 Base-T Ethernet interfaces. When you enable auto, the system performs an automatic discovery to determine the optics installed and configure the appropriate speed. When you configure a speed for the 1000/10000 interface, confirm the negotiation auto command setting. Both sides of the link must have auto-negotiation either enabled or disabled.
The quad port must be in a default configuration before it can be split into 4x10G ports. The 40G port is lost in the config when the port is split, so be sure that the port is also removed from other L2/L3 feature configurations. The system must be reloaded after issuing the CLI for the change to take effect. Port Channel Commands A link aggregation group (LAG) is a group of links that appear to a MAC client as if they were a single link according to IEEE 802.3ad.
Link MTU and IP MTU considerations for Port Channels are: • All members must have the same link MTU value and the same IP MTU value. • The Port Channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members. For example, if the members have a link MTU of 2100 and an IP MTU 2000, the Port Channel’s MTU values cannot be higher than 2100 for link MTU or 2000 bytes for IP MTU.
Example Dell(conf)#port-channel failover-group Dell(conf-po-failover-grp)#group 1 port-channel 1 port-channel 2 Dell(conf-po-failover-grp)# Related Commands port-channel failover-group — accesses PORT-CHANNEL FAILOVER-GROUP mode to configure a LAG failover group. show interfaces port-channel — displays information on configured Port Channel groups. interface port-channel Create a Port Channel interface, which is a link aggregation group (LAG) containing 16 physical interfaces on the MXL switch.
shutdown — disables/enables the port channel. minimum-links Configure the minimum number of links in a LAG (Port Channel) that must be in “oper up” status for the LAG to be also in “oper up” status. Syntax Parameters minimum-links number number Defaults 1 Command Modes INTERFACE Command History Usage Information Enter the number of links in a LAG that must be in “oper up” status. The range is from 1 to 16. The default is 1. Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
show interfaces port-channel — displays information on configured Port Channel groups. show config Display the current configuration of the selected LAG. Syntax show config Command Modes INTERFACE PORTCHANNEL Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-po-1)#show config ! interface Port-channel 1 no ip address shutdown Dell(conf-if-po-1)# show interfaces port-channel Display information on configured Port Channel groups.
Example (EtherScale) Field Description Internet address... States whether an IP address is assigned to the interface. If an IP address is assigned, that address is displayed. MTU 1554... Displays link and IP MTU. LineSpeed Displays the interface’s line speed. For a port channel interface, it is the line speed of the interfaces in the port channel. Members in this... Displays the interfaces belonging to this port channel. ARP type:...
User Information The following describes the show interfaces port-channel brief command shown in the following example. Field Description LAG Lists the port channel number. Mode Lists the mode: Status Example (brief) • L3 — for Layer 3 • L2 — for Layer 2 Displays the status of the port channel. • down — if the port channel is disabled (shutdown) • up — if the port channel is enabled (no shutdown) Uptime Displays the age of the port channel in hours:minutes:seconds.
tdr-cable-test Test the condition of copper cables on 100/1000 Base-T modules. Syntax Parameters tdr-cable-test interface interface Defaults none Command Modes EXEC Command History Usage Information Version 8.3.16.1 Enter the keyword TenGigabitEthernet then the slot/port information for the 100/1000 Ethernet interface. Introduced on the MXL 10/40GbE Switch IO Module.
Status Definition Length: 93 (+/- 1) meters, Status: Open An opening is detected on the cable. The location, in this Example is 93 meters. The open is accurate to plus or minus one meter. Status: Impedance Mismatch There is an impedance mismatch in the cables.
01:44:54: Pkt rcvd on Gi 7/0 is handed over for DHCP processing. Related Commands ip udp-broadcast-address — configures a UDP IP address for broadcast. ip udp-helper udp-port — enables the UDP broadcast feature on an interface. show ip udp-helper — displays the configured UDP helper(s) on all interfaces. ip udp-broadcast-address Configure an IP UDP address for broadcast. Syntax ip udp-broadcast-address address To delete the configuration, use the no ip udp-broadcast-address address command.
Command Modes Command History Usage Information INTERFACE (config-if) Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If you configure the ip helper-address command and ip udp-helper udp-port command, the behavior is that the UDP broadcast traffic with port numbers 67/68 is unicast relayed to the DHCP server per the ip helper-address configuration. This occurs regardless if the ip udp-helper udp-port command contains port numbers 67/68 or not.
10/0,gi 3/0,fa 0/0, this configuration is considered valid. The comma-separated list is not required to be separated by spaces in between the ranges. You can associate multicast MAC or hardware addresses to an interface range and VLANs by using the macaddress-table static multicast-mac-address vlan vlan-id output-range interface command.
23 IPv4 Routing The basic IPv4 commands are supported by Dell Networking Operating System (OS). arp To associate an IP address with a multicast MAC address in the switch when you configure multicast mode of the network load balancing (NLB), use the address resolution protocol (ARP). Syntax arp ip-address multicast-mac-address interface To remove an ARP address, use the no arp ip-address command. Parameters ip-address Enter an IP address in dotted decimal format.
command in Global configuration mode. This setting causes the multicast MAC address to be mapped to the cluster IP address for NLB mode of operation of the switch. You cannot use Class D or Class E IP addresses or zero IP address (0.0.0.0) when creating a static ARP. Zero MAC addresses (00:00:00:00:00:00) are also invalid. Related Commands clear arp-cache — clears dynamic ARP entries from the ARP table. show arp — displays the ARP table. arp learn-enable Enable ARP learning using gratuitous ARP.
Parameters minutes Defaults 240 minutes (4 hours) Command Modes INTERFACE Command History Related Commands Version 8.3.16.1 Enter the number of minutes. The range is from 0 to 35790. The default is 240 minutes. Introduced on the MXL 10/40GbE Switch IO Module. show interfaces — displays the ARP timeout value for all available interfaces. clear arp-cache Clear the dynamic ARP entries from a specific interface or optionally delete (no-refresh) ARP entries from the content addressable memory (CAM).
clear host Remove one or all dynamically learned host table entries. Syntax Parameters Command Modes Command History clear host name name Enter the name of the host to delete. Enter * to delete all host table entries. EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip fib stack-unit Clear all forwarding information base (FIB) entries in the specified stack unit (use this command with caution, refer to Usage Information.
Related Commands ip route — assigns an IP route to the switch. show ip route — views the routing table. show ip route summary — views a summary of the routing table. clear tcp statistics Clear TCP counters. Syntax clear tcp statistics Command Modes EXEC Privilege Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug arp View information on ARP transactions. Syntax debug arp [interface] [count value] To stop debugging ARP transactions, use the no debug arp command.
debug ip dhcp Enable debug information for dynamic host configuration protocol (DHCP) relay transactions and display the information on the console. Syntax debug ip dhcp To disable debug, use the no debug ip dhcp command. Defaults Debug disabled Command Modes EXEC Privilege Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#debug ip dhcp 00:12:21 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.
debug ip icmp View information on the internal control message protocol (ICMP). Syntax debug ip icmp [interface] [count value] To disable debugging, use the no debug ip icmp command. Parameters interface count value Command Modes Command History Example • For the Management interface, enter the keyword ManagementEthernet then the slot/port information. The slot range is from 0 to 1 and the port range is 0. • For a Port Channel interface, enter the keywords port-channel then a number.
Command Modes Command History Usage Information Example count value (OPTIONAL) Enter the keyword count then the count value. The range is from 1 to 65534. The default is Infinity. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For the Management interface, enter the keyword ManagementEthernet then the slot/port information. The slot range is from 0 to 1 and the port range is 0. • For a Port Channel interface, enter the keywords port-channel then a number.
IP: s=10.1.2.62 (local), d=10.1.2.3 (Ma 0/0), len 1500, sending fragment IP Fragment, Ident = 4741, fragment offset = 1480 IP: s=40.40.40.40 (local), d=224.0.0.5 (Gi 4/11), len 64, sending broad/ multicast proto=89 IP: s=40.40.40.40 (local), d=224.0.0.6 (Gi 4/11), len 28, sending broad/ multicast proto=2 IP: s=0.0.0.0, d=30.30.30.30, len 100, unroutable ICMP type=8, code=0 IP: s=0.0.0.0, d=30.30.30.
secondary Defaults Not configured. Command Modes INTERFACE Command History Usage Information Version 8.3.16.1 (OPTIONAL) Enter the keyword secondary to designate the IP address as the secondary address. Introduced on the MXL 10/40GbE Switch IO Module. You must be in INTERFACE mode before you add an IP address to an interface. Assign an IP address to an interface prior to entering ROUTER OSPF mode. ip directed-broadcast Enables the interface to receive directed broadcast packets.
To enable dynamic resolution of hosts, use the following steps: • specify a domain name server with the ip name-server command • enable DNS with the ip domain-lookup command To view current bindings, use the show hosts command. To view a DNS-related configuration, use the show running-config resolve command. Related Commands ip domain-name — specifies a DNS server. ip domain-lookup To address resolution (that is, DNS), enable dynamic host-name.
Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can only configure one domain name with the ip domain-name command. To configure more than one domain name, configure the ip domain-list command up to six times. To enable dynamic resolution of hosts, use the following steps: • specify a domain name server with the ip name-server command • enable DNS with the ip domain-lookup command To view current bindings, use the show hosts command.
To re-enable the hop-count increment, use the no ip helper-address hop-count disable command. Defaults Enabled; the hops field in the DHCP message header is incremented by default. Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command disables the incrementing of the hops field when boot requests are relayed to a DHCP server through the Dell Networking OS.
NOTE: When you configure the capability to enable the loopback IP address to be sent for easy debugging and diagnosis (IP addresses of the devices for which the ICMP source interface is configured), the source IP address of the outgoing ICMP error message is modified, although the packets are not sent out using the configured interface.
• For a Management Ethernet interface, enter the keyword managementethernet. NOTE: When you configure the capability to enable the loopback IP address to be sent for easy debugging and diagnosis (IP addresses of the devices for which the ICMP source interface is configured), the source IP address of the outgoing ICMP error message is modified, although the packets are not sent out using the configured interface.
Parameters count Enter a number for the number of fragments allowed for re-assembly. The range is from 2 to 256. Defaults No limit is set on number of fragments allowed. Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To avoid denial of service (DOS) attacks, keep the number of fragments allowed for re-assembly low. ip name-server Enter up to six IPv4 addresses of name servers.
ip route Assign a static route to the switch. Syntax ip route {destination mask {ip-address | interface [ip-address] | [distance] | [permanent] | tag tag-value}} To delete a specific static route, use the no ip route destination mask command. To delete all routes matching a certain route, use the no ip route destination mask command. Parameters destination Enter the IP address in dotted decimal format of the destination device.
Related Commands show ip route — views the switch routing table. ip source-route Enable the system to forward IP packets with source route information in the header. Syntax ip source-route To drop packets with source route information, use the no ip route-source command. Defaults Enabled. Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip tcp initial-time Define the wait duration in seconds for the TCP connection to be established.
EXEC Privilege Command History Version 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. ip unreachables Enable the generation of internet control message protocol (ICMP) unreachable messages. Syntax ip unreachables To disable the generation of ICMP messages, use the no ip unreachables command. Defaults Disabled. Command Modes INTERFACE Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show arp Display the ARP table. Syntax Parameters Command Modes Command History Usage Information show arp [interface interface | ip ip-address [mask] | macaddress macaddress [mac-address mask]] [static | dynamic][summary] interface interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For the Management interface, enter the keyword managementethernet then the slot/port information. • For a Port Channel interface, enter the keyword port-channel then a number.
Example Row Heading Description VLAN Displays the VLAN ID, if any, associated with the ARP entry. CPU Lists which CPU the entries are stored on. Dell>show arp Protocol Address Age(min) Hardware Address Interface VLAN CPU ----------------------------------------------------Internet 10.11.8.6 167 00:01:e9:45:00:03 Ma 0/0 CP Internet 10.11.68.14 124 00:01:e9:45:00:03 Ma 0/0 CP Internet 10.11.209.
show arp retries Display the configured number of ARP retries. Syntax Command Modes Command History Related Commands show arp retries • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module arp retries — sets the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request. show hosts View the host table and DNS configuration.
Example Field Description TTL Displays the amount of time until the entry ages out of the cache. For dynamically learned entries only. Type Displays IP as the type of entry. Address Displays the IP addresses assigned to the host.
• Command History Usage Information Example EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip cam command shown in the following example. Field Description Destination Displays the destination route of the index. EC Displays the number of equal cost multipaths (ECMP) available for the default route for non-Jumbo line cards. For Jumbo line cards, displays 0,1 when ECMP is more than eight. CG Displays 0.
1.1.1.0 2.1.1.0 100.1.1. 100.1.1. 0.0.0.
Example Dell#show ip fib stack-unit 0 Destination Gateway First-Hop Mac-Addr Port VId EC ----------------------------------------------------------------------10.10.10.10/32 Direct, Nu 0 0.0.0.0 00:00:00:00:00:00 BLK HOLE 0 0 Dell> Related Commands clear ip fib stack-unit — clear FIB entries on a specified stack-unit. show ip interface View IP-related information on all interfaces.
Example Lines Description Inbound access... Displays the name of the configured incoming access list. If none is configured, the phrase “not set” is displayed. Proxy ARP... States whether proxy ARP is enabled on the interface. Split horizon... States whether split horizon for RIP is enabled on the interface. Poison Reverse... States whether poison for RIP is enabled on the interface. ICMP redirects... States if ICMP redirects are sent. ICMP unreachables...
Parameters Command Modes Command History Example all (OPTIONAL) Enter the keyword all to view all IP addresses assigned to all Management interfaces on the switch. connected (OPTIONAL) Enter the keyword connected to view only routes directly connected to the Management interface. summary (OPTIONAL) Enter the keyword summary to view a table listing the number of active and non-active routes and their sources. static (OPTIONAL) Enter the keyword static to view non-active routes also.
show ip route View information, including how they were learned, about the IP routes on the switch. Syntax show ip route [hostname | ip-address [mask] [longer-prefixes] | list prefix-list [process-id | all | connected | static | summary] Parameters Command Modes Command History Usage Information 552 IPv4 Routing ip-address (OPTIONAL) Specify a name of a device or the IP address of the device to view more detailed information about the route. mask (OPTIONAL) Specify the network mask of the route.
Field Example Description • E2 = OSPF external type 2 • i = IS-IS • L1 = IS-IS level-1 • L2 = IS-IS level-2 • IA = IS-IS inter-area • * = candidate default • > = non-active route • + = summary routes Destination Identifies the route’s destination IP address Gateway Identifies whether the route is directly connected and on which interface the route is configured. Dist/Metric Identifies if the route has a specified distance or metric.
show ip route list Display IP routes in an IP prefix list. Syntax show ip route list prefix-list Parameters Command Modes Command History Example prefix-list • EXEC • EXEC Privilege Version 8.3.16.1 Enter the name of a configured prefix list. Introduced on the MXL 10/40GbE Switch IO Module.
Column Heading Description Example Route Source Identifies how the route is configured in the system. Active Routes Identifies the best route if a route is learned from two protocol sources. Non-active Routes Identifies the back-up routes when a route is learned by two different protocols. If the best route or active route goes down, the non-active route becomes the best route.
Keyword Definition bad options... Unrecognized IP option on a received packet. Frags: IP fragments received. ... reassembled Number of IP fragments that were reassembled. ... timeouts Number of times a timer expired on a reassembled queue. ... too big Number of invalid IP fragments received. ... couldn’t fragment Number of packets that could not be fragmented and forwarded. ...encapsulation failed Counts packets which could not be forwarded due to ARP resolution failure.
0 short packets, 0 bad length, 1883908 no port broadcasts, 0 socket full Sent: 329731 total, 1883908 forwarded broadcasts --More-- show tcp statistics View information on TCP traffic through the switch. Syntax show tcp statistics Command Modes EXEC Privilege Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show tcp statistics cp command shown in the following example.
Example Field Description 11603 data packets... Displays the number of data packets sent. 24 data packets retransmitted Displays the number of data packets resent. 355 ack.. Displays the number of acknowledgement packets sent and the number of packet delayed. 0 window probe... Displays the number of window probe and update packets sent. 7 Connections initiated... Displays the number of TCP connections initiated, accepted, and established. 14 Connections closed...
24 Internet Protocol Security (IPSec) Internet protocol security (IPSec) is an end-to-end security scheme for securing IP communications by authenticating and encrypting all packets in a session. Use IPSec between hosts, gateways, or hosts and gateways. IPSec uses a series of protocol functions to achieve information security: • Authentication Headers (AH) — Connectionless integrity and origin authentication for IP packets.
• esp-authentication esp-encryption Defaults none Command Modes CONFIGURATION Command History Usage Information Example Version 9.2(0.0) null — Causes an encryption policy configured for the area to not be inherited on the interface. Enter the keywords esp-authentication then the transform type of operation to apply to traffic. The transform type represents the encryption or authentication applied to traffic. • md5 — Use Message Digest 5 (MD5) authentication.
Command Modes Command History CONFIGURATION Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command creates a crypto policy entry and enters the crypto policy configuration mode for configuring the flow parameters. Example Dell(conf)#crypto ipsec policy West 10 ipsec-manual Dell(conf-crypto-policy)# management crypto-policy Apply the crypto policy to management traffic.
Defaults none Command Modes CONFIG-CRYPTO-POLICY Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information UDP is not supported. Only TCP 23 telnet and 21 FTP are supported.
show crypto ipsec transform-set Display the transform set configuration. Syntax Parameters Command Modes Command History Example show crypto ipsec transform-set name name Enter the name of the transform set. EXEC Version 9.2(0.2) Introduced on the MXL 10/40GbE Switch IO Module.
Source mask Source port Destination address Destination mask Destination port source-interface name source-interface num : : : : : : : /32 0 1.1.1.2 /32 23 Dell(conf-crypto-policy)# transform-set Specify the transform set the crypto policy uses. Syntax transform-set transform-set-name To delete a transform set from the crypto policy, use the no transform-set transform-set-name command. Parameters transform-setname Enter the name for the crypto policy transform set.
25 IPv6 Access Control Lists (IPv6 ACLs) IPv6 ACLs and IPv6 Route Map commands are supported on Dell Networking MXL switch. NOTE: For IPv4 ACL commands, refer to the Access Control Lists (ACL) chapter. Important Points to Remember • Certain platforms require manual CAM usage space allotment. For more information, refer to the cam-acl (Configuration) command. • Egress IPv6 ACL and IPv6 ACL on the Loopback interface is not supported. • Reference to an empty ACL permits any traffic.
l2acl 1-10 ipv4acl 1-10 ipv6acl 0-10 ipv4qos 1-10 l2qos 1-10 Command Modes Command History Usage Information Allocate space to support IPv6 ACLs. Enter all of the profiles and a range. Enter the CAM profile name then the amount to be allotted. The total space allocated must equal 13. The ipv6acl range must be a factor of 2. CONFIGURATION Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Ranges for the CAM profiles are from 1 to 10, except for the ipv6acl profile which is from 0 to 10. The ipv6acl allocation must be a factor of 2 (2, 4, 6, 8, 10).
ipv6 control-plane egress-filter Enable egress Layer 3 ACL lookup for IPv6 CPU traffic. Syntax ipv6 control-plane egress-filter Defaults Not enabled. Command Modes EXEC Privilege Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. permit To configure a filter that matches the filter criteria, select an IPv6 protocol number, ICMP, IPv6, TCP, or UDP.
monitor Defaults Not configured. Command Modes ACCESS-LIST Command History (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. Version 9.4(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module. Version 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module. Version 9.2(0.
interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor to monitor traffic on the monitoring interface specified in the flow-based monitoring session along with the filter operation. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
Example show cam-acl (non default) Dell(conf)#cam-acl l2acl 2 ipv4acl 4 ipv6acl 4 ipv4qos 2 l2qos 1 l2pt 0 ipmacacl 0 vman-qos 0 ecfmacl 0 Dell#show cam-acl -- Chassis Cam ACL -Current Settings(in block sizes) 1 block = 128 entries L2Acl : 2 Ipv4Acl : 4 Ipv6Acl : 4 Ipv4Qos : 2 L2Qos : 1 L2PT : 0 IpMacAcl : 0 VmanQos : 0 VmanDualQos : 0 EcfmAcl : 0 FcoeAcl : 0 iscsiOptAcl : 0 ipv4pbr : 0 vrfv4Acl : 0 Openflow : 0 fedgovacl : F3940 -- stack-unit 0 -Current Settings(in block sizes) 1 block = 128 entries L2Acl
Example Dell#show cam-acl-egress -- Chassis Egress Cam ACL -Current Settings(in block sizes) 1 block = 256 entries L2Acl : 1 Ipv4Acl : 1 Ipv6Acl : 2 -- stack-unit 0 -Current Settings(in block sizes) L2Acl : 1 Ipv4Acl : 1 Ipv6Acl : 2 Related Commands 572 cam-acl — configures CAM profiles to support IPv6 ACLs.
26 IPv6 Basics This chapter describes IPv6 basic commands for the MXL 10/40GbE Switch IO Module. clear ipv6 fib Clear (refresh) all forwarding information base (FIB) entries on a linecard or stack unit. Syntax Parameters Command Modes Command History clear ipv6 fib linecard slot | stack-unit unit-number slot Enter the slot number to clear the FIB for a linecard. unit-number Enter the stack member number. EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
clear ipv6 mld_host Clear the IPv6 MLD host counters and reset the elapsed time. Syntax clear ipv6 mld_host Command Modes EXEC Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 address autoconfig Configure IPv6 address auto-configuration for the management interface. Syntax ipv6 address autoconfig To disable the address autoconfig operation on the management interface, use the no ipv6 address autoconfig command.
Parameters ipv6-address prefixlength Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults none Command Modes INTERFACE Command History Usage Information Example Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. • If two addresses are configured, delete an existing address before configuring a new address.
Usage Information This command allows you to create an EUI64 address based on the specified prefix and MAC address only. Prefixes may be configured on the interface using the ipv6 nd prefix command without creating an EUI64 address.
ipv6 host Assign a name and IPv6 address the host-to-IPv6 address mapping table uses. Syntax ipv6 host name ipv6-address To remove an IP host, use the no ipv6 host name {ipv6–address}. Parameters name Enter a text string to associate with one IP address. ipv6-address Enter the IPv6 address (X:X:X:X::X) to be mapped to the name. Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Parameters number of attempts Enter the number of attempts to be made to detect a duplicate address. The range is from 0 to 15. Setting the value to 0 disables DAD on the interface. Default 3 attempts Command Modes INTERFACE (management interface only) Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 nd dns-server Configures Recursive DNS Server (RDNSS) addresses to be distributed via IPv6 router advertisements to an IPv6 device.
ipv6 nd prefix Specify which IPv6 prefixes are included in Neighbor Advertisements. Syntax Parameters Command Modes Command History Usage Information ipv6 nd prefix {ipv6-prefix | prefix-length | default} [no-advertise] | [no-autoconfig] [no-rtr-address] [off-link] [lifetime {valid | infinite} {preferred | infinite}] ipv6-prefix Enter an IPv6 prefix. prefix-length Enter the prefix then the prefix length. The length range is from 0 to 128.
Parameters ipv6-address prefixlength Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For a loopback interface, enter the keyword loopback then a number from zero (0) to 16383. • For the null interface, enter the keyword null then zero (0).
Example Dell(conf)#ipv6 route X:X:X:X::X Dell(conf)#ipv6 route /nn Dell(conf)#ipv6 route X:X:X:X::X gigabitethernet loopback null port-channel tenGigabitethernet fortyGigE tunnel vlan Dell(conf)#ipv6 route <1-255> permanent tag ? IPv6 prefix x:x::y 44::0 ? /nn Mask in slash format 44::0 /64 ? Forwarding router's address Gigabit Ethernet interface Loopback interface Null interface Port-Channel interface TenGigabit Ethernet interface FortyGigabit Ethernet interface Tunnel interface Vlan interface 44::0 /64
show ipv6 cam stack-unit Displays the IPv6 CAM entries for the specified stack-unit. Syntax show ipv6 cam stack-unit unit-number port-set {0-1} [summary | index | ipv6 address] Parameters unit-number Enter the stack unit’s ID number. The range is from 0 to 11. port-set Enter the keyword Port Set. summary (OPTIONAL) Enter the keyword summary to display a table listing network prefixes and the total number prefixes which can be entered into the IPv6 CAM.
show ipv6 fib stack-unit View all FIB entries. Syntax Parameters show ipv6 fib stack-unit unit-number [summary | ipv6-address] slot-number Enter the number of the stack unit. The range is from 0 to 11. summary (OPTIONAL) Enter the keyword summary to view a summary of entries in IPv6 cam. ipv6-address Enter the IPv6 address in the x:x:x:x::x/n format to display networks that have more specific prefixes. The range is from /0 to /128.
Defaults • For a Loopback interface, enter the keyword Loopback then a number from 0 to 16383. • For the Null interface, enter the keyword null then zero (0). • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For stacking, enter the keywords stack-unit then the stack-unit ID.
ND reachable time is 39610 milliseconds ND base reachable time is 30000 milliseconds ND advertised reachable time is 0 milliseconds ND advertised retransmit interval is 0 milliseconds ND router advertisements are sent every 198 to 600 seconds ND router advertisements live for 1800 seconds ND advertised hop limit is 64 IPv6 hop limit for originated packets is 64 Dell# Example Dell#show ipv6 int man 0/0 (Managementethern ManagementEthernet 0/0 is up, line protocol is up IPV6 is enabled et) Link Local address:
IPv6 hop limit for originated packets is 64 Dell# show ipv6 mld_host Display the IPv6 MLD host counters. Syntax show ipv6 mld_host Command Modes EXEC Command History Usage Information Example Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ipv6 mld-host command shown in the following example. Field Description Valid MLD Packets The total number of packets received and sent from the last time the elapsed time was cleared.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults Command Modes Command History Usage Information hostname (OPTIONAL) View information for this IPv6 routes with Host Name. all (OPTIONAL) View information for all IPv6 routes. bgp (OPTIONAL) View information for all IPv6 BGP routes. connected (OPTIONAL) View only the directly connected IPv6 routes. isis (OPTIONAL) View information for all IPv6 IS-IS routes. list (OPTIONAL) View the IPv6 prefix list.
Field Description • Example + = summary routes Destination Identifies the route’s destination IPv6 address. Gateway Identifies whether the route is directly connected and on which interface the route is configured. Dist/Metric Identifies if the route has a specified distance or metric. Last Change Identifies when the route was last changed or configured.
Usage Information When you configure trust IPv6 diffserv, matched bytes/packets counters are not incremented in the show qos statistics command. Trust diffserv (IPv4) can co-exist with trust ipv6-diffserv in an Input Policy Map.
27 IPv6 Border Gateway Protocol (IPv6 BGP) IPv6 Border Gateway Protocol (IPv6 BGP) is supported on Dell Networking platforms. This chapter includes the following sections: • IPv6 BGP Commands • IPv6 MBGP Commands IPv6 BGP Commands BGP is an external gateway protocol that transmits interdomain routing information within and between autonomous systems (AS). BGP version 4 (BGPv4) supports classless interdomain routing and the aggregation of routes and AS paths.
aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table. Syntax Parameters aggregate-address ipv6-address prefix-mength [advertise-map map-name] [asset] [attribute-map map-name] [summary-only] [suppress-map map-name] ipv6-address prefixlength Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the / x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
bgp always-compare-med Allows you to enable comparison of the MULTI_EXIT_DISC (MED) attributes in the paths from different external ASs. Syntax bgp always-compare-med To disable comparison of MED, use the no bgp always-compare-med command. Defaults Disabled (that is, the software only compares MEDs from neighbors within the same AS). Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The software compares the MEDs only if the path contains no external autonomous system numbers. If you enable this command, use the capture bgp-pdu max-buffer-size * command to recompute the best path. bgp bestpath med missing-as-best During path selection, indicate a preference to paths with missing MED (MULTI_EXIT_DISC) over those paths with an advertised MED attribute.
bgp cluster-id Assign a cluster ID to a BGP cluster with more than one route reflector. Syntax bgp cluster-id {ip-address | number} To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command. Parameters ip-address Enter an IP address as the route reflector cluster ID. number Enter a route reflector cluster ID as a number from 1 to 4294967295. Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.
Usage Information The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. The next hop, MED, and local preference information is preserved throughout the confederation. The system accepts confederation EBGP peers without a LOCAL_PREF attribute. The software sends AS_CONFED_SET and accepts AS_CONFED_SET and AS_CONF_SEQ.
suppress (OPTIONAL) Enter a number as the suppress value, which is compared to the flapping route’s Penalty value. If the Penalty value is greater than the suppress value, the flapping route is no longer advertised (that is, it is suppressed). The range is from 1 to 20000. The default is 2000. max-suppress-time (OPTIONAL) Enter the maximum number of minutes a route can be suppressed. The default is four times the half-life value. The range is from 1 to 255. The default is 60 minutes.
Defaults Enabled. Command Modes ROUTER BGP Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This is enabled by default; that is, for all updates received from EBGP peers, BGP ensures that the first AS of the first AS segment is always the AS of the peer. If not, the update is dropped and a counter is incremented. To view the failed enforce-first-as check counter, use the show ip bgp ipv6 unicast neighbors command.
When creating Confederations, all the routers in the Confederation must be 4- or 2-byte identified routers. You cannot mix them. Where the 2-Byte format is from 1 to 65535, the 4-Byte format is from 1 to 4294967295. Both formats are accepted, and the advertisements reflect the entered format. For more information about using the 2- or 4-Byte format, refer to the Dell Networking OS Configuration Guide.
Defaults Enabled. Command Modes ROUTER BGP Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The bgp log-neighbor-changes command appears in the show config command output. Related Commands show config — views the current configuration. bgp non-deterministic-med Compare MEDs of paths from different autonomous systems (ASs). Syntax bgp non-deterministic-med To return to the default, use the no bgp non-deterministic-med command.
Usage Information This command is a knob to disable BGP next-hop resolution using BGP learned routes. During the next-hop resolution, only the first route that the next-hop resolves through is verified for the route’s protocol source and is checked if the route is learned from BGP or not. For this command to take effect and to keep the BGP database consistent, you need the clear ip bgp command. Execute the clear ip bgp command right after executing this command.
Command Modes Command History Usage Information ROUTER BGP Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Peering sessions are reset when you change the router ID of a BGP router. bgp soft-reconfig-backup Use this command only when route-refresh is not negotiated between peers to avoid having a peer re-send BGP updates. Syntax bgp soft-reconfig-backup To return to the default setting, use the no bgp soft-reconfig-backup command.
Command History Related Commands Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. capture bgp-pdu max-buffer-size — enables route reflection between the route reflector and the clients. show capture bgp-pdu neighbor — configures a route reflector and clients. capture bgp-pdu max-buffer-size Set the size of the BGP packet capture buffer. This buffer size pertains to both IPv4 and IPv6 addresses.
Command Modes Command History in (OPTIONAL) Enter the keyword in to activate only inbound policies. out (OPTIONAL) Enter the keyword out to activate only outbound policies. EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. clear ip bgp as-number Reset BGP sessions. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection.
clear ip bgp ipv6-address Reset BGP sessions specific to an IPv6 address. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection. Syntax clear ip bgp ipv6-address [flap-statistics | ipv4 {multicast {flapstatistics | soft {in | out}} | unicast {flap-statistics | soft {in | out}} | ipv6 unicast {flap-statistics | soft {in | out}| soft [in | out] Parameters ipv6-address Enter an IPv6 address to reset neighbors belonging to that IP.
clear ip bgp ipv6 dampening Clear information on route dampening and return suppressed route to active state. Syntax Parameters clear ip bgp ipv6 unicast dampening [ipv6-address] ipv6-address Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History Usage Information EXEC Privilege Version 9.2(0.
Usage Information If you enter the clear ip bgp ipv6 flap-statistics command without parameters, all the statistics clear. Related Commands show ip bgp ipv6 unicast flap-statistics — views BGP flap statistics. clear ip bgp ipv6 unicast soft Clear and reapply policies for IPv6 unicast routes without resetting the TCP connection; that is, perform BGP soft reconfiguration.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History Usage Information peer-group peergroup-name Enter the keywords peer-group then the name of the peer group. in (OPTIONAL) Enter the keyword in to view only information on inbound BGP routes. out (OPTIONAL) Enter the keyword out to view only information on outbound BGP routes. EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History Usage Information EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Entering a no debug ip bgp command removes all configured debug commands for BGP. debug ip bgp ipv6 dampening View information on dampened (non-active) IPv6 routes. Syntax debug ip bgp ipv6 unicast dampening [in | out] To disable debugging, use the no debug ip bgp ipv6 unicast dampening command.
Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command turns on BGP soft-reconfiguration inbound debugging for IPv6 unicast routes. If no neighbor is specified, debug is turned on for all neighbors. Related Commands show ip bgp ipv6 unicast dampened-paths — views BGP dampened routes. debug ip bgp keepalives Allows you to view information about BGP keepalive messages.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History Usage Information peer-group peergroup-name (OPTIONAL) Enter the keywords peer-group then the name of the peer group. in (OPTIONAL) Enter the keyword in to view BGP notifications received from neighbors. out (OPTIONAL) Enter the keyword out to view BGP notifications sent to neighbors. EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
default-metric Allows you to change the metrics of redistributed routes to locally originated routes. Use this command with the redistribute command. Syntax default-metric number To return to the default setting, use the no default-metric command. Parameters number Defaults 0 Command Modes ROUTER BGP Command History Version 9.2(0.0) Enter a number as the metric to be assigned to routes from other protocols. The range is from 1 to 4294967295. Introduced on the MXL 10/40GbE Switch IO Module.
distance bgp Configure three administrative distances for routes. Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command. Parameters Defaults Command Modes Command History external-distance Enter a number to assign to routes learned from a neighbor external to the AS. The range is from 1 to 255. The default is 20. internal-distance Enter a number to assign to routes learned from a router within the AS.
Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you enable this command, use the capture bgp-pdu max-buffer-size command to recompute the best path. neighbor activate This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI. Syntax neighbor {ipv6-address | peer-group-name} activate To disable, use the no neighbor {ipv6-address | peer-group-name} activate command.
seconds Defaults Command Modes Command History Enter a number as the time interval, in seconds, between BGP advertisements. The range is from 0 to 600 seconds. The default is 5 seconds for internal BGP peers and 30 seconds for external BGP peers. • seconds = 5 seconds (internal peers) • seconds = 30 seconds (external peers) ROUTER BGPV6-ADDRESS FAMILY Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor allowas-in Set the number of times an AS number can occur in the AS path.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group. route-map mapname (OPTIONAL) Enter the keywords route-map then the name of a configured route map. Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 9.2(0.
To delete a neighbor distribution list, use the no neighbor {ipv6-address | peer-group-name} distribute-list prefix-list-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. prefix-list-name Enter the name of an established prefix list. If the prefix list is not configured, the default is permit (to allow all routes).
neighbor fall-over Enable or disable fast fall-over for BGP neighbors. Syntax neighbor {ipv6-address | peer-group-name} fall-over To disable, use the no neighbor {ipv6-address | peer-group-name} fall-over command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Defaults Disabled. Command Modes ROUTER BGP Command History Version 9.2(0.0) Enter the name of the peer group.
neighbor maximum-prefix Control the number of network prefixes received. Syntax neighbor {ipv6-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor {ipv6-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Defaults Disabled. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The TCP session is authentication and prevents the data from being compromised. neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. (This command is used for IBGP).
Command Modes Command History Usage Information ROUTER BGP Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. You can assign up to 64 peers to one peer group. When you add a peer to a peer group, it inherits all the peer group’s configured parameters.
neighbor remote-as — assigns a indirectly connected AS to a neighbor or peer group. neighbor shutdown — disables a peer or peer group. neighbor peer-group passive Enable passive peering on a BGP peer group; that is, the peer group does not send an OPEN message, but does respond to one. Syntax neighbor peer-group-name peer-group passive To delete a passive peer-group, use the no neighbor peer-group-name peer-group passive command. Parameters peer-group-name Defaults Not configured.
Usage Information If the number parameter is the same as the AS number used in the router bgp command, the remote AS entry in the neighbor is considered an internal BGP peer entry. This command creates a peer and the newly created peer is disabled (shutdown). Related Commands router bgp — enters the ROUTER BGP mode and configure routes in an AS. neighbor remove-private-as Remove private AS numbers from the AS-PATH of outgoing updates.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. map-name Enter the name of an established route map. If the Route map is not configured, the default is deny (to drop all routes). in Enter the keyword in to filter inbound routes. out Enter the keyword out to filter outbound routes. Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 9.2(0.
When all clients of a route reflector are disabled, the neighbor is no longer a route reflector. neighbor send-community Send a COMMUNITY attribute to a BGP neighbor or peer group. A COMMUNITY attribute indicates that all routes with that attribute belong to the same community grouping. Syntax neighbor {ipv6-address | peer-group-name} send-community To disable sending a COMMUNITY attribute, use the no neighbor {ipv6-address | peergroup-name} send-community command.
The neighbor shutdown command terminates all BGP sessions on the BGP neighbor or BGP peer group. Use this command with caution as it terminates the specified BGP sessions. When a neighbor or peer group is shutdown, use the show ip bgp ipv6 unicast summary command to confirm its status. Related Commands show ip bgp ipv6 unicast summary — displays the current BGP configuration. show ip bgp ipv6 unicast neighbors — displays IPv6 routing information exchanged by BGP neighbors.
mask Defaults Not configured. Command Modes ROUTER BGP Command History Version 9.2(0.0) Enter a prefix mask in / prefix-length format (/x). Introduced on the MXL 10/40GbE Switch IO Module. neighbor timers Set keepalive and hold time timers for a BGP neighbor or a peer group. Syntax neighbor {ipv6-address | peer-group-name} timers keepalive holdtime To return to the default values, use the no neighbor {ipv6-address | peer-group-name} timers command.
neighbor update-source Enable the software to use Loopback interfaces for TCP connections for BGP sessions. Syntax neighbor {ipv6-address | peer-group-name} update-source loopback interface To use the closest interface, use the no neighbor {ipv6-address | peer-group-name} update-source loopback interface command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Usage Information In the system best path selection process, the path with the highest weight value is preferred. NOTE: To apply the weight to the connection and recompute the best path, reset the neighbor connection (the capture bgp-pdu max-buffer-size * command). network Specify the networks for the BGP process and enter them in the BGP routing table. Syntax network ipv6-address prefix-length [route-map map-name] To remove a network, use the no network ip-address mask [route-map map-name] command.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Though the system does not generate a route due to backdoor config, there is an option for injecting/ sourcing a local route in presence of network backdoor config on a learned route. redistribute Redistribute routes into BGP.
To stop redistribution of IS-IS routes, use the no redistribute isis command. Parameters level-1 | level-1-2 | level-2] (OPTIONAL) Enter the type (level) of routes to redistribute. metric (OPTIONAL) Assign metric to an interface for use with IPv6 information. metric-type (OPTIONAL) The external link type associated with the default route advertised into a routing domain.
Usage Information When you enter the redistribute ospf process-id command without any other parameters, the system redistributes all OSPF internal routes, external type 1 routes, and external type 2 routes. router bgp Enter ROUTER BGP mode to configure and enable BGP. Syntax router bgp as-number To disable BGP, use the no router bgp as-number command. Parameters as-number Defaults Not enabled. Command Modes CONFIGURATION Command History Version 9.2(0.0) Enter the AS number.
Command History Example Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster. Syntax Paramters Command Modes Command History show ip bgp ipv6 unicast cluster-list [cluster-id] cluster-id • EXEC • EXEC Privilege Version 9.2(0.0) (OPTIONAL) Enter the cluster id in dotted decimal format. Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast community View information on all routes with community attributes or view specific BGP community groups.
show ip bgp ipv6 unicast community-list View routes that are affected by a specific community list. Syntax show ip bgp ipv6 unicast community-list community-list-name [exact-match] Paramters Command Modes Command History community-listname Enter the name of a configured IP community list. exact-match (OPTIONAL) Enter the keywords exact-match to display only for an exact match of the communities. • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show ip bgp ipv6 unicast extcommunity-list View information on all routes with Extended Community attributes. Syntax Parameters Command Modes Command History Usage Information show ip bgp ipv6 unicast extcommunity-list [list name] list name • EXEC • EXEC Privilege Version 9.2(0.0) Enter the extended community list name you wish to view. Introduced on the MXL 10/40GbE Switch IO Module. To view the total number of COMMUNITY attributes found, use the show ip bgp ipv6 unicast summary command.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. filter-list as-pathname (OPTIONAL) Enter the keywords filter-list then the name of a configured AS-PATH ACL. regexp regularexpression Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (0 or more sequences). • + = (plus) the sequences in a pattern (1 or more sequences).
routes | received-routes [network [network-mask]] | denied-routes [network [network-mask]]] Parameters ipv6 unicast Enter the keywords ipv6 unicast to view information only related to IPv6 unicast routes. ipv4-neighbor-addr | ipv6-neighboraddr (OPTIONAL) Enter the IP address of the neighbor to view only BGP route information exchanged with that neighbor. advertised-routes (OPTIONAL) Enter the keywords advertised-routes to view only the routes the neighbor sent.
Example Lines Beginning With Description Last read This line displays the following information: • last read is the time (hours:minutes:seconds) the router reads a message from its neighbor • hold time is the number of seconds configured between messages from its neighbor • keepalive interval is the number of seconds between keepalive messages to help ensure that the TCP session is still alive Received messages This line displays the number of BGP messages received, the number of notifications (e
Capabilities received from neighbor for IPv6 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) Capabilities advertised to neighbor for IPv6 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) For address family: IPv6 Unicast BGP table version 12, neighbor version 12 2 accepted prefixes consume 32 bytes Prefixes accepted 1 (consume 4 bytes), withdrawn 0 by peer Prefixes advertised 0, rejected 0, withdrawn 0 from peer Connections established 3; dropped 2 Last reset 00:00:
show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. Syntax show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] Parameters Command Modes Command History Example peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. detail (OPTIONAL) Enter the keyword detail to view peer-group-specific information for the IPv6 address family.
Command History Example Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell# show ip bgp summary BGP router identifier 55.55.55.
show ip bgp paths View all the BGP path attributes in the BGP database. Syntax show ip bgp paths [regexp regular-expression] Parameters regexp regularexpression Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (0 or more sequences). • + = (plus) the sequences in a pattern (1 or more sequences).
• Command History EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp paths extcommunity View all unique extended community information in the BGP database. Syntax Command Modes Command History show ip bgp paths extcommunity • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp regexp Allows you to view the subset of BGP routing table matching the regular expressions specified.
timers bgp Allows you to adjust the BGP network timers for all neighbors. Syntax timers bgp keepalive holdtimer To return to the default values, use the no timers bgp command. Parameters Defaults Command Modes Command History Related Commands keepalive Enter the time interval (in seconds) between which the system sends keepalive messages. The range is from 1 to 65535. The default is 60 seconds.
Usage Information After this command is executed, all subsequent commands apply to this address family. You can exit from this AFI/SAFI to the IPv6 Unicast (the default) family by entering the exit command and returning to the Router BGP context. aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table.
The summary-only parameter suppresses all advertisements. If you want to suppress advertisements to only specific neighbors, use the neighbor distribute-list command. bgp dampening Enable MBGP route dampening. Syntax bgp dampening [half-life time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life time] [route-map mapname] command. Parameters half-life time (OPTIONAL) Enter the number of minutes after which the Penalty is decreased.
Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. clear ip bgp ipv6 unicast dampening Clear information on route dampening. Syntax Parameters Command Modes Command History clear ip bgp dampening ipv6 unicast [network network-mask] network (OPTIONAL) Enter the IPv6 network address in x:x:x:x::x format. network-mask If you enter the network address, next enter the network mask, from 0 to 128. EXEC Privilege Version 9.2(0.
debug ip bgp ipv6 unicast dampening View information on routes being dampened. Syntax debug ip bgp ipv6 unicast dampening To disable debugging, use the no debug ip bgp ipv6 unicast dampening command. Parameters Command Modes Command History dampening Enter the keyword dampening to clear route flap dampening information. EXEC Privilege Version 9.2(0.0) Introduced on the S4820T. debug ip bgp ipv6 unicast peer-group updates View information about BGP peer-group updates.
updates Enter the keyword updates to view BGP update information. in (OPTIONAL) Enter the keyword in to view only BGP updates received from neighbors. out (OPTIONAL) Enter the keyword out to view only BGP updates sent to neighbors. Defaults Disabled. Command Modes EXEC Privilege Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. distance bgp Define an administrative distance for routes.
neighbor activate Allows you to enable a specified neighbor/peer group for the current address and subsequent address family identifier (AFI/SAFI). Syntax neighbor [ipv6-address | peer-group-name] activate To disable, use the no neighbor [ipv6-address | peer-group-name] activate command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Identify a peer group by name.
Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor default-originate Inject the default route to a BGP peer or neighbor. Syntax neighbor {ipv6-address | peer-group-name} default-originate [route-map mapname] To remove a default route, use the no neighbor {ipv6-address | peer-group-name} default-originate command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
out Enter the keyword out to distribute only outbound traffic. Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Related Commands Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor filter-list — assigns a AS-PATH list to a neighbor or peer group. neighbor route-map — assigns a route map to a neighbor or peer group. neighbor filter-list Configure a BGP filter based on the AS-PATH attribute.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. maximum Enter a number as the maximum number of prefixes allowed for this BGP router. The range is from 1 to 4294967295. threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the software sends a message.
neighbor remove-private-as Remove private AS numbers from the AS-PATH of outgoing updates. Syntax neighbor {ipv6-address | peer-group-name} remove-private-as To return to the default, use the no neighbor {ipv6-address | peer-group-name} removeprivate-as command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to remove the private AS numbers.
If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. neighbor route-reflector-client Configure a neighbor as a member of a route reflector cluster.
If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The software resolves the network address configured by the network command with the routes in the main routing table to ensure that the networks are reachable using non-BGP routes and non-default routes.
Paramters Command Modes Command History Usage Information network (OPTIONAL) Enter the network address (in dotted decimal format) of the BGP network to view information only on that network. network-mask (OPTIONAL) Enter the keywords network mask (in slash prefix format) of the BGP network address. longer-prefixes (OPTIONAL) Enter the keywords longer-prefixes to view all routes with a common prefix. • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History Usage Information no-advertise Enter the keywords no-advertise to view all routes containing the well-known community attribute of NO_ADVERTISE. All routes with the NO_ADVERTISE (0xFFFFFF02) community attribute must not be advertised to other BGP peers. no-export Enter the keywords no-export to view all routes containing the well-known community attribute of NO_EXPORT.
show ip bgp ipv6 unicast detail Display detailed BGP information. Syntax Command Modes Command History Example show ip bgp ipv6 unicast detail • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes. Syntax show ip bgp ipv6 unicast flap-statistics [ipv6-address prefix-length] [filter-list as-path-name] [regexp regular-expression] Parameters ipv6-address prefixlength Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
show ip bgp ipv6 unicast inconsistent-as View routes with inconsistent originating autonomous system (AS) numbers; that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. Syntax Command Modes Command History show ip bgp ipv6 unicast inconsistent-as • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast neighbors Allows you to view the information exchanged by BGP neighbors.
Lines Beginning With Description or internal one. If they are located in the same AS, then the link is internal; otherwise, the link is external. Example BGP version Displays the BGP version (always version 4) and the remote router ID. BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state.
6 keepalives, 0 route refresh requests Sent 48 messages, 0 in queue 3 opens, 2 notifications, 0 updates 43 keepalives, 0 route refresh requests Minimum time between advertisement runs is 30 seconds Minimum time before advertisements start is 0 seconds Capabilities received from neighbor for IPv6 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) Capabilities advertised to neighbor for IPv6 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) For address family: IPv6 Unica
show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. Syntax show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] Parameters Command Modes Command History Related Commands peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group.
Field Description BGP community entries Displays the number of BGP COMMUNITY attributes processed and the amount of memory used to process them. The show ip bgp ipv6 unicast community command provides more details on the COMMUNITY attributes. Dampening enabled Displayed only when dampening is enabled. Displays the number of paths designated as history, dampened, or penalized. Neighbor Displays the BGP neighbor address. AS Displays the AS number of the neighbor.
28 iSCSI Optimization Internet small computer system interface (iSCSI) optimization enables quality-of-service (QoS) treatment for iSCSI storage traffic. To configure and verify the iSCSI optimization feature, use the following Dell Networking Operating System (OS) commands. advertise dcbx-app-tlv Configure DCBX to send iSCSI TLV advertisements. Syntax advertise dcbx-app-tlv iscsi To disable DCBX iSCSI TLV advertisements, use the no advertise dcbx-app-tlv iscsi command. Defaults Disabled.
iscsi cos Set the QoS policy that is applied to the iSCSI flows. Syntax iscsi cos {enable | disable | dot1p vlan-priority-value [remark] | dscp dscp-value [remark]} To disable the QoS policy, use the no iscsi cos dscp command. Parameters enable Enter the keyword enable to allow the application of preferential QoS treatment to iSCSI traffic so that the iSCSI packets are scheduled in the switch with a dot1p priority 4 regardless of the VLAN priority tag in the packet.
Version 8.3.16.1 Usage Information Introduced on the MXL 10/40GbE Switch IO Module. When you enable the iSCSI feature using the iscsi enable command, flow control settings are set to rx on tx off on all interfaces. iscsi priority-bits Configure the priority bitmap that advertises in the iSCSI application TLVs. Syntax iscsi priority-bits To remove the configured priority bitmap, use the no iscsi priority-bits command.
ip-address Defaults 860, 3260 Command Modes CONFIGURATION Command History Usage Information (Optional) Enter the ip-address that the iSCSI monitors. The ip-address specifies the IP address of the iSCSI target. Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can configure up to 16 target TCP ports on the switch in one command or multiple commands.
show iscsi session Display information about active iSCSI sessions on the switch. Syntax show iscsi session Command Modes Command History Example • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell# show isci session Session 0: -----------------------------------------------------Target: iqn.2001-05.com.equallogic:0-8a0906-0e70c2002-10a0018426a48c94iom010 Initiator: iqn.1991-05.com.
ISID:806978696102 Initiator Initiator Target Target Connection IP Address TCP Port IP Address TCPPort ID 10.10.0.44 33345 10.10.0.101 3260 0 Session 1 : ---------------------------------------------------Target:iqn.2010-11.com.ixia:ixload:iscsi-TG1 Initiator:iqn.2010-11.com.ixia.ixload:initiator-iscsi-35 Up Time:00:00:01:22(DD:HH:MM:SS) Time for aging out:00:00:09:31(DD:HH:MM:SS) ISID:806978696102 Initiator Initiator Target Target Connection IP Address TCP Port IP Address TCPPort ID 10.10.0.53 33432 10.10.
29 Intermediate System to Intermediate System (ISIS) The intermediate system to intermediate system (IS-IS) protocol for IPv4 and IPv6 is supported on the on the MXL 10/40GbE Switch IO Module. IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic. A router is considered an intermediate system. Networks are partitioned into manageable routing domains, called areas.
To return to the default, use the no advertise {level1-into-level2 | level2-intolevel1}[prefix-list-name] command. Parameters Defaults Command Modes Command History Usage Information level1-into-level2 Enter the keywords level1-into-level2 to advertise Level 1 routes into Level 2 LSPs. This setting is the default. level2-into-level1 Enter the keywords level2-into-level1 to advertise Level 2 inter-area routes into Level 1 LSPs. This behavior is described in RFC 2966.
The configured password injects into Level 1 LSPs, CSNPs, and PSNPs. Related Commands • domain-password — allows you to set the authentication password for a routing domain. • isis password — allows you to configure an authentication password for an interface. clear config Clear IS-IS configurations that display under the router isis heading of the show running-config command output. Syntax clear config Command Modes ROUTER ISIS Command History Version 9.2(0.
nsap Defaults Not configured. Command Modes ROUTER ISIS Command History Version 9.2(0.0) Enter a specific NSAP address that is associated with the name parameter. Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To configure a shortcut name that you can use instead of entering a long string of numbers associated with an NSAP address, use this command.
Command Modes Command History EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug isis local-updates To debug IS-IS local update packets, enable debugging on a specific interface and provides diagnostic information. Syntax debug isis local-updates [interface] To turn off debugging, use the no debug isis local-updates [interface] command.
debug isis spf-triggers Enable debugging on the events that triggered IS-IS shortest path first (SPF) events for debugging purposes. Syntax debug isis spf-triggers To turn off debugging, use the no debug isis spf-triggers command. Command Modes Command History EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug isis update-packets Enable debugging on link state PDUs (LSPs) that a router detects.
route-map mapname Defaults (OPTIONAL) A default route the routing process generates if the route map is satisfied. Not configured. Command Modes Command History Usage Information • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When you use this command to redistribute routes into a routing domain, the router becomes an autonomous system (AS) boundary router.
distance Define the administrative distance for learned routes. Syntax distance weight [ip-address mask [prefix-list]] To return to the default values, use the no distance weight command. Parameters Defaults Command Modes Command History Usage Information weight The administrative distance value indicates the reliability of a routing information source. The range is from 1 to 255. (A higher relative value indicates lower reliability. Routes with smaller values are given preference.
• Command History Related Commands CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. • distribute-list out — suppresses networks from being advertised in updates. • redistribute — redistributes routes from one routing domain to another routing domain. distribute-list out Suppress network prefixes from being advertised in outbound updates.
distribute-list redistributed-override Suppress flapping of routes when the same route is redistributed into IS-IS from multiple routers in the network. Syntax distribute-list redistributed-override in To return to the default, use the no distribute-list redistributed-override in command. Defaults Command Modes Command History Usage Information none • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
graceful-restart ietf Enable graceful restart on an IS-IS router. Syntax graceful-restart ietf To return to the default, use the no graceful-restart ietf command. Parameters ietf Enter ietf to enable graceful restart on the IS-IS router. Defaults Graceful restart disabled. Command Modes ROUTER ISIS Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Every graceful restart enabled router’s HELLO PDUs includes a restart TLV.
To return to the default, use the no graceful-restart t1 command. Parameters interval Enter the keyword interval to set the wait time. The range is from 5 to 120 seconds. The default is 5 seconds. retry-times Enter the keywords retry-times to set the number of times the request interval is extended until a CSNP is received from the helping router. The range is from 1 to 10 attempts. The default is 1. Defaults Refer to Parameters. Command Modes ROUTER ISIS Command History Version 9.2(0.
manual Defaults manual, 30 seconds Command Modes ROUTER ISIS Command History Usage Information Version 9.2(0.0) Enter the keyword manual to specify a time value that the restarting router uses. The range is from 50 to 120 seconds. The default is 30 seconds. Introduced on the MXL 10/40GbE Switch IO Module. The running router sets the remaining time value to the current adjacency hold time. You can override this setting by implementing this command.
To return to the default, use the no hello padding [multi-point | point-to-point] command. Parameters multi-point (OPTIONAL) Enter the keywords multi-point to pad only LAN hello PDUs. point-to-point (OPTIONAL) Enter the keywords point-to-point to pad only point-to-point PDUs. Defaults Both LAN and point-to-point hello PDUs are padded. Command Modes ROUTER ISIS Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. IS-IS normally purges LSPs with an incorrect data link checksum causing the LSP source to regenerate the message. A cycle of purging and regenerating LSPs can occur when a network link continues to deliver accurate LSPs even though there is a link causing data corruption. This process could cause disruption to your system operation.
Usage Information Configure a network entity title (the net command) to specify the area address and the router system ID. To establish adjacencies and establish dynamic routing, enable routing on one or more interfaces. You can configure only one IS-IS routing process to perform Level 2 routing. A level-1-2 designation performs Level 1 and Level 2 routing at the same time. Related Commands • net — configures an IS-IS network entity title (NET) for the routing process.
To return to the default values, use the no isis csnp-interval [seconds] [level-1 | level-2] command. Parameters seconds Interval of transmission time between CSNPs on multi-access networks for the designated intermediate system. The range is from 0 to 65535. The default is 10. level-1 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 1. level-2 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 2.
isis hello-multiplier Specify the number of IS-IS hello packets a neighbor must miss before the router declares the adjacency down. Syntax isis hello-multiplier multiplier [level-1 | level-2] To return to the default values, use the no isis hello-multiplier [multiplier] [level-1 | level-2] command. Parameters multiplier Specifies an integer that sets the multiplier for the hello holding time. Never configure a hello-multiplier lower than the default (3). The range is from 3 to 1000. The default is 3.
isis ipv6 metric Assign metric to an interface for use with IPv6 information. Syntax isis ipv6 metric default-metric [level-1 | level-2] To return to the default values, use the no ipv6 isis metric [default-metric] [level-1 | level-2] command. Parameters default-metric Metric assigned to the link and used to calculate the cost from each other router via the links in the network to other destinations. You can configure this metric for Level 1 or Level 2 routing. The range is from 0 to 16777215.
Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell Networking recommends configuring metrics on all interfaces. Without configuring this command, the IS-IS metrics are similar to hop-count metrics. isis network point-to-point Enable the software to treat a broadcast interface as a point-to-point interface. Syntax isis network point-to-point To disable the feature, use the no isis network point-to-point command. Defaults Not enabled.
You can assign different passwords for different routing levels by using the keywords level-1 and level-2. The no form of this command disables the password for Level 1 or Level 2 routing, using the respective keywords level-1 or level-2. This password provides limited security as it is processed as plain text. isis priority Set the priority of the designated router you select.
level-1-2 Allows a router to act as both a Level 1 and Level 2 router. This setting is the default. level-2-only Allows a router to act as a Level 2 router. Defaults level-1-2 Command Modes ROUTER ISIS Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The IS-IS protocol automatically determines area boundaries and are able to keep Level 1 and Level 2 routing separate.
level-2 (OPTIONAL) Enter the keywords level-2 to apply the configuration to generation of Level-2 LSPs. interval seconds Enter the maximum number of seconds between LSP generations. The range is from 0 to 120 seconds. The default is 5 seconds. initial_wait_interval seconds (OPTIONAL) Enter the initial wait time, in seconds, before running the first LSP generation. The range is from 0 to 120 seconds. The default is 1 second.
lsp-refresh-interval Set the link state PDU (LSP) refresh interval. LSPs must be refreshed before they expire. When the LSPs are not refreshed after a refresh interval, they are kept in a database until their max-lsp-lifetime reaches zero and then LSPs is purged. Syntax lsp-refresh-interval seconds To restore the default refresh interval, use the no lsp-refresh-interval command. Parameters seconds Defaults 900 seconds Command Modes ROUTER ISIS Command History Usage Information Version 9.2(0.
max-lsp-lifetime Set the maximum time that link-state packets (LSPs) exist without being refreshed. Syntax max-lsp-lifetime seconds To restore the default time, use the no max-lsp-lifetime command. Parameters seconds Defaults 1200 seconds Command Modes ROUTER ISIS Command History Usage Information Version 9.2(0.0) The maximum lifetime of LSP in seconds. This value must be greater than the lsp-refresh-interval command. The higher the value the longer the LSPs are kept.
metric-style To generate and accept old-style, new-style, or both styles of type, length, and values (TLV), configure a router. Syntax metric-style {narrow [transition] | transition | wide [transition]} [level-1 | level-2] To return to the default values, use the no metric-style {narrow [transition] | transition | wide [transition]} [level-1 | level-2] command. Parameters narrow Allows you to generate and accept old-style TLVs. The metric range is from 0 to 63.
net To configure an IS-IS network entity title (NET) for a routing process, use this mandatory command. If you did not configure a NET, the IS-IS process does not start. Syntax net network-entity-title To remove a net, use the no net network-entity-title command. Parameters network-entity-title Defaults Not configured. Command Modes ROUTER ISIS Command History Version 9.2(0.0) Specify the area address and system ID for an IS-IS routing process. The first 1 to 13 bytes identify the area address.
redistribute Redistribute routes from one routing domain to another routing domain. Syntax redistribute {static | connected | rip} [level-1 | level-1-2 | level-2] [metric metric-value] [metric-type {external | internal}] [route-map mapname] To end redistribution or disable any of the specified keywords, use the no redistribute {static | connected | rip} [metric metric-value] [metric-type {external | internal}] [level-1 | level-1-2 | level-2] [route-map map-name] command.
Redistributed routing information is filtered with the distribute-list out command to ensure that the routes are properly are passed to the receiving routing protocol. How a metric value assigned to a redistributed route is advertised depends on how on the configuration of the metric-style command. If the metric-style command is set for Narrow or Transition mode and the metric value in the redistribute command is set to a number higher than 63, the metric value advertised in LSPs is 63.
Command Modes Command History • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information BGP to IS-IS redistribution supports “match” options using route maps. You can set the metric value, level, and metric-type of redistributed routes by the redistribution command. You can “set” more advanced options using route maps.
• route-map mapname external map-name is an identifier for a configured route map. The route map should filter imported routes from the source routing protocol to the current routing protocol. If you do not specify a map-name, all routes are redistributed. If you specify a keyword, but fail to list route map tags, no routes are imported. Defaults Refer to Parameters.
• is-type — assigns a type for a given area. set-overload-bit To set the overload bit in its non-pseudonode LSPs, configure the router. This setting prevents other routers from using it as an intermediate hop in their shortest path first (SPF) calculations. Syntax set-overload-bit To return to the default values, use the no set-overload-bit command. Defaults Command Modes Command History Usage Information Not set.
Example (AddressFamily_IPv6) The bold section identifies that Multi-Topology IS-IS is enabled in Transition mode. Dell(conf-router_isis-af_ipv6)#show conf ! address-family ipv6 unicast maximum-paths 16 multi-topology transition set-overload-bit spf-interval level-1 100 15 20 spf-interval level-2 120 20 25 exit-address-family show isis database Display the IS-IS link state database.
Field Description The last octet is the LSP number. An LSP is divided into multiple LSP fragments if there is more data than cannot fit in a single LSP. Each fragment has a unique LSP number. An * after the LSPID indicates that the system originates an LSP where this command was issued. Example LSP Seq Num This value is the sequence number for the LSP that allows other systems to determine if they have received the latest information from the source.
LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL ISIS.00-00 * 0x0000002D 0xB2CD 1075 0/0/0 Area Address: 49.0000.0001 NLPID: 0xCC 0x8E IP Address: 10.1.1.1 IPv6 Address: 1011::1 Topology: IPv4 (0x00) IPv6 (0x8002) Metric: 10 IS OSPF.00 Metric: 10 IS (MT-IPv6) OSPF.00 Metric: 10 IP 10.1.1.0 255.255.255.0 Metric: 10 IP 15.1.1.0 255.255.255.0 Metric: 20 IP 10.3.3.0 255.255.255.
show isis hostname Display IS-IS host names configured or learned on the system. Syntax Command Modes Command History Example show isis hostname • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show isis hostname System Id Dynamic Name Static Name *F100.E120.0013 Force10 ISIS Dell# show isis interface Display detailed IS-IS interface status and configuration information.
LSP Interval: 33 GigabitEthernet 0/8 is up, line protocol is up MTU 1497, Encapsulation SAP Routing Protocol: IS-IS Circuit Type: Level-1-2 Interface Index 38371358, Local circuit ID 2 Level-1 Metric: 10, Priority: 64, Circuit ID: systest-3.02 Hello Interval: 10, Hello Multiplier: 3, CSNP Interval: 10 Number of active level-1 adjacencies: 1 Level-2 Metric: 10, Priority: 64, Circuit ID: systest-3.
Example Field Description Uptime Displays the interfaces uptime. Circuit Id The neighbor’s interpretation of the designated router for the interface. The bold sections below identify that Multi-Topology IS-IS is enabled. Dell#show isis neighbors System Id Interface State Type Priority Uptime Circuit Id TEST Gi 7/1 Up L1L2(M) 127 09:28:01 TEST.02 ! Dell#show isis neighbors detail System Id Interface State Type Priority Uptime Circuit Id TEST Gi 7/1 Up L1L2(M) 127 09:28:04 TEST.02 Area Address(es): 49.
show isis traffic This command allows you to display IS-IS traffic interface information. Syntax show isis traffic [interface] Parameters Command Modes Command History Usage Information 710 interface • EXEC • EXEC Privilege Version 9.2(0.0) (OPTIONAL) Identifies the interface type slot/port as one of the following: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Example Dell#sho IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: IS-IS: Dell# is traffic Level-1 Hellos (sent/rcvd) : 0/721 Level-2 Hellos (sent/rcvd) : 900/943 PTP Hellos (sent/rcvd) : 0/0 Level-1 LSPs sourced (new/refresh) : 0/0 Level-2 LSPs sourced (new/refresh) : 1/3 Level-1 LSPs flooded (sent/rcvd) : 0/0 Level-2 LSPs flooded (sent/rcvd) : 5934/5217 Level-1 LSPs CSNPs (sent/rcvd) : 0/0 Level-2 LSPs CSNPs (sent/rcvd) : 472/238 Level-1 LSPs
Usage Information This command spf-interval in CONFIG-ROUTER-ISIS-AF-IPV6 mode is used for IPv6 Multi-Topology route computation only. If using Single Topology mode, use the spf-interval command in CONFIGROUTER-ISIS mode for both IPv4 and IPv6 route computations. SPF throttling slows down the frequency at which route calculations are performed during network instability.
30 Link Aggregation Control Protocol (LACP) This chapter contains commands for Dell Networks’s implementation of the link aggregation control protocol (LACP) for creating dynamic link aggregation groups (LAGs) — known as port-channels in the Dell Networking Operating System (OS). NOTE: For static LAG commands, refer to theInterfaces chapter), based on the standards specified in the IEEE 802.3 Carrier sense multiple access with collision detection (CSMA/CD) access method and physical layer specifications.
• For a Ten-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Optionally, enter an in or out parameter: Defaults • Receive enter in • Transmit enter out none Command Modes Command History • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Defaults 32768 Command Modes INTERFACE Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. lacp system-priority Configure the LACP system priority. Syntax Parameters lacp system-priority priority-value priority-value Defaults 32768 Command Modes INTERFACE Command History Enter the port-priority value. The higher the value number, the lower the priority. The range is from 1 to 65535. The default is 32768.
Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. LACP Modes Mode Function active An interface is in an active negotiating state in this mode. LACP runs on any link configured in the active state and also automatically initiates negotiation with other ports by initiating LACP packets. passive An interface is not in an active negotiating state in this mode.
Parameters Defaults Command Modes Command History Example (PortChannel-Number) port-channelnumber Enter a port-channel number. The range is from 1 to 128. sys-id (OPTIONAL) Enter the keywords sys-id and the value that identifies a system. counters (OPTIONAL) Enter the keyword counters to display the LACP counters. Without a Port Channel specified, the command clears all Port Channel counters. • EXEC • EXEC Privilege Version 8.3.16.
31 Layer 2 This chapter describes commands to configure Layer 2 features. This chapter contains: • MAC Addressing Commands MAC Addressing Commands The following commands are related to configuring, managing, and viewing MAC addresses. clear mac-address-table Clear the MAC address table. Syntax clear mac-address-table dynamic {address mac-address | all | interface interface | vlan vlan-id} Parameters address macaddress Enter the keyword address then a MAC address in nn:nn:nn:nn:nn:nn format.
mac-address-table aging-time Specify an aging time for MAC addresses to remove from the MAC address table. Syntax mac-address-table aging-time seconds To delete the configured aging time, use the no mac-address-table aging-time seconds command. Parameters seconds Defaults 1800 seconds Command Modes CONFIGURATION Command History Enter either zero (0) or a number as the number of seconds before MAC addresses are relearned. To disable aging of the MAC address table, enter 0.
mac-address-table station-move refresh-arp Ensure that address resolution protocol (ARP) refreshes the egress interface when a station move occurs due to a topology change. Syntax [no] mac-address-table station-move refresh-arp Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
MAC Learning Limit violation logs and actions are not available on a per-VLAN basis. With the keyword no-station-move option, MAC addresses learned through this feature on the selected interface persist on a per-VLAN basis, even if received on another interface. Enabling or disabling this option has no effect on already learned MAC addresses. After the MAC address learning limit is reached, the MAC addresses do not age out unless you add the dynamic option.
To disable a configuration, use the no mac learning-limit station-move-violation command, then the configured keyword. Parameters log Enter the keyword log to generate a syslog message on a station move violation. shutdown-both Enter the keyword shutdown to shut down both the original and offending interface and generate a syslog message. shutdown-offending Enter the keywords shutdown-offending to shut down the offending interface and generate a syslog message.
address mac-addr (OPTIONAL) Enter the keyword address then a MAC address in the nn:nn:nn:nn:nn:nn format to display information on that MAC address. dynamic (OPTIONAL) Enter the keyword dynamic to display only those MAC addresses learned dynamically by the switch. static (OPTIONAL) Enter the keyword static to display only those MAC address specifically configured on the switch.
Command Modes Command History Usage Information • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
Column Heading Description Type Lists whether the MAC address was manually configured (Static), learned (Dynamic), or associated with a specific port (Sticky). An (N) indicates that the specified MAC address has been learnt by a neighbor and is synced to the node. Interface Displays the interface type and slot/port information. The following abbreviations describe the interface types: State • gi — Gigabit Ethernet then a slot/port • po — Port Channel then a number. The range is from 1 to 255. \ •
Example Dell#show mac-address-table aging-time Mac-address-table aging time : 1800 Dell# Related Commands show mac-address-table — displays the current MAC address configuration. show mac learning-limit Display MAC address learning limits set for various interfaces.
NOTE: For more information, refer to VLAN Stacking and VLAN-related commands, such as portmode hybrid in the Interfaces chapter. description Add a description about the selected VLAN. Syntax Parameters description description description Defaults none Command Modes INTERFACE VLAN Command History Related Commands Version 8.3.16.1 Enter a text string description to identify the VLAN (80 characters maximum). Introduced on the MXL 10/40GbE Switch IO Module.
default-vlan disable Disable the default VLAN so that all switchports are placed in the Null VLAN until they are explicitly configured as a member of another VLAN. Defaults Enabled. Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The no default vlan disable command is not listed in the running-configuration, but when the default VLAN is disabled, default-vlan disable is listed in the running-configuration.
Example Dell(conf-if-vl-100)#show config ! interface Vlan 1 description a no ip address mtu 2500 shutdown Dell(conf-if-vl-100)# show vlan Display the current VLAN configurations on the switch.
Column Heading Description Q Ports Example • Displays G for GVRP tagged • M for member of a VLAN-Stack VLAN • T for tagged interface • U for untagged interface • x (not capitalized x) for Dot1x untagged • X (capitalized X) for Dot1x tagged • o (not capitalized o) for OpenFlow untagged • O (capitalized O) for OpenFlow tagged • H for VSN tagged • i (not capitalized i) for Internal untagged • I (capitalized I) for Internal tagged • v (not capitalized v) for VLT untagged • V (capital
20 1002 Dell# Example (Name) 0 0 0 0 unassigned unassigned Dellconf)#interface vlan 222 Dell(conf-if-vl-222)#name test Dell(conf-if-vl-222)#do show vlan name test Codes: Q: U x G - * - Default VLAN, G - GVRP VLANs Untagged, T - Tagged Dot1x untagged, X - Dot1x tagged GVRP tagged, M - Vlan-stack NUM Status Description 222 Inactive Dell(conf-if-vl-222)# Related Commands Q Ports U Gi 1/22 vlan-stack compatible — enables the Stackable VLAN feature on the selected VLAN.
untagged — specifies which interfaces in a VLAN are untagged. track ip Track the Layer 3 operational state of a Layer 3 VLAN, using a subset of the VLAN member interfaces. Syntax track ip interface To remove the tracking feature from the VLAN, use the no track ip interface command. Parameters interface Defaults Not configured. Command Modes INTERFACE VLAN Command History Usage Information Version 8.3.16.
Parameters interface Enter the following keywords and slot/port or number information: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Defaults All interfaces in Layer 2 mode are untagged.
32 Link Layer Discovery Protocol (LLDP) Link layer discovery protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management. The Dell Networking operating software implementation of LLDP is based on IEEE standard 801.1ab.
show lldp neighbors — displays the LLDP neighbors. show running-config lldp — displays the LLDP running configuration. advertise dot3-tlv Advertise dot3 TLVs (Type, Length, Value). Syntax advertise dot3-tlv {max-frame-size} To remove advertised dot3-tlv, use the no advertise dot3-tlv {max-frame-size} command. Parameters max-frame-size Enter the keywords max-frame-size to advertise the dot3 maximum frame size.
Usage Information The command options system-capabilities, system-description, and system-name can be invoked individually or together, in any sequence. clear lldp counters Clear LLDP transmitting and receiving counters for all physical interfaces or a specific physical interface.
debug lldp interface To display timer events, neighbor additions or deletions, and other information about incoming and outgoing packets, enable LLDP debugging. Syntax debug lldp interface {interface | all}{events | packet {brief | detail} {tx | rx | both}} To disable debugging, use the no debug lldp interface {interface | all}{events} {packet {brief | detail} {tx | rx | both}} command.
Command History Related Commands Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) — enables LLDP globally. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. hello Configure the rate at which the LLDP control packets are sent to its peer. Syntax hello seconds To revert to the default, use the no hello seconds command.
Version 8.3.16.1 Related Commands Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) — enables LLDP globally. show lldp neighbors — displays the LLDP neighbors. multiplier Set the number of consecutive misses before LLDP declares the interface dead. Syntax multiplier integer To return to the default, use the no multiplier integer command. Parameters integer Enter the number of consecutive misses before the LLDP declares the interface dead. The range is from 2 to 10.
To return to the global LLDP configuration mode, use the no protocol lldp command from Interface mode. Defaults LLDP is not enabled on the interface. Command Modes INTERFACE (conf-if-interface-lldp) Command History Usage Information Version 8.3.16.1 Before LLDP can be configured on an interface, it must be enabled globally from CONFIGURATION mode. This command places you in LLDP mode on the interface; it does not enable the protocol.
show lldp statistics Display the LLDP statistical information. Syntax show lldp statistics Defaults none Command Modes EXEC Privilege Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• LLDP-MED Endpoint Device — any device that is on an IEEE 802 LAN network edge, can communicate using IP, and uses the LLDP-MED framework. • LLDP-MED Network Connectivity Device — any device that provides access to an IEEE 802 LAN to an LLDP-MED endpoint device, and supports IEEE 802.1AB (LLDP) and TIA-1057 (LLDP-MED). The Dell Networking system is an LLDP-MED network connectivity device.
advertise med guest-voice-signaling To advertise a separate limited voice service for a guest user when the guest voice control packets use a separate network policy than the voice data, configure the system. Syntax advertise med guest-voice-signaling {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med guest-voice-signaling {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID.
Command Modes Command History Usage Information Related Commands CONFIGURATION (conf-lldp) Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. • ECS — Emergency call service such as defined by TIA or the national emergency numbering association (NENA) • ELIN — Emergency location identification number, a valid North America Numbering Plan format telephone number supplied for ECS purposes. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors.
priority-tagged number Enter the keywords priority-tagged then the Layer 2 priority. The range is from 0 to 7. Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. show running-config lldp — displays the LLDP running configuration.
To return to the default, use the no advertise med video-conferencing {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094. priority-tagged number Enter the keywords priority-tagged then the Layer 2 priority. The range is from 0 to 7. Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug lldp interface — debugs LLDP.
advertise med voice To advertise a dedicated IP telephony handset or other appliances supporting interactive voice services, configure the system. Syntax advertise med voice {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med voice {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094. priority-tagged number Enter the keywords priority-tagged then the Layer 2 priority. The range is from 0 to 7.
33 Microsoft Network Load Balancing This functionality is supported on the MXL platforms. Network Load Balancing (NLB) is a clustering functionality that is implemented by Microsoft on Windows 2000 Server and Windows Server 2003 operating systems. NLB uses a distributed methodology or pattern to equally split and balance the network traffic load across a set of servers that are part of the cluster or group.
NLB Multicast Mode Scenario Consider a sample topology in which four servers, namely S1 through S4, are configured as a cluster or a farm. This set of servers is connected to a Layer 3 switch, which in turn is connected to the end-clients. They contain a single multicast MAC address (MACCluster: 03-00-5E-11-11-11). In the multicast NLB mode, a static ARP configuration command is configured to associate the cluster IP address with a multicast cluster MAC address.
• When a port is added to the VLAN, the port automatically receives traffic if the feature is enabled. Old ARP entries are not deleted or updated. • When a member port is deleted, its ARP entries are also deleted from the CAM. • Port channels in the VLAN also receive traffic. • There is no impact on the configuration from saving the configuration. • The feature, if enabled, is displayed in the show running-config command output that displays the ip vlan-flooding CLI configuration.
vlan vlan-id Defaults Not configured. Command Modes CONFIGURATION Command History Example (Multicast) Version 9.3(0.0) Enter the keyword vlan then a VLAN ID number from 1 to 4094. Added support for multicast MAC address on the MXL platform. mac-address-table static 01:00:5E:01:00:01 {multicast vlan 2 output—range Te 0/2,Te 0/3} ip vlan-flooding Enable unicast data traffic flooding on VLAN member ports. Syntax ip vlan-flooding To disable, use the no ip vlan-flooding command.
34 Multicast Source Discovery Protocol (MSDP) Multicast source discovery protocol (MSDP) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections. clear ip msdp peer Reset the TCP connection to the peer and clear all the peer statistics.
clear ip msdp statistic Clears the entire source-active cache, the source-active entries of a particular multicast group, rejected, or local source-active entries. Syntax Parameters clear ip msdp sa-cache [group-address | rejected-sa | local] group-address Enter the group IP address in dotted decimal format (A.B.C.D.).
To clear the MSDP rejected source-active entries, use the no ip msdp cache-rejected-sa {number} command then the ip msdp cache-rejected-sa {number} command. Parameters number Defaults none Command Modes CONFIGURATION Command History Related Commands Version 9.2(0.0) Enter the number of rejected SA entries to cache. The range is from 0 to 32766. Introduced on the MXL 10/40GbE Switch IO Module. show ip msdp sa-cache rejected-sa — Displays the rejected SAs in the SA cache.
Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip msdp mesh-group To be a member of a mesh group, configure a peer. Syntax ip msdp mesh-group {name} {peer address} To remove the peer from a mesh group, use the no ip msdp mesh-group {name} {peer address} command. Parameters name Enter a string of up to 16 characters long for as the mesh group name. peer address Enter the peer address in a dotted decimal format (A.B.C.D.). Defaults Not configured.
• Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.2(0.0) For a VLAN, enter the keyword vlan then a number from 1 to 4094. Introduced on the MXL 10/40GbE Switch IO Module. ip msdp peer Configure an MSDP peer. Syntax ip msdp peer peer address [connect-source] [description] [sa-limit number] To remove the MSDP peer, use the no ip msdp peer peer address [connect-source interface] [description name] [sa-limit number] command.
If the total number of SA messages received from the peer is already larger than the limit when this command is applied, those SA messages continue to be accepted. To enforce the limit in such situation, use the clear ip msdp peer command to reset the peer. Related Commands ip msdp sa-limit — configures the MSDP SA Limit. clear ip msdp peer — clears the MSDP peer. show ip msdp — displays the MSDP information. ip msdp redistribute Filter local PIM SA entries in the SA cache.
Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip msdp sa-limit Configure the upper limit of source-active (SA) entries in SA-cache. Syntax ip msdp sa-limit number To return to the default, use the no ip msdp sa-limit number command. Parameters number Defaults 50000 Command Modes CONFIGURATION Command History Usage Information Version 9.2(0.0) Enter the maximum number of SA entries in SA-cache.
Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip multicast-msdp Enable MSDP. Syntax ip multicast-msdp To exit MSDP, use the no ip multicast-msdp command. Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip msdp Display the MSDP peer status, SA cache, or peer summary.
Example (Sa-cache) Dell#show ip msdp sa-cache MSDP Source-Active Cache - 1 entries GroupAddr SourceAddr RPAddr 224.1.1.1 172.21.220.10 172.21.3.254 Dell# Example (Summary) Dell#show ip msdp summary Peer Addr Local Addr Description 5.5.5.32 6.6.6.32 Peer1 Dell# LearnedFrom Expire UpTime 172.21.3.254 102 00:02:52 State Source Established Lo 32 SA 20 Up/Down 00:07:17 show ip msdp sa-cache rejected-sa Display the rejected SAs in the SA cache.
35 Multiple Spanning Tree Protocol (MSTP) Multiple spanning tree protocol (MSTP), as implemented by the Dell Networking Operating System (OS), conforms to IEEE 802.1s. debug spanning-tree mstp Enable debugging of the multiple spanning tree protocol and view information on the protocol. Syntax Parameters debug spanning-tree mstp [all | bpdu interface {in | out} | events] all (OPTIONAL) Enter the keyword all to debug all spanning tree operations.
description Enter a description of the multiple spanning tree. Syntax description {description} To remove the description, use the no description {description} command. Parameters description Enter a description to identify the multiple spanning tree (maximum 80 characters). Defaults none Command Modes SPANNING TREE (The prompt is “config-mstp”.) Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
forward-delay The amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. Syntax forward-delay seconds To return to the default setting, use the no forward-delay command. Parameters seconds Enter the number of seconds the interface waits in the Blocking State and the Learning State before transiting to the Forwarding State. The range is from 4 to 30. The default is 15 seconds.
max-age To maintain configuration information before refreshing that information, set the time interval for the MSTB. Syntax max-age seconds To return to the default values, use the no max-age command. Parameters max-age Enter a number of seconds the system waits before refreshing configuration information. The range is from 6 to 40. The default is 20 seconds. Defaults 20 seconds Command Modes MULTIPLE SPANNING TREE Command History Related Commands Version 8.3.16.
msti Configure multiple spanning tree instance, bridge priority, and one or multiple VLANs mapped to the MST instance. Syntax msti instance {vlan range | bridge-priority priority} To disable mapping or bridge priority, use the no msti instance {vlan range | bridgepriority priority} command. Parameters msti instance Enter the MSTP iInstance. The range is from zero (0) to 63. vlan range Enter the keyword vlan then the identifier range value. The range is from 1 to 4094.
revision — assigns the revision number to the MST configuration. protocol spanning-tree mstp To enable and configure the multiple spanning tree group, enter MULTIPLE SPANNING TREE mode. Syntax protocol spanning-tree mstp To disable the multiple spanning tree group, use the no protocol spanning-tree mstp command. Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
name — assigns the region name to the MST region. show config View the current configuration for the mode. Only non-default values are shown. Syntax show config Command Modes MULTIPLE SPANNING TREE Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters Command Modes Command History instance-number (Optional) Enter the multiple spanning tree instance number. The range is from 0 to 63. brief (Optional) Enter the keyword brief to view a synopsis of the MST instance. guard (Optional) Enter the keyword guard to display the type of guard enabled on an MSTP interface and the current port state. • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
---------------------------------------------------------Gi 0/0 128.257 128 20000 EDS 0 32768 0001.e801.6aa8 128.257 Interface Name Role PortID Prio Cost Sts Cost Link-type Edge Boundary ---------------------------------------------------------Gi 0/0 ErrDis 128.257 128 20000 EDS 0 P2P No No Dell#show spanning-tree msti 0 MSTI 0 VLANs mapped 1-4094 Root Identifier has priority 32768, Address 0001.e801.
To disable the multiple spanning tree protocol on the interface, use the no spanning-tree command. Parameters spanning-tree Defaults Enable. Command Modes INTERFACE Command History Version 8.3.16.1 Enter the keywords spanning-tree to enable the MSTP on the interface. Introduced on the MXL 10/40GbE Switch IO Module. spanning-tree msti Configure multiple spanning tree instance cost and priority for an interface.
Parameters edge-port Enter the keywords edge-port to configure the interface as a multiple spanning tree edge port. bpduguard (OPTIONAL) Enter the keyword portfast to enable Portfast to move the interface into forwarding mode immediately after the root fails. Enter the keyword bpduguard to disable the port when it receives a BPDU.
Command Modes Command History Usage Information 772 CONFIGURATION Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, the sytem implements an optimized flush mechanism for MSTP. This mechanism helps in flushing the MAC addresses only when necessary (and less often) allowing for faster convergence during topology changes.
36 Multicast The multicast commands are supported by Dell Networking Operating System (OS). This chapter contains the following sections: • IPv4 Multicast Commands • IPv6 Multicast Commands IPv4 Multicast Commands The following section contains the IPv4 multicast commands. clear ip mroute Clear learned multicast routes on the multicast forwarding table. To clear the protocol-independent multicast (PIM) tree information base, use the clear ip pim tib command.
To delete a specific static mroute, use the ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] command. To delete all mroutes matching a certain mroute, use the no ip mroute destination mask command. Parameters destination Enter the IP address in dotted decimal format of the destination device. mask Enter the mask in slash prefix formation ( /x ) or in dotted decimal format.
Usage Information This feature allows you to limit the number of multicast entries on the system. This number is the total of all the multicast entries on all line cards in the system. On each line card, the multicast module only installs the maximum number of entries, depending on the configured CAM profile. To store multicast routes, use the IN-L3-McastFib CAM partition. It is a separate hardware limit that exists per port-pipe. This hardware space limitation can supersede any software-configured limit.
Enter a VLAN ID to limit the information displayed to the multicast routes PIM-SM snooping discovers on a specified VLAN. The VLAN ID range is from 1 to 4094. Enter a multicast group address and, optionally, a source multicast address in dotted decimal format (A.B.C.D) to limit the information displayed to the multicast routes PIM-SM snooping discovers for a specified multicast group and source.
Incoming interface: GigabitEthernet 3/4 Outgoing interface list: GigabitEthernet 3/12 GigabitEthernet 3/13 (*, 224.20.20.1), uptime 00:05:12 Incoming interface: GigabitEthernet 3/12 Outgoing interface list: GigabitEthernet 3/4 Usage Information Example The following describes the show ip mroute command shown in the following example. Field Description (S, G) Displays the forwarding entry in the multicast route table.
Usage Information Network administrators use static mroutes to control the reach-ability of the multicast sources. If a PIMregistered multicast source is reachable using static mroute as well as unicast route, the distance of each route is examined and the route with shorter distance is the one the PIM selects for reach-ability. NOTE: The default distance of mroutes is zero (0) and is CLI configurable on a per route basis. Example Dell#show ip rpf RPF information for 10.10.10.
ip multicast-limit To limit the number of multicast entries on the system, use this feature. Syntax Parameters ip multicast-limit limit limit Defaults 15000 routes. Command Modes CONFIGURATION Command History Usage Information Version 9.2(0.0) Enter the desired maximum number of multicast entries on the system. The range is from 1 to 50000. Introduced on the MXL 10/40GbE Switch IO Module. This feature allows you to limit the number of multicast entries on the system.
37 Neighbor Discovery Protocol (NDP) The Dell Networking Operating System (OS) supports the network discovery protocol for IPv6. The neighbor discovery protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4.
Command Modes Command History • EXEC • EXEC Privilege Version 9.2(0.0) • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For a VLAN, enter the keyword vlan then the VLAN ID. The range is from 1 to 4094. Introduced on the MXL 10/40GbE Switch IO Module. ipv6 neighbor Configure a static entry in the IPv6 neighbor discovery.
show ipv6 neighbors Display IPv6 discovery information. Entering the command without options shows all IPv6 neighbor addresses stored on the control processor (CP). Syntax show ipv6 neighbors [ipv6-address] [cpu {rp1 [ipv6-address] | rp2 [ipv6-address]}] [ Parameters ipv6-address Enter the IPv6 address of the neighbor in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zero.
38 Open Shortest Path First (OSPFv2 and OSPFv3) The MXL 10/40GbE Switch IO Module platform supports open shortest path first version 2 (OSPFv2) for IPv4 and version 3 (OSPFv3) for IPv6. Up to 16 OSPF instances can be run simultaneously on the MXL Switch. OSPF is an Interior Gateway Protocol (IGP), which means that it distributes routing information between routers in a single Autonomous System (AS).
Command Modes Command History ROUTER OSPF Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information In the Dell Networking operating software, cost is defined as reference bandwidth. Related Commands area stub — creates a stub area. area nssa Specify an area as a not so stubby area (NSSA). Syntax area area-id nssa [default-information-originate] [no-redistribution] [nosummary] To delete an NSSA, use the no area area-id nssa command.
not-advertise Defaults Not configured. Command Modes ROUTER OSPF Command History Version 8.3.16.1 (OPTIONAL) Enter the keywords not-advertise to set the status to DoNotAdvertise (that is, the Type 3 summary-LSA is suppressed and the component networks remain hidden from other areas.) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Only the routes within an area are summarized, and that summary is advertised to other areas by the ABR. External routes are not summarized.
Parameters ref-bw (OPTIONAL) Specify a reference bandwidth in megabits per second. The range is from 1 to 4294967. The default is 100 megabits per second. Defaults 100 megabits per second. Command Modes ROUTER OSPF Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip ospf Clear all OSPF routing tables. Syntax clear ip ospf process-id [process] Parameters Command Modes Command History process-id Enter the OSPF Process ID to clear a specific process.
Command Modes Command History Related Commands EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip ospf statistics — displays the OSPF statistics. debug ip ospf Display debug information on OSPF. Entering the debug ip ospf commands enables OSPF debugging for the first OSPF process. Syntax debug ip ospf process-id [bfd |event | packet | spf | database-timer ratelimit] To cancel the debug command, use the no debug ip ospf command.
Example Field Description aid: Displays the Autonomous System ID. chk: Displays the OSPF checksum. aut: States if OSPF authentication is configured. One of the following is listed: • 0 - no authentication configured • 1 - simple authentication configured using the ip ospf authenticationkey command • 2 - MD5 authentication configured using the ip ospf message-digestkey command auk: If the ip ospf authentication-key command is configured, this field displays the key used.
default-information originate To generate a default external route into an OSPF routing domain, configure the system. Syntax default-information originate [always] [metric metric-value] [metric-type type-value] [route-map map-name] To return to the default values, use the no default-information originate command. Parameters always (OPTIONAL) Enter the keyword always to specify that default route information must always be advertised.
description Add a description about the selected OSPF configuration. Syntax description description To remove the OSPF description, use the no description command. Parameters description Defaults none Command Modes ROUTER OSPF Command History Related Commands Version 8.3.16.1 Enter a text string description to identify the OSPF configuration (80 characters maximum). Introduced on the MXL 10/40GbE Switch IO Module. show ip ospf asbr — displays the VLAN configuration.
Parameters Defaults Command Modes Command History Usage Information external dist3 (OPTIONAL) Enter the keyword external then a number to specify a distance for external type 5 and 7 routes. The range is from 1 to 255. The default is 110. inter-area dist2 (OPTIONAL) Enter the keywords inter-area then a number to specify a distance metric for routes between areas. The range is from 1 to 255. The default is 110.
distribute-list out To restrict certain routes destined for the local routing table after the SPF calculation, apply a filter. Syntax distribute-list prefix-list-name out [bgp | connected | isis | rip | static] To remove a filter, use the no distribute-list prefix-list-name out [bgp | connected | isis | rip | static] command. Parameters prefix-list-name Enter the name of a configured prefix list. bgp (OPTIONAL) Enter the keyword bgp to specify that BGP routes are distributed.
NOTE: The faster the convergence, the more frequent the route calculations and updates. This behavior impacts CPU utilization and may impact adjacency stability in larger topologies. Generally, convergence level 1 meets most convergence requirements. Higher convergence levels should only be selected following consultation with Dell Networking technical support. flood-2328 Enable RFC-2328 flooding behavior. Syntax flood-2328 To disable, use the no flood-2328 command. Defaults Disabled.
graceful-restart helper-reject Specify the OSPF router to not act as a helper during graceful restart. Syntax graceful-restart helper-reject ip-address To return to default value, use the no graceful-restart helper-reject command. Parameters ip-address Defaults Not configured. Command Modes ROUTER OSPF Command History Version 8.3.16.1 Enter the OSPF router-id, in IP address format, of the restart router that will not act as a helper during graceful restart.
role restart-only (OPTIONAL) Enter the keywords restart-only to specify the OSPF router is a restart only during graceful-restart. Defaults By default, OSPF routers are both helper and restart routers during a graceful restart. Command Modes ROUTER OSPF Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip ospf auth-change-wait-time OSPF provides a grace period while OSPF changes its interface authentication type.
ip ospf cost Change the cost associated with the OSPF traffic on an interface. Syntax ip ospf cost cost To return to default value, use the no ip ospf cost command. Parameters cost Enter a number as the cost. The range is from 1 to 65535. Defaults The default cost is based on the reference bandwidth. Command Modes INTERFACE Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
To return to the default value, use the no ip ospf hello-interval command. Parameters seconds Defaults 10 seconds Command Modes INTERFACE Command History Version 8.3.16.1 Enter the number of seconds for the interval. The range is from 1 to 65535. The default is 10 seconds. Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The time interval between the hello packets must be the same for routers in a network.
ip ospf mtu-ignore Disable OSPF MTU mismatch detection upon receipt of database description (DBD) packets. Syntax ip ospf mtu-ignore To return to the default, use the no ip ospf mtu-ignore command. Defaults Enabled. Command Modes INTERFACE Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip ospf network Set the network type for the interface. Syntax ip ospf network {broadcast | point-to-point} To return to the default, use the no ip ospf network command.
Usage Information Setting a priority of 0 makes the router ineligible for election as a designated router or backup designated router. Use this command for interfaces connected to multi-access networks, not point-to-point networks. ip ospf retransmit-interval Set the retransmission time between lost link state advertisements (LSAs) for adjacencies belonging to the interface. Syntax ip ospf retransmit-interval seconds To return to the default values, use the no ip ospf retransmit-interval command.
log-adjacency-changes To send a Syslog message about changes in the OSPF adjacency state, set the system. Syntax log-adjacency-changes To disable the Syslog messages, use the no log-adjacency-changes command. Defaults Disabled. Command Modes ROUTER OSPF Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. maximum-paths Enable the software to forward packets over multiple paths.
Usage Information This command is either enabled or disabled. If no OSPF process is identified as the MIB manager, the first OSPF process is used. If an OSPF process has been selected, it must be disabled prior to assigning new process ID the MIB responsibility. network area Define which interfaces run OSPF and the OSPF area for those interfaces. Syntax network ip-address mask area area-id To disable an OSPF area, use the no network ip-address mask area area-id command.
Parameters Command Modes Command History Usage Information default Enter the keyword default to make all OSPF interfaces (current and future) passive. interface Enter the following keywords and slot/port or number information: • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For Port Channel groups, enter the keywords port-channel then a number. The range is from 1 to 128.
• May update ABR status. redistribute Redistribute information from another routing protocol throughout the OSPF process. Syntax redistribute {connected | rip | static} [metric metric-value | metric-type type-value] [route-map map-name] [tag tag-value] To disable redistribution, use the no redistribute {connected | isis | rip | static} command. Parameters connected Enter the keyword connected to specify that information from active routes on interfaces is redistributed.
To disable redistribution, use the no redistribute bgp as number [metric metric-value] | [metric-type type-value] [tag tag-value] command. Parameters as number Enter the autonomous system number. The range is from 1 to 65535. metric metric-value (OPTIONAL) Enter the keyword metric then the metric-value number. The range is from 0 to16777214.
route-map mapname (OPTIONAL) Enter the keywords route-map then the name of the route map. tag tag-value (OPTIONAL) Enter the keyword tag to set the tag for routes redistributed into OSPF. The range is from 0 to 4294967295. Defaults Not configured. Command Modes ROUTER OSPF Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. router-id To configure a fixed router ID, use this command.
To clear an OSPF instance, use the no router ospf process-id command. Parameters process-id Defaults Not configured. Command Modes CONFIGURATION Command History Version 8.3.16.1 Enter a number for the OSPF instance. The range is from 1 to 65535. Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You must have an IP address assigned to an interface to enter ROUTER OSPF mode and configure OSPF.
The following describes the show ip ospf command shown in the following example. Line Beginning with Description “Routing Process...” Displays the OSPF process ID and the IP address associated with the process ID. “Supports only...” Displays the number of Type of Service (TOS) rouse supported. “SPF schedule...” Displays the delay and hold time configured for this process ID. “Convergence Level” “Min LSA....” Displays the intervals set for LSA transmission and acceptance. “Number of...
Usage Information To isolate problems with external routes, use this command. In OSPF, external routes are calculated by adding the LSA cost to the cost of reaching the ASBR router. If an external route does not have the correct cost, use this command to determine if the path to the originating router is correct. The display output is not sorted in any order. NOTE: ASBRs that are not in directly connected areas are also displayed.
OSPF Router with ID (11.1.2.1) (Process ID 1) Router (Area 0.0.0.0) Link ID ADV Router Age Seq# Checksum 11.1.2.1 11.1.2.1 673 0x80000005 0x707e 13.1.1.1 13.1.1.1 676 0x80000097 0x1035 192.68.135.2 192.68.135.2 1419 0x80000294 0x9cbd Link ID 10.2.3.2 10.2.4.2 Link ID 0.0.0.0 1.1.1.1 10.1.1.0 10.1.2.0 10.2.2.0 10.2.3.0 10.2.4.0 11.1.1.0 11.1.2.0 12.1.2.0 13.1.1.0 13.1.2.0 172.16.1.0 Dell> Related Commands Link count 2 2 1 Network (Area 0.0.0.0) ADV Router Age Seq# Checksum 13.1.1.
Usage Information Example The following describes the show ip ospf database asbr-summary command shown in the following example. Field Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: • TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
show ip ospf database external Display information on the AS external (type 5) LSAs. Syntax Parameters show ip ospf process-id database external [link-state-id] [adv-router ipaddress] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Example Field Description TOS Displays the Type of Service (TOS) options. Option 0 is the only option. Metric Displays the LSA metric. Forward Address Identifies the address of the forwarding router. Data traffic is forwarded to this router. If the forwarding address is 0.0.0.0, data traffic is forwarded to the originating router. External Route Tag Displays the 32-bit field attached to each external route.
link-state-id adv-router ipaddress Command Modes Command History Usage Information Example • EXEC • EXEC Privilege Version 8.3.16.1 (OPTIONAL) Specify LSA ID in dotted decimal format. The LSA ID value depends on the LSA type, and it can be one of the following: • the network’s IP address for Type 3 LSAs or Type 5 LSAs • the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs • the default destination (0.0.0.
Length: 36 Network Mask: Attached Attached Attached /24 Router: 20.20.20.8 Router: 20.20.20.9 Router: 20.20.20.7 Network (Area 0.0.0.1) LS age: 252 Options: (TOS-capability, No DC, E) LS type: Network Link State ID: 192.10.10.2 Advertising Router: 192.10.10.2 LS Seq Number: 0x80000007 Checksum: 0x4309 Length: 36 Network Mask: /24 Attached Router: 192.10.10.2 Attached Router: 20.20.20.1 Attached Router: 20.20.20.5 Dell# Related Commands show ip ospf database — displays OSPF database information.
show ip ospf database opaque-area Display the opaque-area (type 10) LSA information. Syntax Parameters show ip ospf process-id database opaque-area [link-state-id] [adv-router ip-address] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
OSPF Router with ID (3.3.3.3) (Process ID 1) Type-10 Opaque Link Area (Area 0) LS age: 1133 Options: (No TOS-capability, No DC, E) LS type: Type-10 Opaque Link Area Link State ID: 1.0.0.1 Advertising Router: 10.16.1.160 LS Seq Number: 0x80000416 Checksum: 0x376 Length: 28 Opaque Type: 1 Opaque ID: 1 Unable to display opaque data LS age: 833 Options: (No TOS-capability, No DC, E) LS type: Type-10 Opaque Link Area Link State ID: 1.0.0.2 Advertising Router: 10.16.1.
show ip ospf database opaque-link Display the opaque-link (type 9) LSA information. Syntax Parameters show ip ospf process-id database opaque-link [link-state-id] [adv-router ip-address] process-id Enter the OSPF process ID to show a specific process. If you do not enter the process ID, the command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Command History Usage Information Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip ospf process-id database router command shown in the following example. Item Description LS Age Displays the LSA age. Options Displays the optional capabilities available on router. The following options can be found in this item: • TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.129.1 (Link Data) Router Interface address: 192.68.129.1 Number of TOS metric: 0 TOS 0 Metric: 1 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.130.1 (Link Data) Router Interface address: 192.68.130.1 Number of TOS metric: 0 TOS 0 Metric: 1 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.142.2 (Link Data) Router Interface address: 192.68.142.
• Command History Usage Information Example EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip ospf process-id database summary command shown in the following example. Item Description LS Age Displays the LSA age. Options Displays the optional capabilities available on router.
Length: 28 Network Mask: /24 TOS: 0 Metric: 1 LS age: 7 Options: (No TOS-capability, No DC, E) LS type: Summary Network Link State ID: 192.68.33.0 Advertising Router: 1.1.1.10 LS Seq Number: 0x80000016 Checksum: 0x1241 Length: 28 Network Mask: /26 TOS: 0 Metric: 1 # Related Commands show ip ospf database — displays OSPF database information. show ip ospf interface Display the OSPF interfaces configured. If OSPF is not enabled on the switch, no output is generated.
Example Item Description Internet Address... This line displays the IP address, network mask and area assigned to this interface. Process ID... This line displays the OSPF Process ID, Router ID, Network type and cost metric for this interface. Transmit Delay... This line displays the interface’s settings for Transmit Delay, State, and Priority. In the State setting, BDR is Backup Designated Router. Designated Router... This line displays the ID of the Designated Router and its interface address.
Parameters Command Modes Command History Usage Information Example process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip ospf process-id neighbor command shown in the following example. Item Description Neighbor ID Displays the neighbor router ID. Pri Displays the priority assigned neighbor.
This command has the following limitations: Example • The display output is sorted by prefixes; intra-area ECMP routes are not displayed together. • For Type 2 external routes, Type 1 cost is not displayed. Dell#show ip ospf 100 route Prefix Cost Nexthop 1.1.1.1 1 0.0.0.0 3.3.3.3 2 13.0.0.3 13.0.0.0 1 0.0.0.0 150.150.150.0 2 13.0.0.3 172.30.1.0 2 13.0.0.
Row Heading Description Total Displays the total number of packets the OSPF process receives/transmits. Error Displays the error count while receiving and transmitting packets by the OSPF process. Hello Number of OSPF Hello packets. DDiscr Number of database description packets. LSReq Number of link state request packets. LSUpd Number of link state update packets. LSAck Number of link state acknowledgement packets. TxQ-Len The transmission queue length. RxQ-Len The reception queue length.
Example Error Type Description Q-overflow Packets dropped due to queue overflow. Unknown-Pkt Received packet is not an OSPF packet.
Hello 1 Wait 0 Dead 37 Transmit 0 Queue Statistics LSU-Q-Len 0 LSU-Q-Wmark LSR-Q-Len 0 LSR-Q-Wmark Dell# Related Commands Grace 0 1 1 clear ip ospf statistics — clears the packet statistics in all interfaces and neighbors. show ip ospf timers rate-limit Show the LSA currently in the queue waiting for timers to expire. Syntax Parameters Defaults Command Modes Command History Example show ip ospf process-id timers rate-limit process-id Enter the OSPF Process ID to show a specific process.
Usage Information To isolate problems with inter-area and external routes, use this command. In OSPF inter-area and external routes are calculated by adding LSA cost to the cost of reaching the router. If an inter-area or external route is not of correct cost, the display can determine if the path to the originating router is correct or not. Example Dell#show ip ospf 1 topology Router ID 3.3.3.3 1.1.1.1 Dell# Flags Cost E/B/-/ 1 E/-/-/ 1 Nexthop 20.0.0.3 10.0.0.
Parameters Defaults Command Modes Command History delay Enter a number as the delay. The range is from 0 to 4294967295. The default is 5 seconds. holdtime Enter a number as the hold time. The range is from 0 to 4294967295. The default is 10 seconds. • delay = 5 seconds • holdtime = 10 seconds ROUTER OSPF Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History Usage Information ROUTER OSPF Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. LSAs are sent after the start-interval and then after hold-interval until the maximum interval is reached. In throttling, exponential backoff is used when sending same LSA, so that the interval is multiplied until the maximum time is reached.
The range is from 0 to 4294967295. ipsec spi number Security Policy index (SPI) value that identifies an IPsec security policy. The range is from 256 to 4294967295. MD5 | SHA1 Authentication type: Message Digest 5 (MD5) or Secure Hash Algorithm 1 (SHA-1). key-encryptiontype (OPTIONAL) Specifies if the key is encrypted. The values are 0 (key is not encrypted) or 7 (key is encrypted). key Text string used in authentication.
Parameters area area-id Area for which OSPFv3 traffic is to be encrypted. For area-id, enter a number. The range is from 0 to 4294967295. ipsec spi number Security Policy index (SPI) value that identifies an IPsec security policy. The range is from 256 to 4294967295. esp encryptionalgorithm Encryption algorithm used with ESP. Valid values are: 3DES, DES, AES-CBC, and NULL. For AES-CBC, only the AES-128 and AES-192 ciphers are supported.
Usage Information Before you enable IPsec encryption on an OSPFv3 interface, first enable OSPFv3 globally on the router. Configure the same encryption policy (same SPI and keys) on each interface in an OSPFv3 link. An SPI value must be unique to one IPsec security policy (authentication or encryption) on the router. When you configure encryption for an OSPFv3 area with the area encryption command, you enable both IPsec encryption and authentication.
Command Modes Command History Usage Information Example • For a tunnel interface, enter the keyword tunnel then a number. The range is from 1 to 16383. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following section describes the command fields. Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces.
Parameters Command Modes Command History interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet then the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
graceful-restart grace-period Enable OSPFv3 graceful restart globally by setting the grace period (in seconds) that an OSPFv3 router’s neighbors continues to advertise the router as adjacent during a graceful restart. Syntax graceful-restart grace-period seconds To disable OSPFv3 graceful restart, enter no graceful-restart grace-period. Parameters seconds Time duration, in seconds, that specifies the duration of the restart process before OSPFv3 terminates the process.
Usage Information OSPFv3 graceful restart supports planned-only and/or unplanned-only restarts. The default is support for both planned and unplanned restarts. • A planned restart occurs when you enter the redundancy force-failover rpm command to force the primary RPM to switch to the backup RPM. During a planned restart, OSPF sends out a Type-11 Grace LSA before the system switches over to the backup RPM.
MD5 | SHA1 Authentication type: Message Digest 5 (MD5) or Secure Hash Algorithm 1 (SHA-1). key-encryptiontype (OPTIONAL) Specifies if the key is encrypted. Valid values: 0 (key is not encrypted) or 7 (key is encrypted). key Text string used in authentication. For MD5 authentication, the key must be 32 hex digits (non-encrypted) or 64 hex digits (encrypted). For SHA-1 authentication, the key must be 40 hex digits (non-encrypted) or 80 hex digits (encrypted). Defaults Not configured.
role [active | passive] Enter the role that the local system assumes: • active — The active system initiates the BFD session. Both systems can be active for the same session. • passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system. The default is Active. Defaults See Parameters. Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
ipv6 ospf dead-interval Set the time interval since the last hello-packet was received from a router. After the time interval elapses, the neighboring routers declare the router down. Syntax ipv6 ospf dead-interval seconds Parameters seconds Defaults 40 seconds (Ethernet). Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Enter the time interval in seconds. The range is from 1 to 65535 seconds. Introduced on the MXL 10/40GbE Switch IO Module.
The required lengths of a non-encrypted or encrypted key are: 3DES - 48 or 96 hex digits; DES - 16 or 32 hex digits; AES-CBC -32 or 64 hex digits for AES-128 and 48 or 96 hex digits for AES-192. authenticationalgorithm Specifies the authentication algorithm to use for encryption. Valid values are MD5 or SHA1. key-encryptiontype (OPTIONAL) Specifies if the authentication key is encrypted. Valid values: 0 (key is not encrypted) or 7 (key is encrypted). key Text string used in authentication.
When configured in a helper-reject role, an OSPFv3 router ignores the Grace LSAs that it receives from a restarting OSPFv3 neighbor. The graceful-restart role command is not supported in OSPFv3. When you enable the helper-reject role on an interface, you reconfigure an OSPFv3 router to function in a “restarting-only” role. ipv6 ospf hello-interval Specify the time interval between the hello packets sent on the interface.
ipv6 router ospf Enable OSPF for IPv6 router configuration. Syntax ipv6 router ospf process-id To exit OSPF for IPv6, use the no ipv6 router ospf process-id command. Parameters process-id Defaults none Command Modes CONFIGURATION Command History Version 9.2(0.0) Enter the process identification number. The range is from 1 to 65535. Introduced on the MXL 10/40GbE Switch IO Module. maximum-paths Enable the software to forward packets over multiple paths.
interface Command Modes Enter the following keywords and slot/port or number information: • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a VLAN, enter the keyword vlan then a number from 1 to 4094.
The range is from 0 to 16777214. The default is 20. metric-type typevalue (OPTIONAL) Enter the keywords metric-type then the OSPFv3 link state type of 1 or 2 for default routes. The values are: • 1 for a type 1 external route • 2 for a type 2 external route The default is 2. route-map mapname (OPTIONAL) Enter the keywords route-map then the name of an established route map. If the route map is not configured, the default is deny (to drop all routes).
Command Modes Command History Usage Information ROUTER OSPFv3 for OSPFv3 Version 9.2(0.0) Added support for OSPFv3. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can configure an arbitrary value in the IP address for each router. However, each router ID must be unique. If this command is used on an OSPFv3 process that is already active (has neighbors), all the neighbor adjacencies are brought down immediately and new sessions are initiated with the new router ID.
show crypto ipsec sa ipv6 Display the IPsec security associations (SAs) used on OSPFv3 interfaces. Syntax Parameters show crypto ipsec sa ipv6 [interface interface] interface interface Defaults none Command Modes EXEC (OPTIONAL) Displays information about the SAs used on a specified OSPFv3 interface, where interface is one of the following values: • For a 1-Gigabit Ethernet interface, enter GigabitEthernet then the slot/ part number.
EXEC Privilege Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The show crypto ipsec sa ipv6 command output displays security associations set up for OSPFv3 links in IPsec authentication and encryption policies on the router. show ipv6 ospf interface View OSPFv3 interface information. Syntax show ipv6 ospf [interface] Parameters interface Defaults none Command Modes EXEC Command History Usage Information Version 9.2(0.
Dell# show ipv6 ospf neighbor Display the OSPF neighbor information on a per-interface basis. Syntax Parameters show ipv6 ospf neighbor [interface] interface Defaults none Command Modes EXEC (OPTIONAL) Enter the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet then the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Command Modes ROUTER OSPFv3 for OSPFv3 Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Usage Information Version Description 9.8(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
39 Policy-based Routing (PBR) Policy-based routing (PBR) allows you to apply routing policies to specific interfaces. To enable PBR, create a redirect list and apply it to the interface. After the redirect list is applied to the interface, all traffic passing through the interface is subject to the rules defined in the redirect list. PBR is supported by the Dell Networking operating software (OS) in MXL platform.
Command History Usage Information Version 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Version 8.4.2.1 Introduced on the C-Series and S-Series. Version 8.4.2.0 Introduced on the E-Series TeraScale. Version 7.4.2.0 Added support for LAG and VLAN interfaces. pre-Version 7.7.1.0 Introduced on the E-Series ExaScale. You can apply any number of redirect-groups to an interface. A redirect list can contain any number of configured rules.
permit Configure a permit rule. A permit rule excludes the matching packets from PBR classification and routes them using conventional routing. Syntax permit {ip-protocol-number | protocol-type} {source mask | any | host ipaddress} {destination mask | any | host ip-address} [bit] [operators] To remove the rule, use one of the following: Parameters • If you know the filter sequence number, use the no seq sequence-number syntax command.
Command Modes Command History REDIRECT-LIST Version 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Version 8.4.2.1 Introduced on the C-Series and S-Series. Version 8.4.2.0 Introduced on the E-Series TeraScale. Version 7.5.1.0 Introduced on the E-Series ExaScale. redirect Configure a rule for the redirect list.
• source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all traffic is subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent. operator (OPTIONAL) For TCP and UDP parameters only.
tunnel Enter the keyword tunnel to configure the tunnel setting. tunnel-id Enter the keyword tunnel-id to redirect the traffic. track Enter the keyword track to enable the tracking. track Enter the keyword track to track object-id. ip-protocol-number Enter the keyword ip-protocol-number then the number from 0 to 255 for the protocol identified in the IP protocol header.
destination-portrange Defaults none Command Modes REDIRECT-LIST Command History Enter the keywords destination-port-range then the range of the start port to end port to be matched in the ACL rule in the ICAP rule. Version Description 9.7(0.0) Added support for thetrack-id on the MXL. 9.4(0.0) Added support for removing the Sonet interface on the MXL 10/40GbE Switch IO Module. show cam pbr Display the PBR CAM content.
• show cam-usage – displays the CAM usage on ACL, router, or switch. show ip redirect-list View the redirect list configuration and the interfaces it is applied to. Syntax show ip redirect-list redirect-list-name Parameters Command Modes Command History Example 858 redirect-list-name • EXEC • EXEC Privilege Enter the name of a configured Redirect list. Version 9.4(0.0) Added support for removing the Sonet interface on the MXL. Version 7.4.1.0 Introduced.
40 PIM-Sparse Mode (PIM-SM) The protocol-independent multicast (PIM) commands are supported by the Dell Networking Operating System (OS). This chapter contains the following sections: • IPv4 PIM-Sparse Mode Commands • IPv6 PIM-Sparse Mode Commands IPv4 PIM-Sparse Mode Commands The following describes the IPv4 PIM-sparse mode (PIM-SM) commands. clear ip pim rp-mapping The bootstrap router (BSR) feature uses this command to remove all or particular rendezvous point (RP) advertisement.
VLT node to download multicast routes learned by the peer. Both local and synced routes are removed from the local VLT node multicast route table. The peer VLT node clears synced routes from the node. If you use this command on a peer VLT node, only the synced routes are deleted from the multicast route table. debug ip pim View IP PIM debugging messages.
ip pim bsr-border Define the border of PIM domain by filtering inbound and outbound PIM-BSR messages per interface. Syntax ip pim bsr-border To return to the default value, use the no ip pim bsr-border command. Defaults Disabled. Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command is applied to the subsequent PIM-BSR. Existing BSR advertisements are cleaned up by timeout.
ip pim dr-priority Change the designated router (DR) priority for the interface. Syntax ip pim dr-priority priority-value To remove the DR priority value assigned, use the no ip pim dr-priority command. Parameters priority-value Defaults 1 Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Enter a number. Preference is given to larger/higher number. The range is from 0 to 4294967294. The default is 1. Introduced on the MXL 10/40GbE Switch IO Module.
ip pim ingress-interface-map When the Dell Networking system is the RP, statically map potential incoming interfaces to (*,G) entries to create a lossless multicast forwarding environment. Syntax Parameters ip pim ingress-interface-map std-access-list std-access-list Defaults none Command Modes INTERFACE Command History Example Version 9.2(0.0) Enter the name of a standard access list. Introduced on the MXL 10/40GbE Switch IO Module.
Defaults 30 seconds Command Modes INTERFACE Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip pim register-filter To prevent a PIM source DR from sending register packets to an RP for the specified multicast source and group, use this feature. Syntax ip pim register-filter access-list To return to the default, use the no ip pim register-filter access-list command. Parameters access-list Defaults Not configured.
Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. First-hop routers use this address by to send register packets on behalf of source multicast hosts. The RP addresses are stored in the order in which they are entered. The RP is chosen based on a longer prefix match for a group. The RP selection does not depend on dynamic or static RP assignments.
Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The interface must be enabled (the no shutdown command) and not have the switchport command configured. Multicast must also be enabled globally (using the ip multicast-lag-hashing command). PIM is supported on the port-channel interface. ip pim sparse-mode sg-expiry-timer Enable expiry timers globally for all sources, or for a specific set of (S,G) pairs an access list defines.
Usage Information This command is applicable to last hop routers on the shared tree towards the rendezvous point (RP). no ip pim snooping dr-flood Disable the flooding of multicast packets to the PIM designated router. Syntax no ip pim snooping dr-flood To re-enable the flooding of multicast packets to the PIM designated router, use the ip pim snooping dr-flood command. Defaults Enabled. Command Modes CONFIGURATION Command History Usage Information Version 9.2(0.
Next bootstrap message in 00:00:08 This system is a candidate BSR Candidate BSR address: 7.7.7.7, priority: 0, hash mask length: 30 show ip pim interface View information on the interfaces with IP PIM enabled. Syntax show ip pim interface Command Modes Command History Usage Information Example 868 • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip pim interface command shown in the following example.
show ip pim neighbor View PIM neighbors. Syntax Command Modes Command History Usage Information show ip pim neighbor • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip pim neighbor command shown in the following example. Field Description Neighbor address Displays the IP address of the PIM neighbor.
Command Modes Command History • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#sh ip pim rp Group RP 224.2.197.115 165.87.20.4 224.2.217.146 165.87.20.4 224.3.3.3 165.87.20.4 225.1.2.1 165.87.20.4 225.1.2.2 165.87.20.4 229.1.2.1 165.87.20.4 229.1.2.2 165.87.20.4 Dell# Example (Mapping) Dell#sh ip pim rp mapping Group(s): 224.0.0.0/4 RP: 165.87.20.4, v2 Info source: 165.87.20.
Example (#2) Field Description Interface Displays the VLAN interfaces with PIM-SM snooping enabled. Ver/Mode Displays the PIM version number for each VLAN interface with PIM-SM snooping enabled: • v2 = PIM version 2 • S = PIM Sparse mode Nbr Count Displays the number of neighbors learned through PIM-SM snooping on the interface. DR Prio Displays the Designated Router priority value configured on the interface (ip pim dr-priority command).
Field Description • DR prio/Mode Example v2 = PIM version 2 Displays the Designated Router priority and the mode: • 1 = default Designated Router priority (use the ip pim dr-priority command) • DR = Designated Router • S = Sparse mode Dell#show ip pim snooping neighbor Neighbor Interface Address 165.87.32.2 Vl 2 [Gi 4/13 ] 165.87.32.10 Vl 2 [Gi 4/11 ] 165.87.32.
Field Example Description • S = PIM Sparse Mode • C = directly connected • L = local to the multicast group • P = route was pruned • R = the forwarding entry is pointing toward the RP • F = Dell Networking OS is registering this entry for a multicast source • T = packets were received via Shortest Tree Path • J = first packet from the last hop router is received and the entry is ready to switch to SPT • K=acknowledge pending state Incoming interface Displays the reverse path forwarding
Command Modes Command History Example • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
source-address Command Modes Command History Usage Information Example • EXEC • EXEC Privilege Version 9.2(0.0) (OPTIONAL) Enter the source address in dotted decimal format (A.B.C.D). Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip pim tib command shown in the following example. Field Description (S, G) Displays the entry in the multicast PIM database. uptime Displays the amount of time the entry has been in the PIM route table.
Outgoing interface list: GigabitEthernet 8/0 (*, 226.1.1.2), uptime 00:18:08, expires 00:00:52, RP 10.211.2.1, flags: SCJ Incoming interface: GigabitEthernet 4/23, RPF neighbor 10.211.1.2 Outgoing interface list: GigabitEthernet 8/0 (*, 226.1.1.3), uptime 00:18:08, expires 00:00:52, RP 10.211.2.1, flags: SCJ Incoming interface: GigabitEthernet 4/23, RPF neighbor 10.211.1.2 Outgoing interface list: GigabitEthernet 8/0 (*, 226.1.1.4), uptime 00:18:08, expires 00:00:52, RP 10.211.2.
Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command is applied to the subsequent PIM-BSR messages. Existing BSR advertisements are cleaned up by time-out. ipv6 pim bsr-candidate Configure the router as a bootstrap (BSR) candidate. Syntax ipv6 pim bsr-candidate interface [hash-mask-length] [priority] To disable the bootstrap candidate, use the no ipv6 pim bsr-candidate command.
Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The router with the largest value assigned to an interface becomes the designated router. If two interfaces contain the same designated router priority value, the interface with the largest interface IP address becomes the designated router. ipv6 pim join-filter Permit or deny PIM Join/Prune messages on an interface using an access list.
ipv6 pim neighbor-filter Prevent the system from forming a PIM adjacency with a neighboring system. Syntax Parameters ipv6 pim neighbor-filter {access-list} access-list Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.2(0.0) Enter the name of a standard access list. Maximum 16 characters. Introduced on the MXL 10/40GbE Switch IO Module. Do not enter this command before creating the access-list.
group-address group-address mask Enter the keywords group-address then the group address in the x:x:x:x::x format and then the mask in /nn format to assign that group address to the RP. override Enter the keyword override to override the BSR updates with static RP. The override takes effect immediately during enable/disable. NOTE: The :: notation specifies successive hexadecimal fields of zero. NOTE: This option is applicable to multicast group range.
ipv6 pim sparse-mode Enable IPv6 PIM sparse mode on the interface. Syntax ipv6 pim sparse-mode To disable IPv6 PIM sparse mode, use the no ipv6 pim sparse-mode command. Defaults Disabled. Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Enable the interface (use the no shutdown command) and not have the switchport command configured. Also enable Multicast globally. PIM is supported on the port-channel interface.
Example Dell#show ipv6 pim bsr-router PIMv2 Bootstrap information This system is the Bootstrap Router (v2) BSR address: 14::2 Uptime: 00:02:54, BSR Priority: 0, Hash mask length: 126 Next bootstrap message in 00:00:06 This system is a candidate BSR Candidate BSR address: 14::2, priority: 0, hash mask length: 126 Dell show ipv6 pim interface Display IPv6 PIM enabled interfaces. Syntax show ipv6 pim interface Command Modes Command History Example • EXEC • EXEC Privilege Version 9.2(0.
Example Dell#show ipv6 pim neighbor detail Neighbor Interface Uptime/Expires Ver DR Address Prio/Mode fe80::201:e8ff:fe00:6265 Gi 10/3 00:07:39/00:01:42 v2 1 / S 165:87:50::6 Dell# show ipv6 pim rp View all multicast groups-to-RP mappings. Syntax Parameters Command Modes Command History show ipv6 pim rp [mapping | group-address] mapping (OPTIONAL) Enter the keyword mapping to display the multicast groups-to-RP mapping and information on how RP is learnt.
NOTE: The :: notation specifies successive hexadecimal fields of zero. source-address (OPTIONAL) Enter the source address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zero. Command Modes Command History Example • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
41 Port Monitoring The port monitoring feature allows you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port. Important Points to Remember • Port monitoring is supported on physical ports and logical interfaces, such as Port Channels and virtual local area networks (VLANs). • The monitoring (destination, “MG”) and monitored (source, “MD”) ports must be on the same switch.
flow-based enable Enable flow-based monitoring. Syntax flow-based enable To disable flow-based monitoring, use the no flow-based enable command. Defaults Disabled, that is flow-based monitoring is not applied. Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Command History Usage Information Version 9.4(0.0) Added support for the RPM/ERPM. Version 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.
Version 9.4(0.0) Added support for rpm / erpm. Version 8.3.16.1 Introduced on the M I/O Aggregator. Usage Information The monitor command is saved in the running configuration at Monitor Session mode level and can be restored after a chassis reload. Example Dell(conf)# monitor session 60 Dell(conf-mon-sess-60) Related Command show monitor session — displays the monitor session. show running-config monitor session — displays the running configuration of a monitor session.
Command History Example Version 8.3.16.1 Introduced on the M I/O Aggregator. Dell(conf-mon-sess-1)#show config ! monitor session 1 source TenGigabitEthernet 0/1 destination Port-channel 1 direction rx show monitor session Display the monitor information of a particular session or all sessions. Syntax show monitor session {session-ID} To display monitoring information for all sessions, use the show monitor session command.
Command Modes Command History • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the M I/O Aggregator. Usage Information The monitoring command is saved in the running configuration at the Monitor Session mode level and can be restored after a chassis reload. Example Dell# show running-config monitor session ! monitor session 1 source TenGigabitEthernet 0/1 destination TenGigabitEthernet 0/2 direction rx Related Commands monitor session — creates a session for monitoring.
• interface direction {rx | tx | both} For a port channel interface, enter the keyword LAG then port channel and the port-channel id . Enter the one of the following keywords and slot/port information: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For a VLAN interface enter the keyword VLAN followed by a number from 1 to 4094.
42 Private VLAN (PVLAN) Private VLANs extend the Dell Networking OS security suite by providing Layer 2 isolation between ports within the same private VLAN. A private VLAN partitions a traditional VLAN into subdomains identified by a primary and secondary VLAN pair. The Dell Networking OS private VLAN implementation is based on RFC 3069. For more information, refer to the following commands. The command output is augmented in the Dell Networking OS version 7.8.1.
– A trunk port in Tagged mode carries primary or secondary VLAN traffic. The tag on the packet helps identify the VLAN to which the packet belongs. – A trunk port can also belong to a regular VLAN (non-private VLAN). ip local-proxy-arp Enable/disable Layer 3 communication between secondary VLANs in a private VLAN. Syntax [no] ip local-proxy-arp To disable Layer 3 communication between secondary VLANs in a private VLAN, use the no ip localproxy-arp command in INTERFACE VLAN mode for the primary VLAN.
Parameters vlan-list Defaults none Command Modes INTERFACE VLAN Command History Usage Information Related Commands Version 8.3.16.1 Enter the list of secondary VLANs to associate with the selected primary VLAN. The list can be in comma-delimited or hyphenated-range format, following the convention for the range input. Introduced on the MXL 10/40GbE Switch IO Module. The list of secondary VLANs can be: • Specified in comma-delimited or hyphenated-range format.
• mode ode to community or isolated even before associating it to a primary VLAN. This secondary VLAN continues to work normally as a normal VLAN even though it is not associated to a primary VLAN. (A syslog message indicates this.) • must not have a port in it when VLAN mode is being set. Only ports (and port channels) configured as promiscuous, host, or PVLAN trunk ports (as previously described) can be added to the PVLAN. No other regular ports can be added to the PVLAN.
Example (All) Field Description Status States whether the interface is operationally up or down.
Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Examples of all types of command output are shown below. The first type of output is the result of not entering an optional keyword. It displays a detailed list of all PVLANs and their member VLANs and interfaces. The other types of output show details about PVLAN subsets. The following describes the show private-vlan command shown in the Examples below.
Usage Information If the VLAN ID is that of a primary VLAN, the entire private VLAN output is displayed, as shown below. If the VLAN ID is a secondary VLAN, only its primary VLAN and its particular secondary VLAN properties are displayed, as shown in the second Example.
show vlan private-vlan mapping — displays the primary-secondary VLAN mapping. switchport mode private-vlan — sets PVLAN mode of the selected port. switchport mode private-vlan Set PVLAN mode of the selected port. Syntax [no] switchport mode private-vlan {host | promiscuous | trunk} To remove PVLAN mode from the selected port, use the no switchport mode private-vlan command. Parameters host Enter the keyword host to configure the selected port or port channel as an isolated interface in a PVLAN.
43 Per-VLAN Spanning Tree Plus (PVST+) The Dell Networking Operating System (OS) implementation of per-VLAN spanning tree plus (PVST+) is based on the IEEE 802.1w standard spanning tree protocol, but it creates a separate spanning tree for each VLAN configured. NOTE: For easier command line entry, the plus (+) sign is not used at the command line. description Enter a description of the PVST+. Syntax description {description} To remove the description, use the no description {description} command.
edge-port bpdufilter default Enable BPDU Filter globally to filter transmission of BPDU on port fast enabled interfaces. Syntax edge-port bpdufilter default To disable global bpdu filter default, use the no edge-port bpdufilter default command. Defaults Disabled Command Modes CONFIGURATION (The prompt is “config-pvst”.) Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Te 5/50 Desg No Related Commands 128.459 128 2000 FWD 0 P2P No protocol spanning-tree pvst — enter SPANNING TREE mode on the switch. protocol spanning-tree pvst To enable PVST+ on a device, enter the PVST+ mode. Syntax protocol spanning-tree pvst To disable PVST+, use the disable command. Defaults none Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
guard Defaults • For a Port Channel interface, enter the keyword port-channel then a number: The range is 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. (OPTIONAL) Enter the keyword guard to display the type of guard enabled on a PVST interface and the current port state.
Example Dell#show spanning-tree pvst vlan 2 VLAN 2 Root Identifier has priority 32768, Address 001e.c9f1.00f3 Root Bridge hello time 2, max age 20, forward delay 15 Bridge Identifier has priority 32768, Address 001e.c9f1.00f3 Configured hello time 2, max age 20, forward delay 15 Bpdu filter disabled globally We are the root of VLAN 2 Current root has priority 32768, Address 001e.c9f1.
Example (Guard) Dell#show spanning-tree pvst vlan 5 guard Interface Name Instance Sts Guard type Bpdu Filter --------- -------- --------- ---------- ----------TenGig 0/1 0 INCON(Root) Rootguard No TenGig 0/2 0 FWD Loopguard No TenGig 0/3 0 EDS(Shut) Bpduguard No Related Commands spanning-tree pvst — configure PVST+ on an interface.
Defaults Not configured. Command Modes INTERFACE Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The BPDU guard option prevents the port from participating in an active STP topology in case a BPDU appears on a port unintentionally, or is misconfigured, or is subject to a DOS attack. This option places the port into the Error Disable state if a BPDU appears, and a message is logged so that the administrator can take corrective action.
Related Commands show spanning-tree pvst — views the PVST+ configuration. tc-flush-standard Enable the MAC address flushing after receiving every topology change notification. Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled. Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, the system implements an optimized flush mechanism for PVST+.
vlan forward-delay Set the amount of time the interface waits in the Listening state and the Learning state before transitioning to the Forwarding state. Syntax vlan vlan-id forward-delay seconds To return to the default setting, use the no vlan forward-delay command. Parameters vlan vlan-range Enter the keyword vlan then the VLAN numbers. The range is from 1 to 4094.
vlan max-age — changes the time interval before PVST+ refreshes. show spanning-tree pvst — displays the PVST+ configuration. vlan max-age To maintain configuration information before refreshing that information, set the time interval for the PVST+ bridge. Syntax vlan vlan-range max-age seconds To return to the default, use the no vlan max-age command. Parameters vlan vlan-range Enter the keyword vlan then the VLAN numbers. The range is from 1 to 4094.
44 Quality of Service (QoS) The Dell Networking Operating System (OS) commands for quality of service (QoS) include traffic conditioning and congestion control. This chapter contains the following sections: • Global Configuration Commands • Per-Port QoS Commands • Policy-Based QoS Commands Global Configuration Commands There are only two global configuration QoS commands.
Command Modes Command History CONFIGURATION Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Per-Port QoS Commands Per-port QoS (port-based QoS) allows you to define the QoS configuration on a per-physical-port basis. dot1p-priority Assign a value to the IEEE 802.1p bits on the traffic this interface receives. Syntax dot1p-priority priority-value To delete the IEEE 802.1p configuration on the interface, use the no dot1p-priority command.
rate police Police the incoming traffic rate on the selected interface. Syntax Parameters rate police [kbps] committed-rate [burst-KB] [peak [kbps] peak-rate [burstKB]] [vlan vlan-id] kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Make the following value a multiple of 64. The range is from 0 to 40000000. The default granularity is Megabits per second (Mbps). committed-rate Enter the bandwidth in Mbps. The range is from 0 to 10000.
burst-KB (OPTIONAL) Enter the burst size in KB. The range is from 0 to 10000. The default is 50. Defaults Granularity for rate is Mbps unless you use the kbps option. Command Modes INTERFACE Command History Related Commands Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rate-shape — shapes traffic output as part of the designated policy. service-class dynamic dot1p Honor all 802.
You can apply this command on both physical interfaces and port channels. When you set the service-class dynamic for a port channel, the physical interfaces assigned to the port channel are automatically configured; you cannot assign the service-class dynamic command to individual interfaces in a port channel. • All dot1p traffic is mapped to Queue 0 unless you enable the service-class dynamic dot1p command on an interface or globally.
Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. After you configure a unicast queue as strict-priority, that particular queue, on the entire chassis, is treated as a strict-priority queue. Traffic for a strict priority is scheduled before any other queues are serviced. For example, if you send 100% line rate traffic over the SP queue, it starves all other queues on the ports on which this traffic is flowing.
class-map Create/access a class map. Class maps differentiate traffic so that you can apply separate quality-of-service policies to each class. Syntax Parameters class-map {match-all | match-any} class-map-name [layer2] match-all Determines how packets are evaluated when multiple match criteria exist. Enter the keywords match-all to determine that the packets must meet all the match criteria in order to be a member of the class.
clear qos statistics Clears matched packets. Syntax clear qos statistics interface-name Parameters Defaults interface-name Enter one of the following keywords: • For a 40-Gigabit Ethernet interface, enter the keyword FortyGigabitEthernet then the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. none Command Modes Command History • EXEC • EXEC Privilege Version 9.2(0.0) Introduced on the M I/O Aggregator.
ip ssh rekey Configures the time rekey-interval or volume rekey-limit threshold at which to re-generate the SSH key during an SSH session. Syntax ip ssh rekey [time rekey-interval] [volume rekey-limit] To reset to the default, use no ip ssh rekey [time rekey-interval] [volume rekeylimit] command. Parameters time minutes Enter the keywords time then the amount of time in minutes. The range is from 10 to 1440 minutes.
Usage Information To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. For class-map match-any, a maximum of five ACL match criteria are allowed. For class-map match-all, only one ACL match criteria is allowed. Related Commands class-map — identifies the class map. match ip vlan Uses a VLAN as the match criterion for an L3 class map.
The following is a list of the Dell Networking OS version history for this command. Version 9.4(0.0) Usage Information Introduced on the MXL switch. To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. Use this command to match an IP class-map against a single VRF ID . Related Commands class-map — identifies the class map. description Add a description to the selected policy map or QoS policy.
dscp-list Enter the IP DSCP values that is to be the match criteria. Separate values by commas — no spaces ( 1,2,3 ) or indicate a list of values separated by a hyphen (1-3). The range is from 0 to 63. set-ip-dscp value (OPTIONAL) Enter the keywords set-ip-dscp then the IP DSCP value. The matched traffic is marked with the DSCP value. The range is from 0 to 63. Defaults none Command Modes CLASS-MAP CONFIGURATION (config-class-map) Command History Usage Information Version 9.5(0.
Command History Usage Information Version 9.5(0.0) Introduced the support for ipv6 and ip-any options on the MXL 10/40GbE Switch. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. The match ip precedence command and the match ip dscp command are mutually exclusive. Up to eight precedence values can be matched in one match statement.
Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. Related Commands class-map — identifies the class map. match mac vlan Configure a match criterion for a class map based on VLAN ID. Syntax match mac vlan number Parameters number Defaults none Command Modes CLASS-MAP Command History Version 8.3.16.1 Enter the VLAN ID.
Related Commands policy-map-output — creates an output policy map. policy-map-input Create an input policy map. Syntax policy-map-input policy-map-name [layer2] To remove an input policy map, use the no policy-map-input policy-map-name [layer2] command. Parameters policy-map-name Enter the name of the policy map in character format (32 characters maximum). layer2 (OPTIONAL) Enter the keyword layer2 to specify a Layer 2 Class Map. The default is Layer 3.
Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To assign traffic to different flows using QoS policy, use the Output Policy map. This command enables Policy-Map-Output Configuration mode (conf-policy-map-out). Related Commands service-queue — assigns a class map and QoS policy to different queues. policy-aggregate — allows an aggregate method of configuring per-port QoS using policy maps.
To remove an existing output QoS policy, use the no qos-policy-output qos-policy-name command. Parameters qos-policy-name Defaults none Command Modes CONFIGURATION Command History Version 8.3.16.1 Enter your output QoS policy name in character format (32 characters maximum). Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To specify the name of the output QoS policy, use this command.
rate shape Shape the traffic output on the selected interface. Syntax rate shape [kbps] rate [burst-KB] Parameters kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Make the following value a multiple of 64. The range is from 0 to 40000000. The default granularity is Megabits per second (Mbps). rate Enter the outgoing rate in multiples of 10 Mbps. The range is from 10 to 10000. burst-KB (OPTIONAL) Enter the burst size in KB. The range is from 0 to 10000.
NOTE: The service-policy commands are not allowed on a port channel. The servicepolicy input policy-map-name command and the service-class dynamic dot1p command are not allowed simultaneously on an interface. Related Commands policy-map-input — creates an input policy map. service-policy output Apply an output policy map to the selected interface. Syntax service-policy output policy-map-name To remove the output policy map from the interface, use the no service-policy output policymap-name command.
qos-policy qospolicy-name (OPTIONAL) Enter the keywords qos-policy then the QoS policy name assigned to the queue in text format (32 characters maximum). This specifies the input QoS policy assigned to the queue under policy-map-input and output QoS policy under policy-map-output context. Defaults none Command Modes CONFIGURATION (conf-policy-map-in and conf-policy-map-out) Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
Command Modes Command History Example • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos class-map Class-map match-any CM Match ip access-group ACL Related Commands class-map — identifies the class map. show qos policy-map View the QoS policy map information.
1 2 3 Example (Summary IPv4) CM1 CM2 CM3 q1 q2 q3 Dell#sho qos policy-map summary Interface policy-map-input policy-map-output Gi 4/1 PM1 Te 4/2 PM2 PMOut Dell# show qos policy-map-input View the input QoS policy map details. Syntax show qos policy-map-input [policy-map-name] [class class-map-name] [qospolicy-input qos-policy-name] Parameters Defaults policy-map-name Enter the policy map name. class class-mapname Enter the keyword class then the class map name.
qos-policy-output qos-policy-name Defaults Command Modes Command History Example Enter the keyword qos-policy-output then the QoS policy name. none • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos policy-map-output Policy-map-output PolicyMapOutput Aggregate Qos-policy-name AggPolicyOut Queue# Qos-policy-name 0 qosPolicyOutput Dell# show qos qos-policy-input View the input QoS policy details.
Defaults none Command Modes Command History Example • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos qos-policy-output Qos-policy-output qmap_out Bandwidth-percentage 10 Qos-policy-output qmap_wg Rate-shape 100 50 Wred yellow wy Wred green wg Dell# show qos statistics View QoS statistics.
Queue# Matched Pkts 0 0 1 0 2 0 3 0 Dell# show qos wred-profile View the WRED profile details. Syntax Parameters Defaults Command Modes Command History Example show qos wred-profile wred-profile-name wred-profile-name Enter the WRED profile name to view the profile details. none • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on THE MXL 10/40GbE Switch IO Module.
Usage Information This feature allows you to determine if the CAM has enough space available before applying the configuration on an interface. An input policy map with both Trust and Class-map configuration, the Class-map rules are ignored and only the Trust rule is programmed in the CAM. In such an instance, the Estimated CAM output column contains the size of the CAM space required for the Trust rule and not the Class-map rule.
trust Specify dynamic classification (DSCP) or dot1p to trust. Syntax Parameters trust {diffserv [fallback]| dot1p [fallback]} diffserv Enter the keyword diffserv to specify trust of DSCP markings. dot1p Enter the keyword dot1p to specify trust dot1p configuration. fallback Enter the keyword fallback to classify packets according to their DSCP value as a secondary option in case no match occurs against the configured class maps.
Parameters yellow | green Enter the keyword yellow for yellow traffic. A DSCP value of xxx110 and xxx101 maps to yellow. Enter the keyword green for green traffic. A DSCP value of xxx0xx maps to green. profile-name Enter your WRED profile name in character format (16 character maximum). Or use one of the five pre-defined WRED profile names. Pre-defined Profiles: wred_drop, wred-ge_y, wred_ge_g, wred_teng_y, wred_teng_.
Version 8.3.7.0 Usage Information Introduced on the S4810. When you enable wred ecn, and the number of packets in the queue is below the minimum threshold, packets are transmitted per the usual WRED treatment.
dscp Sets the number of specific DSCP values for a color map profile to yellow or red. Syntax dscp {yellow | red} [list-dscp-values] To remove a color policy map profile, use the no dscp {yellow | red} [dscp-list] command. Parameters Yellow Enter the yellow keyword. Traffic marked as yellow delivers traffic to the egress queue which either transmits the packet if it has available bandwidth or drops the packet due to no ability to send. Red Enter the red keyword. Traffic marked as red is dropped.
qos dscp-color-policy— configures a DSCP color policy qos dscp-color-map Configure the DSCP color map. Syntax qos dscp-color-map map-name To remove a color map, use the no qos dscp-color-map map-name command. Parameters map-name Enter the name of the DSCP color map. The map name can have a maximum of 32 characters. Defaults None Command Modes CONFIGURATION Command History This guide is platform-specific.
qos dscp-color-policy Associates the DSCP color map profile with an interface so that all IP packets received on it is given a color based on that color map. Syntax dscp-color-policy color-map-profile-name To remove a color policy map profile, use the no dscp-color-policy color-map-profile-name command. Parameters color-map-profilename Enter the color map profile name. The name can have a maximum of 32 characters.
interface Enter the name of the interface that has color policy configured. Defaults None Command Modes EXEC Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version Description 9.7(0.0) Introduced on the S6000-ON. 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL.
Dell# show qos dscp-color-map mapTWO Dscp-color-map mapTWO yellow 16,55 Related Commands 942 show qos dscp-color-policy — Displaying a DSCP Color Policy Configuration Quality of Service (QoS)
45 Routing Information Protocol (RIP) Routing information protocol (RIP) is a distance vector routing protocol. The Dell Networking Operating System (OS) supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2). The implementation of RIP is based on IETF RFCs 2453 and RFC 1058. For more information about configuring RIP, refer to the Dell Networking OS Configuration Guide. auto-summary Restore the default behavior of automatic summarization of subnet routes into network routes.
debug ip rip Examine RIP routing information for troubleshooting. Syntax debug ip rip [interface | database | events [interface] | packet [interface] | trigger] To turn off debugging output, use the no debug ip rip command. Parameters Command Modes Command History interface (OPTIONAL) Enter the interface type and ID as one of the following: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The default route must be present in the switch routing table for the default-information originate command to take effect. default-metric Change the default metric for routes. To ensure that all redistributed routes use the same metric value, use this command with the redistribute command.
distance Assign a weight (for prioritization) to all routes in the RIP routing table or to a specific route. Lower weights (“administrative distance”) are preferred. Syntax distance weight [ip-address mask [prefix-name]] To return to the default values, use the no distance weight [ip-address mask] command. Parameters weight Enter a number from 1 to 255 for the weight (for prioritization). The default is 120. ip-address (OPTIONAL) Enter the IP address, in dotted decimal format (A.B.C.
distribute-list out Configure a filter for outgoing routing updates. Syntax distribute-list prefix-list-name out [interface | bgp | connected | ospf | static] To delete the filter, use the no distribute-list prefix-list-name out command. Parameters prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
ip rip receive version To receive specific versions of RIP, set the interface. The RIP version you set on the interface overrides the version command in ROUTER RIP mode. Syntax ip rip receive version [1] [2] To return to the default, use the no ip rip receive version command. Parameters 1 (OPTIONAL) Enter the number 1 for RIP version 1. 2 (OPTIONAL) Enter the number 2 for RIP version 2. Defaults RIPv1 and RIPv2 Command Modes INTERFACE Command History Version 8.3.16.
ip split-horizon Enable split-horizon for RIP data on the interface. As described in RFC 2453, the split-horizon scheme prevents any routes learned over a specific interface to be sent back out that interface. Syntax ip split-horizon To disable split-horizon, use the no ip split-horizon command. Defaults Enabled Command Modes INTERFACE Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip poison-reverse — sets the prefix for RIP routing updates.
Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When a neighbor router is identified, unicast data exchanges occur. Multiple neighbor routers are possible. To ensure that only specific interfaces are receiving and sending data, use the passive-interface command with the neighbor command. Related Commands passive-interface — sets the interface to only listen to RIP broadcasts. network Enable RIP for a specified network.
Defaults Not configured. Command Modes ROUTER RIP Command History Version 8.3.16.1 • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094.
Defaults Not configured. Command Modes ROUTER RIP Command History Version 8.3.16.1 • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. Introduced on the MXL 10/40GbE Switch IO Module.
redistribute ospf Redistribute routing information from an OSPF process. Syntax redistribute ospf process-id [match external {1 | 2} | match internal | metric metric-value] [route-map map-name] To disable redistribution, use the no redistribute ospf process-id [match external {1 | 2} | match internal | metric metric-value] [route-map map-name] command. Parameters process-id Enter a number that corresponds to the OSPF process ID to redistribute. The range is from 1 to 65355.
show config Display the changes you made to the RIP configuration. The default values are not shown. Syntax show config Command Modes ROUTER RIP Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-router_rip)#show config ! router rip network 172.31.0.0 passive-interface GigabitEthernet 0/1 Dell(conf-router_rip)# show ip rip database Display the routes that RIP learns. If the switch learned no RIP routes, no output is generated.
210.250.40.0/24 [50/2] via [50/2] via 210.250.40.0/24 207.250.53.0/24 [50/2] via [50/2] via [50/2] via 207.250.53.0/24 208.250.42.0/24 [50/2] via [50/2] via [50/2] via 208.250.42.0/24 1.1.18.2, 00:00:14, Vlan 18 1.1.130.2, 00:00:12, Port-channel 30 auto-summary 1.1.120.2, 00:00:55, Port-channel 20 1.1.130.2, 00:00:12, Port-channel 30 1.1.10.2, 00:00:18, Vlan 10 auto-summary 1.1.120.2, 00:00:55, Port-channel 20 1.1.130.2, 00:00:12, Port-channel 30 1.1.10.
Defaults Command Modes Command History Usage Information holddown Enter the number of seconds to specify a time interval during which the route is marked as unreachable but still sending RIP packets. The holddown value should be at least three times the update timer value. The range is from zero (0) to 4294967295. The default is 180 seconds. flush Enter the number of seconds to specify the time interval during which the route is advertised as unreachable.
46 Remote Monitoring (RMON) The Dell Networking Operating System (OS) remote monitoring (RMON) is based on IEEE standards, providing both 32-bit and 64bit monitoring and long-term statistics collection.
delta Enter the keyword delta to test the change between MIB variables. This is the alarmSampleType in the RMON alarm table. absolute Enter the keyword absolute to test each MIB variable directly. This is the alarmSampleType in the RMON alarm table. rising-threshold value event-number Enter the keywords rising-threshold then the value (32 bit) the risingthreshold alarm is either triggered or reset. Then enter the event-number to trigger when the rising threshold exceeds its limit.
Command Modes Command History CONFIGURATION INTERFACE (config-if) Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rmon collection statistics Enable RMON MIB statistics collection on an interface. Syntax rmon collection statistics {controlEntry integer} [owner name] To remove RMON MIB statistics collection on an interface, use the no rmon collection statistics {controlEntry integer} command.
Defaults As noted in the Parameters section. Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rmon hc-alarm Set an alarm on any MIB object. Syntax rmon hc-alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon hc-alarm number command. Parameters number Enter the alarm integer number from 1 to 65535.
show rmon Display the RMON running status including the memory usage. Syntax show rmon Defaults none Command Modes EXEC Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell# show rmon RMON status total memory used 218840 bytes.
3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 Dell# 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 show rmon events Display the contents of the RMON event table.
9 10 11 12 13 14 15 16 17 18 19 20 21 22 Dell# 9 10 11 12 13 14 15 16 17 18 19 20 21 22 show rmon hc-alarm Display the contents of RMON High-Capacity alarm table. Syntax Parameters show rmon hc-alarm [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON High-Capacity alarm table in an easy-to-read format. Defaults none Command Modes EXEC Command History Version 8.3.16.
show rmon history Display the contents of the RMON Ethernet history table. Syntax show rmon history [index] [brief] Parameters index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON Ethernet history table in an easy-to-read format Defaults none Command Modes EXEC Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information The log table has a maximum of 500 entries. If the log exceeds that maximum, the oldest log entry is purged to allow room for the new entry. Example (Index) Dell#show rmon log 2 RMON log entry, alarm table index 2, log index 1 log time: 14638 (THU AUG 12 22:10:40 2004) description: 2 Dell# Example (Brief) Dell#show rmon log br eventIndex description -----------------------------2 2 4 4 Dell# show rmon statistics Display the contents of RMON Ethernet statistics table.
HC bytes received: 0 HC 64bytes packets overflow: 0 HC 64bytes packets: 0 HC 65-127 bytes packets overflow: 0 HC 65-127 bytes packets: 0 HC 128-255 bytes packets overflow: 0 HC 128-255 bytes packets: 0 HC 256-511 bytes packets overflow: 0 HC 256-511 bytes packets: 0 HC 512-1023 bytes packets overflow: 0 HC 512-1023 bytes packets: 0 HC 1024-1518 bytes packets overflow: 0 HC 1024-1518 bytes packets: 0 Dell# Example (Brief) 966 Dell#show rmon statistics br index ifIndex interface ----------------------------
47 Rapid Spanning Tree Protocol (RSTP) The Dell Networking Operating System (OS) implementation of rapid spanning tree protocol (RSTP) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged local area network (LAN) that is comprised of LANs interconnected by bridges. bridge-priority Set the bridge priority for RSTP. Syntax bridge-priority priority-value To return to the default value, use the no bridge-priority command.
• For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Optionally, enter an in or out parameter with the optional interface: events Command Modes Command History Example • For Receive, enter in. • For Transmit, enter out. (OPTIONAL) Enter the keyword events to debug RSTP events. EXEC Privilege Version 8.3.16.
Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree rstp — enters SPANNING TREE mode on the switch. forward-delay Configure the amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State. Syntax forward-delay seconds To return to the default setting, use the no forward-delay command.
Usage Information The hello time is encoded in BPDUs in increments of 1/256ths of a second. The standard minimum hello time in seconds is 1 second, which is encoded as 256. Millisecond hello times are encoded using values less than 256; the millisecond hello time equals (x/1000)*256. When you configure millisecond hellos, the default hello interval of 2 seconds is still used for edge ports; the millisecond hello interval is not used.
Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree rstp To configure RSTP, enter RSTP mode. Syntax protocol spanning-tree rstp To exit RSTP mode, use the exit command. Defaults Not configured Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information RSTP is not enabled when you enter RSTP mode.
Parameters cost port-cost Enter the keyword cost then the port cost value. The range is from 1 to 200000.
Example • If a BPDU is received from a remote device, BPDU guard places the port in an Err-Disabled Blocking state and no traffic is forwarded on the port. • If no BPDU is received from a remote device, loop guard places the port in a Loop-Inconsistent Blocking state and no traffic is forwarded on the port.
Defaults Not configured. Command Modes INTERFACE Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The BPDU guard option prevents the port from participating in an active STP topology in case a BPDU appears on a port unintentionally, or is misconfigured, or is subject to a DOS attack. This option places the port into an Error Disable state if a BPDU appears and a message is logged so that the administrator can take corrective action.
Usage Information By default, the system implements an optimized flush mechanism for RSTP. This implementation helps in flushing MAC addresses only when necessary (and less often), allowing for faster convergence during topology changes. However, if a standards-based flush mechanism is needed, you can turn on this knob command to enable flushing MAC addresses after receiving every topology change notification.
48 Security This chapter contains various types of security commands offered in the Dell Networking Operating System (OS). The commands are listed in the following sections: • AAA Accounting Commands • Authorization and Privilege Commands • Authentication and Password Commands • RADIUS Commands • TACACS+ Commands • SSH Server and SCP Commands • Secure DHCP Commands For configuration details, refer to the Security chapter in the Dell Networking OS Configuration Guide.
commands {level| role role-name} Enter the keyword command then a privilege level for accounting of commands executed at that privilege level or enter the keyword role then the role name for accounting of commands executed by a user with that user role. name | default Enter one of the following: For default, the default accounting methods used.
To permit accounting records to users with user name value of NULL, use the no aaa accounting suppress null-username command. Defaults Accounting records are recorded for all users. Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The system issues accounting records for all users on the system, including users whose username string, due to protocol translation, is NULL.
Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version Description 9.7(0.0) Introduced on the S6000–ON. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, MXL show accounting Display the active accounting sessions for each online user.
Parameters exec Enter the keyword exec to apply an EXEC level accounting method list. commands {level | role role-name} Enter the keywords commands followed by either a privilege level for accounting of commands executed at that privilege level, or enter the keyword role then the role name for authorization of commands executed by a user with that user role. method-list Enter a method list that you defined using the aaa accounting exec or aaa accounting commands.
Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. aaa authorization role-only Configure authentication to use the user’s role only when determining if access to commands is permitted. Syntax aaa authorization role-only To return to the default setting, use the no aaa authentication role-only command. Parameters name Enter a text string for the name of the user up to 63 characters. It cannot be one of the system defined roles (sysadmin, secadmin, netadmin, netoperator).
Disable authorization checking for CONFIGURATION level commands using the no aaa authorization config-commands command. Defaults Enabled when you configure aaa authorization commands command. Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, the aaa authorization commands command configures the system to check both EXEC level and CONFIGURATION level commands.
level level • configure for CONFIGURATION mode • exec for EXEC mode • interface for INTERFACE modes • line for LINE mode • route-map for ROUTE-MAP mode • router for ROUTER OSPF, ROUTER RIP, ROUTER ISIS and ROUTER BGP modes Enter the keyword level then a number for the access level. The range is from 0 to 15. Level 1 is EXEC mode and Level 15 allows access to all CLI modes and commands. reset Enter the keyword reset to return the security level to the default setting.
Authentication and Password Commands To manage access to the system, use the following the commands. aaa authentication enable Configure AAA Authentication method lists for user access to EXEC privilege mode (the “Enable” access). Syntax aaa authentication enable {default | method-list-name} method [... method2] To return to the default setting, use the no aaa authentication enable {default | methodlist-name} method [... method2] command.
login authentication — enables AAA login authentication on the terminal lines. password — creates a password. radius-server host — specifies a RADIUS server host. tacacs-server host — specifies a TACACS+ server host. aaa authentication login Configure AAA Authentication method lists for user access to EXEC mode (Enable log-in). Syntax aaa authentication login {method-list-name | default} method [...
next method configured. If users fail the first method listed, no other methods are applied. The only exception is the local method. If the user’s name is not listed in the local database, the next method is applied. If the correct user name/password combination is not entered, the user is not allowed access to the switch. NOTE: If authentication fails using the primary method, the system employs the second method (or third method, if necessary) automatically.
enable password Change the password for the enable command. Syntax enable password [level level] [encryption-type] password To delete a password, use the no enable password [encryption-type] password [level level] command. Parameters level level (OPTIONAL) Enter the keyword level then a number as the level of access. The range is from 1 to 15. encryption-type (OPTIONAL) Enter the number 7 or 0 as the encryption type. Enter a 7 then a text string as the hidden password.
Parameters encryption-type (OPTIONAL) Enter the number 7 as the encryption type. Enter 7 followed a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Networking router. Use this parameter only with a password that you copied from the show running-config file of another Dell Networking router. password Defaults Enter a text string, up to 32 characters long, as the clear text password. Not configured.
• Passwords can have a regular expression as the password. To create a password with a regular expression in it, use CNTL + v prior to entering regular expression. For example, to create the password abcd]e, you type “abcd CNTL v ]e”. When the password is created, you do not use the CNTL + v key combination and enter “abcd]e”. NOTE: The question mark (?) and the tilde (~) are not supported characters. Related Commands show running-config — views the current configuration.
password • 0 is the default and means the password is not encrypted and stored as clear text. • 7 means that the password is encrypted and hidden. Enter a text string up to 32 characters long. The first character of the password must be a letter. You cannot use spaces in the password. Defaults No password is configured. Command Modes LINE Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
characterrestriction (OPTIONAL) Enter the keywords character-restriction to indicate a character restriction for the password. upper number (OPTIONAL) Enter the keyword upper then the upper number. The range is from 0 to 31. lower number (OPTIONAL) Enter the keyword lower then the lower number. The range is from 0 to 31. numeric number (OPTIONAL) Enter the keyword numeric then the numeric number. The range is from 0 to 31.
To view passwords, use the show running-config command. show privilege View your access level. Syntax show privilege Command Modes Command History Example • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show privilege Current privilege level is 15 Dell# Dell#show privilege Current privilege level is 14. Dell# Dell#show privilege Current privilege level is 10.
Example Related Commands Field Description Location Displays the IP address of the user. Dell# show users Authorization Mode: Line Location * 0 console 0 2 vty 0 10.16.127.35 3 vty 1 10.16.127.145 4 vty 2 10.16.127.141 5 vty 3 10.16.127.145 6 vty 4 10.16.127.141 7 vty 5 10.16.127.
username Establish an authentication system based on user names. Syntax username name [access-class access-list-name] [nopassword | {password | secret} [encryption-type] password] [privilege level] [role role-name] If you do not want a specific user to enter a password, use the nopassword option. To delete authentication for a user, use the no username name command. Parameters name Enter a text string for the name of the user up to 63 characters.
RADIUS Commands The following RADIUS commands are supported by Dell Networking operating system. debug radius View RADIUS transactions to assist with troubleshooting. Syntax debug radius To disable debugging of RADIUS, use the no debug radius command. Defaults Disabled. Command Modes EXEC Privilege Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip radius source-interface Specify an interface’s IP address as the source IP address for RADIUS connections.
radius-server deadtime Configure a time interval during which non-responsive RADIUS servers to authentication requests are skipped. Syntax radius-server deadtime seconds To disable this function or return to the default value, use the no radius-server deadtime command. Parameters seconds Defaults 0 seconds Command Modes CONFIGURATION Command History Version 8.3.16.1 Enter a number of seconds during which non-responsive RADIUS servers are skipped. The range is from 0 to 2147483647 seconds.
Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To configure any number of RADIUS server hosts for each server host that is configured, use this command. The system searches for the RADIUS hosts in the order they are configured in the software.
Related Commands radius-server host — configures a RADIUS host. radius-server retransmit Configure the number of times the switch attempts to connect with the configured RADIUS host server before declaring the RADIUS host server unreachable. Syntax radius-server retransmit retries To configure zero retransmit attempts, use the no radius-server retransmit command. To return to the default setting, use the radius-server retransmit 3 command.
role Changes command permissions for roles. Syntax role mode { { { addrole | deleterole } role-name } | reset } command To delete access to a command, use the no role mode role-name Parameters mode Enter one of the following keywords as the mode for which you are controlling access: configure for CONFIGURATION mode exec for EXEC mode interface for INTERFACE modes line for LINE mode route-map for Route-map mode router for Router mode addrole Enter the keyword addrole to add permission to the command.
debug tacacs+ To assist with troubleshooting, view TACACS+ transactions. Syntax debug tacacs+ To disable debugging of TACACS+, use the no debug tacacs+ command. Defaults Disabled. Command Modes EXEC Privilege Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip tacacs source-interface Specify an interface’s IP address as the source IP address for TACACS+ connections.
ipv4-address Enter the IPv4 address (A.B.C.D) of the TACACS+ server host. port number (OPTIONAL) Enter the keyword port then a number as the port to be used by the TACACS+ server. The range is from zero (0) to 65535. The default is 49. timeout seconds (OPTIONAL) Enter the keyword timeout then the number of seconds the switch waits for a reply from the TACACS+ server. The range is from 0 to 1000. The default is 10 seconds.
Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The key configured with this command must match the key configured on the TACACS+ daemon. SSH Server and SCP Commands The Dell Networking OS supports secure shell (SSH) protocol versions 1.5 and 2.0. SSH is a protocol for secure remote login over an insecure network. SSH sessions are encrypted and use authentication. crypto key generate Generate keys for the SSH server.
debug ip ssh Enables collecting SSH debug information. Syntax debug ip ssh {client | server} To disable debugging, use the no debug ip ssh {client | server} command. Parameters client Enter the keyword client to enable collecting debug information on the client. server Enter the keyword server to enable collecting debug information on the server. Defaults Disabled on both client and server. Command Modes EXEC Command History Usage Information Version 8.3.16.
Defaults 3 Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command specifies the maximum number of attempts to authenticate a user on an SSH connection with the remote host for password authentication. SSH disconnects when the number of password failures exceeds authentication-retries. ip ssh connection-rate-limit Configure the maximum number of incoming SSH connections per minute.
NOTE: Administrators must specify the two files (rhosts and pub-key-file) to configure host-based authentication. Related Commands ip ssh pub-key-file — public keys of trusted hosts from a file. ip ssh rhostsfile — trusted hosts and users for rhost authentication. ip ssh key-size Configure the size of the server-generated RSA SSHv1 key. Syntax Parameters ip ssh key-size 512-869 512-869 Defaults Key size 768 Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.
ip ssh pub-key-file Specify the file used for host-based authentication. Syntax ip ssh pub-key-file {WORD} Parameters WORD Defaults none Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Enter the file name for the host-based authentication. Introduced on the MXL 10/40GbE Switch IO Module. This command specifies the file used for the host-based authentication. The creates/ file overwrites the flash://ADMIN_DIR/ssh/knownhosts file and deletes the user-specified file.
Defaults The default time is 60 minutes. The default volume is 1024 megabytes. Command Modes CONFIGURATION mode Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version Description 9.7(0.0) Introduced on the S6000–ON. 9.5(0.
Parameters enable Defaults Disabled. Command Modes CONFIGURATION Command History Version 8.3.16.1 Enter the keyword enable to enable RSA authentication for the SSHv2 server. Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Enabling RSA authentication allows the user to log in without being prompted for a password.
ip ssh server Configure an SSH server. Syntax ip ssh server {ciphers cipher-list} {enable | port port-number} [kex keyexchange-algorithm] [mac hmac-algorithm] [version {1 | 2}] To disable SSH server functions, use the no ip ssh server {ciphers cipher-list} {enable | port port-number} {kex key-exchange-algorithm command. Parameters enable Enter the keyword enable to start the SSH server.
kex key-exchangealgorithm • hmac-md5-96 • hmac-sha1 • hmac-sha1-96 • hmac-sha2-256 • hmac-sha2-256-96 Enter the keyword kex and then a space-delimited list of key exchange algorithms supported by the SSH server. The following key exchange algorithms are available: • diffie-hellman-group-exchange-sha1 • diffie-hellman-group1-sha1 • diffie-hellman-group14-sha1 When FIPS is enabled, the default key-exchange-algorithm is diffie-hellmangroup14-sha1.
show accounting Display the active accounting sessions for each online user. Syntax show accounting Defaults none Command Modes EXEC Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command steps through all active sessions and then displays the accounting records for the active account functions.
uWoQH+VOJ8H5Jxsm347XnYv/gpSqhgjZ/C5UwFiucVkVfYu8RDcJVIuQhLvPEebIF5Q+sD8K89MXU90MAS/U Dell# Related Commands crypto key generate — generates the SSH keys. show ip ssh Display information about established SSH sessions. Syntax show ip ssh Command Modes Command History • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show ip ssh SSH server : enabled. SSH server version : v1 and v2. SSH server vrf : default.
Example Dell# show ip ssh client-pub-keys 4.8.1.2 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAu5NoTbmnLxBknaeXZmUJMupNwNUoGlo1/ yLPI5eehQTyaldRPHtGyPlcmMbCH+QJkqtyiw DPmH4njyDMYDCXY85vc55ibWsN9qalagklnh2cj2q4nYj5x8+8OOhYeFPaHiygd8U/ FXict61jWs84Co1UTsAgRzDJ9aUSS75TVac = root@dt-maa-linux-1.force10networks.
Parameters command Enter the command’s keywords to assign the command to a certain access level. You can enter one or all of the keywords. mode mode Enter keyword then one of the following modes. Defaults none Command Modes EXEC Privilege Command History Examples • configure • exec • interface • line • route-map • router Version Description 9.7(0.0) Introduced on the S6000-ON. 9.5(0.
Example Related Commands Field Description Line Displays the terminal lines currently in use. User Displays the user name of all users logged in. Host(s) Displays the terminal line status. Location Displays the IP address of the user. Dell# show users Authorization Mode: Line Location * 0 console 0 2 vty 0 10.16.127.35 3 vty 1 10.16.127.145 4 vty 2 10.16.127.141 5 vty 3 10.16.127.145 6 vty 4 10.16.127.141 7 vty 5 10.16.127.
ssh Open an SSH connection specifying the host name, username, port number and version of the SSH client. Syntax ssh {hostname | ipv4 address} [-l username | -p port-number | -v {1 | 2}] Parameters hostname (OPTIONAL) Enter the IP address or the host name of the remote device. ipv4 address (OPTIONAL) Enter the IP address in dotted decimal format A.B.C.D. -l username (OPTIONAL) Enter the keyword -l then the user name used in this SSH session.
Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp snooping — displays the contents of the DHCP binding table. ip dhcp relay Enable Option 82. Syntax Parameters ip dhcp relay information-option [trust-downstream] trust-downstream Defaults Disabled. Command Modes CONFIGURATION Command History Version 8.3.16.1 Configure the system to trust Option 82 when it is received from the previous-hop router.
Command Modes Command History CONFIGURATION Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping binding Create a static entry in the DHCP binding table. Syntax [no] ip dhcp snooping binding mac address vlan-id vlan-id ip ip-address interface type slot/port lease number Parameters Defaults mac address Enter the keyword mac then the MAC address of the host to which the server is leasing the IP address.
• Command History EXEC Privilege Version 8.3.19.0 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping trust Configure an interface as trusted. Syntax [no] ip dhcp snooping trust Defaults Untrusted Command Modes INTERFACE Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp source-address-validation Enable IP source guard. Syntax [no] ip dhcp source-address-validation Defaults Disabled. Command Modes INTERFACE Command History Version 8.3.
show ip dhcp snooping Display the contents of the DHCP binding table. Syntax show ip dhcp snooping binding Defaults none Command Modes Command History Related Commands • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip dhcp snooping — clears the contents of the DHCP binding table. username Establish an authentication system based on user names.
Defaults The default encryption type for the password option is 0. The default encryption type for the secret option is 0. Command Modes CONFIGURATION Command History Version 9.5(0.0) Introduced the support for roles on the MXL 10/40GbE Switch. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To view the defined user names, use the show running-config user command. Related Commands password — specifies a password for users on terminal lines.
these can use the role command to modify command permissions. The security administrator and roles inherited by security administrator can only modify permissions for commands they already have access to. • Make sure you select the correct role you want to inherit. NOTE: If you inherit a user role, you cannot modify or delete the inheritance. If you want to change or remove the inheritance, delete the user role and create it again. If the user role is in use, you cannot delete the user role.
49 sFlow sFlow monitoring system includes an sFlow Agent and an sFlow Collector. • The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector. • The sFlow Collector analyses the sFlow Datagrams received from the different devices and produces a network-wide view of traffic flows.
Parameters sflow collector ipaddress Enter the IPv4 (A.B.C.D) of the sFlow collector device. agent-addr ipaddress Enter the IPv4 (A.B.C.D) of the sFlow agent in the router. number (OPTIONAL) Enter the user datagram protocol (UDP) port number. The range is from 0 to 65535. The default is 6343. max-datagram-size number (OPTIONAL) Enter the keyword max-datagram-size then the size number in bytes. The range is from 400 to 1500. The default is 1400. Defaults Not configured.
sflow ingress-enable Enable sFlow ingress on interfaces. Syntax sflow ingress-enable To disable sFlow, use the no sflow ingress enable command. Defaults Disabled. Command Modes INTERFACE Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version 9.7(0.0) Usage Information Introduced on the MXL switch.
sflow max-header-size extended Set the maximum header size of a packet to 256 bytes. Syntax sflow max-header-size extended To reset the maximum header size of a packet, use the[no] sflow max-header-size extended command. Parameters extended Defaults 128 bytes Command Modes CONFIGURATION Enter the keyword extended to copy 256 bytes from the sample packets to sFlow datagram. INTERFACE Command History This guide is platform-specific.
sflow polling-interval (Interface) Set the sFlow polling interval at an interface (overrides the global-level setting). Syntax sflow polling-interval interval value To return to the default, use the no sflow polling-interval interval command. Parameters interval value Enter the interval value in seconds. The range is from 15 to 86400 seconds. The default is the global counter polling interval. Defaults The same value as the current global default counter polling interval.
sflow sample-rate (Interface) Change the interface default sampling rate. Syntax sflow sample-rate value To return to the default sampling rate, use the no sflow sample-rate command. Parameters value Enter the sampling rate value. The range is from 256 to 8388608 packets. Enter values in powers of 2 only; for example, 4096, 8192, 16384, and so forth. The default is the Global default sampling. Defaults The Global default sampling. Command Modes CONFIGURATION Command History Version 8.3.16.
Egress Mangement Interface sFlow services are disabled Global default sampling rate: 2048 Global default counter polling interval: 20 Global extended information enabled: none 0 collectors configured 0 UDP packets exported 0 UDP packets dropped 0 sFlow samples collected stack-unit 0 Port set 0 Te 0/0: configured rate 256, actual rate 256 Dell# Dell#show running-config sflow ! sflow enable sflow sample-rate 2048 Dell#show running-config interface tengigabitethernet 0/0 ! interface TenGigabitEthernet 0/0 no i
50 Service Provider Bridging Service provider bridging is composed of virtual local area network (VLAN) Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the Dell Networking OS Configuration Guide. This chapter includes commands for the Dell Networking operating software Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel. For more information, refer to VLAN Stacking, Spanning Tree Protocol (STP), and GARP VLAN Registration (GVRP).
in | out | both Enter the keyword in, out, or both to debug incoming interfaces, outgoing interfaces, or both incoming and outgoing interfaces. vlan vlan-id Enter the keyword vlan then the VLAN ID. The range is from 1 to 4094. count value Enter the keyword count then the number of debug outputs. The range is from 1 to 100. Defaults Debug disabled. Command Modes EXEC Privilege Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Defaults The default destination MAC is 01:01:e8:00:00:00. Command Modes CONFIGURATION Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enable VLAN-Stacking, no protocol packets are tunneled. Related Command show protocol-tunnel — displays tunneling information for all VLANs. protocol-tunnel enable Enable protocol tunneling globally on the system.
show running-config — displays the current configuration. show protocol-tunnel Display protocol tunnel information for all or a specified VLAN-Stack VLAN. Syntax Parameters show protocol-tunnel [vlan vlan-id] vlan vlan-id Defaults none Command Modes EXEC Command History Version 9.2(0.0) (OPTIONAL) Enter the keyword vlan then the VLAN ID to display information for the one VLAN. The range is from 1 to 4094. Introduced on the MXL 10/40GbE Switch IO Module.
51 Simple Network Management Protocol (SNMP) and Syslog This chapter contains commands to configure and monitor the simple network management protocol (SNMP) v1/v2/v3 and Syslog. The chapter contains the following sections: • SNMP Commands • Syslog Commands SNMP Commands The following SNMP commands are available in the Dell Networking OS.
Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version Description 9.7(0.0) Introduced on the S6000-ON. 9.5(0.0) Introduced on the S4810, S4820T, S6000, Z9000, and MXL.
show snmp engineID Display the identification of the local SNMP engine and all remote engines that are configured on the router. Syntax show snmp engineID Command Modes Command History Example • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show snmp engineID Local SNMP engineID: 0000178B02000001E80214A8 Remote Engine ID IP-addr Port 80001F88043132333435 172.31.1.3 5009 80001F88043938373635 172.31.1.
show snmp user Display the information configured on each SNMP user name. Syntax Command Modes Command History Example show snmp user • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
snmp-server community Configure a new community string access for SNMPv1 v2 and v3. Syntax snmp-server community community-name {ro | rw} [security-name name][accesslist-name] To remove access to a community, use the no snmp-server community community-string {ro | rw} [security-name name [access-list-name] command. Parameters community-name Enter a text string (up to 20 characters long) to act as a password for SNMP. ro Enter the keyword ro to specify read-only permission.
Example Dell(conf)# ip access-list standard snmp-ro-acl Dell(config-std-nacl)#seq 5 permit host 10.10.10.224 Dell(config-std-nacl)#seq 10 deny any count ! Dell(conf)#snmp-server community guest ro snmp-ro-acl Dell(conf)# Related Commands ip access-list standard — names (or selects) a standard access list to filter based on IP address. show running-config — displays the current SNMP configuration and defaults. snmp-server contact Configure contact information for troubleshooting this SNMP node.
notification-option • snmp — Notification of RFC 1157 traps. • stp — Notification of a state change in the spanning tree protocol (RFC 1493). • vrrp — Notification of a state change in a VRRP group. • xstp — Notification of a state change in MSTP (802.1s), RSTP (802.1w), and PVST+. For the envmon notification-type, enter one of the following optional parameters: • temperature For the snmp notification-type, enter one of the following optional parameters: • Defaults Not enabled.
The remaining eight octets are the MAC address of the chassis. Enter the keyword remote then the IP address that identifies the copy of the SNMP on the remote device. udp-port portnumber engineID Enter the keywords udp-port then the user datagram protocol (UDP) port number on the remote device. The range is from 0 to 65535. The default is 162. As above. Command Modes CONFIGURATION Usage Information The first four octets are set to the private enterprise number.
• 2c allows transmission of informs and counter 64, which allows for integers twice the width of what is normally allowed. The default is 1. auth (OPTIONAL) Enter the keyword auth to specify authentication of a packet without encryption. noauth (OPTIONAL) Enter the keyword noauth to specify no authentication of a packet. priv (OPTIONAL) Enter the keyword priv to specify both authentication and then scrambling of the packet.
To remove the SNMP host, use the no snmp-server host ip-address [traps | informs] [version 1 | 2c | 3] [auth | noauth | priv] [community-string] [udp-port number] [notification-type] command. Parameters ip-address Enter the keyword host then the IP address of the host (configurable hosts is limited to 16). traps (OPTIONAL) Enter the keyword traps to send trap notifications to the specified host. The default is traps.
• vrrp — State change in a VRRP group. • xstp — State change in MSTP (802.1s), RSTP (802.1w), and PVST+. The default is all trap types are sent to host. Defaults As above. Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. In order to configure the router to send SNMP notifications, enter at least one snmp-server host command. If you enter the command with no keywords, all trap types are enabled for the host.
snmp-server location Configure the location of the SNMP server. Syntax snmp-server location text To delete the SNMP location, use the no snmp-server location command. Parameters text Defaults Not configured. Command Modes CONFIGURATION Command History Version 8.3.16.1 Enter an alpha-numeric text string, up to 55 characters long. Introduced on the MXL 10/40GbE Switch IO Module. snmp-server packetsize Set the largest SNMP packet size permitted.
Defaults The IP address assigned to the management interface is the default. Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To enable this snmp-server trap-source command, configure an IP address on the interface and enable the interface configured as an SNMP trap source. Related Commands snmp-server community — sets the community string. snmp-server user Configure a new user to an SNMP group.
auth (OPTIONAL) Enter the keyword auth to specify authentication of a packet without encryption. md5 | sha (OPTIONAL) Enter the keyword md5 or sha to designate the authentication level. • md5 — Message Digest Algorithm • sha — Secure Hash Algorithm auth-password (OPTIONAL) Enter a text string (up to 20 characters long) password that enables the agent to receive packets from the host and to send packets to the host. Minimum: eight characters long.
Example Dell#conf Dell(conf)# snmp-server user n3user ngroup remote 172.31.1.3 udp-port 5009 3 auth md5 authpasswd Related Commands show snmp user — displays the information configured on each SNMP user name. snmp-server user (for AES128-CFB Encryption) Specify that AES128-CFB encryption algorithm needs to be used for transmission of SNMP information. The Advanced Encryption Standard (AES) Cipher Feedback (CFB) 128-bit encryption algorithm is in compliance with RFC 3826.
Example Dell# snmp-server user privuser v3group v3 encrypted auth md5 9fc53d9d908118b2804fe80e3ba8763d priv aes128 d0452401a8c3ce42804fe80e3ba8763d Related Commands show snmp user — Displays the information configured on each SNMP user name. snmp-server view Configure an SNMPv3 view. Syntax snmp-server view view-name oid-tree {included | excluded} To remove an SNMPv3 view, use the no snmp-server view view-name oid-tree {included | excluded} command.
Syslog Commands The following commands allow you to configure logging functions on all Dell Networking switches. clear logging Clear the messages in the logging buffer. Syntax clear logging Defaults none Command Modes EXEC Privilege Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show logging — displays logging settings and system messages in the internal buffer.
logging extended Logs security and audit events to a system log server. Syntax logging extended Defaults none Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Usage Information Version Description 9.7(0.0) Introduced on the S6000-ON. 9.5(0.
terminal monitor — sends system messages to the terminal/monitor. default logging trap Return to the default settings for logging messages to the Syslog servers. Syntax default logging trap Defaults level = 6 or informational Command Modes CONFIGURATION Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging trap — limit messages logged to the Syslog servers based on severity.
logging buffered Enable logging and specify which messages are logged to an internal buffer. By default, all messages are logged to the internal buffer. Syntax logging buffered [level] [size] To return to the default values, use the default logging buffered command. To disable logging stored to an internal buffer, use the no logging buffered command.
Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear logging — clears the logging buffer. default logging console — returns the logging console parameters to the default setting. show logging — displays the logging setting and system messages in the internal buffer. logging facility Configure the Syslog facility used for error messages sent to Syslog servers.
Defaults local7 Command Modes CONFIGURATION Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging — enables logging to a Syslog server. logging on — enables logging. logging history Specify which messages are logged to the history table of the switch and the SNMP network management station (if configured). Syntax logging history level To return to the default values, use the no logging history command.
Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When the number of messages reach the limit you set with the logging history size command, older messages are deleted as newer ones are added to the table. Related Commands show logging — displays information logged to the history buffer. logging monitor Specify which messages are logged to Telnet applications.
logging console — sets the logging console parameters. logging monitor — sets the logging parameters for the terminal connections. logging source-interface Specify that the IP address of an interface is the source IP address of Syslog packets sent to the Syslog server. Syntax logging source-interface interface To disable this command and return to the default setting, use the no logging source-interface command. Parameters interface Defaults Not configured.
level level Enter the keyword level then a number as the severity level. A high number indicates a low severity level and vice versa. The range is from 0 to 7. The default is 2. all Enter the keyword all to turn off all. limit number-ofbuffers Enter the keyword limit then the number of buffers to be queued for the terminal after which new messages are dropped. The range is from 20 to 300. The default is 20. Defaults Disabled.
logging version Displays syslog messages in a RFC 3164 or RFC 5424 format. Syntax logging version {0|1} Defaults 0 Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Usage Information Version Description 9.7(0.0) Introduced on the S6000-ON. 9.5(0.
Command Modes Command History • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example (Partial) Dell#show logging Syslog logging: enabled Console logging: level debugging Monitor logging: level debugging Buffer logging: level debugging, 311 Messages Logged, Size (40960 bytes) Trap logging: level informational Logging to 172.16.1.162 Logging to 10.10.10.4 Logging to 10.1.2.4 Logging to 172.31.1.4 Logging to 133.33.33.
Parameters defaults Command Modes Command History Usage Information stack-unit unit# Enter the keywords stack-unit then the stack member ID of the switch for which you want to display the driver log. The range is from 0 to 1. none • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.. This command displays internal software driver information, which may be useful during troubleshooting switch initialization errors, such as a downed Port-Pipe.
Command Modes Command History Related Commands 1062 • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging monitor — sets the logging parameters on the monitor/terminal.
52 Stacking For more information about using the MXL 10/40GbE Switch stacking feature, refer to the Stacking MXL 10/40GbE Switches chapter in the Dell Networking OS Configuration Guide. redundancy disable-auto-reboot Prevent the MXL 10/40GbE switch stack management unit from rebooting if it fail. Syntax redundancy disable-auto-reboot stack-unit [0–5 | members] To return to the default, use the no redundancy disable-auto-reboot stack-unit [0–5 | members] command.
Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. reset stack-unit Reset any designated stack member except the management unit (master unit). Syntax reset stack-unit 0–5 hard Parameters 0–5 Enter the stack member unit identifier of the stack member to reset. hard Reset the stack unit if the unit is in a problem state. Defaults none Command Modes EXEC Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Dell#rebooting U-Boot 1.1.4 (June 6 2012 - 00:00:04) Related Commands • reload — reboots the system. • redundancy disable-auto-reboot— resets the designated stack member. show redundancy Display the current redundancy configuration (status of automatic reboot configuration on stack management unit). Syntax Command Modes Command History Example show redundancy • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show system stack-ports Display information about the stacking ports on all switches in the MXL 10/40GbE stack. Syntax show system stack-ports [status | topology] Parameters Defaults status (OPTIONAL) Enter the keyword status to display the command output without the Connection field. topology (OPTIONAL) Enter the keyword topology to limit the table to just the Interface and Connection fields. none Command Modes Command History Usage Information Example • EXEC • EXEC Privilege Version 8.3.
1/53 2/33 2/37 2/49 2/53 Example (Topology) 40 40 40 40 40 up up up up up up up up up up Dell# show system stack-ports Topology: Ring Interface Connection Trunk Group 0/33 1/37 0/37 2/33 0/41 1/49 0/45 2/53 1/33 2/37 1/37 0/33 1/49 0/41 1/53 2/49 2/33 0/37 2/37 1/33 2/49 1/53 2/53 0/45 Related Commands • redundancy disable-auto-reboot — resets the designated stack member.
Parameters Command Modes Command History Related Commands unit number <0–5> Number of the member stack unit. The valid values are from 0 to 5. group number <0– 5> Number of the stacked port on the unit. The valid values are from 0 to 5. CONFIGURATION Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. • reload — reboots the system. • show system — displays the current status of all stack members or a specific member.
Parameters Command Modes Command History Related Commands 0–5 Enter a stack member identifier, from 0 to 5, of the switch that you want to add to the stack. MXL-10/40GbE Enter the model identifier of the switch to be added as a stack member. This identifier is also referred to as the provision type. CONFIGURATION Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. • reload — reboots the system. • show system — displays the status of all stack members or a specific member.
53 Storm Control The Dell Networking Operating System (OS) storm control feature allows you to limit or suppress traffic during a traffic storm. Storm control is supported on the Dell Networking OS platforms. Important Points to Remember • Interface commands can only be applied on physical interfaces (virtual local area networks [VLANs] and link aggregation group [LAG] interfaces are not supported). • An INTERFACE-level command only supports storm control configuration on ingress.
---------------------------------------TenGig 3/24 Ingress 1000 Dell# show storm-control multicast Display the storm control multicast configuration. Syntax Parameters Defaults Command Modes Command History Example show storm-control multicast [interface] interface (OPTIONAL) Enter one of the following interfaces to display the interface specific storm control configuration: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Defaults none Command Modes Command History Example • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Dell#show storm-control unknown-unicast tengigabitethernet 3/0 Unknown-unicast storm control configuration Interface Direction Packets/Second ---------------------------------------TenGig 3/0 Ingress 1000 Dell# storm-control broadcast (Configuration) Configure the percentage of broadcast traffic allowed in the network.
Parameters packets_per_secon d Enter the packets per second of broadcast traffic allowed into the network. The range is from 0 to 33554368. Defaults none Command Modes INTERFACE (conf-if-interface-slot/port) Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. storm-control multicast (Configuration) Configure the packets per second (pps) of multicast traffic.
Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. storm-control unknown-unicast (Configuration) Configure the percentage of unknown-unicast traffic allowed on an MXL switch (ingress rate only). Syntax storm-control unknown-unicast [packets_per_second in] To disable storm control for unknown-unicast traffic, use the no storm-control unknown-unicast [packets_per_second in] command.
54 Spanning Tree Protocol (STP) The commands in this chapter configure and monitor the IEEE 802.1d spanning tree protocol (STP). bridge-priority Set the bridge priority of the switch in an IEEE 802.1D spanning tree. Syntax bridge-priority {priority-value | primary | secondary} To return to the default value, use the no bridge-priority command. Parameters priority-value Enter a number as the bridge priority value. The range is from 0 to 65535. The default is 32768.
Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enable debug spanning-tree bpdu for multiple interfaces, the software only sends information on BPDUs for the last interface specified. Related Commands portfast bpdufilter default — enters SPANNING TREE mode on the switch. description Enter a description of the spanning tree.
To return to the default setting, use the no forward-delay command. Parameters seconds Defaults 15 seconds Command Modes SPANNING TREE Command History Related Commands Version 8.3.16.1 Enter the number of seconds that the system waits before transitioning STP to the Forwarding state. The range is from 4 to 30. The default is 15 seconds. Introduced on the MXL 10/40GbE Switch IO Module. max-age — changes the wait time before STP refreshes protocol configuration information.
Defaults 20 seconds Command Modes SPANNING TREE Command History Related Commands Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. forward-delay — changes the wait time before STP transitions to the Forwarding state. hello-time — changes the time interval between BPDUs. portfast bpdufilter default Enable BPDU Filter globally to filter transmission of BPDU on port fast enabled interfaces.
show config Display the current configuration for the mode. Only non-default values display. Syntax show config Command Modes SPANNING TREE Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(config-stp)#show config protocol spanning-tree 0 no disable Dell(config-stp)# show spanning-tree 0 Display the spanning tree group configuration and status of interfaces in the spanning tree group.
The following describes the show spanning-tree 0 command shown in the example. Example Field Description “Bridge Identifier...” Lists the bridge priority and the MAC address for this STP bridge. “Configured hello...” Displays the settings for hello time, max age, and forward delay. “We are...” States whether this bridge is the root bridge for the STG. “Current root...” Lists the bridge priority and MAC address for the root bridge. “Topology flag...
Designated port id is 8.27, designated path cost 0 Timers: message age 0, forward_delay 0, hold 0 Number of transitions to forwarding state 1 BPDU: sent:18, received 0 The port is not in the portfast mode Port 28 (GigabitEthernet 1/3) is Forwarding Port path cost 4, Port priority 8, Port Identifier 8.28 Designated root has priority 32768, address 0001.e800.0a56 Designated bridge has priority 32768, address 0001.e800.0a56 Designated port id is 8.
spanning-tree 0 Assigns a Layer 2 interface to STP instance 0 and configures a port cost or port priority, or enables loop guard, root guard, or the Portfast feature on the interface. Syntax spanning-tree stp-id {cost cost | {rootguard} | portfast [bpduguard [shutdown-on-violation]| bpdufilter] | priority priority} To disable Spanning Tree group on an interface, use the no spanning-tree stp-id {cost cost | {rootguard} | portfast [bpduguard [shutdown-on-violation] | bpdufilter] | priority priority} command.
Root guard is supported on any STP-enabled port or port-channel except when used as a stacking port. When enabled on a port, root guard applies to all VLANs configured on the port.
55 System Time and Date The commands in this chapter configure time values on the system, either using the Dell Networking Operating System (OS), or the hardware, or using the network time protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For more information, refer to the “Network Time Protocol” section of the Management chapter in the Dell Networking OS Configuration Guide. clock set Set the software clock in the switch.
clock summer-time date Set a date (and time zone) on which to convert the switch to daylight saving time on a one-time basis. Syntax clock summer-time time-zone date start-month start-day start-year starttime end-month end-day end-year end-time [offset] To delete a daylight saving time zone configuration, use the no clock summer-time command. Parameters time-zone Enter the three-letter name for the time zone. This name is displayed in the show clock output.
Parameters time-zone Enter the three-letter name for the time zone. This name is displayed in the show clock output. You can enter up to eight characters. start-week (OPTIONAL) Enter one of the following as the week that daylight saving begins and then enter values for start-day through end-time: • first: Enter this keyword to start daylight saving time in the first week of the month. • last: Enter this keyword to start daylight saving time in the last week of the month.
clock timezone Configure a timezone for the switch. Syntax clock timezone timezone-name offset To delete a timezone configuration, use the no clock timezone command. Parameters timezone-name Enter the name of the timezone. You cannot use spaces. offset Enter one of the following: Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 • a number from 1 to 23 as the number of hours in addition to universal time coordinated (UTC) for the timezone.
Command Modes Command History EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ntp authenticate Enable authentication of NTP traffic between the switch and the NTP time serving hosts. Syntax ntp authenticate To disable NTP authentication, use the no ntp authentication command. Defaults Not enabled. Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information After configuring the ntp authentication-key command, configure the ntp trusted-key command to complete NTP authentication. The Dell Networking OS versions 8.2.1.0 and later use an encryption algorithm to store the authentication key that is different from previous versions; beginning in version 8.2.1.0, the system uses DES encryption to store the key in the startup-config when you enter the ntp authentication-key command.
ntp multicast client To receive NTP information from the network via multicast, configure the switch. Syntax ntp multicast client [multicast-address] To disable multicast reception, use the no ntp multicast client [multicast-address] command. Parameters multicast-address Defaults Not configured. Command Modes INTERFACE Command History Version 8.3.16.1 (OPTIONAL) Enter a multicast address. Enter either an IPv4 address in dotted decimal format.
ipv4-address | ipv6address Enter an IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::X) of NTP server. hostname Enter the hostname of the server. key keyid (OPTIONAL) Enter the keyword key and a number as the NTP peer key. The range is from 1 to 4294967295. prefer (OPTIONAL) Enter the keyword prefer to indicate that this peer has priority over other servers. version number (OPTIONAL) Enter the keyword version and a number to correspond to the NTP version used on the server.
Command Modes Command History CONFIGURATION Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ntp trusted-key Set a key to authenticate the system to which NTP synchronizes. Syntax ntp trusted-key number To delete the key, use the no ntp trusted-key number command. Parameters number Defaults Not configured. Command Modes CONFIGURATION Command History Version 8.3.16.1 Enter a number as the trusted key ID. The range is from 1 to 4294967295.
Example (Detail) Dell#show clock detail 12:30:26.892 pacific Tue May 22 2012 Time source is RTC hardware Summer time starts 00:00:00 UTC Wed Mar 14 2012 Summer time ends 00:00:00 pacific Wed Nov 7 2012 Dell# Related Commands clock summer-time recurring — displays the time and date from the switch hardware clock. show ntp associations Display the NTP master and peers. Syntax Command Modes Command History Usage Information show ntp associations • EXEC • EXEC Privilege Version 8.3.16.
Example Dell#show ntp associations remote ref clock st when poll reach delay offset disp ============================================================= 10.10.120.5 0.0.0.0 16 256 0 0.00 0.000 16000.0 *172.16.1.33 127.127.1.0 11 6 16 377 -0.08 -1499.9 104.16 172.31.1.33 0.0.0.0 16 256 0 0.00 0.000 16000.0 192.200.0.2 0.0.0.0 16 256 0 0.00 0.000 16000.0 * master (synced), # master (unsynced), + selected, - candidate Dell# Related Commands show ntp status — displays the current NTP status.
Field Description “clock offset is...” Displays the system offset to the synchronized peer and the time delay on the path to the NTP root clock. “root dispersion is...” Displays the root and path dispersion. “peer mode is...” State what NTP mode the switch is. This should be Client mode. Example Dell#show ntp status Clock is unsynchronized, stratum 16, no reference clock frequency is 0.000 ppm, stability is 0.000 ppm, precision is 4294967279 reference time is 00000000.00000000 (6:28:16.
56 Tunneling Tunneling is supported on the MXL platform. tunnel-mode Enable a tunnel interface. Syntax tunnel mode {ipip | ipv6 | ipv6ip}[decapsulate-any] To disable an active tunnel interface, use the no tunnel mode command. Parameters ipip Enable tunnel in RFC 2003 mode and encapsulate IPv4 and/or IPv6 datagrams inside an IPv4 tunnel. ipv6 Enable tunnel in RFC 2473 mode and encapsulate IPv4 and/or IPv6 datagrams inside an IPv6 tunnel.
tunnel source Set a source address for the tunnel. Syntax tunnel source {ip-address | ipv6–address | interface-type-number} To delete the current tunnel source address, use the no tunnel source command. Parameters ip-address Enter the source IPv4 address in A.B.C.D format. ipv6–address Enter the source IPv6 address in X:X:X:X::X format. interface-typenumber • For a 100/1000 Ethernet interface, enter the keyword GigabitEthernet then the slot/port information.
count (OPTIONAL) Enter the keyword count to count packets processed by the filter. The range is from 3-10, Default range is 3. unlimited Enter the keyword unlimited to specify the unlimited number of keepalive probe packets. Defaults Tunnel keepalive is disabled. Command Modes INTERFACE TUNNEL Command History Usage Information Version 9.4(0.0) Introduced on the MXL.
tunnel dscp Configure the method to set the DSCP in the outer tunnel header. Syntax tunnel dscp {mapped | } To use the default tunnel mapping behavior, use the no tunnel dscp value command. Parameters mapped Enter the keyword mapped to map the original packet DSCP (IPv4)/Traffic Class (IPv6) to the tunnel header DSCP (IPv4)/Traffic Class (IPv6) depending on the mode of tunnel. value Enter a value to set the DSCP value in the tunnel header. The range is from 0 to 63.
To establish a logical tunnel to the particular destination address, use the destination address of the outer tunnel header. If you configure a tunnel interface or source address, the tunnel destination must be compatible. tunnel flow-label Configure the method to set the IPv6 flow label value in the outer tunnel header. Syntax tunnel flow-label value To return to the default value of 0, use the no tunnel flow-label value command.
ip unnumbered Configure a tunnel interface to operate without a unique explicit IPv4 address and select the interface from which the tunnel will borrow its address. Syntax ip unnumbered {interface-type interface-number} Use the no ip unnumbered command to set the tunnel back to default logical address. If the tunnel was previously operational, this will make the tunnel interface operationally down, unless the tunnel also has an IPv6 address configured..
Usage Information The ip unnumbered command will fail in two condition: • If the logical ip address is configured. • If the tunnel mode is ipv6ip (where ip address over tunnel interface is not possible). To ping the unnumbered tunnels the logical address route information should be present in both the ends. NOTE: The ipv6 unnumbered command can specify an interface name that does not yet exist, or does not yet have a configured IPv6 address.
57 u-Boot All commands in this chapter are in u-Boot mode. These commands are supported on the Dell Networking Operating System (OS) MXL 10/40GbE Switch Module platform. To access this mode, press any key when the following line appears on the console during a system boot. Hit any key to stop autoboot: Enter u-Boot immediately, as the BOOT_USER# prompt. NOTE: This chapter describes only a few commands available in u-Boot mode. NOTE: You cannot use the Tab key to complete commands in this mode.
Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER# boot show net config retries Number of Network Boot Config Retries is : 0 BOOT_USER # boot write net config retries Set the number of retries for network boot configuration failure. Syntax boot write net config retries Command Modes uBoot Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
enable Change the access privilege level. Syntax enable [user | admin] Command Modes uBoot Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. help Display the help menu. Syntax help Command Modes uBoot Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # help ***** Dell Force10 Boot Interface Help Information ***** Current access level: USER LEVEL Use "syntax help" for more information on syntax.
ignore startup config Ignore the system startup configuration. Syntax ignore startup-config Command Modes uBoot Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. interface management ethernet ip address Set the management port IP address and mask. Syntax interface management ethernet ip address Command Modes uBoot Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. no default-gateway Clear the default gateway IP address.
reload Reload the MXL switch. Syntax reload Command Modes uBoot Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show boot blc Show the boot loop counter value. Syntax show boot blc Command Modes uBoot Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show boot blc ? Total 1 possible command found.
show bootflash Show summary of boot flash information. Syntax show bootflash Command Modes uBoot Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show bootflash GENERAL BOOTFLASH INFO ====================== Bootflash Partition A: Dell Force10 Networks System Boot Official IOM_LP_IMG_BOOT_LOADER, BSP Release 4.0.1.
Management Etherenet IP address Server IP address Default Gateway IP address Management Etherenet MAC address : : : : 10.16.130.134/16 10.16.127.53 15.0.0.1 00:01:E8:43:DE:DF BOOT_USER # show default-gateway Display the default gateway IP address. Syntax show default-gateway Command Modes uBoot Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show default-gateway Gateway IP address: 15.0.0.
Example BOOT_USER # show interface management port config Management ethernet Port Configuration: no Auto Negotiate Management ethernet Port Configuration: 100M Management ethernet Port Configuration: full duplex BOOT_USER # syntax help Show the syntax information. Syntax help Command Modes uBoot Command History Example 1110 Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
58 Uplink Failure Detection (UFD) Uplink failure detection (UFD) provides detection of the loss of upstream connectivity and, if you use this with network interface controller (NIC) teaming, automatic recovery from a failed link. clear ufd-disable Re-enable one or more downstream interfaces on the switch/router that are in a UFD-Disabled Error state so that an interface can send and receive traffic.
debug uplink-state-group Enable debug messages for events related to a specified uplink-state group or all groups. Syntax debug uplink-state-group [group-id] To turn off debugging event messages, enter the no debug uplink-state-group [group-id] command. Parameters group-id Defaults none Command Modes EXEC Privilege Command History Related Commands Version 8.3.16.1 Enables debugging on the specified uplink-state group. The valid group-id values are from 1 to 16.
Parameters interface Enter one of the following interface types: • 10 Gigabit Ethernet: tengigabitethernet {slot/port | slot/ port-range} • 40 Gigabit Ethernet: fortygigabitethernet {slot/port |slot/ port-range} • Port channel: port-channel {1-512 | port-channel-range} Where port-range and port-channel-range specify a range of ports separated by a dash (-) and/or individual ports/port channels in any order; for example: gigabitethernet 1/1-2,5,9,11-12 port-channel 1-3,5.
• uplink-state-group — creates an uplink-state group and enables the tracking of upstream links. downstream disable links Configure the number of downstream links in the uplink-state group that are disabled if one upstream link in an uplink-state group goes down. Syntax downstream disable links {number |all} To revert to the default setting, use the no downstream disable links command. Parameters number Enter the number of downstream links to be brought down by UFD. The range is from 1 to 1024.
Command History Related Commands Version 8.3.16.1 • Introduced on the MXL 10/40GbE Switch IO Module. uplink-state-group — creates an uplink-state group and enables the tracking of upstream links. show running-config uplink-state-group Display the current configuration of one or more uplink-state groups.
Command Modes Command History Example • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
To disable upstream-link tracking without deleting the uplink-state group, use the no enable command in Uplink-State-Group Configuration mode. Parameters group-id Defaults none Command Modes CONFIGURATION Command History Usage Information Version 8.3.16.1 Enter the ID number of an uplink-state group. The range is from 1 to 16. Introduced on the MXL 10/40GbE Switch IO Module..
example: gigabitethernet 1/1-2,5,9,11-12 port-channel 1-3,5. A comma is required to separate each port and port-range entry. Defaults none Command Modes UPLINK-STATE-GROUP Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can assign physical port or port-channel interfaces to an uplink-state group. You can assign an interface to only one uplink-state group.
59 VLAN Stacking With the virtual local area network (VLAN)-stacking feature (also called stackable VLANs and QinQ), you can “stack” VLANs into one tunnel and switch them through the network transparently. For more information about basic VLAN commands, refer to the Virtual LAN (VLAN) Commands section in the Layer 2 chapter.
Parameters 0|1 Enter the bit value you want to map to a color. green | red | yellow Choose a color: • Green: High priority packets that are the least preferred to be dropped. • Yellow: Lower priority packets that are treated as best-effort. • Red: Lowest priority packets that are always dropped (regardless of congestion status). Defaults Disabled; Packets with an unmapped DEI value are colored green. Command Modes INTERFACE Command History Version 8.3.16.
Parameters interface Enter the following keywords and slot/port or number information: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabyte Ethernet interface, enter the keyword fortyGigE then the slot/ port information. Defaults Not configured. Command Modes conf-if-vl--stack Command History Version 8.3.
Parameters Command Modes Command History Example interface slot/port Enter the interface type then the line card slot and port number. EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show interface dei-mark Default CFI/DEI Marking: 0 Interface Drop precedence CFI/DEI -----------------------------------------------Gi 0/1 Green 0 Gi 0/1 Yellow 1 Gi 8/9 Yellow 0 Gi 8/40 Yellow 0 Related Commands dei mark — sets the DEI value on egress.
Usage Information Prior to disabling the stackable VLAN feature, remove the members. To view the stackable VLANs, use the show vlan command in EXEC Privilege mode. Stackable VLANs contain members, designated by the M in the Q column of the command output.
You may specify both bytes of the 2-byte S-Tag TPID. The range is from 0 to FFFF. The default is 9100. Defaults 0x9100 Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information For specific interoperability limitations regarding the S-Tag TPID, refer to the Dell Networking OS Configuration Guide. Related Commands portmode hybrid — sets a port (physical ports only) to accept both tagged and untagged frames.
Example Dell(conf-if-gi-0/42)#switchport Dell(conf-if-gi-0/42)#vlan-stack trunk Dell(conf-if-gi-0/42)#show config ! interface GigabitEthernet 0/42 no ip address switchport vlan-stack trunk no shutdown Dell(conf-if-gi-0/42)#interface vlan 100 Dell(conf-if-vl-100)#vlan-stack compatible Dell(conf-if-vl-100-stack)#member gigabitethernet 0/42 Dell(conf-if-vl-100-stack)#show config ! interface Vlan 100 no ip address vlan-stack compatible member GigabitEthernet 0/42 shutdown Dell(conf-if-vl-100-stack)#interface v
60 Virtual Link Trunking (VLT) VLT allows physical links between two chassis to appear as a single virtual link to the network core. VLT eliminates the requirement for Spanning Tree protocols by allowing link aggregation group (LAG) terminations on two separate distribution or core switches, and by supporting a loop-free topology.
snooping Command Modes Command History Enter the keyword snooping to delete multicast snooping route table entries. EXEC Privilege Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. clear ip pim tib Clear PIM tree information from the PIM database. Syntax Parameters Command Modes Command History Usage Information clear ip pim tib [group] group (OPTIONAL) Enter the multicast group address in dotted decimal format (A.B.C.D). EXEC Privilege Version 9.2(0.
Parameter Enter the value (in seconds) to specify the time interval for delay restore timer to abort. This timer is applicable only during reload/boot-up and not in other scenarios (example, ICL flap). The range is from 1 to 1800 seconds. Usage Information To abort VLT delay restore timer as the maximum threshold, the maximum time interval is applied to hold down ICL peer-up in the start-up configurations during the reload.
Parameters id-number Defaults Not configured. Command Modes VLT DOMAIN Command History Version 9.2(0.0) Enter the port-channel number that acts as the interconnect trunk. The range is from 1 to 128. Introduced on the MXL 10/40GbE Switch IO Module. peer-routing Enable L3 VLT peer-routing. This command is applicable for both IPV6/ IPV4. Syntax peer-routing To disable L3 VLT peer-routing, use the no peer-routing command. Defaults Disabled.
primary-priority Reconfigure the primary role of VLT peer switches. Syntax primary-priority value Parameters value Default 32768 Command Modes VLT DOMAIN Command History Usage Information Version 9.2(0.0) To configure the primary role on a VLT peer, enter a lower value than the priority value of the remote peer. The range is from 1 to 65535. Introduced on the MXL 10/40GbE Switch IO Module.
(A.B.C.D) to limit the information displayed to the multicast routes for a specified multicast group. count Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.2(0.0) Enter the keyword count to display VLT route and packet data. Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip mroute command shown in the examples. Field Description (S, G) Displays the forwarding entry in the multicast route table.
(1.13.1.100, 224.10.10.1), uptime 00:04:03 Incoming interface: GigabitEthernet 3/4 Outgoing interface list: GigabitEthernet 3/12 GigabitEthernet 3/13 (*, 224.20.20.1), uptime 00:05:12 Incoming interface: GigabitEthernet 3/12 Outgoing interface list: GigabitEthernet 3/4 utgoing interface l GigabitEthernet 3/4 show vlt backup-link Displays information on the backup link operation. Syntax show vlt backup-link Default Not configured. Command Modes EXEC Command History Example Version 9.2(0.
ICL Link Status HeartBeat Status VLT Peer Status Version Local System MAC address Remote System MAC address Remote system version Delay-Restore timer Delay-Restore Abort Threshold Peer-Routing Peer-Routing-Timeout timer Multicast peer-routing timeout Dell# : Up : Up : Up : : : : : 6(3) 00:01:e8:8a:e9:91 00:01:e8:8a:e9:76 6(3) 90 seconds : 60 seconds : Disabled : 0 seconds : 150 seconds show vlt detail Displays detailed status information about VLT domains currently configured on the switch.
show vlt mismatch Configure the time for a VLT node to retain synced multicast routes or synced multicast OIF after VLT peer node failure. Syntax show vlt mismatch Command Modes EXEC Command History Example Version 9.7(0.0) Introduced the support for Q-in-Q implementation over VLT on the MXL switch. Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
128 128 4094 100 Dell# show vlt role Displays the VLT peer status, role of the local VLT switch, VLT system MAC address and system priority, and the MAC address and priority of the local VLT device. Syntax show vlt role Default Not configured. Command Modes EXEC Command History Example Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
L2 Reg Request rcvd:15 L2 Reg Response sent:12 L2 Reg Response rcvd:11 VLT Igmp-Snooping Not Enabled VLT ARP Statistics -------------------ARP Tunnel Pkts sent:0 ARP Tunnel Pkts Rcvd:0 ARP Tunnel Pkts sent Non Vlt:0 ARP Tunnel Pkts Rcvd Non Vlt:0 ARP-sync Pkts Sent:0 ARP-sync Pkts Rcvd:0 ARP Reg Request sent:18 ARP Reg Request rcvd:16 VLT NDP Statistics -------------------NDP NA VLT Tunnel Pkts sent:0 NDP NA VLT Tunnel Pkts Rcvd:0 NDP NA Non-VLT Tunnel Pkts sent:0 NDP NA Non-VLT Tunnel Pkts Rcvd:0 Ndp-sync
To explicitly define the MAC address for the domain, use the system-mac command. You must also reconfigure the same MAC address on the VLT peer switch. Use this command to minimize the time required for the VLT system to synchronize the default MAC address of the VLT domain on both peer switches when one peer switch reboots. unit-id Explicitly configure the default unit ID of a VLT peer switch. Syntax Parameters unit-id id id Enter the system unit ID for VLT. The range is from 0 to 1.
vlt-peer-lag port-channel Associate the port channel to the corresponding port channel in the VLT peer for the VLT connection to an attached device. Syntax vlt-peer-lag port-channel id-number Parameters id-number Enter the port-channel number that connects to another port channel in the VLT peer. The range is from 1 to 128. Defaults Not configured. Command Modes INTERFACE PORT-CHANNEL Command History Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
61 Virtual Router Redundancy Protocol (VRRP) Virtual router redundancy protocol (VRRP) is supported by the Dell Networking Operating System (OS) for IPv4 and IPv6. The following commands apply to both VRRP IPv4 and IPv6: • advertise-interval • description • disable • hold-time • preempt • priority • show config • track • virtual-address VRRP Ipv6 are in the VRRP for IPv6 Commands section. advertise-interval Set the time interval between VRRP advertisements.
authentication-type Enable authentication of VRRP data exchanges. Syntax authentication-type simple [encryption-type] password To delete an authentication type and password, use the no authentication-type command. Parameters simple Enter the keyword simple to specify simple authentication. encryption-type (OPTIONAL) Enter one of the following numbers: password Defaults Not configured. Command Modes VRRP Command History Usage Information Version 8.3.16.
Command Modes Command History Usage Information • For Port Channel interface types, enter the keywords port-channel then the number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN interface, enter the keyword vlan then the VLAN ID. The VLAN ID range is from 1 to 4094. vrrp-id (OPTIONAL) Enter a number from 1 to 255 as the VRRP group ID.
Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To enable VRRP traffic, assign an IP address to the VRRP group using the virtual-address command and enter no disable. Related Commands virtual-address — specifies the IP address of the virtual router. hold-time Specify a delay (in seconds) before a switch becomes the MASTER virtual router. By delaying the initialization of the VRRP MASTER, the new switch can stabilize its routing tables.
priority Specify a VRRP priority value for the VRRP group. The VRRP protocol uses this value during the MASTER election process. Syntax priority priority To return to the default value, use the no priority command. Parameters priority Defaults 100 Command Modes VRRP Command History Usage Information Version 8.3.16.1 Enter a number as the priority. Enter 255 only if the router’s virtual address is the same as the interface’s primary IP address (that is, the router is the OWNER).
show vrrp View the VRRP groups that are active. If no VRRP groups are active, the system returns No Active VRRP group. Syntax show vrrp [vrrp-id] [interface] [brief] Parameters vrrp-id (OPTIONAL) Enter the Virtual Router Identifier for the VRRP group to view only that group. The range is from 1 to 255. interface (OPTIONAL) Enter the following keywords and slot/port or number information: brief Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 8.3.16.
TenGig10/37 2 100 Y Master 200.200.200.200 200.200.200.202 200.200.200.203 Description TenGig10/37 3 100 Y Master 1.1.1.1 1.1.1.2 TenGig10/37 4 100 Y Master 200.200.200.200 200.200.200.206 200.200.200.207 ... short desc Dell> Usage Information The following describes the show vrrp command shown in the following example. Item Description GigabitEthernet 12/3... Displays the Interface, the VRRP group ID, and the network address. If the interface is not sending VRRP packets, 0.0.0.
00:00:5e:00:01:01 Virtual IP address: 10.1.1.252 Authentication: (none) Tracking states for 1 interfaces: Up GigabitEthernet 12/17 priority-cost 10 -----------------GigabitEthernet 12/4, VRID: 2, Net: 10.1.2.253 State: Master, Priority: 110, Master: 10.1.2.253 (local) Hold Down: 10 sec, Preempt: TRUE, AdvInt: 1 sec Adv rcvd: 0, Adv sent: 1862, Gratuitous ARP sent: 0 Virtual MAC address: 00:00:5e:00:01:02 Virtual IP address: 10.1.2.
virtual-address Configure up to 12 IP addresses of virtual routers in the VRRP group. To start sending VRRP packets, set at least one virtual address for the VRRP group. Syntax virtual-address ip-address1 [... ip-address12] To delete one or more virtual IP addresses, use the no virtual-address ip-address1 [... ipaddress12] command. Parameters ip-address1 Enter an IP address of the virtual router in dotted decimal format. The IP address must be on the same subnet as the interface’s primary IP address. .
Related Command • When the system reloads, VRRP waits 600 seconds (10 minutes) to bring up VRRP on all interfaces that are up and configured for VRRP. • When an interface comes up, whether as part of a system reload or an interface reload, the system waits 300 seconds (5 minutes) to bring up VRRP on that interface. vrrp delay reload — sets the delay time for VRRP initialization after a system reboot. vrrp delay reload Set the delay time for VRRP initialization after a system reboot.
Usage Information The VRRP group only becomes active and sends VRRP packets when a virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets. Related Command virtual-address — assigns up to 12 virtual IP addresses per VRRP group. VRRP for IPv6 Commands The following commands apply to IPv6. clear counters vrrp ipv6 Clear the counters recorded for IPv6 VRRP groups.
timer Command Modes Command History Usage Information Enter the keyword timer to enable debugging of the VRRP timer. EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If no options are specified, debug is active on all interfaces and all VRRP groups. show vrrp ipv6 View the IPv6 VRRP groups that are active. If no VRRP groups are active, the system returns No Active VRRP group.
Line Beginning with Description • backup (BACKUP virtual router). the interface’s priority and the IP address of the MASTER. Hold Down:... Adv rcvd:... Example This line displays additional VRRP configuration information: • Hold Down displays the hold down timer interval in seconds. • Preempt displays TRUE if preempt is configured and FALSE if preempt is not configured. • AdvInt displays the Advertise Interval in seconds.
Parameters vrid Enter the virtual-router ID number of the VRRP group. The VRID range is from 1 to 255. Defaults Not configured. Command Modes INTERFACE Command History Usage Information Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The VRRP group only becomes active and sends VRRP packets when a link-local virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets.
Usage Information Version Description 9.7(0.0) Introduced on the S6000-ON. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, and MXL. You can use the version both command to migrate from VRRPv2 to VRRPv3. When you set the VRRP protocol version to both, the switch sends only VRRPv3 advertisements but can receive either VRRPv2 or VRRPv3 packets. To migrate an IPv4 VRRP group from VRRPv2 to VRRPv3: 1. Set the switches with the lowest priority to “both”. 2.
62 ICMP Message Types This chapter lists and describes the possible ICMP message type resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. Table 1. ICMP Messages and Their Definitions Symbol Type Code . 0 U 3 4 3 Error ICMP Message Types echo reply . destination unreachable: 0 network unreachable . 1 host unreachable . 2 protocol unreachable . 3 port unreachable .
Symbol & Type Code Description Query 8 0 echo request . 9 0 router advertisement . 10 0 router solicitation . 11 Error time exceeded: 0 time-to-live equals 0 during transit . 1 time-to-live equals 0 during reassembly . 12 parameter problem: 1 IP header bad (catchall error) . 2 required option missing . 13 0 timestamp request . 14 0 timestamp reply . 15 0 information request (obsolete) . 16 0 information reply (obsolete) . 17 0 address mask request .
63 SNMP Traps This chapter lists the traps sent by the Dell Networking Operating System (OS). Each trap is listed by the fields Message ID, Trap Type, and Trap Option. Table 2.
Message ID Trap Type Trap Option RMON_HC_FALLING_THRESHOLD SNMP NONE NONE NONE ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE PROTO NONE %RPM0-P:CP %SNMP-4-RMON_HC_FALLING_THRESHOLD: RMON highcapacity falling threshold alarm from SNMP OID RESV N/A CHM_MIN_ALRM_TEMP %CHMGR-2-MINOR_TEMP: Minor alarm: chassis temperature CHM_MIN_ALRM_TEMP_CLR %CHMRG-5-MINOR_TEMP_CLR: Minor alarm cleared: c
Message ID Trap Type Trap Option PROTO NONE PROTO NONE PROTO NONE PROTO NONE ETS NONE ETS NONE ETS NONE ETS NONE PFC NONE PFC NONE %RPM1-P:RP2 %VRRP-3-VRRP_BAD_AUTH: vrid-1 on Gi 11/12 rcvd pkt with authentication failure VRRP_GO_MASTER %VRRP-6-VRRP_MASTER: vrid-%d on %s entering MASTER VRRP_PROTOCOL_ERROR VRRP_PROTOERR: VRRP protocol error on %S BGP4_ESTABLISHED %TRAP-5-PEER_ESTABLISHED: Neighbor %a, state %s BGP4_BACKW_XSITION %TRAP-5-BACKWARD_STATE_TRANS: Neighbor %a, state %s ETS_
Message ID Trap Type Trap Option PFC NONE PFC NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE ENTITY NONE %DIFFSERV-5-PFC_TRAP_TYPE_ADMIN_MODE_CHANGE : PFC Admin mode changed to on for port %s %DIFFSERV-5-PFC_TRAP_TYPE_ADMIN_MODE_CHANGE : PFC Admin mode changed to off for port %s PFC_TRAP_TYPE_OPER_STATE_CHANGE %DIFFSERV-5-PFC_TRAP_TYPE_OPER_STATE_CHANGE: PFC Oper state changed to init for port %s %DIFFSERV-5-PFC_TRAP_TYPE_OPER_STATE_CHANGE: PFC Oper state c
64 FC Flex IO Modules This part provides a generic, broad-level description of the operations, capabilities, and configuration commands of the Fiber Channel (FC) Flex IO module. FC Flex IO Modules This part provides a generic, broad-level description of the operations, capabilities, and configuration commands of the Fiber Channel (FC) Flex IO module.
description (for FCoE maps) In an FCoE map, add a text description of the FCoE and FC parameters used to transmit storage traffic over an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway in a converged fabric. M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax Parameters description text text Defaults None Command Modes FCOE MAP Command History Version 9.3(0.0) Enter a maximum of 32 characters.
After you apply an FCoE map on an FC interface, when the port is enabled (no shutdown), the NPIV proxy gateway starts sending FIP multicast advertisements on behalf of the FC port to downstream servers in order to advertise the availability of a new FCF port on the FCoE VLAN. To remove an FCoE map from an FC interface, enter the no fabric map-name command in Interface configuration mode.
fcf-priority In an FCoE map, configure the priority used by a server CNA to select an upstream FCoE forwarder (FCF). M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax Parameters fcf—priority priority priority Defaults 128 Command Modes FCOE MAP Command History Usage Information Version 9.3(0.0) Enter the priority assigned to the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway, which appears to a downstream server CNA as an FCF.
The FC-MAP value is used to generate the fabric-provided MAC address (FP-MAC). The FPMA is used by servers to transmit FCoE traffic to the fabric. An FC-MAP can be associated with only one FCoE VLAN and vice versa. In an FCoE map, the FC-MAP value, fabric ID, and FCoE VLAN parameters must be unique. To remove a configured FC-MAP value from an FCoE map, enter the no fc-map command.
On an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway, you cannot apply an FCoE map is applied on fabric-facing FC ports and server-facing 10–Gigabit Ethernet ports. An FCoE map consists of the following parameters: the dedicated FCoE VLAN used for storage traffic, the destination SAN fabric (FC-MAP value), FCF priority used by a server, and the FIP keepalive (FKA) advertisement timeout.
Command Modes Command History Usage Information CONFIGURATION Version 9.3.0.0 Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module configured as an NPIV proxy gateway. FCoE storage traffic received from servers on an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway is de-capsulated into Fibre Channel packets and forwarded over FC links to SAN switches in a specified fabric.
show fcoe-map Display the Fibre Channel and FCoE configuration parameters in FCoE maps. M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax Parameters Command Modes Command History Usage Information show fcoe-map [brief | map-name] brief Displays an overview of currently configured FCoE maps. map-name Displays the FC and FCoE configuration parameters in a specified FCoE map.
Field Description Oper-State Operational status of link to the fabric: Up (link is up and transmitting FC traffic), Down (link is down and not transmitting FC traffic), Link-wait (link is up and waiting for FLOGI to complete on peer FC port), or Removed (port has been shut down). The following table describes the show fcoe-map map-name output shown in the example below. Example Field Description Fabric-Name Name of a SAN fabric.
Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show npiv devices Display the FCoE and FC devices currently logged in to an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway.
Te 0/12 LOGGED_IN Te 0/13 LOGGED_IN Usage Information Example 1170 20:01:00:10:18:f1:94:20 1003 Fc 0/5 fid_1003 FLOGI 10:00:00:00:c9:d9:9c:cb 1003 Fc 0/0 fid_1003 FDISC The following table describes the show npiv devices output shown in the example below. Field Description ENode [number] A server CNA that has successfully logged in to a fabric over an M I/O Aggregator and MXL 10/40 Switch with the FC Flex IO module Ethernet port in ENode mode. Enode MAC MAC address of a server CNA port.
ENode WWPN ENode WWNN FCoE MAC FC-ID LoginMethod Secs Status Related Commands : : : : : : : 10:00:00:00:c9:d9:9c:cb 10:00:00:00:c9:d9:9c:cd 0e:fc:03:01:02:02 01:02:01 FDISC 5593 LOGGED_IN fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SA FC Flex IO Modules 1171
