FTOS Command Line Reference Guide for the S5000 Switch FTOS 9.0(1.
Notes, Cautions, and Warnings NOTE: A NOTE indicates important information that helps you make better use of your computer. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. © 2013 Dell Inc.
Contents 1 About this Guide........................................................................................................................ 45 Objectives............................................................................................................................................................... 45 Audience.................................................................................................................................................................45 Conventions.....
Control and Monitoring............................................................................................................ 81 asf-mode.................................................................................................................................................................81 banner exec............................................................................................................................................................ 82 banner login.....................
show environment................................................................................................................................................ 110 show inventory..................................................................................................................................................... 111 show processes cpu.............................................................................................................................................
debug dot1x.......................................................................................................................................................... 152 dot1x auth-fail-vlan............................................................................................................................................... 152 dot1x auth-server..................................................................................................................................................
show default-gateway.......................................................................................................................................... 174 show interface management ethernet................................................................................................................. 174 show interface management port config............................................................................................................. 175 8 Access Control Lists (ACL).................
seq........................................................................................................................................................................ 214 Extended MAC ACL Commands............................................................................................................................215 deny......................................................................................................................................................................
AS-Path Commands..............................................................................................................................................243 ip as-path access-list........................................................................................................................................... 243 show ip as-path-access-lists...............................................................................................................................
bgp router-id......................................................................................................................................................... 269 bgp soft-reconfig-backup..................................................................................................................................... 269 capture bgp-pdu max-buffer-size.........................................................................................................................
neighbor route-reflector-client.............................................................................................................................297 neighbor send-community....................................................................................................................................298 neighbor shutdown...............................................................................................................................................
clear ip bgp peer-group........................................................................................................................................ 340 debug ip bgp updates........................................................................................................................................... 341 distance bgp.........................................................................................................................................................
11 Bare Metal Provisioning (BMP)..........................................................................................373 reload type............................................................................................................................................................ 373 show reload-type..................................................................................................................................................374 stop jump-start.................................
show qos dcb-map............................................................................................................................................... 402 show interfaces dcbx detail................................................................................................................................. 403 show interfaces ets.............................................................................................................................................. 406 show interfaces pfc..
16 Equal Cost Multi-Path Overview (ECMP).......................................................................... 433 ecmp-group.......................................................................................................................................................... 433 hash-algorithm......................................................................................................................................................434 hash-algorithm ecmp.....................................
show config.......................................................................................................................................................... 462 show garp timers.................................................................................................................................................. 463 show gvrp.............................................................................................................................................................
clear dampening................................................................................................................................................... 490 cx4-cable-length...................................................................................................................................................491 dampening............................................................................................................................................................
show config.......................................................................................................................................................... 538 show interfaces port-channel.............................................................................................................................. 539 show port-channel-flow....................................................................................................................................... 542 UDP Broadcast........
ip max-frag-count................................................................................................................................................. 574 ip mtu.................................................................................................................................................................... 575 ip name-server......................................................................................................................................................
resequence access-list........................................................................................................................................ 621 resequence prefix-list ipv6................................................................................................................................... 621 seq........................................................................................................................................................................
aggregate-address............................................................................................................................................... 651 bgp always-compare-med....................................................................................................................................652 bgp bestpath as-path ignore.................................................................................................................................653 bgp bestpath med confed......
neighbor advertisement-interval.......................................................................................................................... 679 neighbor allowas-in.............................................................................................................................................. 680 neighbor default-originate....................................................................................................................................680 neighbor description......
show ip bgp ipv6 unicast inconsistent-as.............................................................................................................707 show ip bgp ipv6 unicast neighbors..................................................................................................................... 708 show ip bgp ipv6 unicast peer-group................................................................................................................... 711 show ip bgp ipv6 unicast summary................
show ip bgp ipv6 unicast inconsistent-as.............................................................................................................738 show ip bgp ipv6 unicast neighbors..................................................................................................................... 738 show ip bgp ipv6 unicast peer-group................................................................................................................... 742 show ip bgp ipv6 unicast summary................
graceful-restart t2.................................................................................................................................................767 graceful-restart t3.................................................................................................................................................767 graceful-restart restart-wait.................................................................................................................................768 hello padding.
show isis traffic.....................................................................................................................................................799 spf-interval............................................................................................................................................................801 29 Link Aggregation Control Protocol (LACP)........................................................................803 clear lacp counters...............................
fefd........................................................................................................................................................................831 fefd disable........................................................................................................................................................... 831 fefd-global.........................................................................................................................................................
ip msdp log-adjacency-changes.......................................................................................................................... 855 ip msdp mesh-group............................................................................................................................................. 855 ip msdp originator-id.............................................................................................................................................856 ip msdp peer..............
35 Neighbor Discovery Protocol (NDP).................................................................................. 885 clear ipv6 neighbors............................................................................................................................................. 885 ipv6 nd mtu............................................................................................................................................................886 ipv6 neighbor.......................................
distribute-list out...................................................................................................................................................921 fast-convergence................................................................................................................................................. 922 flood-2328..............................................................................................................................................................
show ip ospf neighbor.......................................................................................................................................... 958 show ip ospf routes...............................................................................................................................................959 show ip ospf statistics..........................................................................................................................................
show ip pim bsr-router..........................................................................................................................................989 show ip pim interface........................................................................................................................................... 990 show ip pim neighbor............................................................................................................................................991 show ip pim rp.....
show monitor session.........................................................................................................................................1019 show running-config monitor session................................................................................................................ 1020 source (port monitoring).....................................................................................................................................
policy-map-output...............................................................................................................................................1049 qos-policy-input..................................................................................................................................................1050 qos-policy-output................................................................................................................................................1050 rate-police...
ip poison-reverse................................................................................................................................................1085 ip rip receive version.......................................................................................................................................... 1085 ip rip send version...............................................................................................................................................
protocol spanning-tree rstp................................................................................................................................1113 show config........................................................................................................................................................ 1114 show spanning-tree rstp.....................................................................................................................................1114 spanning-tree rstp....
radius-server retransmit.....................................................................................................................................1143 radius-server timeout......................................................................................................................................... 1144 TACACS+ Commands..........................................................................................................................................1144 debug tacacs+..............
clear ip dhcp snooping....................................................................................................................................... 1169 ip dhcp relay....................................................................................................................................................... 1169 ip dhcp snooping.................................................................................................................................................
snmp-server group............................................................................................................................................. 1197 snmp-server host................................................................................................................................................1199 snmp-server location..........................................................................................................................................
53 Stacking Commands........................................................................................................... 1231 redundancy disable-auto-reboot stack-unit.......................................................................................................1231 redundancy force-failover stack-unit.................................................................................................................1232 reset stack-unit............................................................
ntp trusted-key....................................................................................................................................................1263 ntp update-calendar........................................................................................................................................... 1264 show calendar.................................................................................................................................................... 1264 show clock...
show vlt backup-link...........................................................................................................................................1293 show vlt counter................................................................................................................................................. 1294 show vlt role........................................................................................................................................................
Hardware Commands......................................................................................................................................... 1323 clear hardware stack-unit.................................................................................................................................. 1323 clear hardware system-flow...............................................................................................................................1324 hardware watchdog................
About this Guide 1 This book provides information about the Dell Networking operating system (FTOS) command line interface (CLI). This book also includes information about the protocols and features found in FTOS.
x|y Keywords and parameters separated by a bar require you to choose one option. x||y Keywords and parameters separated by a double bar allows you to choose any or all of the options. Information Icons This book uses the following information symbols: NOTE: The Note icon signals important operational information. CAUTION: The Caution icon signals information about situations that could result in equipment damage or loss of data.
CLI Basics 2 This chapter describes the command line interface (CLI) structure and command modes. The Dell Networking operating system (FTOS) commands are in a text-based interface that allows you to use the launch commands, change command modes, and configure interfaces and protocols. Accessing the Command Line When the system boots successfully, you are positioned on the command line in EXEC mode and not prompted to log in. You can access the commands through a serial console port or a Telnet session.
When another user enters CONFIGURATION mode, FTOS sends a message similar to the following: % Warning: User "admin" on line vty2 "172.16.1.210" is in configuration In this case, the user is “admin” on vty2. Navigating the CLI FTOS displays a CLI prompt comprised of the host name and CLI mode. • Host name is the initial part of the prompt and is “FTOS” by default. You can change the host name with the hostname command. • CLI mode is the second part of the prompt and reflects the current CLI mode.
extcommunity-list entry ftp helper-address host hostname table igmp Protocol max-frag-count allowed in IP re-assembly mroute msdp protocol multicast-limit multicast-msdp protocol multicast-routing name-server to use pim prefix-list radius RADIUS route scp source-route routing header options ssh tacacs TACACS+ telnet tftp FTOS(conf)# Add a Extended community list FTP configuration commands DHCP relay agent configuration Add an entry to the ip Internet Group Management Max.
Key Combination Action CNTL-K Deletes all the characters from the cursor to the end of the command line. CNTL-L Re-enters the previous command. CNTL-N Returns to the more recent commands in the history buffer after recalling commands with CtrlP or the up Arrow key. CNTL-P Recalls commands, beginning with the last command. CNTL-R Re-enters the previous command. CNTL-U Deletes the line. CNTL-W Deletes the previous word. CNTL-X Deletes the line.
The grep command option has an ignore-case suboption that makes the search caseinsensitive.
EXEC Privilege Mode The enable command accesses EXEC Privilege mode. If an administrator has configured an “Enable” password, you are prompted to enter it. EXEC Privilege mode allows you to access all the commands accessible in EXEC mode, plus other commands, such as to clear address resolution protocol (ARP) entries and IP addresses. In addition, you can access CONFIGURATION mode to configure interfaces, routes and protocols on the switch.
Prompt Interface Type FTOS(conf-ifpo-0)# port-channel number (range 1–128) FTOS(conf-ifvl-0)# vlan followed by VLAN id number (range 1–4094) FTOS(conf-ifma-0/0)# managementethernet followed by slot/port information (port 0) FTOS(conf-ifrange)# Designated interface range (used for bulk configuration). LINE Mode You must use LINE mode to configure the console or virtual terminal parameters. To enter LINE mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the line command.
1. Verify that you are logged in to CONFIGURATION mode. 2. Use the ip access-list standard or ip access-list extended command. Include a name for the ACL. The prompt changes to include (conf-std-nacl) or (conf-ext-nacl). You can return to CONFIGURATION mode by using the exit command. ROUTE-MAP Mode You must use ROUTE-MAP mode to configure a route map. To enter ROUTE-MAP mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Use the route-map map-name [permit | deny] [sequence-number] command.
REDIRECT-LIST Mode You must use REDIRECT-LIST mode to configure a Redirect list on the S5000. For more information, refer to the S5000 FTOS Command Line Reference Guide, Policy-based Routing (PBR). To enter REDIRECT-LIST mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Use the ip redirect-list command. Include a name for the Redirect-list. The prompt changes to include (conf-redirect-list). You can return to CONFIGURATION mode by using the exit command.
To enter MULTIPLE SPANNING TREE mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the protocol spanning-tree mstp command. You can return to CONFIGURATION mode by using the exit command. PROTOCOL GVRP Mode You must use PROTOCOL GVRP mode to enable and configure GARP VLAN Registration Protocol (GVRP). For more information, refer to GARP VLAN Registration (GVRP). To enter PROTOCOL GVRP mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the protocol gvrp command.
ROUTER BGP Mode You must use ROUTER BGP mode to configure Border Gateway Protocol (BGP) on the S5000. For more information, refer to Border Gateway Protocol IPv4 (BGPv4). To enter ROUTER BGP mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the router bgp as-number command. The prompt changes to include (conf-router_bgp). You can return to CONFIGURATION mode by using the exit command. VLT DOMAIN Mode Use VLT DOMAIN mode to enable and configure the VLT domain protocol.
3 File Management This chapter contains command line interface (CLI) commands needed to manage the configuration files as well as other file management commands. The commands in this chapter are supported by the Dell Networking operating system (FTOS) on the S5000 platform. cd Change to a different working directory. S5000 Syntax Parameters Command Modes Command History cd directory directory (OPTIONAL) Enter flash: (internal Flash) or any sub-directory. EXEC Privilege Version 9.0(1.
To copy the running configuration enter the keyword running-config To copy the startup configuration enter the keyword startup-config To copy using a Secure Copy (SCP), enter the keyword scp: • • Command Modes Command History Usage Information If you enter scp: in the source position, enter the target URL; If you enter scp: in the target position, first enter the source URL; To copy a file on the external FLASH enter usbflash:// followed by the filename To copy a file on a TFTP server enter tftp:
indicates that the target is the internal Flash. The source is on a secure server running SSH, so you are prompted for the user datagram protocol (UDP) port of the SSH server on the remote host. Example FTOS#copy scp: flash: Address or name of remote host []: 10.11.199.134 Port number of the server [22]: 99 Source file name []: test.cfg User name to login remote host: admin Password to login remote host: Destination file name [test.cfg]: test1.cfg Related Commands cd – changes the working directory.
no-confirm Command Modes Command History (OPTIONAL) Enter the keyword no-confirm to specify that FTOS does not require user input for each file prior to deletion. EXEC Privilege Version 9.0(1.3) Introduced on the S5000. dir Display the files in a file system. The default is the current directory.
Defaults flash memory Command Modes EXEC Privilege Command History Usage Information Version 9.0(1.3) Introduced on the S5000. You must include the colon (:) when entering this command. After reformatting is complete, three empty directories are automatically created on flash: CRASH_LOG_DIR, TRACE_LOG_DIR and NVTRACE_LOG_DIR. CAUTION: This command deletes all files, including the startup configuration file.
logging coredump Enable coredump. S5000 Syntax Parameters logging coredump {stack-unit all} stack-unit all Enable coredump on all stack-units. Defaults The kernal coredump is disabled. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The kernel coredump can be large and may take five to 30 minutes to upload.
Defaults Crash kernel files are uploaded to flash by default. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Because flash space may be limited, using this command ensures your entire crash kernel files are uploaded successfully and completely. Only a single coredump server can be configured. Configuration of a new coredump server over-writes any previously configured server.
Parameters Command Modes Command History url Enter the following keywords and a filename: • For a file on the internal Flash, enter flash:// followed by the filename. • For a file on the external Flash, enter slot0:// followed by the filename. EXEC Privilege Version 9.0(1.3) Introduced on the S5000. show file Display contents of a text file in the local filesystem.
! username admin password 7 1d28e9f33f99cf5c ! stack-unit 0 provision S5000 ! interface TenGigabitEthernet 0/0 no ip address no shutdown ... interface fortyGigE 0/48 no ip address no shutdown ... interface fortyGigE 0/60 no ip address no shutdown ! interface ManagementEthernet 0/0 ip address 10.1.1.1/16 no shutdown ... interface Vlan 1 ! snmp-server community public ro ! protocol lldp ! line console 0 line vty 0 line vty 1 ...
FTOS# Usage Information - - network network network rw rw rw ftp: tftp: scp: Field Description size(b) Lists the size (in bytes) of the storage location. If the location is remote, no size is listed. Free(b) Lists the available size (in bytes) of the storage location. If the location is remote, no size is listed. Feature Displays the formatted DOS version of the device. Type Displays the type of storage. If the location is remote, the word network is listed.
NOTE: ftp and tftp are the only S5000 options. Defaults none Command Modes EXEC Privilege Command History Usage Information Example Version 9.0(1.3) Introduced on the S5000. NOTE: A filepath that contains a dot ( . ) is not supported. FTOS# show os-version RELEASE IMAGE INFORMATION : -------------------------------------------------------------------Platform Version Size ReleaseTime S-Series: SH 9.0(1.
show running-config Display the current configuration and display changes from the default values. S5000 Syntax Parameters show running-config [entity] [configured] [status] entity (OPTIONAL) Enter one of the keywords listed below to display that entity’s current (non-default) configuration: NOTE: If nothing is configured for that entity, nothing is displayed and the prompt returns.
isis for the current ISIS configuration line for the current line configuration lldp for the current LLDP configuration load-balance for the current port-channel load-balance configuration logging for the current logging configuration mac for the current MAC ACL configuration mac-addresstable for the current MAC configuration managementroute for the current Management port forwarding configuration mld for the current MLD configuration monitor for the current Monitor configuration mroute
Command Modes Command History Example 72 rmon for the current RMON configuration route-map for the current route map configuration sflow for the current sFlow configuration snmp for the current SNMP configuration spanningtree for the current spanning tree configuration static for the current static route configuration status for the file status information tacacs+ for the current TACACS+ configuration tftp for the current TFTP configuration trace-group for the current trace-group config
! stack-unit 0 provision S5000 ! interface fibrechannel 0/0 shutdown ! interface fibrechannel 0/1 shutdown ! interface TenGigabitEthernet no ip address shutdown ! interface TenGigabitEthernet no ip address shutdown ! ....
running-config bytes 4419, checksum 0x8A1D926E startup-config bytes 3002, checksum 0xAFFD4BCA FTOS# Example FTOS#show running-config status running-config bytes 3956, checksum 0xD236FC8A startup-config bytes 3905, checksum 0xE0F391F8 FTOS# Usage Information The status option allows you to display the size and checksum of the running configuration and the startup configuration. show stack-unit View the current stack-unit status.
Command History Version 9.0(1.3) Introduced on the S5000. Example FTOS#show startup-config ! Version 9-0(1-2) ! Last configuration change at Mon Jun 10 19:20:41 2030 by default ! Startup-config last updated at Mon Jun 10 19:20:42 2030 by default ! boot system stack-unit 0 primary system: B: boot system stack-unit 0 secondary tftp://10.200.200.241/kpdiablo boot system stack-unit 0 default tftp://10.11.200.
Example Build Path... Location of the software build files loaded on the system FTOS uptime is... Amount of time the system has been up System image... Image file name System Type... Switch type (S5000) Control Processor... Control processor information and amount of memory on processor 16M bytes... Amount and type of memory on system 1 4–module...24 Ten GigabitEthernet... Forty GigabitEthernet...
bootflash-image Upgrade the boot image in the bootflash partition. bootselectorimage Upgrade the boot image in the bootselector partition. You are prompted to enter the password. stack-unit stack- unit-id Enter the keyword stack-unit followed by the stack unit ID of the switch. Valid values are from 0 to 11. booted: Upgrade using the boot image with which the S5000 booted up.
* Warning - Upgrading boot selectors is inherently risky and should * * only be attempted when necessary. A failure at this upgrade may * * cause a board RMA. Proceed with caution ! * *************************************************************** ******** Proceed upgrade Boot Selector image for stack-unit 0 [yes/no]: yes Programming !.!!.!.!.!!.!.!!.!.!!.!.!.!!.!.!.!!.!.!!.!.!.!!.!.!!.!.!.!!.!.! !.!.!.!!.!.!.!. Bootselector image upgrade for stack-unit 0 completed successfully.
Bootflash image upgrade for stack-unit 0 completed successfully. upgrade system (standalone unit) Upgrade the FTOS image on a standalone S5000 switch. S5000 Syntax Parameters upgrade system {flash://file-path | ftp://file-path | scp:// file-path | tftp://file-path | usbflash://file-path} {A: | B:} system Enter the keyword system to change the FTOS image.
FTOS#upgrade system ftp:// A: Address or name of remote host []: 10.11.200.241 Source file name []: /sw/Releases/FTOS-SH-9.0(1.3).bin User name to login remote host: ftp Password to login remote host: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!! Erasing Sseries Primary Image, please wait ......!........................................................ ............................................................... ..................................................
Control and Monitoring 4 This chapter contains the commands to configure and monitor the system, including Telnet, file transfer protocol (FTP), and trivial file transfer protocol (TFTP) as they apply to the S5000 switch. NOTE: The enable xfp-power-updates command was deprecated for the S5000.
banner exec Configure a message that is displayed when your enter EXEC mode. S5000 Syntax Parameters banner exec c line c c Enter the keywords banner exec, then enter a character delimiter, represented here by the letter c. Press ENTER. line Enter a text string for your banner message, ending the message with a delimiter character. In the example below, the delimiter is a percent sign (%). Range: maximum 50 lines, up to 255 characters per line. Defaults No banner is displayed.
banner login Set a banner to be displayed when logging on to the system. S5000 Syntax Parameters banner login {keyboard-interactive | no keyboard-interactive} [c line c] keyboardinteractive Enter the keyword keyboard-interactive to require a carriage return (CR) to get the message banner prompt. c Enter the keywords banner login, then enter a character delimiter, represented here by the letter c. Press ENTER.
banner motd Set a message of the day (MOTD) banner. S5000 Syntax Parameters banner motd c line c c Enter the keywords banner motd, then enter a character delimiter, represented here by the letter c. Press ENTER. line Enter a text string for your banner message, ending the message with a delimiter character. In the example below, the delimiter is a percent sign (%). Range: maximum 50 lines, up to 255 characters per line. Defaults No banner is configured.
Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Enables periodic audits of the software and hardware copies of the IPv4 and IPv6 forwarding tables. clear alarms Clear alarms on the system. S5000 Syntax clear alarms Command Modes EXEC Privilege Command History Usage Information Version 9.0(1.3) Introduced on the S5000. This command clears alarms that are no longer active.
clear line Reset a terminal line. S5000 Syntax Parameters Command Modes Command History clear line {line-number | console 0 | vty number} line-number Enter a number for one of the 12 terminal lines on the system. Range: 0 to 11. console 0 Enter the keywords console 0 to reset the console port. vty number Enter the keyword vty followed by a number to clear a terminal line. Range: 0 to 9. EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
debug cpu-traffic-stats Enable the collection of computer processor unit (CPU) traffic statistics. S5000 Syntax debug cpu-traffic-stats Defaults Disabled Command Modes EXEC Privilege Command History Usage Information Version 9.0(1.3) Introduced on the S5000. This command enables (and disables) the collection of CPU traffic statistics from the time this command is executed (not from system boot).
disable Return to EXEC mode. S5000 Syntax Parameters disable [level] level (OPTIONAL) Enter a number for a privilege level of the FTOS. Range: 0 to 15. Default: 1. Defaults 1 Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. do Allows the execution of most EXEC-level commands from all CONFIGURATION levels without returning to the EXEC level.
FTOS(conf-if-te-5/0)# FTOS(conf-if-te-5/0)#do reload System configuration has been modified. Save? [yes/no]: n Proceed with reload [confirm yes/no]: n FTOS(conf-if-te-5/0)# enable Enter EXEC Privilege mode or any other privilege level configured. After entering this command, you may need to enter a password. S5000 Syntax Parameters enable [level] level Defaults 15 Command Modes EXEC Command History Version 9.0(1.3) (OPTIONAL) Enter a number for a privilege level of FTOS. Range: 0 to 15.
Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Use this command to enable polling and to configure the polling frequency. end Return to EXEC Privilege mode from other command modes (for example, CONFIGURATION or ROUTER OSPF modes).
exec-banner Enable the display of a text string when the user enters EXEC mode. S5000 Syntax exec-banner Defaults Enabled on all lines (if configured, the banner appears). Command Modes LINE Command History Version 9.0(1.3) Introduced on the S5000. Usage Information Optionally, use the banner exec command to create a text string that is displayed when you access EXEC mode. This command toggles that display. Related Commands banner exec – configures a banner to display when entering EXEC mode.
exit Return to the lower command mode. S5000 Syntax Command Modes Command History Related Commands exit • EXEC Privilege • CONFIGURATION • LINE, INTERFACE • TRACE-LIST • PROTOCOL GVRP • SPANNING TREE • MULTIPLE SPANNING TREE • MAC ACCESS LIST • ACCESS-LIST • AS-PATH ACL • COMMUNITY-LIST • PREFIX-LIST • ROUTER OSPF • ROUTER RIP • ROUTER ISIS • ROUTER BGP Version 9.0(1.3) Introduced on the S5000. end – returns to EXEC Privilege mode.
Example morpheus% ftp 10.31.1.111 Connected to 10.31.1.111. 220 FTOS (1.0) FTP server ready Name (10.31.1.111:dch): dch 331 Password required Password: 230 User logged in ftp> pwd 257 Current directory is "flash:" ftp> dir 200 Port set okay 150 Opening ASCII mode data connection size date time name -------------------------------------512 Jul-20-2004 18:15:00 tgtimg 512 Jul-20-2004 18:15:00 diagnostic 512 Jul-20-2004 18:15:00 other 512 Jul-20-2004 18:15:00 tgt 226 Transfer complete 329 bytes received in 0.
ftp-server username Create a user name and associated password for incoming FTP server sessions. S5000 Syntax Parameters ftp-server username username password [encryption-type] password username Enter a text string up to 40 characters long as the user name. password Enter the keyword password followed by a string up to 40 characters long as the password. Without specifying an encryption type, the password is unencrypted. password encryption-type Defaults Not enabled.
Usage Information The hostname is used in the prompt. ip ftp password Specify a password for outgoing FTP connections. S5000 Syntax Parameters ip ftp password [encryption-type] password encryption-type password Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.
• For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60. • For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383. • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128.
ip telnet server enable Enable the Telnet server on the switch. S5000 Syntax ip telnet server enable Defaults Enabled Command Modes CONFIGURATION Command History Related Commands Version 9.0(1.3) Introduced on the S5000. ip ssh server – enables the secure shell (SSH) server on the system. ip telnet source-interface Set an interface’s IP address as the source address in outgoing packets for Telnet sessions.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. telnet – telnets to another device. ip tftp source-interface Assign an interface’s IP address in outgoing packets for TFTP traffic. S5000 Syntax Parameters ip tftp source-interface type slot/port sourceinterfacetype slot/port Enter the source-interface keyword followed by the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
line Enable and configure console and virtual terminal lines to the system. This command accesses LINE mode, where you can set the access conditions for the designated line. S5000 Syntax Parameters line {console 0 | vty number [end-number]} console 0 Enter the keyword console 0 to configure the console port. The console option for the S5000 is <0-0>. vty number Enter the keyword vty followed by a number from 0 to 9 to configure a virtual terminal line for Telnet sessions.
ping Test connectivity between the system and another device by sending echo requests and waiting for replies.
• N: Do not validate reply data . • Y: Do validate reply data . Default is No. Defaults outgoinginterface Enter the outgoing interface for ping packets to a destination linklocal address. pattern pattern (IPv4 only) Enter the IPv4 data pattern. Range: 0-FFFF. Default: 0xABCD. sweep-min-size Enter the minimum size of datagram in sweep range. Range: 52-15359 bytes. sweep-max-size Enter the maximum size of datagram in sweep range. Range: 53-15359 bytes.
Example (IPv4) U A destination unreachable error PDU was received. Q Source quench (destination too busy). M Could not fragment. ? Unknown packet type. & Packet lifetime exceeded. FTOS#ping 172.31.1.255 Type Ctrl-C to abort. Sending 5, 100-byte ICMP Echos to 172.31.1.255, timeout is 2 seconds: Reply to request 1 from 172.31.1.208 0 ms Reply to request 1 from 172.31.1.216 0 ms Reply to request 1 from 172.31.1.205 16 ms :: Reply to request 5 from 172.31.1.209 0 ms Reply to request 5 from 172.31.1.
send Send messages to one or all terminal line users. S5000 Syntax Parameters send [*] | [line ] | [console] | [vty] * Enter the asterisk character * to send a message to all tty lines. line Send a message to a specific line. Range: 0 to 11. console Enter the keyword console to send a message to the primary terminal line. vty Enter the keyword vty to send a message to the virtual terminal. Defaults none Command Modes EXEC Command History Usage Information Version 9.0(1.
show-timezone (OPTIONAL) Enter the keyword show-timezone to include the time zone information in the timestamp. uptime (OPTIONAL) Enter the keyword uptime to have the timestamp based on time elapsed since system reboot. Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. If you do not specify parameters and enter service timestamps, it appears as service timestamps debug uptime in the running-configuration.
show command-history Display a buffered log of all commands entered by all users along with a time stamp. S5000 Syntax show command-history Defaults none Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Example FTOS#show command-history [4/30 10:6:38]: CMD-(TEL0):[enable]by admin from vty0 (10.11.51.14) [4/30 10:6:51]: CMD-(TEL0):[show version]by admin from vty0 (10.11.51.14) [4/30 10:8:6]: CMD-(TEL0):[configure]by admin from vty0 (10.11.51.
Parameters Defaults Command Modes Command History count Display the command tree with a usage counter for each command. no Display all of the commands that may be preceded by the keyword no, which is the keyword used to remove a command from the running-configuration. none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information Reload the system to reset the command-tree counters.
usage: 0 WORD usage: 0 ipv6 usage: 0 access-group usage: 0 WORD usage: 0 learning-limit usage: 0 loopback usage: 0 <0-16383> usage: 0 mac usage: 0 access-group usage: 0 WORD usage: 0 in usage: 0 out usage: 0 managementethernet usage: 0 SLOT/PORT usage: 0 port-channel usage: 0 <1-128> usage: 0 learning-limit usage: 0 vrrp usage: 0 <1-255> usage: 0 ipv6 usage: 0 <1-255> usage: 0 learning-limit usage: 0 tengigabitethernet usage: 0 SLOT/PORT usage: 0 learning-limit usage: 0 vrrp usage: 0 <1-255> usage: 0 ipv6 u
usage: 0 <1-255> usage: 0 ipv6 usage: 0 <1-255> usage: 0 vrrp usage: 0 <1-255> usage: 0 ipv6 usage: 0 <1-255> usage: 0 enable <0-15> usage: option option option option option option option command usage:1 option 0 ping command usage:2 ethernet option usage: 0 domain option usage: 0 level option usage: 0 <0-7> option usage: 0 ma-name option usage: 0 name option usage: 0 <------------- output truncated -----------> show cpu-traffic-stats View the CPU traffic statistics.
Usage Information Traffic statistics are sorted on a per-interface basis; the interface receiving the most traffic is displayed first. All CPU and port information is displayed unless a specific port or CPU is specified. Traffic information is displayed for router ports only; not for management interfaces. The traffic statistics are collected only after the debug cpu-traffic-stats command is executed; not from the system bootup.
show environment View S5000 system component status (for example, temperature or voltage). S5000 Syntax Parameters show environment [all | fan | stack-unit unit-number | pem] all Enter the keyword all to view all components. fan Enter the keyword fan to view only information on fans. The output of this command is chassis dependent. stack-unit unit- Enter the keyword stack-unit followed by a number to view only information on a stack-unit. The range is 0 to 11.
Module 1 Module 2 Module 3 - - - - - - - - show inventory Display the S5000 switch type, components (including media), and FTOS version including hardware identification numbers and configured protocols. S5000 Syntax Parameters show inventory [media slot] media slot Defaults none Command Modes CONFIGURATION Command History Version 9.0(1.3) (OPTIONAL) Enter the keyword media followed by the stack ID of the stack member you want to display pluggable media inventory. Introduced on the S5000.
* - Management Unit Software Protocol Configured -------------------------------------------------------------DCBX LLDP SNMP FTOS# Example (media) FTOS#show inventory media Slot Port Type Media Serial Number F10Qualified ----------------------------------------------------------------------------1 0 Media not present or accessible 1 1 Media not present or accessible 1 2 Media not present or accessible 1 3 Media not present or accessible 1 4 UNKNOWN UNKNOWN PNJ2R98 Yes 1 5 SFP+ 10GBASE-CU7M APF10520050667 Y
show processes cpu Display CPU usage information based on processes running in an S5000. S5000 Syntax Parameters show processes cpu [management-unit 1-99 [details] | stack-unit unit-number | summary | ipc | memory [stack-unit 0-11]] management-unit 1-99 details Display all running processes (except sysdlp). Refer to Example (management-unit). stack-unit unit- (OPTIONAL) Enter the keyword stack-unit followed by a number. The range is 0 to 11.
0.02% 0.00% 0x0000015f 0.02% 0.01% 0x0000015d 0.02% 0.01% 0x00000075 0.02% 0.01% 0x00000015 0.02% 0.02% 0x000001a9 0.00% 0.01% 0x0000013f 0.00% 0.01% 0x00000148 0.00% 0.01% 0x000001ad 0.00% 0.01% 0x0000014c 0.00% 0.01% 0x00000190 0.00% 0.00% 0x0000019c 0.00% 0.00% 0x00000144 0.00% 0.00% 0x00000173 0.00% 0.00% 0x00000159 0.00% 0.00% 0x00000132 0.00% 0.00% 0x00000124 0.00% 0.00% 0x000000e8 0.00% 0.00% 0x000000e5 0.00% 0.00% 0x000000d8 0.00% 0.00% 0x00000091 0.00% 0.00% 0x0000004e 0.00% 0.00% 0x00000023 0.
time(ms) 0x42ada000 18821340 1882134 10000 5.00% 6.00% 4.97% 0 KP 0x42bd2000 0 0 0 0.00% 0.00% 0.00% 0 debugagt 0x42bb0000 20 2 10000 0.00% 0.00% 0.00% 0 F10StkMgr 0x42b8d000 106090 10609 10000 0.00% 0.00% 0.00% 0 lcMgr 0x42b68000 2470 247 10000 0.00% 0.00% 0.00% 0 dla 0x42b43000 48300 4830 10000 0.00% 0.00% 0.00% 0 sysAdmTsk 0x42b21000 263260 26326 10000 0.00% 0.00% 0.00% 0 timerMgr 0x42b00000 109090 10909 10000 0.00% 0.00% 0.00% 0 PM 0x42bf4000 19020 1902 10000 0.00% 0.00% 0.
show processes ipc flow-control Display the single window protocol queue (SWPQ) statistics. S5000 Syntax Parameters Defaults Command Modes Command History Usage Information show processes ipc flow-control [cp] cp (OPTIONAL) Enter the keyword cp to view the control processor’s SWPQ statistics. none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Example FTOS#show processes ipc flow-control Q Statistics on CP Processor TxProcess RxProcess Retr Msg Ack Aval ies 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 Cur Max Len Sent Rcvd Retra Retra ACL0 RTM0 0 0 0 10 10 ACL0 DIFFSERV0 0 0 0 10 10 ACL0 IGMP0 0 0 0 10 10 ACL0 PIM0 0 0 0 10 10 ARPMGR0 MRTM0 0 0 0 100 100 LACP0 IFMGR0 0 0 0 25 25 RTM0 OTM0 0 0 0 60 60 RTM0 OTM0 0 0 0 60 60 RTM0 ARPMGR0 0 0 0 136 136 IFMGR0 FEFD0 0 4 4 60 60 IFMGR0 EVENTTERMLOG0 0 1 1 60 60 IFMGR0 IPMGR0 0 5 5 60 60 IF
ACL0 IPMGR0 0 0 0 10 10 RTM0 IPMGR0 0 0 0 0 255 255 IFMGR0 RTM0 0 0 4 4 60 60 ARPMGR0 IPMGR0 0 0 0 0 100 100 !-------------------output truncated ---------------------! FTOS# 0 0 0 0 0 1 0 0 0 show memory View current memory usage on the S5000 switch. S5000 Syntax Parameters Command Modes Command History show memory [stack-unit unit-number] stack-unit unitnumber • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Enter the keyword stack-unit followed by a number. The range is 0 to 11.
Parameters Command Modes Command History Usage Information management-unit Enter the keyword management-unit for CPU memory usage of the stack management unit. stack unit 0–11 Enter the keyword stack unit followed by a stack unit number for which to display memory usage on the forwarding processor. all Enter the keyword all for detailed memory usage on all stack members. summary Enter the keyword summary for a brief summary of memory availability and usage on all stack members.
• Example (memory) In the output of this command, the memory size is equal to the size of the application processes plus the size of the system processes.
0 7176192 f10appioserv 188416 0 0 139264 !----------------output truncated ------------------! FTOS# Example (stackunit) FTOS#show processes memory stack-unit 1 Total: 2147483648, MaxUsed: 401354752, CurrentUsed: 401354752, CurrentFree: 1746128896 TaskName TotalAllocated TotalFreed MaxHeld CurrentHolding f10appioserv 188416 0 0 106496 ndpm 630784 0 0 5255168 f10appioserv 188416 0 0 139264 mlagmgr 114688 0 0 4861952 f10appioserv 188416 0 0 122880 vrrp 323584 0 0 5451776 f10appioserv 188416 0 0 139264 frrp
PID Process Frees Max 400 ndpm 4848 0 328 mlagmgr 0 0 351 vrrp 34008 0 445 frrp 99384 87650 345 xstp 38510 0 117 pim 62168 0 241 igmp 16564 18940 429 mrtm 73110 0 425 l2mgr 149076 189706 324 l2pm 231896 137618 219 arpm 38052 0 412 otm 968 0 371 dsm 18767012 172706 363 rtm 33128 62060 349 rip 528 0 343 lacp 71984 0 332 ipm1 34184 0 319 acl 66256 107052 FTOS# ResSize Current 5255168 4848 4861952 0 5451776 34008 5042176 54522 9207808 38510 5345280 62168 5365760 2464 11030528 73110 20856832 123450 5165056 7136
ifcb interface- Enter the keyword ifcb followed by the interface type and slot/port or number information. The valid port numbers for each interface type are listed below. type slot/port Defaults Command Modes Command History Example • For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60.
V6RAD 0 0x00000433 0x0000c000 0x00000000 0x00000000 Unidentified Client0 0x006e0002 0x00000000 0x00000000 0x00000000 0 LLDP 0 0x007f2433 0x0408c000 0x007f2433 0x0408c000 HYPERPULL 0 0x00000000 0x00000000 0x80001033 0x00100000 MLAGMGR 0 0x010683f0 0x01000000 0x60768030 0x01000000 FTOS# 0 95 90 40 show system Display the current status of all stack members or a specific member.
Module Type (SH) Num Ports Hot Pluggable : S5000-MOD-12xFC8ETH10-U - 12-port FC SFP+ : 12 : no -- Module 1 -Status Module Type Num Ports Hot Pluggable : : : : online S5000-MOD-12xETH10-F - 12-port 10GE SFP+ (SH) 12 no -- Module 2 -Status Module Type Num Ports Hot Pluggable : : : : online S5000-MOD-12xETH10-F - 12-port 10GE SFP+ (SH) 12 no -- Module 3 -Status Module Type Num Ports Hot Pluggable : : : : online S5000-MOD-12xETH10-F - 12-port 10GE SFP+ (SH) 12 no -- Power Supplies -Unit Bay Status Ty
-- Unit 5 -Unit Type Status Required Type : Member Unit : not present : - -- Unit 6 -Unit Type Status Required Type : Member Unit : not present : - -- Unit 7 -Unit Type Status Required Type : Member Unit : not present : - -- Unit 8 -Unit Type Status Required Type : Member Unit : not present : - -- Unit 9 -Unit Type Status Required Type : Member Unit : not present : - -- Unit 10 -Unit Type Status Required Type : Member Unit : not present : - -- Unit 11 -Unit Type Status Required Type : Member Un
---------------------------------------------------------0 0 up AC up 0 1 up AC up -- Fan Status -Unit Bay Tray Fan0 Speed Fan1 Speed Fan2 Speed Fan3 Speed Status ---------------------------------------------------------0 0 absent or down 0 1 up up 7200 up 7200 up 7200 up 7200 0 2 up up 7200 up 7200 up 7200 up 7200 0 3 absent or down Speed in RPM FTOS# Example (stackunit) FTOS#show system stack-unit 1 -- Unit 1 -Unit Type Status Next Boot Required Type Current Type Master priority Hardware Rev Num Ports Up
-- Power Supplies -Unit Bay Status Type FanStatus --------------------------------------------------------------------------1 0 up AC up 1 1 up AC up -- Fan Status -Unit Bay TrayStatus Fan0 Speed Fan1 Speed Fan2 Speed Fan3 Speed ------------------------------------------------------------------------------------1 absent or down 1 1 up up 12000 up 12000 up 12000 up 12000 1 2 up up 12000 up 12000 up 12000 up 12000 1 absent or down Speed in RPM FTOS# Related Commands show version – displays the FTOS version.
Command Modes Command History Usage Information EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Without the page or stack-unit option, the command output is continuous. Use Ctrl-z to interrupt the command output. The save option works with other filtering commands. This allows you to save specific information of a show command. The save entry must always be the last option.
filename (max 20 chars) ) FTOS# FTOS#show tech-support stack-unit 1 | save flash://ShowSave Start saving show command report ....... FTOS# FTOS#dir Directory of flash: 1 drwx 4096 Jan 01 1980 00:00:00 +00:00 . 2 drwx 2048 Apr 24 2013 17:26:56 +00:00 ..
Build Path: /sites/sjc/work/build/buildSpaces/build12/ E9-0-1/SW/SRC FTOS uptime is 5 day(s), 17 hour(s), 19 minute(s) System image file is "lnaidu-dcb" System Type: S5000 Control Processor: Freescale QorIQ P2020 with 2147483648 bytes of memory. 16M bytes of boot flash memory. 1 4-module, 4-port GE/TE/FG (SH) 12 Ten GigabitEthernet/IEEE 802.3 interface(s) 4 Forty GigabitEthernet/IEEE 802.3 interface(s) ----------- show clock ---------------------10:46:02.
telnet Connect through Telnet to a server. The Telnet client and server in FTOS support IPv4 and IPv6 connections. You can establish a Telnet session directly to the router or a connection can be initiated from the router. S5000 Syntax Parameters telnet {host | ip-address | ipv6-address | word /sourceinterface} host Enter the name of a server. ip-address Enter the IPv4 address in dotted decimal format of the server. ipv6-address Enter the IPv6 address in the x:x:x:x::x format in the /x format.
terminal length Configure the number of lines displayed on the terminal screen. S5000 Syntax Parameters Defaults Command Modes Command History terminal length screen-length screen-length Enter a number of lines. Entering zero causes the terminal to display without pausing. The range is 0 to 512. 24 lines • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. traceroute View a packet’s path to a specific device.
Defaults Command Modes Command History Usage Information • For a Management interface, enter the keyword managementethernet followed by slot/port numbers. The port is 0. • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128. • For a VLAN interface, enter the keyword vlan followed by a VLAN id number from 1 to 4094.
--------------------------------------------------------------Tracing the route to 10.11.197.31, 30 hops max, 40 byte packets --------------------------------------------------------------TTL Hostname Probe1 Probe2 Probe3 1 10.1.1.1 0000000 ms 0000000 ms 0000000 ms FTOS# Example (IPv6) FTOS#traceroute 100::1 Type Ctrl-C to abort.
write Copy the current configuration to either the startup-configuration file or the terminal. S5000 Syntax Parameters Command Modes Command History write {memory | terminal} memory Enter the keyword memory to copy the current running configuration to the startup configuration file. This command is similar to the copy running-config startup-config command. terminal Enter the keyword terminal to copy the current running configuration to the terminal.
5 802.1ag 802.1ag issupported on the S5000 switch. ccm disable Disable continuity check message (CCM). S5000 Syntax ccm disable Enter no ccm disable to enable CCM. Defaults Disabled Command Modes ECFM DOMAIN Command History Version 9.0(1.3) Introduced on the S5000. ccm transmit-interval Configure the transmit interval (mandatory). The interval specified applies to all maintenance endpoints (MEPs) in the domain.
clear ethernet cfm traceroute-cache Delete all link trace cache entries. S5000 Syntax clear ethernet cfm traceroute-cache Defaults none Command Modes ECFM DOMAIN Command History Version 9.0(1.3) Introduced on the S5000. database hold-time Set the amount of time that data from a missing MEP is kept in the continuity check database. S5000 Syntax Parameters database hold-time minutes minutes Defaults 100 minutes Command Modes ECFM DOMAIN Command History Version 9.0(1.3) Enter a hold-time.
domain Create the maintenance domain. S5000 Syntax Parameters domain name md-level number name Name the maintenance domain. md-level number Enter a maintenance domain level. The range is 0 to 7. Defaults none Command Modes ETHERNET CFM Command History Version 9.0(1.3) Introduced on the S5000. ethernet cfm Spawn the CFM process. No CFM configuration is allowed until the CFM process is spawned.
the internal forwarding path is effectively the switch fabric and forwarding engine. • domain [name | level] Enter the keyword domain and then enter the domain name or domain level. ma-name name Enter the keyword ma-name and then enter the name of the maintenance association. mepid mep-id Enter an MEP ID. The range is 1 to 8191. Defaults none Command Modes INTERFACE Command History Down-MEP: monitors the forwarding path external to another bridge. Version 9.0(1.3) Introduced on the S5000.
mep cross-check Enable cross-checking for a MEP. S5000 Syntax Parameters mep cross-check mep-id mep-id Defaults none Command Modes ECFM DOMAIN Command History Version 9.0(1.3) Enter the MEP ID. The range is 1 to 8191. Introduced on the S5000. mep cross-check enable Enable cross-checking. S5000 Syntax Parameters mep cross-check enable {port | vlan-id} port Down service with no VLAN association. vlan-id Enter the VLAN to apply the cross-check.
Parameters start-delay Enter a start-delay in seconds. The range is 3 to 100 seconds. number Defaults 3 ccms Command Modes ETHERNET CFM Command History Version 9.0(1.3) Introduced on the S5000. ping ethernet Send a loopback message. S5000 Syntax Parameters ping ethernet domain [name l level] ma-name ma-name remote {dest-mep-id | mac-addr mac-address} source {src-mep-id | port interface} name | level Enter the domain name or level.
service Create maintenance association. S5000 Syntax Parameters service name vlan vlan-id name Enter a maintenance association name. vlan vlan-id Enter the keyword vlan and then enter the VLAN ID. The range is 1 to 4094. Defaults none Command Modes ECFM DOMAIN Command History Version 9.0(1.3) Introduced on the S5000. show ethernet cfm domain Display maintenance domain information.
MA-Name Your_MA VLAN 100 CC-Int 10s X-CHK Status enabled show ethernet cfm maintenance-points local Display configured MEPs and MIPs. S5000 Syntax Parameters show ethernet cfm maintenance-points local [mep | mip] mep Enter the keyword mep to display configured MEPs. mip Enter the keyword mip to display configured MIPs. Defaults none Command Modes EXEC Privilege Command History Example Version 9.0(1.3) Introduced on the S5000.
expired Enter the keyword expired to view MEP entries that have expired due to connectivity failure. waiting Enter the keyword waiting to display MEP entries waiting for response. Defaults none Command Modes EXEC Privilege Command History Example Version 9.0(1.3) Introduced on the S5000.
Parameters interface type Enter the keyword interface and then enter the interface type. slot/port Enter the slot and port numbers for the port. Defaults none Command Modes EXEC Privilege Command History Example Version 9.0(1.3) Introduced on the S5000.
Example FTOS# show ethernet cfm statistics Domain Name: Customer Domain Level: 7 MA Name: My_MA MPID: 300 CCMs: Transmitted: LTRs: Unexpected Rcvd: LBRs: Received: Received Bad MSDU: Transmitted: 1503 RcvdSeqErrors: 0 0 0 0 0 Rcvd Out Of Order: 0 show ethernet cfm traceroute-cache Display the link trace cache. S5000 Syntax show ethernet cfm traceroute-cache Defaults none Command Modes EXEC Privilege Command History Example Version 9.0(1.3) Introduced on the S5000.
traceroute cache hold-time Set the amount of time a trace result is cached. S5000 Syntax Parameters traceroute cache hold-time minutes minutes Defaults 100 minutes Command Modes ETHERNET CFM Command History Version 9.0(1.3) Enter a hold-time. The range is 10 to 65535 minutes. Introduced on the S5000. traceroute cache size Set the size of the link trace cache.
Parameters domain name | level ma-name ma- name Enter the keyword ma-name and then enter the maintenance association name. mepid mep-id Enter the MEP ID that is the trace target. mac-addr macaddress Enter the MAC address of the trace target. Defaults none Command Modes EXEC Privilege Command History Enter the keyword domain and then enter the domain name or level. Version 9.0(1.3) Introduced on the S5000.
802.1X 6 An authentication server must authenticate a client connected to an 802.1X switch port. Until the authentication, only extensible authentication protocol over LAN (EAPOL) traffic is allowed through the port to which a client is connected. After authentication is successful, normal traffic passes through the port. FTOS supports remote authentication dial-in service (RADIUS) and active directory environments using 802.1X Port Authentication.
debug dot1x Display 802.1X debugging information. S5000 Syntax Parameters debug dot1x [all | auth-pae-fsm | backend-fsm | eapol-pdu] [interface interface] all Enable all 802.1X debug messages. auth-pae-fsm Enable authentication PAE FSM debug messages. backend-fsm Enable backend FSM debug messages. eapol-pdu Enable the EAPOL frame trace and related debug messages. interface Restricts the debugging information to an interface.
Usage Information If the host responds to 802.1X with an incorrect login/password, the login fails. The switch attempts to authenticate again until the maximum attempts configured is reached. If the authentication fails after all allowed attempts, the interface moves to the authentication failed VLAN. After the authentication VLAN is assigned, the port-state must be toggled to restart authentication. Authentication occurs at the next reauthentication interval (dot1x reauthentication).
• Enable MAC authentication bypass on the port (the dot1x mac-auth-bypass command). In MAB-only authentication mode, a port authenticates using the host MAC address even though 802.1xauthentication is enabled. If the MAB-only authentication fails, the host is placed in the guest VLAN (if configured). To disable MAB-only authentication on a port, enter the no dot1x auth-type mabonly command. Related Commands dot1x mac-auth-bypass dot1x authentication (Configuration) Enable dot1x globally.
Related Commands dot1x authentication (Configuration) dot1x guest-vlan Configure a guest VLAN for limited access users or for devices that are not 802.1X capable. S5000 Syntax dot1x guest-vlan vlan-id To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command. Parameters vlan-id Enter the VLAN Identifier. The range is 1 to 4094. Defaults Not configured. Command Modes CONFIGURATION (conf-if-interface-slot/port) Command History Usage Information Version 9.0(1.
dot1x host-mode Enable single-host or multi-host authentication. S5000 Syntax Parameters dot1x host-mode {single-host | multi-host | multi-auth} single-host Enable single-host authentication. multi-host Enable multi-host authentication. multi-auth Enable multi-supplicant authentication. Defaults single-host Command Modes INTERFACE Command History Usage Information Related Commands Version 9.0(1.3) Introduced on the S5000.
Related Commands dot1x auth-type mab-only dot1x max-eap-req Configure the maximum number of times an extensive authentication protocol (EAP) request is transmitted before the session times out. S5000 Syntax dot1x max-eap-req number To return to the default, use the no dot1x max-eap-req command. Parameters number Defaults 2 Command Modes INTERFACE Command History Version 9.0(1.3) Enter the number of times an EAP request is transmitted before a session time-out. The range is 1 to 10.
dot1x port-control Enable port control on an interface. S5000 Syntax Parameters dot1x port-control {force-authorized | auto | forceunauthorized} force-authorized Enter the keywords force-authorized to forcibly authorize a port. auto Enter the keyword auto to authorize a port based on the 802.1X operation result. forceunauthorized Enter the keywords force-unauthorized to forcibly deauthorize a port. Defaults none Command Modes Auto Command History Usage Information Version 9.0(1.
dot1x reauthentication Enable periodic reauthentication of the client. S5000 Syntax dot1x reauthentication [interval seconds] To disable periodic reauthentication, use the no dot1x reauthentication command. Parameters interval seconds Defaults 3600 seconds (1 hour) Command Modes INTERFACE Command History Version 9.0(1.3) (Optional) Enter the keyword interval followed by the interval time, in seconds, after which reauthentication is initiated. The range is 1 to 31536000 (one year).
dot1x server-timeout Configure the amount of time after which exchanges with the server time-out. S5000 Syntax dot1x server-timeout seconds To return to the default, use the no dot1x server-timeout command. Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Enter a time-out value in seconds. The range is 1 to 300, where 300 is implementation dependant. The default is 30. Introduced on the S5000.
Defaults 30 seconds Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000. dot1x tx-period Configure the intervals at which EAPOL PDUs the Authenticator PAE transmits. S5000 Syntax dot1x tx-period seconds To return to the default, use the no dot1x tx-period command. Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Version 9.0(1.3) Enter the interval time, in seconds, that EAPOL PDUs are transmitted. The range is 1 to 65535.
mac-address Defaults Command Modes Command History Usage Information (Optional) MAC address of an 802.1X-authenticated supplicant. none • EXEC • EXEC privilege Version 9.0(1.3) Introduced on the S5000. Enter a supplicant’s MAC address using the mac-address option to display CoS mapping information only for the specified supplicant. You can display the CoS mapping information applied to traffic from authenticated supplicants on 802.
show dot1x interface Display the 802.1X configuration of an interface. S5000 Syntax Parameters show dot1x interface type slot/port [mac-address mac-address] interface type slot/port mac-address Defaults Command Modes Command History Enter the interface keyword followed by the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
Auth PAE State: Backend State: FTOS# Example (macaddress) Initialize Initialize FTOS#show dot1x interface te 2/21 mac-address 00:00:01:00:07:00 802.
7 Boot User Mode All commands in this chapter are available in Boot User mode on the S5000. To access this mode, press any key when the following line appears on the console during a system boot: Hit any key to stop autoboot: You enter Boot User mode immediately, as indicated by the BOOT_USER# prompt. NOTE: You cannot use the Tab key to complete commands in this mode. boot change Change the boot parameters in the operating system.
Command Modes Command History BOOT USER Version 9.0(1.3) Introduced on the S5000. boot messages enable Enable the NetBSD boot log. By default, the NetBSD log is disabled. S5000 Syntax boot messages enable Command Modes BOOT USER Command History Usage Notes Version 9.0(1.3) Introduced on the S5000. Dell recommends that the NetBSD log remain disabled on the S5000. Use the boot messages enable command only if you need to debug S5000 operation.
boot write net config retries Set the number of retries used for a network boot configuration failure. S5000 Syntax boot write net config retries number Command Modes BOOT USER Command History Example Version 9.0(1.3) Introduced on the S5000. BOOT_USER# boot write net config retries 2 Updated number of Network Boot Config retries to 2. boot zero Clear the primary, secondary, or default boot parameters in the operating system.
enable Set the access privilege level. S5000 Syntax enable {user | admin} Command Modes BOOT USER Command History Version 9.0(1.3) Introduced on the S5000. help Display the Help menu. S5000 Syntax help Command Modes BOOT USER Command History Example 168 Version 9.0(1.3) Introduced on the S5000. BOOT_USER # help ***** Dell Force10 Boot Interface Help Information ***** Current access level: USER LEVEL Use "syntax help" for more information on syntax.
set the management port ip address and mask interface management port config 1000m set the management port at 1000m interface management port config 100m set the management port at 100m interface management port config 10m set the management port at 10m interface management port config auto-negotiate set the management port to auto negotiate interface management port config full-duplex set the management port to full-duplex interface management port config half-duplex set the management port to half-duplex
ignore startup config Ignore the system startup configuration. S5000 Syntax ignore startup config Command Modes BOOT USER Command History Version 9.0(1.3) Introduced on the S5000. interface management ethernet ip address Set the IP address and mask of the management port. S5000 Syntax interface management ethernet ip address ip-address/mask Command Modes BOOT USER Command History Version 9.0(1.3) Introduced on the S5000.
full-duplex Set the management port to transmit in full-duplex mode. half-duplex Set the management port to transmit in half-duplex mode. Default The management port transmits at 100 Mbps in full-duplex mode. Command Modes BOOT USER Command History Version 9.0(1.3) Introduced on the S5000. no default-gateway Clear the IP address of the default gateway. S5000 Syntax no default—gateway Command Modes BOOT USER Command History Version 9.0(1.3) Introduced on the S5000.
reload Reload the S5000 switch. S5000 Syntax reload Command Modes BOOT USER Command History Version 9.0(1.3) Introduced on the S5000. show boot blc Display the current boot-loop counter value. S5000 Syntax show boot blc Command Modes BOOT USER Command History Example Version 9.0(1.3) Introduced on the S5000. BOOT_USER # show boot blc Boot Loop Counter : 3 show boot selection Display the currently selected bootflash partition to be used for a ROM bootstrap operation.
Next ROM bootstrap set to occur from Bootflash partition A. Last ROM bootstrap occurred from Bootflash partition B. show bootflash Display information about boot flash memory. S5000 Syntax show bootflash Command Modes BOOT USER Command History Example Version 9.0(1.3) Introduced on the S5000. BOOT_USER # show bootflash GENERAL BOOTFLASH INFO ====================== Bootflash Partition A: Dell Force10 Networks System Boot Official S5000_LP_IMG_BOOT_LOADER, BSP Release 1.3.1.
Example BOOT_USER # show bootvar PRIMARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== boot device : flash file name : systema (FTOS system://A Partition) SECONDARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== boot device : flash file name : systemb (FTOS system://B Partition) DEFAULT OPERATING SYSTEM BOOT PARAMETERS: ======================================== boot device : flash file name : systema (FTOS system://A Partition) BOOT_USER # show defau
Command History Example Version 9.0(1.3) Introduced on the S5000. BOOT_USER # show interface management ethernet Management ethernet IP address: 10.11.210.35/16 show interface management port config Display configuration information about the management port. S5000 Syntax show interface management port config Command Modes BOOT USER Command History Example Version 9.0(1.3) Introduced on the S5000.
Access Control Lists (ACL) 8 Access control lists (ACLs) are supported on the S5000 switch.
Defaults Command Modes Command History Not enabled. • CONFIGURATION-STANDARD-ACCESS-LIST • CONFIGURATION-EXTENDED-ACCESS-LIST • CONFIGURATION-MAC ACCESS LIST-STANDARD • CONFIGURATION-MAC ACCESS LIST-EXTENDED Version 9.0(1.3) Introduced on the S5000. remark Enter a description for an ACL entry. S5000 Syntax Parameters remark [remark-number] [description] remark-number Enter the remark number. The range is 0 to 4294967290.
! ip access-list standard test remark 5 Permit traffic from XYZ Inc. seq 5 permit 1.1.1.0/24 remark 10 Deny rest of the traffic seq 10 Deny any FTOS(config-std-nacl)# Related Commands show config – displays the current ACL configuration. show config Display the current ACL configuration.
access-class Apply a standard ACL to a terminal line. S5000 Syntax Parameters access-class access-list-name access-list-name Defaults Not configured. Command Modes LINE Command History Version 9.0(1.3) Enter the name of a configured Standard ACL, up to 140 characters. Introduced on the S5000. clear counters ip access-group Erase all counters maintained for access lists.
in Enter the keyword in to apply the ACL to incoming traffic. implicit-permit (OPTIONAL) Enter the keyword implicit-permit to change the default action of the ACL from implicit-deny to implicit-permit (that is, if the traffic does not match the filters in the ACL, the traffic is permitted instead of dropped). vlan vlan-id (OPTIONAL) Enter the keyword vlan followed by the ID numbers of the VLANs. Defaults Not enabled. Command Modes INTERFACE Command History Usage Information Version 9.0(1.
in | out Command Modes Command History • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60. • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128. • For a VLAN interface, enter the keyword vlan followed by a VLAN id number from 1 to 4094. Identify whether ACL is applied on the ingress or egress side. EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Usage Information Example Field Description “Extended IP...” Displays the name of the IP ACL. “seq 5...” Displays the filter. If the keywords count or byte were configured in the filter, the number of packets or bytes processed by the filter is displayed at the end of the line. “order 4” Displays the QoS order of priority for the ACL entry. FTOS#show ip accounting access FILTER1 interface te 1/6 Extended IP access list FILTER1 seq 5 deny ip any 191.1.0.
any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address only. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values.
permit – configures a permit filter. ip access-list standard Create a standard IP access list (IP ACL) to filter based on IP address. S5000 Syntax Parameters ip access-list standard access-list-name access-list-name Enter a string up to 140 characters long as the ACL name. Defaults All IP access lists contain an implicit “deny any,” that is, if no match occurs, the packet is dropped. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000.
Parameters source Enter the IP address in dotted decimal format of the network from which the packet was sent. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address or hostname.
NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Related Commands deny – Assigns a IP ACL filter to deny IP packets. ip access-list standard – creates a standard ACL. resequence access-list Re-assign sequence numbers to entries of an existing access-list.
resequence prefix-list ipv4 Re-assign sequence numbers to entries of an existing prefix list. S5000 Syntax Parameters Defaults Command Modes Command History resequence prefix-list ipv4 {prefix-list-name StartingSeqNum Step-to-increment} prefix-list-name Enter the name of the configured prefix list, up to 140 characters long. StartingSeqNum Enter the starting sequence number to resequence. The range is 0 to 65535. Step-toIncrement Enter the step to increment the sequence number.
source Enter a IP address in dotted decimal format of the network from which the packet was received. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address or hostname.
• If sequence-number is not configured, the rules with the same order value are ordered according to their configuration order. • If sequence-number is configured, the sequence-number is used as a tie breaker for rules with the same order. When you use the log option, the CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details.
source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or noncontiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent.
NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Related Commands deny tcp – assigns a filter to deny TCP packets. deny udp – assigns a filter to deny UDP packets. ip access-list extended – creates an extended ACL. deny tcp Configure a filter that drops transmission control protocol (TCP) packets meeting the filter criteria.
operator port port (OPTIONAL) Enter one of the following logical operand: • eq = equal to • neq = not equal to • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port command) Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is 0 to 65535.
Usage Information The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the Quality of Service chapter of the FTOS Configuration Guide. The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to the Port Monitoring chapter. When you use the log option, the CP processor logs details the packets that match.
[operator port [port]] [count [byte]] [order] [monitor] [fragments] To remove this filter, you have two choices: • • Parameters Use the no seq sequence-number command if you know the filter’s sequence number. Use the no deny udp {source mask | any | host ip-address} {destination mask | any | host ip-address} command. source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. For more information, refer to the section “Flow-based Monitoring” in the Port Monitoring chapter of the FTOS Configuration Guide. fragments Enter the keyword fragments to use ACLs to control packet fragments. Defaults Not configured.
Related Commands deny – assigns a filter to deny IP traffic. deny tcp – assigns a filter to deny TCP traffic. ip access-list extended Name (or select) an extended IP access list (IP ACL) based on IP addresses or protocols. S5000 Syntax ip access-list extended access-list-name To delete an access list, use the no ip access-list extended access-listname command. Parameters access-list-name Enter a string up to 140 characters long as the access list name.
• Parameters Use the no deny {ip | ip-protocol-number} {source mask | any | host ip-address} {destination mask | any | host ipaddress} command. ip Enter the keyword ip to configure a generic IP access list. The keyword ip specifies that the access list will permit all IP protocols. ip-protocolnumber Enter a number from 0 to 255 to permit based on the protocol identified in the IP protocol header. The range is 0 to 128.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the “Quality of Service” chapter of the FTOS Configuration Guide. When you use the log option, the CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details.
host ip-address Enter the keyword host and then enter the IP address to specify a host IP address. bit Enter a flag or combination of bits: • ack: acknowledgement field • fin: finish (no more data from the user) • psh: push function • rst: reset the connection • syn: synchronize sequence numbers • urg: urgent field dscp Enter the keyword dscp to deny a packet based on the DSCP value. The range is 0 to 63.
monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. NOTE: For more information, refer to the Flow-based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide. fragments Enter the keyword fragments to use ACLs to control packet fragments. Defaults Not configured.
Total Ports: 1024 Related Commands ip access-list extended – creates an extended ACL. permit – assigns a permit filter for IP packets. permit udp – assigns a permit filter for UDP packets. permit udp Configure a filter to pass UDP packets meeting the filter criteria.
port port Enter the application layer port number. Enter two port numbers if you are using the range logical operand. The range is 0 to 65535. destination Enter the IP address of the network or host to which the packets are sent. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
Example An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
Command History Version 9.0(1.3) Introduced on the S5000. Usage Information When all sequence numbers have been exhausted, this feature permits re-assigning a new sequence number to entries of an existing access-list. Related Commands resequence prefix-list ipv4 – resequences a prefix list. resequence prefix-list ipv4 Re-assign sequence numbers to entries of an existing prefix list.
seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter. S5000 Syntax Parameters seq sequence-number {deny | permit} {ip-protocol-number | icmp | ip | tcp | udp} {source mask | any | host ip-address} {destination mask | any | host ip-address} [operator port [port]] [count [byte]] [dscp value] [order] [monitor] [fragments] sequencenumber Enter a number from 0 to 4294967290. For the S4810, the range is 0 to 65534.
port port (OPTIONAL) Enter the application layer port number. Enter two port numbers if you are using the range logical operand. The range is 0 to 65535. The following list includes some common TCP port numbers: • 23 = Telnet • 20 and 21 = FTP • 25 = SMTP • 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent. message-type (OPTIONAL) Enter an ICMP message type, either with the type (and code, if necessary) numbers or with the name of the message type.
• The seq sequence-number command is applicable only in an ACL group. • The order option works across ACL groups that have been applied on an interface via the QoS policy framework. • The order option takes precedence over seq sequence-number. • If sequence-number is not configured, the rules with the same order value are ordered according to their configuration order. • If sequence-number is configured, the sequence-number is used as a tie breaker for rules with the same order.
mac access-group Apply a MAC ACL to traffic entering or exiting an interface. S5000 Syntax Parameters mac access-group access-list-name {in [vlan vlan-range]} access-list-name Enter the name of a configured MAC access list, up to 140 characters. vlan vlan-range (OPTIONAL) Enter the keyword vlan and then enter a range of VLANs. The range is 1 to 4094. NOTE: This option is available only with the keywordin option. in Defaults none Command Modes INTERFACE Command History Version 9.0(1.
in | out Command Modes Command History • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60. • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128. Identify whether ACL is applied on ingress or egress side. EXEC Privilege Version 9.0(1.3) Introduced on the S5000. show mac accounting access-list Display MAC access list configurations and counters (if configured).
Example FTOS#show mac accounting access-list mac-ext interface po 1 Extended mac access-list mac-ext on TenGigabitEthernet 0/11 seq 5 permit host 00:00:00:00:00:11 host 00:00:00:00:00:19 count (393794576 packets) seq 10 deny host 00:00:00:00:00:21 host 00:00:00:00:00:29 count (89076777 packets) seq 15 deny host 00:00:00:00:00:31 host 00:00:00:00:00:39 count (0 packets) seq 20 deny host 00:00:00:00:00:41 host 00:00:00:00:00:49 count (0 packets) seq 25 permit any any count (0 packets) Extended mac access-lis
mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter.
Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. Usage Information FTOS supports one ingress and one egress MAC ACL per interface.
byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. NOTE: For more information, refer to the Flow-based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide. Defaults Not configured.
mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes.
deny Configure a filter to drop packets that match the filter criteria. S5000 Syntax deny {any | host mac-address | mac-source-address mac-sourceaddress-mask} {any | host mac-address | mac-destination-address mac-destination-address-mask} [ethertype-operator] [count [byte]] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. For more information, refer to the “Flow-based Monitoring” section in the Port Monitoring chapter of the FTOS Configuration Guide. Defaults Not configured. Command Modes CONFIGURATION-MAC ACCESS LIST-EXTENDED Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
FTOS(config-ext-macl)#seq 30 permit any any ev2 eq 86dd count bytes FTOS(config-ext-macl)#seq 40 permit any any count bytes FTOS(config-ext-macl)#exit FTOS(conf)#do show mac accounting access-list snickers interface g0/47 in Extended mac access-list snickers on TenGigabitEthernet 0/47 seq 10 permit any any ev2 eq 800 count bytes (559851886 packets 191402152148 bytes) seq 20 permit any any ev2 eq 806 count bytes (74481486 packets 5031686754 bytes) seq 30 permit any any ev2 eq 86dd count bytes (7751519 packet
mac-destinationaddress Enter the destination MAC address and mask in nn:nn:nn:nn:nn:nn format. mac-destinationaddress-mask Specify which bits in the MAC address must be matched. ethertype operator (OPTIONAL) To filter based on protocol type, enter one of the following Ethertypes: The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly.
seq Configure a filter with a specific sequence number. S5000 Syntax Parameters seq sequence-number {deny | permit} {any | host mac-address | mac-source-address mac-source-address-mask} {any | host macaddress | mac-destination-address mac-destination-address-mask} [ethertype operator] [count [byte]] [monitor] sequencenumber Enter a number as the filter sequence number. The range is zero (0) to 65535. deny Enter the keyword deny to drop any traffic matching this filter.
NOTE: For more information, refer to the Flow-based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide. Defaults Not configured. Command Modes CONFIGURATION-MAC ACCESS LIST-STANDARD Command History Usage Information Version 9.0(1.3) Introduced on the S5000. When you use the log option, the CP processor logs details about the packets that match.
Related Commands ip prefix-list — configures a prefix list. deny Configure a filter to drop packets meeting the criteria specified. S5000 Syntax Parameters deny ip-prefix [ge min-prefix-length] [le max-prefix-length] ip-prefix Specify an IP prefix in the network/length format. For example, 35.0.0.0/ 8 means match the first 8 bits of address 35.0.0.0. ge min-prefix- length (OPTIONAL) Enter the keyword ge and then enter the minimum prefix length, which is a number from zero (0) to 32.
Command Modes Command History Usage Information Related Commands CONFIGURATION Version 9.0(1.3) Introduced on the S5000. Prefix lists redistribute OSPF and RIP routes meeting specific criteria. show ip route list – displays IP routes in an IP prefix list. show ip prefix-list summary – displays a summary of the configured prefix lists. permit Configure a filter that passes packets meeting the criteria specified.
seq Assign a sequence number to a deny or permit filter in a prefix list while configuring the filter. S5000 Syntax Parameters seq sequence-number {deny | permit} {any} | [ip-prefix /nn {ge min-prefix-length} {le max-prefix-length}] | [bitmask number] sequencenumber Enter a number. The range is 1 to 4294967294. deny Enter the keyword deny to configure a filter to drop packets meeting this condition.. permit Enter the keyword permit to configure a filter to forward packets meeting this condition.
show config Display the current PREFIX-LIST configurations. S5000 Syntax show config Command Modes PREFIX-LIST Command History Example Version 9.0(1.3) Introduced on the S5000. FTOS(conf-nprefixl)#show config ! ip prefix-list snickers FTOS(conf-nprefixl)# show ip prefix-list detail Display details of the configured prefix lists. S5000 Syntax Parameters Command Modes Command History Example show ip prefix-list detail [prefix-name] prefix-name • EXEC • EXEC Privilege Version 9.0(1.
seq 10 permit 0.0.0.0/0 le 32 (hit count: 132) FTOS# show ip prefix-list summary Display a summary of the configured prefix lists. S5000 Syntax Parameters Command Modes Command History Example show ip prefix-list summary [prefix-name] prefix-name • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Enter a text string as the name of the prefix list, up to 140 characters. Introduced on the S5000.
continue Configure a route-map to go to a route-map entry with a higher sequence number. S5000 Syntax Parameters continue [sequence-number] sequencenumber Defaults Not configured. Command Modes ROUTE-MAP Command History Usage Information Version 9.0(1.3) (OPTIONAL) Enter the route map sequence number. The range is 1 to 65535. Introduced on the S5000. The continue feature allows movement from one route-map entry to a specific route-map entry (the sequence number).
description Add a description to this route map. S5000 Syntax Parameters description {description} description Defaults none Command Modes ROUTE-MAP Command History Related Commands Version 9.0(1.3) Enter a description to identify the route map (80 characters maximum). Introduced on the S5000. route-map – enables a route map. match as-path Configure a filter to match routes that have a certain AS number in their BGP path.
match community Configure a filter to match routes that have a certain COMMUNITY attribute in their BGP path. S5000 Syntax Parameters match community community-list-name [exact] community-listname Enter the name of a configured community list. exact (OPTIONAL) Enter the keywords exact to process only those routes with this community list name. Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version 9.0(1.3) Introduced on the S5000.
Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version 9.0(1.3) Introduced on the S5000. match ip address – redistributes routes that match an IP address. match ip next-hop – redistributes routes that match the next-hop IP address. match ip route-source – redistributes routes that match routes advertised by other routers. match metric – redistributes routes that match a specific metric. match route-type – redistributes routes that match a route type.
match ip next-hop Configure a filter to match based on the next-hop IP addresses specified in an IP access list or IP prefix list. S5000 Syntax Parameters match ip next-hop {access-list | prefix-list prefix-list-name} access-list-name Enter the name of a configured IP access list, up to 140 characters. prefix-list prefixlist-name Enter the keywords prefix-list and then enter the name of configured prefix list, up 10 140 characters. Defaults Not configured.
Related Commands match interface – redistributes routes that match the next-hop interface. match ip address – redistributes routes that match an IP address. match ip next-hop – redistributes routes that match the next-hop IP address. match metric – redistributes routes that match a specific metric. match route-type – redistributes routes that match a route type. match tag – redistributes routes that match a specific tag. match metric Configure a filter to match on a specified value.
Parameters external [type-1| type-2] Enter the keyword external and then enter either type-1 or type-2 to match only on OSPF Type 1 routes or OSPF Type 2 routes. internal Enter the keyword internal to match only on routes generated within OSPF areas. level-1 Enter the keyword level-1 to match IS-IS Level 1 routes. level-2 Enter the keyword level-2 to match IS-IS Level 2 routes. local Enter the keyword local to match only on routes generated within the switch. Defaults Not configured.
match ip route-source – redistributes routes that match routes advertised by other routers. match metric – redistributes routes that match a specific metric. match route-type – redistributes routes that match a route type. route-map Enable a route map statement and configure its action and sequence number. This command also places you in ROUTEMAP mode.
set as-path Configure a filter to modify the AS path for border gateway protocol (BGP) routes. S5000 Syntax Parameters set as-path prepend as-number [... as-number] prepend asnumber Defaults Not configured. Command Modes ROUTE-MAP Command History Usage Information Related Commands Version 9.0(1.3) Enter the keyword prepend and then enter up to eight AS numbers to be inserted into the BGP path information. The range is 1 to 65535. Introduced on the S5000.
set tag – specify the tag assigned to redistributed routes. set comm-list delete Configure a filter to remove the specified community list from the BGP route’s COMMUNITY attribute. S5000 Syntax Parameters set comm-list community-list-name delete community-listname Defaults Not configured. Command Modes ROUTE-MAP Command History Usage Information Version 9.0(1.3) Enter the name of an established Community list, up to 140 characters. Introduced on the S5000.
Parameters communitynumber Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system. local-AS Enter the keywords local-AS to drop all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED. All routes with the NO_EXPORT_SUBCONFED (0xFFFFFF03) community attribute must not be advertised to external BGP peers.
Parameters backbone Enter the keyword backbone to redistribute matched routes to the OSPF backbone area (area 0.0.0.0). level-1 Enter the keyword level-1 to redistribute matched routes to IS-IS Level 1. level-1-2 Enter the keyword level-1-2 to redistribute matched routes to ISIS Level 1 and Level 2. level-2 Enter the keyword level-2 to redistribute matched routes to IS-IS Level 2. stub-area Enter the keyword stub to redistributed matched routes to OSPF stub areas. Defaults Not configured.
Related Commands bgp default local-preference – changes the default LOCAL_PREF attribute for all routes. set metric Configure a filter to assign a new metric to redistributed routes. S5000 Syntax set metric [+ | -] metric-value To delete a setting, enter no set metric. Parameters + (OPTIONAL) Enter + to add a metric-value to the redistributed routes. - (OPTIONAL) Enter - to subtract a metric-value from the redistributed routes. metric-value Enter a number as the new metric value.
external Enter the keyword external to assign the IS-IS external metric. type-1 Enter the keyword type-1 to assign the OSPF Type 1 metric. type-2 Enter the keyword type-2 to assign the OSPF Type 2 metric. Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version 9.0(1.3) Introduced on the S5000. set automatic-tag – computes the tag value of the route. set level – specifies the OSPF area for route redistribution.
set origin Configure a filter to manipulate the BGP ORIGIN attribute. S5000 Syntax Parameters set origin {igp | egp | incomplete} egp Enter the keyword egp to set routes originating from outside the local AS. igp Enter the keyword igp to set routes originating within the same AS. incomplete Enter the keyword incomplete to set routes with incomplete routing information. Defaults Not configured. Command Modes ROUTE-MAP Command History Version 9.0(1.3) Introduced on the S5000.
set weight Configure a filter to add a non-RFC compliant attribute to the BGP route to assist with route selection. S5000 Syntax Parameters set weight weight weight Enter a number as the weight to be used by the route meeting the route map specification. The range is 0 to 65535. The default is routeroriginated = 32768 and all other routes = 0. When there are multiple routes to the same destination, routes with a higher weight are preferred.
show route-map Display the current route map configurations. S5000 Syntax Parameters Command Modes Command History show route-map [map-name] map-name • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Enter the name of a configured route map, up to 140 characters. Introduced on the S5000. Example FTOS#show route-map route-map firpo, permit, sequence 10 Match clauses: Set clauses: tag 34 FTOS# Related Commands route-map – configures a route map.
Command History Version 9.0(1.3) Introduced on the S5000. Usage Information Use the match as-path or neighbor filter-list commands to apply the AS-PATH ACL to BGP routes. Example FTOS(conf)#ip as-path access-list TestPath FTOS(config-as-path)# Related Commands match as-path – matches on routes contain a specific AS-PATH. neighbor filter-list – configures filter based on AS-PATH information. show ip as-path-access-lists Display the all AS-PATH access lists configured on the S5000.
ip community-list Enter COMMUNITY-LIST mode and create an IP community-list for BGP. S5000 Syntax ip community-list comm-list-name To delete a community-list, use the no ip community-list comm-list-name command. Parameters Command Modes Command History Example comm-list-name Enter a text string as the name of the community-list, up to 140 characters. CONFIGURATION Version 9.0(1.3) Introduced on the S5000.
deny deny deny deny deny deny deny deny deny deny FTOS# 246 703:112 704:112 705:112 14551:112 701:666 702:666 703:666 704:666 705:666 14551:666
Bidirectional Forwarding Detection (BFD) 9 Bidirectional forwarding detection (BFD) is a detection protocol that provides fast forwarding path failure detection. FTOS is based on the standards specified in the IETF Draft draft-ietf-bfd-base-03 and supports BFD on all Layer 3 physical interfaces including virtual local area network (VLAN) interfaces, and port-channels. BFD is supported on the S5000.
ROUTER ISIS Command History Usage Information Related Commands Version 9.0(1.3) Introduced BFD for BGP on the S5000. All neighbors inherit the timer values configured with the bfd all-neighbors command except in the following cases: • Timer values configured with the isis bfd all-neighbors command in INTERFACE mode override timer values configured with the bfd all-neighbors command.
bfd enable (Interface) Enable BFD on an interface. S5000 Syntax bfd enable Defaults BFD is enabled on all interfaces when you enable BFD from CONFIGURATION mode. Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000. bfd protocol-liveness Enable the BFD protocol liveness feature. S5000 Syntax bfd protocol-liveness Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
peer-group-name Defaults none Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Enter the name of the peer group that you want to explicitly enable for BFD sessions. Introduced on the S5000.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. When you explicitly disable a BGP neighbor for a BFD session with the neighbor bfd disable command: • The neighbor does not inherit the global BFD disable values configured with the bfd all-neighbors command or configured for the peer group to which the neighbor belongs. • The neighbor only inherits the global timer values configured with the bfd allneighbors command: interval, min_rx, and multiplier.
Defaults Command Modes Command History Example none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. FTOS#show bfd neighbors * - Active session role Ad Dn - Admin Down B - BGP C - CLI I - ISIS O - OSPF R - Static Route (RTM) LocalAddr Clients * 10.1.3.2 Example (Detail) RemoteAddr Interface State Rx-int Tx-int Mult 10.1.3.1 Te 1/3 Up 300 250 3 FTOS#show bfd neighbors detail Session Discriminator: 1 Neighbor Discriminator: 1 Local Addr: 10.1.3.
Border Gateway Protocol IPv4 (BGPv4) 10 BGP is an external gateway protocol that transmits interdomain routing information within and between autonomous systems (AS). BGP version 4 (BGPv4) supports classless inter-domain routing (CIDR) and the aggregation of routes and AS paths. Basically, two routers (called neighbors or peers) exchange information including full routing tables and periodically sent messages to update those routing tables.
Command History Version 9.0(1.3) Introduced on the S5000. aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table. S5000 Syntax Parameters aggregate-address ip-address mask [advertise-map map-name] [asset] [attribute-map map-name] [summary-only] [suppress-map mapname] ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.D) and mask in /prefix format (/x).
In route maps used in the suppress-map parameter, routes meeting the deny clause are not suppress; in other words, they are allowed. The opposite is also true: routes meeting the permit clause are suppressed. If the route is injected via the network command, that route still appears in the routing table if the summary-only parameter is configured in the aggregate-address command. The summary-only parameter suppresses all advertisements.
bgp always-compare-med Allows you to enable comparison of the MULTI_EXIT_DISC (MED) attributes in the paths from different external ASs. S5000 Syntax bgp always-compare-med To disable comparison of MED, enter no bgp always-compare-med. Defaults Disabled (that is, the software only compares MEDs from neighbors within the same AS). Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Any update without a MED attribute is the least preferred route.
bgp asnotation asdot FTOS(conf)#router bgp 1 FTOS(conf-router_bgp)#bgp asnotation asdot+ FTOS(conf-router_bgp)#ex FTOS(conf)#do show run | grep bgp router bgp 1 bgp four-octet-as-support bgp asnotation asdot+ FTOS(conf)#router bgp 1 FTOS(conf-router_bgp)#bgp asnotation asplain FTOS(conf-router_bgp)#ex FTOS(conf)#do show run |grep bgp router bgp 1 bgp four-octet-as-support FTOS(conf)# Related Commands bgp four-octet-as-support – enables 4-byte support for the BGP process.
To return to the default BGP routing process, use the no bgp bestpath as-path multipath-relax command. Defaults Disabled Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The bestpath router bgp configuration mode command changes the default bestpath selection algorithm. The multipath-relax option allows load-sharing across providers with different (but equal-length) autonomous system paths.
Defaults Disabled Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The MED is a 4-byte unsigned integer value and the default behavior is to assume a missing MED as 4294967295. This command causes a missing MED to be treated as 0. During path selection, paths with a lower MED are preferred over those with a higher MED. bgp bestpath router-id ignore Do not compare router-id information for external paths during best path selection.
Usage Information Route reflection to clients is not necessary if all client routers are fully meshed. Related Commands bgp cluster-id – assigns an ID to a BGP cluster with two or more route reflectors. neighbor route-reflector-client – configures a route reflector and clients. bgp cluster-id Assign a cluster ID to a BGP cluster with more than one route reflector. S5000 Syntax bgp cluster-id {ip-address | number} To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command.
bgp confederation identifier Configure an identifier for a BGP confederation. S5000 Syntax bgp confederation identifier as-number To delete a BGP confederation identifier, use the no bgp confederation identifier as-number command. Parameters as-number Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Enter the AS number. The range is 0 to 65535 (2-byte), 1 to 4294967295 (4-byte), or 0.1 to 65535.65535 (dotted format). Introduced on the S5000.
Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. All the routers in the Confederation must be 4- or 2-byte identified routers. You cannot mix them. The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems.
route-map mapname (OPTIONAL) Enter the keyword route-map followed by the name of a configured route map. Only match commands in the configured route map are supported. Defaults Disabled. Command Modes ROUTER-BGP-ADDRESS FAMILY Command History Version 9.0(1.3) Introduced on the S5000. Usage Information If you enter the bgp dampening command, the default values for half-life, reuse, suppress, and max-suppress-time are applied.
bgp enforce-first-as Disable (or enable) enforce-first-as check for updates received from EBGP peers. S5000 Syntax bgp enforce-first-as To turn off the default, use the no bgp enforce-first-as command. Defaults Enabled Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. This is enabled by default, that is for all updates received from EBGP peers, BGP ensures that the first AS of the first AS segment is always the AS of the peer.
bgp four-octet-as-support Enable 4-byte support for the BGP process. S5000 Syntax bgp four-octet-as-support To disable fast external fallover, use the no bgp four-octet-as-support command. Defaults Disabled (supports 2–byte format) Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Routers supporting 4-byte ASNs advertise that function in the OPEN message.
Defaults as above Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. This feature is advertised to BGP neighbors through a capability advertisement. In Receiver Only mode, BGP saves the advertised routes of peers that support this capability when they restart. BGP graceful restart is active only when the neighbor becomes established. Otherwise it is disabled. Graceful-restart applies to all neighbors with established adjacency.
Defaults Disabled (that is, paths/routes for the same destination but from different ASs do not have their MEDs compared). Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. In Non-Deterministic mode, paths are compared in the order in which they arrive.
bgp regex-eval-optz-disable Disables the Regex Performance engine that optimizes complex regular expression with BGP. S5000 Syntax bgp regex-eval-optz-disable To re-enable optimization engine, use the no bgp regex-eval-optz-disable command. Defaults Enabled Command Modes ROUTER BGP (conf-router_bgp) Command History Usage Information Version 9.0(1.3) Introduced on the S5000. BGP uses regular expressions (regex) to filter route information.
bgp router-id Assign a user-given ID to a BGP router. S5000 Syntax bgp router-id ip-address To delete a user-assigned IP address, use the no bgp router-id command. Parameters ip-address Enter an IP address in dotted decimal format to reset only that BGP neighbor. Defaults The router ID is the highest IP address of the Loopback interface or, if no Loopback interfaces are configured, the highest IP address of a physical interface on the router.
Related Commands clear ip bgp – activates inbound policies without resetting the BGP TCP session. capture bgp-pdu max-buffer-size Set the size of the BGP packet capture buffer. This buffer size pertains to both IPv4 and IPv6 addresses. S5000 Syntax Parameters capture bgp-pdu max-buffer-size 100-102400000 100-102400000 Defaults 40960000 bytes. Command Modes EXEC Privilege Command History Related Commands Version 9.0(1.3) Enter a size for the capture buffer. Introduced on the S5000.
Related Commands capture bgp-pdu max-buffer-size – specifies a size for the capture buffer. show capture bgp-pdu neighbor – displays BGP packet capture information. clear ip bgp Reset BGP sessions on the S5000. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection.
Command Modes Command History Related Commands EXEC Privilege Version 9.0(1.3) Introduced on the S5000. bgp recursive-bgp-next-hop – disables next-hop resolution through other routes learned by the BGP. bgp soft-reconfig-backup – turns on BGP Soft Reconfiguration. clear ip bgp dampening Clear information on route dampening and return the suppressed route to the Active state.
regexp regular- expression (OPTIONAL) Enter the keyword regexp followed by regular expressions. Use one or a combination of the following: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (0 or more sequences). • + = (plus) the sequences in a pattern (1 or more sequences). • ? = (question mark) sequences in a pattern (either 0 or 1 sequences). NOTE: You must enter an escape sequence (CTRL+v) prior to entering the ? regular expression.
Command History Version 9.0(1.3) Introduced on the S5000. debug ip bgp Display all information on BGP, including BGP events, keepalives, notifications, and updates. S5000 Syntax debug ip bgp [ip-address | peer-group peer-group-name] [in | out] To disable all BGP debugging, use the no debug ip bgp command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group peer- Enter the keywords peer-group followed by the name of the peer group.
debug ip bgp dampening View information on routes being dampened. S5000 Syntax debug ip bgp ipv4 multicast dampening To disable debugging, use the no debug ip bgp ipv4 multicast dampening command. Parameters Command Modes Command History dampening Enter the keyword dampening to clear route flap dampening information. EXEC Privilege Version 9.0(1.3) Introduced on the S5000. debug ip bgp events Display information on local BGP state changes and other BGP events.
Usage Information Enter the no debug ip bgp command to remove all configured debug commands for BGP. debug ip bgp keepalives Display information about BGP keepalive messages. S5000 Syntax debug ip bgp [ip-address | peer-group peer-group-name] keepalives [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] keepalives [in | out] command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format.
Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group peer- (OPTIONAL) Enter the keyword peer-group followed by the name of the peer group. group-name Command Modes Command History Usage Information in (OPTIONAL) Enter the keyword in to view BGP notifications received from neighbors. out (OPTIONAL) Enter the keyword out to view BGP notifications sent to neighbors EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
debug ip bgp soft-reconfiguration Enable soft-reconfiguration debug. S5000 Syntax debug ip bgp {ip-address | peer-group-name} softreconfiguration To disable, use the no debug ip bgp {ip-address | peer-group-name} soft-reconfiguration command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name (OPTIONAL) Enter the name of the peer group to disable or enable all routers within the peer group..
peer-group-name Command Modes EXEC Privilege Command History Usage Information (OPTIONAL) Enter the name of the peer group to disable or enable all routers within the peer group. Version 9.0(1.3) Introduced on the S5000. Enter the no debug ip bgp command to remove all configured debug commands for BGP. default-metric Allows you to change the metric of redistributed routes to locally originated routes. Use this command with the redistribute command.
Parameters description Defaults none Command Modes ROUTER BGP Command History Related Commands Version 9.0(1.3) Enter a description to identify the BGP protocol (80 characters maximum). Introduced on the S5000. router bgp – enters ROUTER mode on the switch. distance bgp Define an administrative distance for routes. S5000 Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command.
max-paths Configure the maximum number of parallel routes (multipath support) BGP supports. S5000 Syntax max-paths {ebgp | ibgp} number To return to the default values, enter the no maximum-paths command. Parameters ebgp Enter the keyword ebgp to enable multipath support for External BGP routes. ibgp Enter the keyword ibgp to enable multipath support for Internal BGP routes. number Enter a number as the maximum number of parallel paths. The range is 2 to 64.
Command Modes Command History Usage Information CONFIGURATION-ROUTER-BGP-ADDRESS FAMILY Version 9.0(1.3) Introduced on the S5000. By default, when you create a neighbor/peer group configuration in the Router BGP context, this enables IPv4/Unicast AFI/SAFI. When you use activate in the new context, the neighbor/peer group enables for AFI/SAFI. neighbor add-path This command allows the specified neighbor/peer group to send/receive multiple path advertisements.
neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group. S5000 Syntax neighbor {ip-address | peer-group-name} advertisement-interval seconds To return to the default value, use the no neighbor {ip-address | peer-groupname} advertisement-interval command. Parameters Defaults Command Modes Command History ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format.
Defaults none Command Modes ROUTER BGP Command History Version 9.0(1.3) Introduced on the S5000. neighbor allowas-in Set the number of times an AS number can occur in the AS path. S5000 Syntax neighbor {ip-address | peer-group-name} allowas-in number To return to the default value, use the no neighbor {ip-address | peer-groupname} allowas-in command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format.
Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group. route-map mapname (OPTIONAL) Enter the keyword route-map followed by the name of a configured route map. Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
neighbor distribute-list Distribute BGP information via an established prefix list. S5000 Syntax neighbor {ip-address | peer-group-name} distribute-list prefixlist-name {in | out} To delete a neighbor distribution list, use the no neighbor {ip-address | peergroup-name} distribute-list prefix-list-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. ttl (OPTIONAL) Enter the number of hops as the Time to Live (ttl) value. The range is 1 to 255. The default is 255. Defaults Disabled. Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. To prevent loops, the neighbor ebgp-multihop command does not install the default routes of the multihop peer.
neighbor filter-list Configure a BGP filter based on the AS-PATH attribute. S5000 Syntax neighbor {ip-address | peer-group-name} filter-list as-pathname {in | out} To delete a BGP filter, use the no neighbor {ip-address | peer-group-name} filter-list as-path-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to apply the filter to all routers in the peer group.
Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to apply the filter to all routers in the peer group. restart-time seconds Enter the keyword restart-time followed by the maximum number of seconds needed to restart and bring-up all the peers. The range is 1 to 3600 seconds. The default is 120 seconds.
Defaults Not configured. Command Modes ROUTER BGP Command History Related Commands Version 9.0(1.3) Introduced on the S5000. bgp four-octet-as-support – enables 4-byte support for the BGP process. neighbor maximum-prefix Control the number of network prefixes received. S5000 Syntax neighbor {ip-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor {ip-address | peer-groupname} maximum-prefix maximum command.
Related Commands show ip bgp summary – displays the current BGP configuration. neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. (This command is used for IBGP). S5000 Syntax neighbor {ip-address | peer-group-name} next-hop-self To return to the default setting, use the no neighbor {ip-address | peer-groupname} next-hop-self command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
You cannot use spaces in the password. Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Configure the same password on both BGP peers or a connection does not occur. When you configure MD5 authentication between two BGP peers, each segment of the TCP connection between them is verified and the MD5 digest is checked on every segment sent on the TCP connection.
Usage Information You can assign up to 256 peers to one peer group. When you add a peer to a peer group, it inherits all the peer group’s configured parameters.
Usage Information Related Commands When you create a peer group, it is disabled (Shut mode). neighbor peer-group (assigning peers) – assigns routers to a peer group. neighbor remote-as – assigns a indirectly connected AS to a neighbor or peer group. neighbor shutdown – disables a peer or peer group. neighbor peer-group passive Enable passive peering on a BGP peer group, that is, the peer group does not send an OPEN message, but will respond to one.
neighbor remote-as Create and specify the remote peer to the BGP neighbor. S5000 Syntax neighbor {ip-address | peer-group-name} remote-as number To delete a remote AS entry, use the no neighbor {ip-address | peer-groupname} remote-as number command. Parameters ip-address Enter the IP address of the neighbor to enter the remote AS in its routing table. peer-group-name Enter the name of the peer group to enter the remote AS into routing tables of all routers within the peer group.
peer-group-name Enter the name of the peer group to remove the private AS numbers. Defaults Disabled (that is, private AS number are not removed). Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Applies to EBGP neighbors only. You must configure your system to accept 4-byte formats before entering a 4-byte AS Number.
Usage Information When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer.
neighbor send-community Send a COMMUNITY attribute to a BGP neighbor or peer group. A COMMUNITY attribute indicates that all routes with that attribute belong to the same community grouping. S5000 Syntax neighbor {ip-address | peer-group-name} send-community To disable sending a COMMUNITY attribute, use the no neighbor {ip-address | peer-group-name} send-community command. Parameters ip-address Enter the IP address of the peer router in dotted decimal format.
Usage Information Peers that are enabled within a peer group are disabled when their peer group is disabled. Related Commands show ip bgp summary – displays the current BGP configuration. The neighbor shutdown command terminates all BGP sessions on the BGP neighbor or BGP peer group. Use this command with caution as it terminates the specified BGP sessions. When a neighbor or peer group is shutdown, use the show ip bgp summary command to confirm its status.
neighbor subnet Enable passive peering so that the members of the peer group are dynamic. S5000 Syntax neighbor peer-group-name subnet subnet-number mask To remove passive peering, use the no neighbor peer-group-name subnet subnet-number mask command. Parameters subnet-number Enter a subnet number in dotted decimal format (A.B.C.D.) as the allowable range of addresses included in the Peer group. To allow all addresses, enter 0.0.0.0/0. mask Defaults Not configured.
Defaults Command Modes Command History Usage Information • keepalive = 60 seconds • holdtime = 180 seconds ROUTER BGP Version 9.0(1.3) Introduced on the S5000. Timer values configured with the neighbor timers command overrides the timer values configured with the any other command.
neighbor weight Assign a weight to the neighbor connection, which is used to determine the best path. S5000 Syntax neighbor {ip-address | peer-group-name} weight weight To remove a weight value, use the no neighbor {ip-address | peer-groupname} weight command. Parameters ip-address Enter the IP address of the peer router in dotted decimal format. peer-group-name Enter the name of the peer group to disable all routers within the peer group. weight Enter a number as the weight.
The mask appears in command outputs in dotted decimal format (A.B.C.D). route-map mapname (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ip address • set community • set local-preference • set metric • set next-hop • set origin • set weight If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured.
Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Although FTOS does not generate a route due to the backdoor config, there is an option for injecting/sourcing a local route in the presence of network backdoor config on a learned route. redistribute Redistribute routes into BGP.
Usage Information With FTOS version 8.3.1.0 and later, you can use the redistribute command to advertise the IGP cost as the MED on redistributed routes. When you set the route-map with metric-type internal and applied outbound to an EBGP peer/peer-group, the advertised routes corresponding to those peer/peer-group have the IGP cost set as MED.
show capture bgp-pdu neighbor Display BGP packet capture information for an IPv4 address on the system. S5000 Syntax Parameters Command Modes Command History Example show capture bgp-pdu neighbor ipv4-address ipv4-address Enter the IPv4 address (in dotted decimal format) of the BGP address to display packet information for that address. EXEC Privilege Version 9.0(1.3) Introduced on the S5000. FTOS(conf-router_bgp)#show capture bgp-pdu neighbor 20.20.20.
show config View the current ROUTER BGP configuration. S5000 Syntax show config Command Modes ROUTER BGP Command History Version 9.0(1.3) Introduced on the S5000. Example FTOS(conf-router_bgp)#show config ! router bgp 45 neighbor suzanne peer-group neighbor suzanne no shutdown neighbor sara peer-group neighbor sara shutdown neighbor 13.14.15.20 peer-group suzanne neighbor 13.14.15.20 shutdown neighbor 123.34.55.123 peer-group suzanne neighbor 123.34.55.
• Command History Usage Information EXEC Privilege Version 9.0(1.3) Introduced on the S5000. When you enable the bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason. The following describes the show ip bgp command shown in the Example below. Example Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.
Related Commands show ip bgp community – views the BGP communities. neighbor maximum-prefix – controls the number of network prefixes received. show ip bgp cluster-list View BGP neighbors in a specific cluster. S5000 Syntax Parameters Command Modes Command History Usage Information Example show ip bgp [ipv4 unicast] cluster-list [cluster-id] ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes.
* I 10.10.10.1/32 * I *>I * I * I * I * I 10.19.75.5/32 * I *>I * I * I * I * I 10.30.1.0/24 * I *>I * I * I * I 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.
Command Modes Command History Usage Information • • EXEC EXEC Privilege Version 9.0(1.3) Introduced on the S5000. To view the total number of COMMUNITY attributes found, use the show ip bgp summary command. The text line above the route table states the number of COMMUNITY attributes found. The show ip bgp community command without any parameters lists BGP routes with at least one BGP community attribute and the output is the same as for the show ip bgp command output.
*>i 6.5.0.0/19 i *>i 6.8.0.0/20 i *>i 6.9.0.0/20 i *>i 6.10.0.0/15 i *>i 6.14.0.0/15 i *>i 6.133.0.0/21 i *>i 6.151.0.0/1 i --More-- 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 show ip bgp community-list View routes that are affected by a specific community list.
Example Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network. FTOS#show ip bgp community-list pass BGP table version is 0, local router ID is 10.101.15.
best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network From Reuse Path FTOS> show ip bgp detail Display BGP internal information for the IPv4 Unicast address family. S5000 Syntax show ip bgp [ipv4 unicast] detail Defaults none Command Modes Command History Example • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
KeepExps 0 RxOpens 0 : RxKeeps 0 : RxUpds 0 : RxNotifs 0 : TxUpds 0 : TxNotifs 0 BadEvts 0 : SynFails 0 : RxeCodeP 0x41a1b6b8 : RxHdrCodeP 0x41a1b6d4 : RxOpCodeP 0x41a1b6e4 RxUpdCodeP 0x41a1b704 : TxEcodeP 0x41a1b734 : TxHdrcodeP 0x41a1b750 : TxOpCodeP 0x41a1b760 TxUpdCodeP 0x41a1b780 : TrEvt 0 : LocPref 100 : tmpPathP 0x41a1b7b8 : LogNbrChgs 1 RecursiveNH 1 : PgCfgId 0 : KeepAlive 0 : HldTime 0 : DioHdl 0 : AggrValTmrP 0x41ee7024 UpdNetTmrP 0 : RedistTmrP 0x41ee7094 : PeerChgTmrP 0 : CleanRibTmrP 0x41ee710
show ip bgp extcommunity-list View information on all routes with Extended Community attributes. S5000 Syntax Parameters Command Modes Command History Usage Information show ip bgp [ipv4 unicast] extcommunity-list [list name] ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. list name Enter the extended community list name you wish to view. • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Usage Information Example The following describes the show ip bgp filter-list hello command shown in the Example below. Field Description Path source codes Lists the path sources shown to the right of the last AS number in the Path column: • i = internal route entry • a = aggregate route entry • c = external confederation route entry • n = network route entry • r = redistributed route entry Next Hop Displays the next hop address of the BGP router. If 0.0.0.
show ip bgp flap-statistics View flap statistics on BGP routes. S5000 Syntax Parameters show ip bgp [ipv4 unicast] flap-statistics [ip-address [mask]] [filter-list as-path-name] [regexp regular-expression] ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. ip-address (OPTIONAL) Enter the IP address (in dotted decimal format) of the BGP network to view information only on that network.
Example Field Description Network Displays the network ID to which the route is flapping. From Displays the IP address of the neighbor advertising the flapping route. Flaps Displays the number of times the route flapped. Duration Displays the hours:minutes:seconds since the route first flapped. Reuse Displays the hours:minutes:seconds until the flapped route is available. Path Lists all the ASs the flapping route passed through to reach the destination network.
Example Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network. FTOS>show ip bgp inconsistent-as BGP table version is 280852, local router ID is 10.1.2.
ip-address (OPTIONAL) Enter the IP address of the neighbor to view only BGP information exchanged with that neighbor. advertised-routes (OPTIONAL) Enter the keywords advertised-routes to view only the routes the neighbor sent. dampened-routes (OPTIONAL) Enter the keywords dampened-routes to view information on dampened routes from the BGP neighbor. detail (OPTIONAL) Enter the keyword detail to view neighbor-specific internal information for the IPv4 Unicast address family.
• • • Example 322 last read is the time (hours:minutes:seconds) the router read a message from its neighbor hold time is the number of seconds configured between messages from its neighbor keepalive interval is the number of seconds between keepalive messages to help ensure that the TCP session is still alive. Received messages This line displays the number of BGP messages received, the number of notifications (error messages), and the number of messages waiting in a queue for processing.
ROUTE_REFRESH(2) 4_OCTECT_AS(65) ADD_PATH (69) CISCO_ROUTE_REFRESH(128) Example FTOS#show ip bgp neighbors BGP neighbor is 100.10.10.2, remote AS 200, external link BGP version 4, remote router ID 192.168.2.
*>I 223.94.249.0/24 223.100.4.249 0 *>I 223.94.250.0/24 223.100.4.250 0 *>I 223.100.0.0/16 223.100.255.254 0 Total number of prefixes: 74102 Example (ReceivedRoutes) Next Hop 100.10.10.2 100.10.10.2 100.10.10.2 100.10.10.2 100.10.10.2 100.10.10.2 100.10.10.2 100.10.10.2 100.10.10.2 Metric LocPrf 0 0 0 0 0 0 0 0 0 0 0 0 0 Weight Path 100 200 ? 100 200 ? 100 200 ? 100 200 ? 100 200 ? 100 200 ? 100 200 ? 100 200 ? 100 200 ? 0 0 0 0 0 0 0 0 0 FTOS#show ip bgp neighbors 100.10.10.
Command Modes Command History Usage Information Example • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes the show ip bgp next-hop command shown in the Example below. Field Description Next-hop Displays the next-hop IP address. Via Displays the IP address and interface used to reach the next hop. RefCount Displays the number of BGP routes using this next hop. Cost Displays the cost associated with using this next hop.
NOTE: You must enter an escape sequence (CTRL+v) prior to entering the ? regular expression. Command Modes Command History Usage Information Example 326 • EXEC • EXEC Privilege Version 9.0(1.3) • [ ] = (brackets) a range of single-character patterns. • ( ) = (parenthesis) groups a series of pattern elements to a single element. • { } = (braces) minimum and the maximum match count. • ^ = (caret) the beginning of the input string.
show ip bgp paths as-path View all unique AS-PATHs in the BGP database. S5000 Syntax Command Modes Command History Usage Information Example show ip bgp paths as-path • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes the show ip bgp paths as-path command shown in the Example below. Field Description Address Displays the internal address where the path attribute is stored. Hash Displays the hash bucket where the path attribute is stored.
show ip bgp paths community View all unique COMMUNITY numbers in the BGP database. S5000 Syntax Command Modes Command History Usage Information Example 328 show ip bgp paths community • • EXEC EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes the show ip bgp paths community command shown in the Example below. Field Description Address Displays the internal address where the path attribute is stored.
13646:1154 13646:1164 13646:1184 13646:1194 13646:1204 13646:1214 13646:1224 13646:1234 13646:1244 13646:1254 13646:1264 13646:3000 0x1d65b2ac 117 6 209:209 209:999 209:31272 0x1f5854ac 119 18 209:209 209:21226 286:108 286:111 286:777 286:3033 517:5104 show ip bgp peer-group Allows you to view information on the BGP peers in a peer group.
Example For address family Displays IPv4 Unicast as the address family. BGP neighbor Displays the name of the BGP neighbor. Number of peers Displays the number of peers currently configured for this peer group. Peer-group members: Lists the IP addresses of the peers in the peer group. If the address is outbound optimized, an * is displayed next to the IP address.
Related Commands neighbor peer-group (assigning peers) – assigns a peer to a peer-group. neighbor peer-group (creating group) – creates a peer group. show ip bgp peer-group (multicast) – views information on the BGP peers in a peer group. show ip bgp regexp Display the subset of the BGP routing table matching the regular expressions specified.
Example 332 Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then non-BGP routes exist in the router’s routing table. Metric Displays the BGP router’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight Path Lists all the AS paths the route passed through to reach the destination network. FTOS#show ip bgp regexp ^2914+ BGP table version is 3700481, local router ID is 63.114.8.
show ip bgp summary Allows you to view the status of all BGP connections. S5000 Syntax show ip bgp [ipv4 unicast] summary Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes the show ip bgp summary command shown in the Example below. Field Description BGP router identifier Displays the local router ID and the AS number. BGP table version Displays the BGP table version and the main routing table version.
OutQ Displays the number of messages waiting to be sent to that neighbor. If a number appears in parentheses, the number represents the number of messages waiting to be sent to the peer group. Up/Down Displays the amount of time that the neighbor is in the Established stage. If the neighbor has never moved into the Established stage, the word never is displayed.
show running-config bgp Use this feature to display the current BGP configuration. S5000 Syntax show running-config bgp Defaults none Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. timers bgp Adjust the BGP Keep Alive and Hold Time timers. S5000 Syntax timers bgp keepalive holdtime To return to the default, use the no timers bgp command.
address family ipv4 multicast (MBGP) This command changes the context to subsequent address family identifier (SAFI). S5000 Syntax address family ipv4 multicast To remove SAFI context, use the no address family ipv4 multicast command. Parameters ipv4 Enter the keyword ipv4 to specify the address family as IPV4. multicast Enter the keyword multicast to specify multicast as SAFI. Defaults IPv4 Unicast Command Modes ROUTER BGP (conf-router_bgp) Command History Usage Information Version 9.0(1.
attribute-map map-name (OPTIONAL) Enter the keywords attribute-map followed by the name of a configured route map to modify attributes of the aggregate, excluding AS_PATH and NEXT_HOP attributes. summary-only (OPTIONAL) Enter the keyword summary-only to advertise only the aggregate address. Specific routes are not advertised. suppress-map (OPTIONAL) Enter the keywords suppress-map followed by the name of a configured route map to identify which more-specific routes in the aggregate are suppressed.
route-map mapname (OPTIONAL) Enter the keyword route-map followed by the name of a configured route map. Only match commands in the configured route map are supported. Defaults Disabled. Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Command History Version 9.0(1.3) Introduced on the S5000. clear ip bgp ipv4 multicast Reset MBGP sessions.
clear ip bgp dampening Clear information on route dampening. S5000 Syntax Parameters Command Modes Command History clear ip bgp dampening ipv4 multicast network network-mask dampening Enter the keyword dampening to clear route flap dampening information. network (OPTIONAL) Enter the network address in dotted decimal format (A.B.C.D). network-mask (OPTIONAL) Enter the network mask in slash prefix format (/x). EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
• Command Modes Command History ( ) = (parenthesis) groups a series of pattern elements to a single element. • { } = (braces) minimum and the maximum match count. • ^ = (caret) the beginning of the input string. If you use the caret at the beginning of a sequence or range, it matches on everything BUT the characters specified. • $ = (dollar sign) the end of the output string. EXEC Privilege Version 9.0(1.3) Introduced on the S5000. debug ip bgp dampening View information on routes being dampened.
Command Modes Command History EXEC Privilege Version 9.0(1.3) Introduced on the S5000. debug ip bgp updates View information about BGP updates. S5000 Syntax debug ip bgp updates [in | out] To disable debugging, use the no debug ip bgp updates [in | out] command. Parameters updates Enter the keyword updates to view BGP update information. in (OPTIONAL) Enter the keyword in to view only BGP updates received from neighbors.
Defaults Command Modes Command History Usage Information • external-distance = 20 • internal-distance = 200 • local-distance = 200 ROUTER BGP Version 9.0(1.3) Introduced on the S5000. CAUTION: Dell Networking recommends not changing the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. The higher the administrative distance assigned to a route means that your confidence in that route is low.
Related Commands address family ipv4 multicast (MBGP) – changes the context to SAFI. neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group. S5000 Syntax neighbor {ip-address | peer-group-name} advertisement-interval seconds To return to the default value, use the no neighbor {ip-address | peer-groupname} advertisement-interval command.
Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group. route-map mapname (OPTIONAL) Enter the keyword route-map followed by the name of a configured route map. Defaults Not configured. Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Command History Version 9.0(1.3) Introduced on the S5000.
Related Commands ip as-path access-list – configures the IP AS-Path ACL. neighbor filter-list – assigns a AS-PATH list to a neighbor or peer group. neighbor route-map – assigns a route map to a neighbor or peer group. neighbor filter-list Configure a BGP filter based on the AS-PATH attribute.
neighbor maximum-prefix Control the number of network prefixes received. S5000 Syntax neighbor {ip-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor {ip-address | peer-groupname} maximum-prefix maximum command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group.
Defaults Disabled. Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Command History Version 9.0(1.3) Introduced on the S5000. neighbor remove-private-as Remove private AS numbers from the AS-PATH of outgoing updates. S5000 Syntax neighbor {ip-address | peer-group-name} remove-private-as To return to the default, use the no neighbor {ip-address | peer-group-name} remove-private-as command. Parameters ip-address Enter the IP address of the neighbor to remove the private AS numbers.
If the Route map is not configured, the default is deny (to drop all routes). in Enter the keyword in to filter inbound routes. out Enter the keyword out to filter outbound routes. Defaults Not configured. Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Command History Usage Information Version 9.0(1.3) Introduced on the S5000. When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted.
network Specify the networks for the BGP process and enter them in the BGP routing table. S5000 Syntax network ip-address mask [route-map map-name] To remove a network, use the no network ip-address mask [route-map mapname] command. Parameters ip-address Enter an IP address in dotted decimal format of the network. mask Enter the mask of the IP address in the slash prefix length format (for example, /24). The mask appears in command outputs in dotted decimal format (A.B.C.D).
redistribute Redistribute routes into BGP. S5000 Syntax redistribute [connected | static] [route-map map-name] To disable redistribution, use the no redistribution [connected | static] [route-map map-name] command. Parameters connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static to redistribute manually configured routes. These routes are treated as incomplete routes.
redistribute ospf Redistribute OSPF routes into BGP. S5000 Syntax redistribute ospf process-id [[match external {1 | 2}] [match internal]] [route-map map-name] To stop redistribution of OSPF routes, use the no redistribute ospf process-id command. Parameters process-id Enter the number of the OSPF process. The range is 1 to 65535. match external {1 | 2} (OPTIONAL) Enter the keywords match external to redistribute OSPF external routes. You can specify 1 or 2 to redistribute those routes only.
Command Modes Command History Usage Information network-mask (OPTIONAL) Enter the network mask (in slash prefix format) of the BGP network address. longer-prefixes (OPTIONAL) Enter the keywords longer-prefixes to view all routes with a common prefix. • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. When you enable the bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason.
show ip bgp cluster-list View BGP neighbors in a specific cluster. S5000 Syntax Parameters Command Modes Command History show ip bgp ipv4 multicast cluster-list [cluster-id] cluster-id • • (OPTIONAL) Enter the cluster id in dotted decimal format. EXEC EXEC Privilege Version 9.0(1.3) Introduced on the S5000. show ip bgp community View information on all routes with Community attributes or view specific BGP community groups.
Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. To view the total number of COMMUNITY attributes found, use the show ip bgp summary command. The text line above the route table states the number of COMMUNITY attributes found. The show ip bgp community command without any parameters lists BGP routes with at least one BGP community attribute and the output is the same as for the show ip bgp command output.
Command History Usage Information Example Version 9.0(1.3) Introduced on the S5000. The following describes the show ip bgp damp command shown in the Example below. Field Description Network Displays the network ID to which the route is dampened. From Displays the IP address of the neighbor advertising the dampened route. Reuse Displays the hour:minutes:seconds until the dampened route is available. Path Lists all the ASs the dampened route passed through to reach the destination network.
show ip bgp flap-statistics View flap statistics on BGP routes. S5000 Syntax Parameters show ip bgp ipv4 multicast flap-statistics [ip-address [mask]] [filter-list as-path-name] [regexp regular-expression] ip-address (OPTIONAL) Enter the IP address (in dotted decimal format) of the BGP network to view information only on that network. mask (OPTIONAL) Enter the network mask (in slash prefix (/x) format) of the BGP network address.
show ip bgp inconsistent-as View routes with inconsistent originating AS numbers; that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. S5000 Syntax Command Modes Command History show ip bgp ipv4 multicast inconsistent-as • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. show ip bgp ipv4 multicast neighbors Allows you to view the information exchanged by BGP neighbors.
Usage Information 358 The following describes the show ip bgp ipv4 multicast neighbors command shown in the Example below. BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one. If they are located in the same AS, then the link is internal; otherwise the link is external. BGP version Displays the BGP version (always version 4) and the remote router ID.
Example Local host: Displays the peering address of the local router and the TCP port number. Foreign host: Displays the peering address of the neighbor and the TCP port number. FTOS#show ip bgp ipv4 multicast neighbors BGP neighbor is 25.25.25.25, remote AS 6400, internal link BGP version 4, remote router ID 25.25.25.
Notification History 'Connection Reset' Sent : 3 Recv: 0 Related Commands show ip bgp – views the current BGP routing table. show ip bgp peer-group Allows you to view information on the BGP peers in a peer group. S5000 Syntax Parameters Command Modes Command History Related Commands show ip bgp ipv4 multicast peer-group [peer-group-name [detail | summary]] peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only.
Command Modes Command History Usage Information • • EXEC EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes the sho ip bgp ipv4 multicast summary command shown in the Example below. BGP router identifier Displays the local router ID and the AS number. BGP table version Displays the BGP table version and the main routing table version. network entries Displays the number of network entries, route paths, and the amount of memory used to process those entries.
peer is transitioning between states and clearing the routes received, the phrase (Purging) may appear in this column. If the neighbor is disabled, the phrase (Admin shut) appears in this column. Example FTOS#sho ip bgp ipv4 multicast summary BGP router identifier 100.10.10.
ASN:NNNN Enter the 2-octet AS specific extended community number in the format ASN:NNNN (2-byte AS number:4-byte community value). IPADDR:NN Enter the IP address specific extended community in the format IPADDR:NN (4-byte IPv4 Unicast Address:2-byte community value). Defaults Not configured. Command Modes CONFIGURATION (conf-ext-community-list) Command History Related Commands Version 9.0(1.3) Introduced on the S5000. permit – configures to add (permit) rules.
description Use this feature to designate a meaningful description to the extended community. S5000 Syntax description {line} To remove the description, use the no description {line} command. Parameters line Enter a description (maximum 80 characters). Defaults Not configured. Command Modes CONFIGURATION (conf-ext-community-list) Command History Version 9.0(1.3) Introduced on the S5000. ip extcommunity-list Use this feature to enter the Extended Community-list mode.
match extcommunity Use this feature to match an extended community in the Route Map mode. S5000 Syntax match extcommunity {extended community list name} To change the match, use the no match extcommunity {extended community list name} command. Parameters extended community list name Enter the name of the extended community list. Defaults none Command Modes ROUTE MAP (config-route-map) Command History Version 9.0(1.3) Introduced on the S5000.
IPADDR:NN Enter the IP address specific extended community in the format IPADDR:NN (4-byte IPv4 Unicast Address:2-byte community value). Defaults Not configured. Command Modes CONFIGURATION (conf-ext-community-list) Command History Related Commands Version 9.0(1.3) Introduced on the S5000. deny – configures to delete (deny) rules. show ip bgp extcommunity-list – displays the extended community list.
set extcommunity rt Use this feature to set Route Origin community attributes in Route Map. S5000 Syntax set extcommunity rt {as4 ASN4:NN [non-trans] | ASN:NNNN [nontrans] | IPADDR:NN [non-trans]} [additive] To delete the Route Origin community, use the no set extcommunity command. Parameters as4 ASN4:NN Enter the keyword as4 followed by the 4-octet AS specific extended community number in the format ASN4:NN (4-byte AS number:2-byte community value).
set extcommunity soo Use this feature to set extended community site-of-origin in Route Map. S5000 Syntax set extcommunity soo {as4 ASN4:NN | ASN:NNNN | IPADDR:NN [nontrans]} To delete the site-of-origin community, use the no set extcommunity command. Parameters as4 ASN4:NN Enter the keyword as4 followed by the 4-octet AS specific extended community number in the format ASN4:NN (4-byte AS number:2-byte community value).
show ip bgp ipv4 extcommunity-list Use this feature to display the IPv4 routes matching the extended community list name. S5000 Syntax Parameters Defaults Command Modes Command History Usage Information show ip bgp [ipv4 [multicast | unicast] | ipv6 unicast] extcommunity-list name multicast Enter the keyword multicast to display the multicast route information. unicast Enter the keyword unicast to display the unicast route information.
FTOS# show ip bgp paths extcommunity Use this feature to display all BGP paths having extended community attributes. S5000 Syntax show ip bgp paths extcommunity Parameters The following describes the show ip bgp paths extcommunity command shown in the Example below. Command Modes Command History Example Address Displays the internal address where the path attribute is stored. Hash Displays the hash bucket where the path attribute is stored.
Parameters Command Modes Command History Example word Enter the name of the extended community list you want to view. • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. FTOS#show ip extcommunity-list test ip extcommunity-list test deny RT:1234:12 permit regexp 123 deny regexp 234 deny regexp 123 FTOS# show running-config extcommunity-list Use this feature to display the current configuration of the extended community lists.
Bare Metal Provisioning (BMP) 11 Bare metal provisioning (BMP) version 2.0 is supported on the S5000 switch. In a data center network, BMP automates the configuration and updating of switches, ensuring standard configurations across the installed devices. You can configure auto-configuration on a single switch or on multiple switches. BMP allows you to set up a stack with a minimum of effort, but is also useful for quick configuration of a single switch.
Command Modes Command History Usage Information EXEC Privilege Version 9.0(1.3) Introduced for the S5000. For an initial setup, the config-download parameter of the reload-type command is enabled. After the configuration file is successfully downloaded, the config-download parameter is automatically disabled. You can enable it again using the reload-type command.
You can also use the show bootvar command to display the current Reload mode for BMP 2.0 with the path of the FTOS image file retrieved from a DHCP server. Example FTOS#show reload-type Reload-Type : normal-reload [Next boot : normal-reload] Related Commands reload type – configures Reload mode as normal or Jumpstart. stop jump-start Stop the switch from reloading in Jumpstart mode to prevent an infinite loop.
Content Addressable Memory (CAM) 12 Content addressable memory (CAM) commands are supported on the S5000 switch. CAM Profile Commands The CAM profiling feature allows you to partition the CAM to best suit your application. For example: • Configure more Layer 2 ACL entries when the system is deployed as a switch. • Configure more Layer 3 ACL entries when the system is deployed as a router. • Configure more FCoE or iSCSI ACLs to handle an increase in storage traffic.
l2acl number ipv4acl number ipv6acl numberipv4qos number l2qos numberl2pt number ipmacacl number ecfmacl number {vmanqos number | vman-dual-qos number} [fcoeacl number][iscsiacl number] Command Modes Command History Usage Information • L3 QoS (ipv4qos): 1 • L2 QoS (l2qos): 1 • L2PT (l2pt): 0 • MAC ACLs (ipmacacl): 0 • ECFMACL (ecfmacl): 0 • VMAN QoS (vman-qos): 0 • VMAN Dual QoS (vman-dual-qos): 0 • FCoE ACL (fcoeacl): 2 • iSCSI Opt ACL (iscsioptacl): 0 Enter the number fo FP blocks to b
Parameters Command Modes Command History Usage Information default Reset the egress CAM ACL entries to the default settings. l2acl number ipv4acl number ipv6acl number Allocate space to each CAM region. Enter the CAM profile name followed by the amount of CAM space to be allotted. The total space allocated must equal 13. The l2acl range is 1 to 4. The ipv4acl range is 1 to 4. The ipv6acl range is 0 to 4. CONFIGURATION Version 9.0(1.3) Introduced on the S5000.
test cam-usage Verify that enough CAM space is available for the ingress IPv4 ACLs used in a QoS policy. S5000 Syntax Parameters test cam-usage service-policy input policy-map-name policy-map name stack-unit [ unit-number | all ]} policy-map name Enter the name of the policy-map to verify. stack-unit unit- Enter the keyword stack-unit followed by a number. The range is 0 to 11. number stack-unit all Defaults none Command Modes EXEC Privilege Command History Usage Information Version 9.0(1.
102| 0| 1| 0|Allowed IPv4Flow| 0|Allowed 102| FTOS# ! FTOS#test cam-usage service-policy input TestIn stack-unit 0 port-set 0 Stack-Unit|Portpipe|CAM Partition|Available CAM|EstimatedCAM per Port|Status ---------------------------------------------------------------0| 1| IPv4Flow| 102| 0|Allowed FTOS# 381
Control Plane Policing (CoPP) 13 The CoPP commands are supported on the S5000 switch. control-plane-cpuqos Enter control-plane mode and configure the switch to manage control-plane traffic. S5000 Syntax control-plane-cpuqos Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. service-policy rate-limit-cpu-queues Apply a policy map for the system to rate limit control traffic on a per-queue basis.
Related Commands qos-policy-input – creates a QoS input policy map. class-map – creates a QoS class map. policy-map-input – creates an input policy map. service-policy rate-limit-protocols Apply a policy for the system to rate limit control protocols on a per-protocol basis. S5000 Syntax Parameters service-policy rate-limit-protocols policy-name policy-name Enter the service-policy name, using a string up to 140 characters. Defaults Not configured.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. This command applies the service-policy based on the type of protocol defined in the ACL rules. You must create ACL and QoS policies prior to enabling this command. Example FTOS#show cpu-queue rate cp Service-Queue Rate (PPS) -------------- ----------Q0 1300 Q1 300 Q2 300 Q3 300 Q4 2000 Q5 400 Q6 400 Q7 1100 FTOS# show ip protocol-queue-mapping Display the queue mapping for each configured protocol.
VRRP FTOS# any any _ Q7 CP _ show ipv6 protocol-queue-mapping Display the queue mapping for each configured IPv6 protocol. S5000 Syntax show ipv6 protocol-queue-mapping Defaults Not configured. Command Modes EXEC Privilege Command History Example Version 9.0(1.3) Introduced on the S5000.
LLDP GVRP STP ISIS FTOS# any 01:80:c2:00:00:21 01:80:c2:00:00:00 01:80:c2:00:00:14/15 09:00:2b:00:00:04/05 0x88cc any any any any Q7 Q7 Q7 Q7 Q7 CP CP CP CP CP _ _ _ _ 387
Data Center Bridging (DCB) 14 Data center bridging (DCB) refers to a set of IEEE Ethernet enhancements that provide data centers with a single, robust, converged network to support multiple traffic types, including local area network (LAN), server, and storage traffic. FTOS commands for data center bridging features include 802.1Qbb priority-based flow control (PFC), 802.1Qaz enhanced transmission selection (ETS), and the data center bridging exchange (DCBx) protocol.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. To disable TLV transmission, use the no form of the command; for example, no advertise dcbx-appln-tlv iscsi. advertise dcbx-tlv On a DCBx port with a manual role, configure the PFC and ETS TLVs advertised to DCBx peers. S5000 Syntax advertise dcbx-tlv {ets-conf | ets-reco | pfc} [ets-conf | etsreco | pfc] [ets-conf | ets-reco | pfc] To remove the advertised ETS TLVs, use the no advertise dcbx-tlv command.
clear ets counters Clear all ETS TLV counters on an interface. S5000 Syntax Parameters clear ets counters interface-type slot/port interface-type slot/port Defaults none Command Modes EXEC Privilege Command History Version 9.0(1.3) Enter one of the following interface types and slot/port information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
stack-unit all stack-ports all Defaults none Command Modes EXEC Privilege Command History Version 9.0(1.3) Enter the keyword stack-unit followed by all stack-ports all to clear the counters on all interfaces. Introduced on the S5000. dcb enable Enable data center bridging. S5000 Syntax dcb enable To disable DCB, use the no dcb-enable command. Defaults Enabled Command Modes CONFIGURATION Command History Usage Information Related Commands Version 9.0(1.3) Introduced on the S5000.
Command Modes CONFIGURATION INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000. A DCB map is a template used to configure DCB parameters and apply them on converged Ethernet interfaces. DCB parameters include priority-based flow control (PFC) and enhanced traffic selection (ETS). To display the PFC and ETS settings in DCB maps, enter the show qos dcb-map command.
dcbx port-role Configure the DCBx port role the interface uses to exchange DCB information. S5000 Syntax dcbx port-role {auto-downstream | auto-upstream | config-source | manual} To remove a DCBx port role, use the no dcbx port-role {auto-downstream | auto-upstream | config-source | manual} command. Parameters auto-downstream | auto-upstream | config-source | manual Enter the DCBx port role, where: • auto-upstream: configures the port to receive a peer configuration.
Parameters auto | cee | cin | ieee-v2.5 Enter the DCBx version type used on the interface, where: • • cee: configures the port to use CEE (Intel 1.01). • cin: configures the port to use Cisco-Intel-Nuova (DCBx 1.0). • ieee-v2.5: configures the port to use IEEE 802.1az (Draft 2.5). Defaults Auto Command Modes INTERFACE PROTOCOL LLDP Command History Usage Information Version 9.0(1.3) auto: configures the port to operate using the DCBx version received from a peer. Introduced on the S5000.
Defaults none Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. fcoe priority-bits Configure the FCoE priority advertised for the FCoE protocol in application priority TLVs. S5000 Syntax fcoe priority-bits priority-bitmap To remove the configured FCoE priority, use the no fcoe priority-bits command. Parameters priority-bitmap Defaults 0x8 Command Modes PROTOCOL LLDP Command History Usage Information Version 9.0(1.3) Enter the priority-bitmap range.
Usage Information This command is available at the global level only. pfc mode on Re-enable or disable PFC operation in a DCB map applied to an Ethernet port. S5000 Syntax pfc mode on To disable PFC configuration in a DCB map, use the no pfc mode on command. Defaults PFC mode is on. Command Modes DCB MAP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. By default, PFC is enabled on S5000 Ethernet ports and 802.
Defaults No lossless queues are configured. Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The configuration of no-drop queues provides flexibility for ports on which PFC is not needed but lossless traffic should egress from the interface. The maximum number of lossless queues supported per port is two.
Usage Information Use the pfc priority command to configure PFC operation on an Ethernet interface for specified CoS traffic without using a DCB map in a network topology that uses the default ETS setting (assigns equal bandwidth to each 802.1p priority). The maximum number of lossless queues supported per port is two.
share latency and loss requirements. All 802.1p priorities mapped to the same queue must be in the same priority group. Repeat the priority-group bandwidth pfc command to configure PFC and ETS traffic handling for each priority group in a DCB map. You can enable PFC on a maximum of two priority queues. If you configure more than one priority group as strict priority, the higher numbered priority queue is given preference when scheduling data traffic.
dot1p6_groupnum dot1p7_groupnum Defaults None Command Modes DCB MAP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. PFC and ETS settings are not pre-configured on Ethernet ports. You must use the dcb-map command to configure different groups of 802.1p priorities with PFC and ETS settings. Using the priority-pgid command, you assign each 802.1p priority to one priority group. A priority group consists of 802.
Example FTOS# show dcb DCB Status : Enabled FTOS# show qos dcb-map Display the DCB parameters configured in a specified DCB map. S5000 Syntax Parameters show qos dcb-map map-name map-name Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) Displays the PFC and ETS parameters configured in the specified map. Introduced on the S5000.
PG:0 TSA:ETS BW:50 PFC:OFF Priorities:0 1 2 4 5 6 7 PG:1 TSA:ETS Priorities:3 Related Commands BW:50 PFC:ON dcb-map — creates a DCB map to configure PFC and ETS parameters and applies the PFC and ETS settings on Ethernet ports. show interfaces dcbx detail Displays the DCBx configuration on an Ethernet interface.
Field Description DCBx Operational Status Operational status (enabled or disabled) is used to elect a configuration source and internally propogate a DCB configuration. The DCBx operational status is a combination of PFC and ETS operational status. Reason: Displays when the DCBx operational status of a port is disabled (down). For a description of each reason, refer to the DCB chapter in the S5000 Configuration Guide.
Example Field Description Peer TLV Statistics: Acknowledgment Number Acknowledgement number transmitted in Control TLVs received from the peer device. PFC TLV Statistics: Input PFC TLV pkts Number of PFC TLVs received. PFC TLV Statistics: Output PFC TLV pkts Number of PFC TLVs transmitted. PFC TLV Statistics: Error PFC pkts Number of PFC error packets received. PFC TLV Statistics: PFC Pause Tx pkts Number of PFC pause frames transmitted.
Local DCBx Compatibility mode is CEE Local DCBx Configured mode is CEE Peer Operating version is CEE Local DCBx TLVs Transmitted: ErPfi Local DCBx Status ----------------DCBx Operational Version is 0 DCBx Max Version Supported is 0 Sequence Number: 2 Acknowledgment Number: 2 Protocol State: In-Sync Peer DCBx Status: ---------------DCBx Operational Version is 0 DCBx Max Version Supported is 255 Sequence Number: 2 Acknowledgment Number: 2 2 Input PFC TLV pkts,3 Output PFC TLV pkts,0 Error PFC pkts, 0 PFC Paus
Command Modes Command History Usage Information EXEC Privilege Version 9.0(1.3) Introduced on the S5000. To clear ETS TLV counters, use the clear ets counters interface port-type slot/port command. The following table describes the fields displayed in show interface ets command output. Table 2. Output Fields for the show interface ets Command Field Description Interface Interface type with stack-unit number and port number. Max Supported TC Group Maximum number of priority groups supported.
Field Description State Machine Type Type of state machine used for DCBx exchanges of ETS parameters: Feature — for legacy DCBx versions; Asymmetric — for an IEEE version. Conf TLV Tx Status Status of ETS Configuration TLV advertisements: enabled or disabled. Reco TLV Tx Status Status of ETS Recommendation TLV advertisements: enabled or disabled. Input Conf TLV pkts Number of ETS Configuration TLVs received. Output Conf TLV pkts Number of ETS Configuration TLVs transmitted.
7 0% Priority# Bandwidth 0 13% 1 13% 2 13% 3 13% 4 12% 5 12% 6 12% 7 12% Oper status is init ETS DCBx Oper status is Down Reason: Port shutdown State Machine Type is Asymmetric Conf TLV Tx Status is enabled Reco TLV Tx Status is enabled Example (detail) ETS TSA ETS ETS ETS ETS ETS ETS ETS ETS FTOS(conf)# show interfaces tengigabitethernet 0/0 ets detail Interface TenGigabitEthernet 0/0 Max Supported TC Groups is 4 Number of Traffic Classes is 8 Admin mode is onAdmin Parameters : -----------------Admin i
0 1 2 3 4 5 6 7 13% 13% 13% 13% 12% 12% 12% 12% ETS ETS ETS ETS ETS ETS ETS ETS Oper status is init Conf TLV Tx Status is disabled ETS DCBx Oper status is Down Reason: Port shutdown State Machine Type is Feature 0 Input Conf TLV Pkts, 0 Output Conf TLV Pkts, 0 Error Conf TLV Pkts show interfaces pfc Displays the PFC configuration applied to ingress traffic on an Ethernet interface, including priorities and link delay.
Table 3. Output Fields for the show interface pfc Command Field Description Interface Interface type with stack-unit number and port number. Admin mode is on Admin is enabled PFC admin mode is on or off with a list of the configured PFC priorities . When the PFC admin mode is on, PFC advertisements are enabled to be sent and received from peers; received PFC configuration will take effect. The admin operational status for a DCBx exchange of PFC configuration is enabled or disabled.
Example 412 Field Description PFC Link Delay Link delay (in quanta) used to pause specified priority traffic. Application Priority TLV: FCOE TLV Tx Status Status of FCoE advertisements in application priority TLVs from the local DCBx port: enabled or disabled. Application Priority TLV: iSCSI TLV Tx Status Status of iSCSI advertisements in application priority TLVs from the local DCBx port: enabled or disabled.
-------------------------------------FCOE TLV Tx Status is disabled ISCSI TLV Tx Status is disabled Local FCOE PriorityMap is 0x8 Local ISCSI PriorityMap is 0x10 Remote FCOE PriorityMap is 0x8 Remote ISCSI PriorityMap is 0x8 FTOS# show interfaces tengigabitethernet 0/49 pfc detail Interface TenGigabitEthernet 0/49 Admin mode is on Admin is enabled Remote is enabled Remote Willing Status is enabled Local is enabled Oper status is recommended PFC DCBx Oper status is Up State Machine Type is Feature TLV Tx Sta
Command Modes Command History Example (Summary) EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
5 6 7 8 - - Stack unit 1 stack port all Max Supported TC Groups is 4 Number of Traffic Classes is 1 Admin mode is on Admin Parameters: -------------------Admin is enabled TC-grp Priority# Bandwidth TSA -----------------------------------------------0 0,1,2,3,4,5,6,7 100% ETS 1 2 3 4 5 6 7 8 - show stack-unit stack-ports pfc detail Displays the PFC configuration applied to ingress traffic on stacked ports, including PFC Operational mode on each unit with the configured priorities, link delay, and number
Admin is enabled, Priority list is 4-5 Local is enabled, Priority list is 4-5 Link Delay 45556 pause quantum 0 Pause Tx pkts, 0 Pause Rx pkts 416
Dynamic Host Configuration Protocol (DHCP) 15 Dynamic host configuration protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on configuration policies determined by network administrators. The basic DHCP commands are supported by FTOS on the S5000 switch.
Usage Information Entering after the clear ip dhcp binding command clears all the IPs from the binding table. debug ip dhcp server Display FTOS debugging messages for DHCP. S5000 Syntax debug ip dhcp server [events | packets] Parameters events Enter the keyword events to display the DHCP state changes. packet Enter the keyword packet to display packet transmission/reception. Defaults none Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000.
disable Disable the DHCP server. S5000 Syntax disable DHCP Server is disabled by default. Enable the system to be a DHCP server using the no disable command. Defaults Disabled Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. dns-server Assign a DNS server to clients based on address pool. S5000 Syntax Parameters dns-server address [address2...address8] address Defaults none Command Modes DHCP Command History Version 9.0(1.
Defaults none Command Modes DHCP Command History Version 9.0(1.3) Introduced on the S5000. excluded-address Prevent the server from leasing an address or range of addresses in the pool. S5000 Syntax Parameters excluded-address [address | low-address high-address] address Enter a single address to be excluded from the pool. low-address Enter the lowest address in a range of addresses to be excluded from the pool.
host For manual (rather than automatic) configurations, assign a host to a single-address pool. S5000 Syntax Parameters host address address/mask Defaults none Command Modes DHCP Command History Version 9.0(1.3) Enter the host IP address and subnet mask. Introduced on the S5000. lease Specify a lease time for the addresses in a pool. S5000 Syntax Parameters lease {days [hours] [minutes] | infinite} days Enter the number of days of the lease. The range is 0 to 31.
netbios-name-server Specify the NetBIOS Windows Internet Naming Service (WINS) name servers, in order of preference, that are available to Microsoft Dynamic Host Configuration Protocol (DHCP) clients. S5000 Syntax Parameters netbios-name-server address [address2...address8] address Defaults none Command Modes DHCP Command History Version 9.0(1.3) Enter the address of the NETBIOS name server. You may enter up to eight, in order of preference. Introduced on the S5000.
network Specify the range of addresses in an address pool. S5000 Syntax Parameters network network /prefix-length network/ prefixlength Defaults none Command Modes DHCP Command History Version 9.0(1.3) Specify a range of addresses. Prefix-length range is 17 to 31. Introduced on the S5000. pool Create an address pool. S5000 Syntax Parameters pool name name Defaults none Command Modes DHCP Command History Version 9.0(1.3) Enter the address pool’s identifying name.
Command Modes Command History EXEC Privilege Version 9.0(1.3) Introduced on the S5000. show ip dhcp configuration Display the DHCP configuration. S5000 Syntax Parameters show ip dhcp configuration [global | pool name] pool name Display the configuration for a DHCP pool. global Display the DHCP configuration for the entire system. Defaults none Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. show ip dhcp conflict Display the address conflict log.
show ip dhcp server Display the DHCP server statistics. S5000 Syntax show ip dhcp server statistics Defaults none Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. Commands to Configure Secure DHCP DHCP, as defined by RFC 2131, provides no authentication or security mechanisms. Secure DHCP is a suite of features that protects networks that use dynamic address allocation from spoofing and attacks. arp inspection Enable dynamic arp inspection (DAI) on a VLAN.
arp inspection-trust Specify a port as trusted so that ARP frames are not validated against the binding table. S5000 Syntax arp inspection-trust Defaults Disabled Command Modes Command History Related Commands • INTERFACE • INTERFACE PORT-CHANNEL Version 9.0(1.3) Introduced on the S5000. arp inspection – enables dynamic ARP inspection on a VLAN. clear ip dhcp snooping Clear the DHCP binding table.
Parameters remote-id Configure the system to enable the remote-id string in option-82. trust-downstream Configure the system to trust Option 82 when it is received from the previous-hop router. Defaults Disabled Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. ip dhcp snooping Enable DHCP snooping globally. S5000 Syntax [no] ip dhcp snooping Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.
Defaults Command Modes Command History Related Commands vlan-id vlan-id Enter the keywords vlan-id followed by the VLAN to which the host belongs. The range is 2 to 4094. ip ip-address Enter the keyword ip followed by the IP address that the server is leasing. interface type Enter the keyword interface followed by the type of interface to which the host is connected: • For a Gigabit Ethernet interface, enter the keyword gigabitethernet.
ip dhcp snooping database renew Renew the binding table. S5000 Syntax ip dhcp snooping database renew Defaults none Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. ip dhcp snooping trust Configure an interface as trusted. S5000 Syntax [no] ip dhcp snooping trust Defaults Untrusted Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000. ip dhcp source-address-validation Enable the IP Source Guard.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. You must allocate at least one FP block to ipmacacl before you can enable IP+MAC Source Address Validation. 1. Use the cam-acl l2acl command from CONFIGURATION mode. 2. Save the running-config to the startup-config. 3. Reload the system. ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs.
Command Modes Command History CONFIGURATION Version 9.0(1.3) Introduced on the S5000. show ip dhcp snooping Display the contents of the DHCP binding table or display the interfaces configured with IP Source Guard. S5000 Syntax Parameters Defaults Command Modes Command History Related Commands show ip dhcp snooping [binding | source-address-validation] binding Display the interfaces configured with IP Source Guard. source-addressvalidation Display the interfaces configured with IP Source Guard.
Equal Cost Multi-Path Overview (ECMP) 16 ECMP is supported on the S5000 switch. ecmp-group Provides a mechanism to monitor traffic distribution on an ECMP link bundle. A system log is generated when the standard deviation of traffic distribution on a member link exceeds a defined threshold. S5000 Syntax ecmp-group ecmp-group-id To remove the selected interface, use the ecmp-group no interface command. To disable link bundle monitoring, use the ecmp-group no link-bundle-monitor command.
Usage Information Using CONFIGURATION mode, create an ECMP group ID. You can then assign interfaces to the ECMP group using CONFIGURATION ECMP-GROUP mode. You can also enable on the portchannel configuration using the CONFIGURATION ECMP-GROUP command mode. hash-algorithm Changes the hash algorithm used to distribute traffic flows across a Port Channel.
hash-algorithm ecmp Change the hash algorithm used to distribute traffic flows across an ECMP (equal-cost multipath routing) group. S5000 Syntax hash-algorithm ecmp {crc-upper} | {crc} | {dest-ip} | {lsb} | {xor} To return to the default hash algorithm, use the no hash-algorithm ecmp command. Parameters Defaults Command Modes Command History Usage Information crc Uses specified polynomicals or bits of computed cyclic redundancy checks (CRC) for the hash computation.
ip ecmp-group Enable and specify the maximum number of ecmp that the L3 CAM hold for a route, By default, when maximum paths are not configured, the CAM can hold a maximum of 16 ecmp per route. S5000 Syntax ip ecmp-group {maximum-paths | {number} {path-fallback} To negate a command, use the no ip ecmp-group maximum-paths {number} command. Parameters maximum-paths Specify the maximum number of ECMP for a route. The range is 2 to 64. path-fallback Use the keyword path-fallback to enable this feature.
link-bundle-monitor enable Provides a mechanism to enable monitoring of traffic distribution on an ECMP link bundle. S5000 Syntax link-bundle-monitor enable To exit from ecmp group mode, use the exit command. Command Modes Command History • ECMP-GROUP • PORT-CHANNEL INTERFACE Version 9.0(1.3) Introduced on the S5000.
17 FCoE Transit Use FTOS commands to enable the FCoE Transit feature and configure FIP snooping on the S5000 switch on Ethernet interfaces. When you enable an S5000 for FCoE transit, the switch functions as a FIP snooping bridge. In a converged Ethernet network, an S5000 switch can operate as an intermediate Ethernet bridge to snoop on Fibre Channel over Ethernet initialization protocol (FIP) packets during the login process on Fibre Channel over Ethernet (FCoE) forwarders (FCFs).
clear fip-snooping statistics Clears the statistics on the FIP packets snooped on all VLANs, a specified VLAN, or a specified port interface. S5000 Syntax Parameters Command Modes Command History clear fip-snooping statistics [interface vlan vlan-id | interface port-type port/slot | interface port-channel portchannel-number] vlan-id Enter the VLAN ID of the FIP packet statistics to be cleared. port-type port/ slot Enter the port-type and slot number of the FIP packet statistics to be cleared.
Command History Version 9.0(1.3) Introduced on the S5000. feature fip-snooping Enable the S5000 for FCoE transit and FIP snooping. S5000 Syntax feature fip-snooping To disable the FCoE transit feature, use the no feature fip-snooping command. Defaults Disabled Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. fip-snooping enable Enable FIP snooping on all VLANs or on a specified VLAN.
fip-snooping fc-map Configure the FC-MAP value FIP snooping uses on all VLANs. S5000 Syntax fip-snooping fc-map fc-map-value To remove the configured FM-MAP value, use the no fip-snooping fc-map command. Parameters Defaults fc-map-value 0x0EFC00 Command Modes Command History Enter the FC-MAP value FIP snooping uses. The range is 0EFC00 to 0EFCFF. • CONFIGURATION • VLAN INTERFACE Version 9.0(1.3) Introduced on the S5000.
number of sessions are active with an ENode, additional sessions are not allowed as long as the total number is greater than the newly configured limit. When the maximum number of FIP snooping sessions for an ENode are already active on the switch, a log message is recorded if the ENode tries to log in to initiate another session. fip-snooping port-mode fcf Configure the port for bridge-to-FCF links.
---100 ------TRUE -------0X0EFC00 show fip-snooping enode Display information on the ENodes in FIP-snooped sessions, including the ENode interface and MAC address, FCF MAC address, VLAN ID and FC-ID. S5000 Syntax Parameters Command Modes Command History Usage Information Example 444 show fip-snooping enode [enode-mac-address] enode-macaddress • EXEC • EXEC Privilege Version 9.0(1.3) Enter the MAC address of the ENodes to be displayed. Introduced on the S5000.
show fip-snooping fcf Display information on the FCFs in FIP-snooped sessions, including the FCF interface and MAC address, FCF interface, VLAN ID, FC-MAP value, FKA advertisement period, and number of ENodes connected. S5000 Syntax Parameters Command Modes Command History Usage Information Example show fip-snooping fcf [fcf-mac-address] fcf-mac-address • EXEC • EXEC Privilege Version 9.0(1.3) Enter the MAC address of the FCF to be displayed. Introduced on the S5000.
show fip-snooping sessions Display information on FIP-snooped sessions on all VLANs or a specified VLAN, including the ENode interface and MAC address, the FCF interface and MAC address, VLAN ID, FCoE MAC address and FCoE session ID number (FC-ID), worldwide node name (WWNN) and the worldwide port name (WWPN).
show fip-snooping statistics Display statistics on the FIP packets snooped on all interfaces, including VLANs, physical ports, and port channels. S5000 Syntax Parameters Command Modes Command History Usage Information show fip-snooping statistics [interface vlan vlan-id | interface port-type port/slot | interface port-channel portchannel-number] vlan-id Enter the VLAN ID of the FIP packet statistics displays.
Example 448 Field Description Number of VN Port Keep Alives Number of FIP-snooping VN port keep-alive frames received on the interface. Number of Multicast Discovery Advertisements Number of FIP-snooping multicast discovery advertisements received on the interface. Number of Unicast Discovery Advertisements Number of FIP-snooping unicast discovery advertisements received on the interface. Number of FLOGI Accepts Number of FIP FLOGI accept frames received on the interface.
Number of VN Port Session Timeouts :0 Number of Session failures due to Hardware Config :0 FTOS(conf)# FTOS# show fip-snooping statistics int tengigabitethernet 0/11 Number of Vlan Requests :1 Number of Vlan Notifications :0 Number of Multicast Discovery Solicits :1 Number of Unicast Discovery Solicits :0 Number of FLOGI :1 Number of FDISC :16 Number of FLOGO :0 Number of Enode Keep Alive :4416 Number of VN Port Keep Alive :3136 Number of Multicast Discovery Advertisement :0 Number of Unicast Discovery Adve
show fip-snooping system Display information on the status of FIP snooping on the switch (enabled or disabled), including the number of FCoE VLANs, FCFs, ENodes, and currently active sessions. S5000 Syntax Command Modes Command History Example show fip-snooping system • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Force10 Resilient Ring Protocol (FRRP) 18 Force10 Resilient Ring Protocol (FRRP) is supported on the S5000 switch. FRRP is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the Spanning Tree Protocol. The Resilient Ring Protocol is an efficient protocol that transmits a high-speed token across a ring to verify the link status. All the intelligence is contained in the master node with practically no intelligence required of the transit mode.
Example • hello Rx and Tx counters • Topology change Rx and Tx counters • The number of state change counters FTOS#clear frrp Clear frrp statistics counter on all ring [confirm] yes FTOS#clear frrp 4 Clear frrp statistics counter for ring 4 [confirm] yes FTOS# Related Commands show frrp – displays the Resilient Ring Protocol configuration. debug frrp Clear the FRRP statistics counters.
member-vlan Specify the member VLAN identification numbers. S5000 Syntax member-vlan {vlan-range} To return to the default, use the no member-vlan [vlan-range] command. Parameters vlan-range Enter the member VLANs using VLAN IDs (separated by commas), a range of VLAN IDs (separated by a hyphen), a single VLAN ID, or a combination. For example: VLAN IDs (comma-separated): 3, 4, 6. Range (hyphen-separated): 5-10. Combination: 3, 4, 5-10, 8.
protocol frrp Enter the Resilient Ring Protocol and designate a ring identification. S5000 Syntax protocol frrp {ring-id} To exit the ring protocol, use the no protocol frrp {ring-id} command. Parameters ring-id Enter the ring identification number. Range: 1 to 255. Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. This command places you into the resilient ring protocol.
Usage Information Executing this command without the optional ring-id command clears the statistics counters on all the available rings. FTOS requires a command line confirmation before the command is executed.
GARP VLAN Registration (GVRP) 19 The basic GVRP commands are supported by FTOS on S5000 switch. The generic attribute registration protocol (GARP) mechanism allows the configuration of a GARP participant to propagate through a network quickly. A GARP participant registers or de-registers its attributes with other participants by making or withdrawing declarations of attributes. At the same time, based on received declarations or withdrawals, GARP handles attributes of other participants.
simply rely on GVRP for VLAN updates. But if the local bridge needs to know only how to reach a given VLAN, then GVRP provides all necessary information. • The VLAN topologies that GVRP learns are treated differently from VLANs that are statically configured. The GVRP dynamic updates are not saved in NVRAM, while static updates are saved in NVRAM. When GVRP is disabled, the system deletes all VLAN interfaces that were learned through GVRP and leaves unchanged all VLANs that were manually configured.
Parameters config Enter the keyword config to enable debugging on the GVRP configuration. event Enter the keyword event to enable debugging on the JOIN/LEAVE events. pdu Enter the keyword pdu followed by the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below. Defaults Disabled. Command Modes EXEC Command History Version 9.0(1.
garp timers Set the intervals (in milliseconds) for sending GARP messages. S5000 Syntax garp timers {join | leave | leave-all} To return to the previous setting, use the no garp timers {join | leave | leave-all} command. Parameters join Enter the keyword join followed by the number of milliseconds to configure the join time. The range is 100 to 147483647 milliseconds. The default is 200 milliseconds. NOTE: Designate the milliseconds in multiples of 100.
gvrp enable Enable GVRP on physical interfaces and LAGs. S5000 Syntax gvrp enable To disable GVRP on the interface, use the no gvrp enable command. Defaults Disabled. Command Modes CONFIGURATION-INTERFACE Command History Related Commands Version 9.0(1.3) Introduced on the S5000. disable – globally disables GVRP. gvrp registration Configure the GVRP register type. S5000 Syntax gvrp registration {fixed | normal | forbidden} To return to the default, use the gvrp register normal command.
GVRP. If the VLAN is removed from the port that sends GVRP advertisements to this device, the port stops being a member of the VLAN. Use the forbidden command when you do not want the interface to advertise or learn about VLANs through GVRP. Related Commands show gvrp – displays the GVRP configuration including the registration. protocol gvrp Access GVRP protocol — (config-gvrp)#. S5000 Syntax protocol gvrp Defaults Disabled. Command Modes CONFIGURATION Command History Related Commands Version 9.
show garp timers Display the GARP timer settings for sending GARP messages. S5000 Syntax show garp timers Defaults none Command Modes Command History • • EXEC EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Example FTOS#show garp timers GARP Timers Value (milliseconds) ---------------------------------------Join Timer 200 Leave Timer 600 LeaveAll Timer 10000 FTOS# Related Commands garp timers – sets the intervals (in milliseconds) for sending GARP messages.
Defaults Command Modes Command History none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information If no ports are GVRP participants, the message output changes from GVRP Participants running on to GVRP Participants running on no ports. Example R3#show gvrp brief GVRP Feature is currently enabled.
summary Defaults Command Modes Command History Usage Information Enter the keyword summary to display just a summary of the GVRP statistics. none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on S5000. Invalid messages/attributes skipped can occur in the following cases: • The incoming GVRP PDU has an incorrect length. • "End of PDU" was reached before the complete attribute could be parsed.
High Availability (HA) 20 In FTOS, High Availability (HA) is a collection of features that synchronize switch configuration to minimize recovery time in the event of a stack-unit failure. High Availability features are supported only on stacked S5000 switches; they are not supported on a standalone S5000 switch. In general, a protocol is defined as “hitless” in the context of stack-unit failure. A protocol is defined as hitless if a stackunit failover has no impact on the protocol.
redundancy force-failover Force the stand by stack-unit to become the primary stack-unit. S5000 Syntax Parameters redundancy force-failover {stack-unit} stack-unit Default Not configured. Command Modes EXEC Privilege Command History Version 9.0(1.3) Enter the keyword stack-unit to force a peer stack-unit to become the management stack-unit. Introduced on the S5000. Usage Information Use this command to provide a hitless or warm upgrade.
Parameters lacp Enter the keyword lacp to make LACP hitless. xstp Enter the keyword xstp to invoke hitless STP (all STP modes — MSTP, PVST+, RSTP, and STP). Default Disabled Command Modes CONFIGURATION Command History Version 9.0(1.3) Related Commands Introduced on the S5000. • show lacp – displays the lacp configuration. • show redundancy – displays the current redundancy configuration.
Command History Version 9.0(1.3) Introduced on the S5000. show redundancy Display the current redundancy configuration. S5000 Syntax Command Modes Command History Usage Information show redundancy • EXEC • EXEC Privilege Version 9.0(1.3) The following describes the show redundancy command shown in the Example below. Field Description Stack-unit Status Displays the following information: Stack-unit Redundancy Configuration 470 Introduced on the S5000. • Stack-unit ID.
Field Description • Stack-unit Failover Record Last Data Sync Record Displays the following information: • Stack-unit failover counter (to reset the counter, use the redundancy reset-counter command) • The time and date of the last stack-unit failover • The reason for the last stack-unit failover Displays the data sync information and the timestamp for the data sync: • Stack-unit Config is configured stack-units and their interfaces. • Start-up Config is the contents of the startup-config file.
Stack Unit Config: Start-up Config: Runtime Event Log: Running Config: ACL Mgr: LACP: STP: SPAN: FTOS# 472 succeeded succeeded succeeded succeeded succeeded succeeded succeeded succeeded Jul Jul Jul Jul Jul Jul Jul Jul 13 13 13 13 13 13 13 13 2012 2012 2012 2012 2012 2012 2012 2012 21:28:53 21:28:53 21:28:53 21:28:53 21:28:53 21:28:53 21:28:53 21:28:53
Internet Group Management Protocol (IGMP) 21 The IGMP commands are supported on the S5000 switch. This chapter contains the following sections: • IGMP Commands • IGMP Snooping Commands IGMP Commands FTOS supports IGMPv1/v2/v3 and is compliant with RFC-3376. Important Points to Remember • FTOS supports protocol-independent multicast-sparse (PIM-SM) and protocol-independent source-specific multicast (PIM-SSM) include and exclude modes. • IGMPv2 is the default version of IGMP on interfaces.
Command Modes For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60. • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128. • For a VLAN interface, enter the keyword vlan followed by a VLAN id number from 1 to 4094.
Defaults Disabled. Command Modes EXEC Privilege Command History Usage Information Version 9.0(1.3) Introduced on the S5000. IGMP commands accept only non-VLAN interfaces—specifying VLAN does not yield results. This command displays packets for IGMP and IGMP snooping. ip igmp access-group Use this feature to specify access control for packets. S5000 Syntax ip igmp access-group access-list To remove the feature, use the no ip igmp access-group access-list command.
Command History Version 9.0(1.3) Introduced on the S5000. ip igmp immediate-leave Enable IGMP immediate leave. S5000 Syntax ip igmp immediate-leave [group-list prefix-list-name] To disable ip igmp immediate leave, use the no ip igmp immediate-leave command. Parameters group-list prefix- list-name Defaults Not configured. Command Modes INTERFACE Command History Usage Information Version 9.0(1.
Defaults 1000 milliseconds Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000. ip igmp querier-timeout Change the interval that must pass before a multicast router decides that there is no longer another multicast router that should be the querier. S5000 Syntax ip igmp querier-timeout seconds To return to the default value, use the no ip igmp querier-timeout command. Parameters seconds Defaults 125 seconds Command Modes INTERFACE Command History Version 9.0(1.
Command History Version 9.0(1.3) Introduced on the S5000. ip igmp query-max-resp-time Set the maximum query response time advertised in general queries. S5000 Syntax ip igmp query-max-resp-time seconds To return to the default values, use the no ip igmp query-max-resp-time command. Parameters seconds Defaults 10 seconds Command Modes INTERFACE Command History Version 9.0(1.3) Enter the number of seconds for the maximum response time. The range is 1 to 25. The default is 10 seconds.
Usage Information Mapping applies to both v1 and v2 IGMP joins; any updates to the ACL are reflected in the IGMP groups. You may not use extended access lists with this command. When you configure a static SSM map and the router cannot find any matching access lists, the router continues to accept (*,G) groups. Related Commands ip access-list standard – creates a standard access list to filter based on IP address. ip igmp static-group Configure an IGMP static group.
Related Commands show ip igmp groups – displays IGMP group information. ip igmp version Manually set the version of the router to IGMPv2 or IGMPv3. S5000 Syntax Parameters ip igmp version {2 | 3} 2 Enter the number 2 to set the IGMP version number to IGMPv2. 3 Enter the number 3 to set the IGMP version number to IGMPv3. Defaults 2 (that is, IGMPv2) Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000. show ip igmp groups View the IGMP groups.
detail Command Modes Command History Usage Information • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128. • For a VLAN interface, enter the keyword vlan followed by a VLAN id number from 1 to 4094. (OPTIONAL) Enter the keyword detail to display the IGMPv3 source information. • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Example (VLT) NOTE: The asterisk (*) after the port channel number (Po 2) highlighted in the Example below indicates the port channel is VLT, that the local VLT port channel is down and the remote VLT port is up. FTOS#show ip igmp groups Total Number of Groups: 5 IGMP Connected Group Membership Group Address Interface Mode Uptime Expires Last Reporter 225.0.0.0 Vlan 100 IGMPv2 00:00:05 00:02:04 3.0.0.51 Member Ports: Po 2* 225.0.0.1 Vlan 100 IGMPv2 00:00:05 00:02:04 3.0.0.51 Member Ports: Po 2* 225.0.0.
Command History Version 9.0(1.3) Introduced on the S5000. Usage Information IGMP commands accept only non-VLAN interfaces—specifying VLAN does not yield results.
IGMP Snooping Commands FTOS supports IGMP Snooping version 2 and 3 on the S5000 switch. Important Points to Remember for IGMP Snooping • FTOS supports version 1, version 2, and version 3 hosts. • FTOS IGMP snooping implementation is based on IP multicast address (not based on Layer 2 multicast mac address) and the IGMP snooping entries are in Layer 3 flow table not in Layer 2 forwarding information base (FIB). • FTOS IGMP snooping implementation is based on draft-ietf-magma-snoop-10.
Defaults Command Modes Command History Usage Information Disabled. • CONFIGURATION • INTERFACE VLAN Version 9.0(1.3) Introduced on the S5000. You must enter this command to enable IGMP snooping. When you enable this from CONFIGURATION mode, IGMP snooping enables on all VLAN interfaces (except the default VLAN). NOTE: You must execute the no shutdown command on the VLAN interface for IGMP Snooping to function. Related Commands shutdown – (no shutdown) activates an interface.
ip igmp snooping flood This command controls the flooding behavior of unregistered multicast data packets. S5000 Syntax ip igmp snooping flood Defaults Enabled. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. On the S5000, unregistered multicast data traffic drops when you disable flooding; it does not forward the packets to multicast router ports.
ip igmp snooping mrouter Statically configure a VLAN member port as a multicast router interface. S5000 Syntax ip igmp snooping mrouter interface type slot/port To delete a specific multicast router interface, use the no igmp snooping mrouter interface type slot/port command. Parameters interface type slot/port Enter the interface keyword followed by the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. This command enables the IGMP switch to send General Queries periodically. This is useful when there is no multicast router present in the VLAN because the multicast traffic does not need to be routed. You must assign an IP address to the VLAN interface for the switch to act as a querier for this VLAN. show ip igmp snooping mrouter Display multicast router interfaces.
22 Interfaces The commands in this chapter are supported in FTOS on the S5000 switch. This chapter contains the following sections: • Basic Interface Commands • Port Channel Commands • Time Domain Reflectometer (TDR) • UDP Broadcast Basic Interface Commands The following commands are for Physical, Loopback, and Null interfaces.
• For the management interface on the stack-unit, enter the keyword ManagementEthernet followed by slot number (0-1) and port number zero (0). • For a Fibre Channel interface, enter the keyword fibrechannel followed by slot/port numbers. The port range is 0 to 47. vrrp [[ipv6] vrid] (OPTIONAL) Enter the keyword vrrp to clear the counters of all VRRP groups. To clear the counters of VRRP groups on all IPv6 interfaces, enter ipv6.
Defaults Without an interface specified, the command clears all interface dampening counters. Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. Usage Information After you enter the clear counters command and verify the results with the show interfaces command, the line rate is not reset to 0.00%.
Example (Unsuccessful) FTOS#show interfaces tengigabitethernet 0/26 | grep "XFP type" Pluggable media present, XFP type is 10GBASE-CX4 FTOS(conf-if-te-0/26)#cx4-cable-length short % Error: Unsupported command. FTOS(conf-if-te-0/26)#cx4-cable-length medium % Error: Unsupported command. FTOS(conf-if-te-0/26)#cx4-cable-length long % Error: Unsupported command.
Defaults Disabled. Command Modes INTERFACE (conf-if-) Command History Usage Information Version 9.0(1.3) Introduced on the S5000. With each flap, FTOS penalizes the interface by assigning a penalty (1024) that decays exponentially depending on the configured half-life. After the accumulated penalty exceeds the suppress threshold value, the interface moves to the Error-Disabled state. This interface state is deemed as “down” by all static/dynamic Layer 2 and Layer 3 protocols.
Related Commands • Entering a text string after the description command overwrites any previous text string that you previously configured as the description. • The shutdown and description commands are the only commands that you can configure on an interface that is a member of a port-channel. • Use the show interfaces description command to display descriptions configured for each interface. show interfaces description – displays the description field of the interfaces.
ecmp-group Provides a mechanism to monitor traffic distribution on a link aggregation group (LAG) bundle. A system log or simple network management protocol (SNMP) trap is generated when the standard deviation of traffic distribution on a member link exceeds a defined threshold. S5000 Syntax ecmp-group {ecmp-path} [interface interface] [monitoring enable] To negate a command, use the no command. Parameters ecmp-path Enter the path number for the LAG. The range is 2 to 64.
tx on Enter the keywords tx on to send control frames from this port to the connected device when a higher rate of traffic is received. This is the default value on the send side. tx off Enter the keywords tx off so that flow control frames are not sent from this port to the connected device when a higher rate of traffic is received. Defaults rx off tx off Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
Related Commands off on on on off on off on off off on on off on off on on off off off on on off on off on on on off off on on off on off on LocNegRx off off off off LocNegTx RemNegRx RemNegTx off off off off off off off off off off off off off off off off off off on off off off on off off off off off off on on on off off on on off off on on off on on on off off on on off off on on off off on on off off on on show running-config – displays the flow configuration parameters (non-
Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.0(1.3) • For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60. • For a range of interfaces, enter the keyword range followed by slot/port number.
interface loopback Configure a Loopback interface. S5000 Syntax interface loopback number To remove a loopback interface, use the no interface loopback number command. Parameters number Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.0(1.3) Enter a number as the interface number. The range is 0 to 16383. Introduced on the S5000. Example FTOS(conf)#interface loopback 1655 FTOS(conf-if-lo-1655)# Related Commands interface – configures a physical interface.
If your system has more than one stack-unit, use the show redundancy command to display which stack-unit is the primary unit. Example FTOS(conf)#interface managementethernet 0/0 FTOS(conf-if-ma-0/0)# Related Commands management route – configures a static route that points to the Management interface or a forwarding router. duplex (Management) – clears the forwarding information base (FIB) entries on a specified stack-unit. speed (Management interface) – clears the FIB entries on a specified stack-unit.
interface range This command permits configuration of a range of interfaces to which subsequent commands are applied (bulk configuration). Using the interface range command, you can enter identical commands for a range of interface. S5000 Syntax Parameters interface range interface-type slot/port—range , - interfacetype slot/port—range , ... interface range port-type slot/ port , port-type slot/port , ...
• Bulk configuration is created if at least one interface is valid. • Non-existing interfaces are excluded from the bulk configuration with a warning message. • The interface range prompt includes interface types with slot/port information for valid interfaces. The prompt allows for a maximum of 32 characters. If the bulk configuration exceeds 32 characters, it is represented by an ellipsis ( ... ).
Example (Multiple Range) This example shows how to use commas to add VLAN and port-channel interfaces to the range. FTOS(config-if)# interface range gigabitethernet 2/24 - 35 , tengigabitethernet 3/36 – 41 , vlan 2 – 100 , port-channel 1 – 25 FTOS(config-if-range-gi-2/24-35,te-3/36-41,vl-2-100,po-1-25)# no shutdown FTOS(config-if-range)# Related Commands interface port-channel – configures a port channel group. interface vlan – configures a VLAN interface.
You can enter up to six comma-separated ranges. Separate each interface type and port range with a space, comma, and space; for example: interface range tengigabitethernet 0/1 5 , interface range tengigabitethernet 0/10 11. Comma-separated port ranges can include VLANs, port-channels, and physical interfaces; for example: interface range tengigabitethernet 0/1 - 5 , vlan 2 – 10 , port—channel 1 – 5. Defaults none Command Modes CONFIGURATION Command History Example (Single Range) Version 9.0(1.
Example (Single Range) This example shows the macro named test that was defined earlier. FTOS(config)#interface range macro test FTOS(config-if-range-te-0/0-3,gi-5/0-47,gi-13/0-89)# FTOS Related Commands interface range – configures a range of command (bulk configuration). interface range macro (define) – defines a macro for an interface range (bulk configuration). interface vlan Configure a VLAN. You can configure up to 4094 VLANs.
keepalive Send keepalive packets periodically to keep an interface alive when it is not transmitting data. S5000 Syntax keepalive [seconds] To stop sending keepalive packets, use the no keepalive command. Parameters seconds Defaults Enabled. Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) (OPTIONAL) Enter the number of seconds between keepalive packets. The range is 0 to 23767. The default is 10 seconds. Introduced on the S5000.
stack-unit unitnumber Command Modes Command History Usage Information Example (single interface) • EXEC • EXEC Privilege Version 9.0(1.3) • For a Management interface, enter the keyword managementethernet followed by slot/port numbers. The port is 0. • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128. • For a VLAN interface, enter the keyword vlan followed by a VLAN id number from 1 to 4094.
Input bytes: Output bytes: Input packets: Output packets: 64B packets: Over 64B packets: Over 127B packets: Over 255B packets: Over 511B packets: Over 1023B packets: Error statistics: Input underruns: Input giants: Input throttles: Input CRC: Input IP checksum: Input overrun: Output underruns: Output throttles: m l T q Example (all interfaces) 43 43 0 0 0 0 0 0 0 0 Bps Bps pps pps pps pps pps pps pps pps 86 86 1 1 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 pps pps pps pps pps pps pps pps 0 0 0 0 0 0
mtu Set the link maximum transmission unit (MTU) (frame size) for an Ethernet interface. S5000 Syntax mtu value To return to the default MTU value, use the no mtu command. Parameters value Enter a maximum frame size in bytes. The range is 594 to 12000. The default is 1554. Defaults 1554 Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
Layer 2 Overhead Link MTU and IP MTU Delta Tagged Packet with VLAN-Stack Header 26 bytes portmode hybrid Set a physical port or port-channel to accept both tagged and untagged frames. A port configured this way is identified as a hybrid port in report displays. S5000 Syntax portmode hybrid To return a port to accept either tagged or untagged frames (non-hybrid), use the no portmode hybrid command.
FTOS(conf-if-vl-20)#tagged gi 7/0 FTOS(conf-if-vl-20)# Example FTOS(conf-if-vl-20)#do show interfaces switchport Name: TenGigabitEthernet 7/0 802.
Usage Information The output of the show interfaces command displays the configured rate interval, along with the collected traffic data. Related Commands show interfaces – displays information on physical and virtual interfaces. show config Display the interface configuration. S5000 Syntax show config Command Modes INTERFACE Command History Example Version 9.0(1.3) Introduced on the S5000. FTOS(conf-if)#show conf ! interface TenGigabitEthernet 0/0 ip address 10.1.1.
no shutdown ! interface TenGigabitEthernet 0/2 no ip address portmode hybrid switchport dcb-policy input pfc3 no shutdown show interfaces Display information on a specific physical interface or virtual interface. S5000 Syntax Parameters Command Modes Command History show interfaces type slot/port interfaces type slot/port • EXEC • EXEC Privilege Version 9.0(1.3) Enter one of the following keywords and slot/port or number information. Valid slot numbers are 0-11.
Usage Information Use the show interfaces command for details on a specific interface. Use the show interfaces stack-unit command for details on all interfaces on the designated stackunit. On the S5000, the show interface output displays incorrect rate information details over time for link monitoring when the rate-interval is configured for 5 seconds. Dell Networking recommends using higher rate-intervals such as 15 to 299 seconds to minimize the errors seen.
Queuing strategy... States the packet queuing strategy. FIFO means first in first out.
Example (single interface) FTOS#show interfaces tengigabitethernet 0/2 TenGigabitEthernet 0/2 is up, line protocol is up Hardware is DellEth, address is 5c:f9:dd:ee:ff:c2 Current address is 5c:f9:dd:ee:ff:c2 Pluggable media present, SFP+ type is 10GBASE-SR Medium is MultiRate, Wavelength is 850nm SFP+ receive power reading is -2.
Output 0 errors, 0 invalid protocol Time since last interface status change: 3d21h47m Related Commands show interfaces configured – displays any interface with a non-default configuration. show interfaces stack-unit – displays information on all interfaces on a specific stack-unit. show interfaces rate – displays information of either rate limiting or rate policing on the interface. show interfaces switchport – displays Layer 2 information about the interfaces.
0 CRC, 0 overrun, 0 discarded Output Statistics: 355 packets, 40162 bytes, 0 underruns 0 64-byte pkts, 355 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 355 Multicasts, 0 Broadcasts, 0 Unicasts 0 throttles, 0 discarded, 0 collisions, 0 wreddrops Rate info (interval 299 seconds): Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Output 00.00 Mbits/sec, 0 packets/sec, 0.
Command History Version 9.0(1.3) Introduced on the S5000. Example FTOS#show interfaces dampening Interface Supp Flaps Penalty Half-Life Reuse Suppress Max-Sup State Te 3/2 Up 0 0 20 800 4500 120 Te 3/10 Up 0 0 5 750 2500 20 FTOS# Related Commands dampening – configures dampening on an interface. show interfaces – displays information on a specific physical interface or virtual interface. show interfaces configured – displays any interface with a non-default configuration.
Command Modes Command History Usage Information Example 520 • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes the show interfaces description command shown in the Example below. Field Description Interface Displays the type of interface and associated slot and port number. OK? Indicates if the hardware is functioning properly. Status States whether the interface is enabled (up) or disabled (administratively down).
ManagementEthernet ManagementEthernet ManagementEthernet ManagementEthernet Vlan 1 Vlan 100 FTOS# Related Commands 8/0 9/0 10/0 11/0 NO NO NO NO NO NO up not present up not present up not present up not present admin down down admin down down show interfaces – displays information on a specific physical interface or virtual interface. show interfaces stack-unit Display information on all interfaces on a specific S5000 stack member.
2 64-byte pkts, 29705 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 29707 Multicasts, 0 Broadcasts, 0 Unicasts 0 throttles, 0 discarded, 0 collisions, 0 wreddrops Rate info (interval 299 seconds): Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Output 00.00 Mbits/sec, 0 packets/sec, 0.
Defaults Command Modes Command History Example • For a Fibre Channel interface, enter the keyword FibreChannel followed by slot/port numbers. The port range is 0 to 47. • For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383. • For a Management interface, enter the keyword managementethernet followed by slot/port numbers. The port is 0. • For a Null interface, enter the keywords null 0.
Related Commands show interfaces – displays information on a specific physical interface or virtual interface. show interfaces switchport Display only virtual and physical interfaces in Layer 2 mode. This command displays the Layer 2 mode interfaces’ IEEE 802.1Q tag status and VLAN membership.
Example FTOS#show interfaces switchport Name: TenGigabitEthernet 13/0 802.1QTagged: Hybrid Vlan membership: Vlan 2, Vlan 20 Native VlanId: 20 Name: TenGigabitEthernet 13/1 802.1QTagged: True Vlan membership: Vlan 2 Name: TenGigabitEthernet 13/2 802.1QTagged: True Vlan membership: Vlan 2 Name: TenGigabitEthernet 13/3 802.1QTagged: True Vlan membership: Vlan 2 --More-- Related Commands interface – configures a physical interface on the switch.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The following describes the show interfaces transceiver command output shown in the Example below. Table 5. Output Fields for the show interfaces transceiver Command 526 Field Description Rx Power measurement type Output depends on the vendor, typically either “Average” or “OMA” (Receiver optical modulation amplitude). Temp High Alarm threshold Factory-defined setting, typically in Centigrade.
Field Description Temp Low Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Voltage Low Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Bias Low Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. TX Power Low Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Power Low Warning threshold Factory-defined setting. Value can differ between SFP and SFP+.
Field Description RS state This is the reserved digital state of the pin AS(1) per SFF-8079 and RS(1) per SFF-8431. Tx Disable state If the admin status of the port is down then this flag is set to true. Temperature High Alarm Flag This can be either true or false, depending on the Current voltage value displayed above. Voltage High Alarm Flag This can be either true or false, depending on the Current Temperature value displayed above.
Example Field Description Tx Bias Low Warning Flag This can be either true or false, depending on the present Tx bias current value displayed above. Tx Power Low Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Rx Power Low Warning Flag This can be either true or false, depending on the Current Rx power value displayed above. FTOS#show interfaces tengigabitethernet 1/0 transceiver SFP is present.
SFP 1 RX Power Low Warning threshold = 0.016mW =================================== SFP 1 Temperature = 39.930C SFP 1 Voltage = 3.293V SFP 1 Tx Bias Current = 6.894mA SFP 1 Tx Power = 0.328mW SFP 1 Rx Power = 0.
Related Commands interface – configures a physical interface on the switch. show ip interface – displays Layer 3 information about the interfaces. show interfaces – displays information on a specific physical interface or virtual interface. show running-config ecmp-group Display interfaces, LAG, or LAG link bundles being monitored for uneven traffic distribution using the ecmp-group monitoring enable command. The ECMP group could have a LAG or a list of 10G/40 interfaces (not just LAG linkbundles).
individual interfaces within the port channel. To enable a port channel, you must enter no shutdown on the port channel interface and at least one interface within that port channel. The shutdown and description commands are the only commands that you can configure on an interface that is a member of a port channel. Related Commands interface port-channel – creates a port channel interface. interface vlan – creates a VLAN. show ip interface – displays the interface routing status.
stack-unit portmode Split a single 40G port into 4-10G ports on the S5000. S5000 Syntax Parameters stack-unit unit-number port number portmode quad stack-unit unitnumber Enter the keyword stack-unit followed by the unit number to reset. The range is 0 to 11. port number Enter the keyword port followed by the number of the 40G port to be split. The ports are 48, 52, 56, or 60. Defaults Disabled. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.
Parameters backup interface Use this option to configure a redundant Layer 2 link without using Spanning Tree. The keywords backup interface configures a backup port so that if the primary port fails, the backup port changes to the up state. If the primary later comes up, it becomes the backup. gigabit Enter the keyword gigabit if the backup port is a 1G port. tengigabit Enter the keyword tengigabit if the backup port is a 10G port.
channel-member Add an interface to the Port Channel, while in INTERFACE PORTCHANNEL mode. S5000 Syntax channel-member interface-type slot/port To remove an interface from a Port Channel, use the no channel-member interface command. Parameters interface-type slot/port (OPTIONAL) Enter any of the following keywords and slot/port or number information: Defaults Not configured. Command Modes INTERFACE PORTCHANNEL Command History Usage Information Version 9.0(1.
shutdown – disables/enables the port channel. group Group two LAGs in a supergroup (“fate-sharing group” or “failover group”). S5000 Syntax group group_number port-channel number port-channel number To remove an existing LAG supergroup, use the no group group_number command. Parameters group_number Enter an integer from 1 to 32 that uniquely identifies this LAG fatesharing group. port-channel Enter the keywords port-channel followed by an existing LAG number.
Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Port Channel interfaces are logical interfaces and can be either in Layer 2 mode (by using the switchport command) or Layer 3 mode (by configuring an IP address). You can add a Port Channel in Layer 2 mode to a VLAN. The shutdown, description, and name commands are the only commands that you can configure on an interface while it is a member of a Port Channel.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. If you use this command to configure the minimum number of links in a LAG that must be in “oper up” status, the LAG must have at least that number of “oper up” links before it can be declared as up. For example, if the required minimum is four, and only three are up, the LAG is considered down. port-channel failover-group Access PORT-CHANNEL FAILOVER-GROUP mode to configure a LAG failover group.
Command History Example Version 9.0(1.3) Introduced on the S5000. FTOS(conf-if-po-1)#show config ! interface Port-channel 1 no ip address shutdown FTOS(conf-if-po-1)# show interfaces port-channel Display information on configured Port Channel groups. S5000 Syntax Parameters show interfaces port-channel [channel-number] [brief] port-channel channel-number brief Command Modes Command History Usage Information Enter the keyword port-channel followed by a number. The range is 1 to 128.
Example 540 LineSpeed Displays the interface’s line speed. For a port channel interface, it is the line speed of the interfaces in the port channel. Members in this... Displays the interfaces belonging to this port channel. ARP type:... Displays the ARP type and the ARP timeout value for the interface. Last clearing... Displays the time when the show interfaces counters were cleared. Queueing strategy. States the packet queuing strategy. FIFO means first in first out. packets input...
Input 01.50Mbits/sec, 2433 packets/sec Output 00.02Mbits/sec,4 packets/sec Time since last interface status change: 00:22:34 FTOS# Usage Information The following describes the show interfaces port-channel brief command shown in the Example below. Field Description LAG Lists the port channel number. Mode Lists the mode: Status Example • L3 - for Layer 3 • L2 - for Layer 2 Displays the status of the port channel.
show port-channel-flow Display an egress port in a given port-channel flow. S5000 Syntax Parameters show port-channel-flow outgoing-port-channel number incominginterface interface {source-ip address destination-ip address} | {source-port number destination-port number} | {source-mac address destination-mac address} outgoing-portchannel number Enter the keywords outgoing-port-channel followed by the number of the port channel to display flow information.
The show port-channel-flow command returns the egress port identification in a given port-channel if a valid flow is entered. A mismatched flow error occurs if MAC-based hashing is configured for a Layer 2 interface and you are trying to display a Layer 3 flow. The output displays three entries: • Egress port for unfragmented packets. • In the event of fragmented packets, the egress port of the first fragment. • In the event of fragmented packets, the egress port of the subsequent fragments.
• The existing show interface command has been modified to display the configured broadcast address. debug ip udp-helper Enable UDP debug and display the debug information on a console. S5000 Syntax debug ip udp-helper To disable debug information, use the no debug ip udp-helper command. Defaults Command Modes Command History Example Debug disabled. • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Defaults Not configured. Command Modes INTERFACE (config-if) Command History Version 9.0(1.3) Introduced on the S5000. Usage Information When a UDP broadcast packet is flooded out of an interface, and the outgoing interface is configured using this command, the outgoing packet’s IP destination address is replaced with the configured broadcast address. Related Commands debug ip udp-helper – enables debug and displays the debug information on a console.
show ip udp-helper Display the configured UDP helper(s) on all interfaces. S5000 Syntax show ip udp-helper Defaults none Command Modes EXEC Command History Version 9.0(1.3) Introduced on the S5000. Example FTOS#show ip udp-helper -------------------------------------------------Port UDP port list -------------------------------------------------Te 10/0 656, 658 Te 10/1 All Related Commands debug ip udp-helper – enables debug and displays the debug information on a console.
• 3 records FC informational messages. • 4 records all messages generated for FC operation on the switch. Default: 4. Defaults Command Modes Command History Trace level 4: All FC error messages on the switch are recorded in the FC dump file. • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information Use this command to specify the level of trace information to be included in the FC trace log.
Related Commands interface fibrechannel — configures a Fibre Channel interface on the switch. show interfaces fibrechannel — displays the configuration of a Fibre Channel interface. create fc-dump-support Perform a dump of information on S5000 Fibre Channel operation. S5000 Syntax create fc-dump-support Defaults None Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Usage Information Use the fcoe-map command to bind an FC port to an FC-FCOE fabric. When a Fibre Channel port operates in N mode, the principal switch in the fabric provides the FCoE Forwarder (FCF) attributes, such as MAC address, FIP priority, and FIP keepalive timeout. To removed the configured FCoE map, enter the no fabric command.
Parameters slot/port For slot, enter the stack-unit number assigned to the switch. The range of slot (stack-unit) numbers is from 0 to 11. The range of port numbers is from 0 to 47. NOTE: In release 9.0.(1.3), an FC module can be installed only in expansion slot 0 (ports 0 to 11) on an S5000 switch.
show fc-trace-level Display the currently configured FC trace level. S5000 Syntax show fc-trace-level Parameters None Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Use the show fc-trace-level command to display the current trace level used to record FC information in the FC trace file, where: • 0: FC traces are turned off. • 1: FC error messages are recorded. • 2: FC warning messages are recorded.
Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Use the show interfaces fibrechannel command to display the current configuration and operation of a Fibre Channel port on the S5000. NOTE: In release 9.0.(1.3), an FC module can be installed only in expansion slot 0 (ports 0 to 11) on an S5000 switch. The following table describes the show interfaces fibrechannel command output shown in the following example. Table 6.
Field Description Port type, Max BB credits The FC port type is fixed. The maximum number at N (end node port)of buffer-to-buffer (BB) credits available is fixed at 16. WWN, FC-ID Factory-provided world-. wide name (WWN) of FC port (in hexadecimal) that uniquely identifies the port on the switch (not user-configurable) and the unique FC port ID (24-bit in hexadecimal) received from an FC switch in the fabric after a successful login Last clearing of "show interface" counters Elapsed time since the.
Field DecodeErrors Number of decode. errors FBusy Number of Fabric port. Busy (F_BSY) frames received FReject Number of Fabric port. Reject (F_RJT) frames received AddressErrors LinkFailures InvalidCRC Number of frame-. address ID errors Number of link failures. Number of cyclic redundancy check (CRC) errors TotalRxBytes Number of bytes. received TotalTxBytes Number of bytes. transmitted LongFramesIn Number of long frames. received LossOfSync Number of loss of.
Field Description Rate Information: Example Related Commands Input bytes/sec, frames/sec, % of linerate Incoming rate of FC. traffic in bytes per second, frames per second, and percentage of the total line rate Output bytes/sec, frames/sec, % of linerate Outgoing rate of FC. traffic in bytes per second, frames per second, and percentage of the total line rate Time since last interface status change Elapsed time since the.
show fc switch Display the switch configuration for Fibre Channel capability. S5000 Syntax show fc switch Parameters None Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Use the show interfaces fibrechannel command to display information on the Fibre Channel capability of a switch. The following table describes the show fc switch output shown in the following example.
8G Port speed is 8 Gbps. Defaults An FC port autosenses the speed of a peer FC port. Command Modes INTERFACE FIBRE_CHANNEL Command History Usage Information Version 9.0(1.3) Introduced on the S5000. When an FC port autosenses the speed of a peer FC port, it auto-negotiates to determine its speed. To removed the configured port speed, enter the no speed {2G | 4G | 8G} command.
23 IPv4 Routing The basic IPv4 commands are supported by FTOS on the Dell Networking S5000 switch. arp Use address resolution protocol (ARP) to associate an IP address with a MAC address in the switch. S5000 Syntax arp ip-address mac-address interface-type slot/port To remove an ARP address, use the no arp ip-address command. Parameters ip-address Enter an IP address in dotted decimal format. mac-address Enter a MAC address in nnnn.nnnn.nnnn format.
Related Commands clear arp-cache – clears dynamic ARP entries from the ARP table. show arp – displays the ARP table. arp learn-enable Enable ARP learning using gratuitous ARP. S5000 Syntax arp learn-enable Defaults Disabled Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. arp retries Set the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request.
arp timeout Set the time interval for an ARP entry to remain in the ARP cache. S5000 Syntax Parameters arp timeout minutes seconds Defaults 240 minutes (4 hours) Command Modes INTERFACE Command History Related Commands Version 9.0(1.3) Enter the number of minutes. The range is 0 to 35790. The default is 240 minutes. Introduced on the S5000. show interfaces – displays the ARP timeout value for all available interfaces.
ip ip-address (OPTIONAL) Enter the keyword ip followed by the IP address of the ARP entry you wish to clear. no-refresh (OPTIONAL) Enter the keywords no-refresh to delete the ARP entry from CAM. Or use this option with interface or ip ipaddress to specify which dynamic ARP entries you want to delete. NOTE: Transit traffic may not be forwarded during the period when deleted ARP entries are resolved again and re-installed in CAM. Use this option with extreme caution.
Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information Use this command to clear Layer 3 CAM inconsistencies. Related Commands show ip fib stack-unit – shows FIB entries. CAUTION: Executing this command causes traffic disruption. clear ip route Clear one or all routes in the routing table.
Command History Version 9.0(1.3) Introduced on the S5000. debug arp View information on ARP transactions. S5000 Syntax debug arp [interface-type slot/port] [count value] To stop debugging ARP transactions, use the no debug arp command. Parameters interface-type slot/port count value Defaults none Command Modes EXEC Privilege Command History Usage Information 564 Version 9.0(1.3) (OPTIONAL) Enter the interface type followed by slot/port or number information. Valid slot numbers are 0-11.
debug ip dhcp Enable debug information for dynamic host configuration protocol (DHCP) relay transactions and display the information on the console. S5000 Syntax debug ip dhcp To disable debug, use the no debug ip dhcp command. Defaults Debug disabled Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. Example FTOS#debug ip dhcp 00:12:21 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.
ip helper-address hop-count disable – disables the hop-count increment for the DHCP relay agent. debug ip icmp View information on the internal control message protocol (ICMP). S5000 Syntax debug ip icmp [interface-type slot/port] [count value] To disable debugging, use the no debug ip icmp command. Parameters interface-type slot/port count value Command Modes Command History Example 566 (OPTIONAL) Enter the interface type followed by slot/port or number information. Valid slot numbers are 0-11.
Usage Information Use the count option to stop packets from flooding the user terminal when debugging is turned on. debug ip packet View a log of IP packets sent and received. S5000 Syntax debug ip packet [access-group name] [count value] [interfacetype slot/port] To disable debugging, use the no debug ip packet [access-group name] [count value] [interface-type slot/port] command.
s= Lists the source address of the packet and the name of the interface (in parentheses) that received the packet. d= Lists the destination address of the packet and the name of the interface (in parentheses) through which the packet is being sent out on the network. len Displays the packet’s length. sending, rcvd, fragment, sending broad/ multicast proto, unroutable The last part of each line lists the status of the packet.
The access-group option supports only the equal to (eq) operator in TCP ACL rules. Port operators not equal to (neq), greater than (gt), less than (lt), or range are not supported in access-group option (refer to the Example below). ARP packets (arp) and Ether-type (ether-type) are also not supported in the access-group option. The entire rule is skipped to compose the filter.
Command Modes Command History Usage Information INTERFACE Version 9.0(1.3) Introduced on the S5000. You must be in INTERFACE mode before you add an IP address to an interface. Assign an IP address to an interface prior to entering ROUTER OSPF mode. ip directed-broadcast Enables the interface to receive directed broadcast packets. S5000 Syntax ip directed-broadcast To disable the interface from receiving directed broadcast packets, use the no ip directed-broadcast command.
resolved, the software goes through the list of names configured with the ip domain-list command to find a match. Use the following steps to enable dynamic resolution of hosts: • specify a domain name server with the ip name-server command • enable DNS with the ip domain-lookup command To view current bindings, use the show hosts command. To view DNS related configuration, use the show running-config resolve command. Related Commands ip domain-name – specifies a DNS server.
ip domain-name Configure one domain name for the switch. S5000 Syntax ip domain-name name To remove the domain name, use the no ip domain-name command. Parameters name Enter one domain name to be used to complete unqualified names (that is, incomplete domain names that cannot be resolved). Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. You can only configure one domain name with the ip domain-name command.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. You can add multiple DHCP servers by entering the ip helper-address command multiple times. If multiple servers are defined, an incoming request is sent simultaneously to all configured servers and the reply is forwarded to the DHCP client. FTOS uses standard DHCP ports, that is UDP ports 67 (server) and 68 (client) for DHCP relay services.
ip host Assign a name and IP address to be used by the host-to-IP address mapping table. S5000 Syntax ip host name ip-address To remove an IP host, use the no ip host name [ip-address] command. Parameters name Enter a text string to associate with one IP address. ip address Enter an IP address, in dotted decimal format, to be mapped to the name. Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000.
ip mtu Set the IP MTU (frame size) of the packet transmitted by the stack-unit. If the packet must be fragmented, FTOS sets the size of the fragmented packets to the size specified in this command. S5000 Syntax ip mtu value To return to the default IP MTU value, use the no ip mtu command. Parameters value Enter the maximum MTU size if the IP packet is fragmented. The range is 576 to 9234. The default is 1500 bytes.
Related Commands Untagged Packet with VLAN-Stack Header 22 bytes Tagged Packet with VLAN-Stack Header 26 bytes mtu – sets the link MTU for an Ethernet interface. ip name-server Enter up to six IPv4 addresses of name servers. The order you enter the addresses determines the order of their use. S5000 Syntax ip name-server ipv4-address [ipv4-address2...ipv4-address6] To remove a name server, use the no ip name-server ip-address command.
ip proxy-arp Enable proxy ARP on an interface. S5000 Syntax ip proxy-arp To disable proxy ARP, use the no ip proxy-arp command. Defaults Enabled. Command Modes INTERFACE Command History Related Commands Version 9.0(1.3) Introduced on the S5000. show ip interface – displays the interface routing status and configuration. ip route Assign a static route to the switch.
• • For a VLAN interface, enter the keyword vlan followed by a VLAN id number from 1 to 4094. permanent (OPTIONAL) Enter the keyword permanent to specify the route is not removed, even if the interface assigned to that route goes down. The route must be up initially to install it in the routing table. tag tag-value (OPTIONAL) Enter the keyword tag followed by a number to assign to the route. The range is 1 to 4294967295.
Defaults Enabled. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. ip unreachables Enable the generation of internet control message protocol (ICMP) unreachable messages. S5000 Syntax ip unreachables To disable the generation of ICMP messages, use the no ip unreachables command. Defaults Disabled. Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000.
mac {dest-mac | source-dest-mac | source-mac} tcp-udp enable Enter the keywords to distribute MAC traffic based on the following criteria: • dest-mac — Uses the destination MAC address, VLAN, Ethertype, source module ID and source port ID fields to hash. The hashing mechanism returns a 3-bit index indicating which port the packet should be forwarded. • source-dest-mac — Uses the destination and source MAC address, VLAN, Ethertype, source module ID and source port ID fields to hash.
management route Configure a static route that points to the Management interface or a forwarding router. S5000 Syntax Parameters management route {ipv4-address | ipv6-address}/mask {forwarding-router-address | managementethernet} {ipv4-address | ipv6-address}/ mask NOTE: The :: notation in an IPv6 address specifies successive hexadecimal fields of zero. Only one occurrence of this notation is permitted in an IPv6 address. forwardingrouter-address Enter an IPv4 or IPv6 address of a forwarding router.
Parameters inspection (OPTIONAL) Enter the keyword inspection followed by database or statistics to view dynamic ARP inspection details. interface type slot/port (OPTIONAL) Enter the interface keyword followed by the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
Example Address Displays the IP address of the ARP entry. Age(min) Displays the age (in minutes) of the ARP entry. Hardware Address Displays the MAC address associated with the ARP entry. Interface Displays the first two letters of the interfaces type and the slot/port associated with the ARP entry. VLAN Displays the VLAN ID, if any, associated with the ARP entry. CPU Lists which CPU the entries are stored on.
Related Commands ip local-proxy-arp – enables/disables Layer 3 communication in secondary VLANs. switchport mode private-vlan – sets PVLAN mode of the selected port. show arp retries Display the configured number of ARP retries. S5000 Syntax Command Modes Command History Related Commands show arp retries • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. arp retries – sets the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request.
• If DNS is not enabled, the Name/Address lookup is static mapping Name servers are... Lists the name servers, if configured. Host Displays the host name assigned to the IP address. Flags Classifies the entry as one of the following: • perm - the entry was manually configured and will not time out • temp - the entry was learned and will time out after 72 hours of inactivity.
show ip cam stack-unit Display CAM entries for the S5000 switch. S5000 Syntax Parameters show ip cam stack-unit unit-number port-set pipe-number [ipaddress mask [longer-prefixes] | ecmp-group | member-info | detail | summary] stack-unit unitnumber Enter the keyword stack-unit followed by the unit number. The range is 0 to 11. port-set pipenumber Enter the keyword port-set followed by number of the port-pipe. Values are 0 or 1.
Port Displays the egress interface. Use the second half of the entry to determine the interface. For example, in the entry 17cl CP, the CP is the pertinent portion. • Example CP = control processor • Gi = Gigabit Ethernet interface • Te = 10 Gigabit Ethernet interface FTOS#show ip cam stack-unit 0 port-set 0 10.10.10.10/32 longerprefixes Destination EC CG V C VId Mac-Addr Port ----------------- -- -- - ------ -------------------10.10.10.
show ip fib stack-unit View all FIB entries. S5000 Syntax Parameters show ip fib stack-unit unit-number [ip-address [mask] [longerprefixes] | summary] stack-unit unitnumber Enter the keyword stack-unit followed by the unit number. The range is 0 to 11. ip-address mask (OPTIONAL) Enter the IP address of the network destination to view only information on that destination. Enter the IP address in dotted decimal format (A.B.C.D). You must enter the mask in slash prefix format (/X).
Port VId EC ------------BLK HOLE 0 0 FTOS> Related Commands clear ip fib stack-unit – clears the FIB entries on a specified stack-unit. show ip flow Show how a Layer 3 packet is forwarded when it arrives at a particular interface.
The show ip flow command does not compute the egress port information when loadbalance mac hashing is also configured due to insufficient information (the egress MAC is not available). The S5000 produces the following error message: %Error: Unable to read IP route table. Example FTOS#show ip flow interface Te 1/8 189.1.1.1 63.0.0.1 protocol tcp source-port 7898 destination-port 8 flow: 189.1.1.1 63.0.0.1 protocol 6 7868 8976 Ingress interface:Te 1/20 Egress interface:Te 1/14 to 1.7.1.
Command Modes Command History Usage Information Example brief (OPTIONAL) Enter the keyword brief to view a brief summary of the interfaces and whether an IP address is assigned. configured (OPTIONAL) Enter the keyword configured to display the physical interfaces with non-default configurations only. • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes output for the show ip interface command shown in the Example below.
Example (brief) Interface Displays type of interface and the associated slot and port number. IP-Address Displays the IP address for the interface, if configured. Ok? Indicates if the hardware is functioning properly. Method Displays “Manual” if the configuration is read from the saved configuration. Status States whether the interface is enabled (up) or disabled (administratively down). Protocol States whether IP is enabled (up) or disabled (down) on the interface.
Command Modes Command History Example • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. FTOS#show ip management-route Destination ----------10.1.2.0/24 172.16.1.0/24 FTOS# Gateway ------ManagementEthernet 0/0 10.1.2.4 State ----Connected Active show ipv6 management-route Display the IPv6 static routes configured for the management interface.
show ip protocols View information on all routing protocols enabled and active on the switch. S5000 Syntax Command Modes Command History Example show ip protocols • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. FTOS#show ip protocols Routing Protocol is "bgp 1" Cluster Id is set to 20.20.20.3 Router Id is set to 20.20.20.
list prefix-list (OPTIONAL) Enter the keyword list and the name of a configured prefix list. For more information, refer to the show ip route list command. protocol (OPTIONAL) Enter the name of a routing protocol (bgp, isis, ospf, rip) or the keywords connected or static. If you enter ospf, you can include the OSPF process-id Command Modes Command History Usage Information process-id (OPTIONAL) Specify that only OSPF routes with a certain process ID must be displayed.
Example • E2 = OSPF external type 2 • i = IS-IS • L1 = IS-IS level-1 • L2 = IS-IS level-2 • IA = IS-IS inter-area • * = candidate default • > = non-active route • + = summary routes Destination Identifies the route’s destination IP address Gateway Identifies whether the route is directly connected and on which interface the route is configured. Dist/Metric Identifies if the route has a specified distance or metric. Last Change Identifies when the route was last changed or configured.
*S 0.0.0.0/0 FTOS> via 10.10.91.9, Te 1/2 1/0 3d2h show ip route list Display IP routes in an IP prefix list. S5000 Syntax Parameters show ip route list prefix-list prefix-list Command Modes Command History Example • EXEC • EXEC Privilege Version 9.0(1.3) Enter the name of a configured prefix list. Introduced on the S5000.
show ip route summary View a table summarizing the IP routes in the switch. S5000 Syntax Command Modes Command History Usage Information Example show ip route summary • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes the show ip route summary shown in the Example below. Column Heading Description Route Source Identifies how the route is configured in FTOS. Active Routes Identifies the best route if a route is learned from two protocol sources.
show ip traffic View IP, ICMP, UDP, TCP and ARP traffic statistics. S5000 Syntax show ip traffic Command Modes EXEC Privilege Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The following describes keywords in output for the show ip traffic command shown in the Example below. Keyword Definition unknown protocol... No receiver for these packets. Counts those packets whose protocol type field is not recognized by FTOS. not a gateway...
...socket full The applications buffer was full and the incoming packet had to be dropped. The F10 Monitoring MIB provides access to the statistics described below. Example • IP Statistics: Bcast: Received: Object = f10BcastPktRecv, OIDs = 1.3.6.1.4.1.6027.3.3.5.1.1 • IP Statistics: Bcast: Sent: Object = f10BcastPktSent, OIDs = 1.3.6.1.4.1.6027.3.3.5.1.2 • IP Statistics: Mcast: Received: Object = f10McastPktRecv, OIDs = 1.3.6.1.4.1.6027.3.3.5.1.
show tcp statistics View information on TCP traffic through the switch. S5000 Syntax show tcp statistics Command Modes EXEC Privilege Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The following describes the show tcp statistics command shown in the Example below. Field Description Rcvd: Displays the number and types of TCP packets received by the switch. 0 checksum error...
25 control packets... Displays the number of control packets sent and the number retransmitted. 11603 data packets... Displays the number of data packets sent. 24 data packets retransmitted Displays the number of data packets resent. 355 ack.. Displays the number of acknowledgement packets sent and the number of packet delayed. 0 window probe... Displays the number of window probe and update packets sent. 0 Connections initiated...
IPv6 Access Control Lists (IPv6 ACLs) 24 IPv6 ACLs and IPv6 Route Map commands are supported on the Dell Networking S5000 switch. This chapter contains the following sections • IPv6 ACL Commands • IPv6 Route Map Commands NOTE: For IPv4 ACL commands, refer to the Access Control Lists (ACL) chapter. Important Points to Remember • The S5000 requires manual CAM usage space allotment. For more information, refer to the cam-acl command.
Parameters default Use the default CAM profile settings, and set the CAM as follows: • l2acl 1-10 ipv4acl 1-10 ipv6acl 0-10 ipv4qos 1-10 l2qos 1-10 Command Modes Command History Usage Information L3 ACL (ipv4acl): 6 • L2 ACL(l2acl): 5 • IPv6 L3 ACL (ipv6acl): 0 • L3 QoS (ipv4qos): 1 • L2 QoS (l2qos): 1 Allocate space to support IPv6 ACLs. You must enter all of the profiles and a range. Enter the CAM profile name followed by the amount to be allotted. The total space allocated must equal 13.
Command Modes Command History Usage Information CONFIGURATION Version 9.0(1.3) Introduced on the S5000. For the new settings to take effect, you must save the new CAM settings to the startup-config (write-mem or copy run start), then reload the system. The total amount of space allowed is 16 FP Blocks. System flow requires three blocks and these cannot be reallocated. When configuring space for IPv6 ACLs, the total number of Blocks must equal 13.
deny Configure a filter that drops IPv6 packets that match the filter criteria. S5000 Syntax deny {ipv6-protocol-number | icmp | ipv6 | tcp | udp} To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command syntax if you know the filter’s sequence number • Use the no deny {ipv6-protocol-number | icmp | ipv6 | tcp | udp} command ip-protocolnumber Enter an IPv6 protocol number. The range is 0 to 255.
Parameters source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. The :: notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all routes are subject to the filter.
Keyword ICMP Message Type Name log Log matches against this entry. mobile-advertisement Mobile prefix advertisement. mobile-solicitation Mobile prefix solicitation. mrouter-advertisement Multicast router advertisement. mrouter-solicitation Multicast router solicitation. mrouter-termination Multicast router termination. nd-na Neighbor advertisement. nd-ns Neighbor solicitation. packet-too-big Packet is too big. parameter-problem Parameter problems. redirect Neighbor redirect.
mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all routes are subject to the filter. host ipv6-address Enter the keyword host followed by the IPv6 address of the host in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zero. Only one occurrence of this notation is permitted in an IPv6 address.
monitor (OPTIONAL) Enter the keyword monitor to monitor traffic on the monitoring interface specified in the flow-based monitoring session along with the filter operation. Defaults Not configured. Command Modes ACCESS-LIST Command History Version 9.0(1.3) Introduced on the S5000. Usage Information Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators (gt, lt, range) may require more than one entry.
Parameters • Use the no seq sequence-number command syntax if you know the filter’s sequence number • Use the no deny udp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address} command source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. The :: notation specifies successive hexadecimal fields of zero.
Usage Information Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators (gt, lt, range) may require more than one entry. The range of ports is configured in the CAM based on bitmask boundaries; the space required depends on exactly what ports are included in the range.
vlan range Defaults Disabled. Command Modes INTERFACE Command History Version 9.0(1.3) (OPTIONAL) Enter the keyword vlan followed by the VLAN range in a comma separated format. The range is 1 to 4094. Introduced on the S5000. Usage Information You can assign an IPv6 access group to a physical, LAG, or VLAN interface context.
Parameters access-list-name Enter the as the access list name as a string, up to 140 characters. Defaults All access lists contain an implicit “deny any”; that is, if no match occurs, the packet is dropped. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. Usage Information The number of entries allowed per ACL is hardware-dependent. For detailed specification on entries allowed per ACL, refer to your switch ocumentation.
permit icmp Configure a filter to allow all or specific internet control message protocol (ICMP) messages. S5000 Syntax permit icmp {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} [message-type] [count [byte]] | [log] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
Command History Version 9.0(1.3) Introduced on the S5000. permit tcp Configure a filter to pass TCP packets that match the filter criteria. S5000 Syntax permit tcp {[source address | mask ]} [any] {[ host ipv6address | [operator ][port port] | [destination address ] | [ bit ]} [count] | [byte] | [log] | [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
• • 25 = SMTP • 169 = SNMP destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. The :: notation specifies successive hexadecimal fields of zero.
Total Ports: 4001 Example An ACL rule with a TCP port lt 1023 takes only one entry in the CAM: Rule# 1 Data Mask From 0000000000000000 1111110000000000 0 To #Covered 1023 1024 Total Ports: 1024 Related Commands permit – assigns a permit filter for IP packets. permit udp – assigns a permit filter for UDP packets. permit udp Configure a filter to pass UDP packets meeting the filter criteria.
gt = greater than • lt = less than • range = inclusive range of ports (you must specify two port for the port parameter.) port port (OPTIONAL) Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is 0 to 65535. destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128.
Total Ports: 1024 Related Commands permit – assigns a permit filter for IP packets. permit tcp – assigns a permit filter for TCP packets. remark Enter a description for an IPv6 ACL entry. S5000 Syntax remark remark number [description] To delete the description, use the no remark remark number command (it is not necessary to include the remark description that you are deleting). Parameters remark number Enter the remark number. The range is 0 to 4294967290.
resequence access-list Re-assign sequence numbers to entries of an existing access-list. S5000 Syntax Parameters Defaults Command Modes Command History resequence access-list {ipv4 | ipv6 | mac} {access-list-name StartingSeqNum Step-to-Increment} ipv4 | ipv6 | mac Enter the keyword ipv4, ipv6 or mac to identify the access list type to resequence. access-list-name Enter the name of a configured IP access list, up to 140 characters. StartingSeqNum Enter the starting sequence number to resequence.
Step-toIncrement Defaults none Command Modes Command History Enter the step to increment the sequence number. The range is 1 to 65535. • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information When all sequence numbers have been exhausted, this feature permits re-assigning new sequence number to entries of an existing access-list. Related Commands resequence access-list – resequences an access-list.
udp Enter the keyword udp to configure a User Datagram Protocol filter. source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. The :: notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all routes are subject to the filter.
Defaults Not configured. Command Modes ACCESS-LIST Command History Related Commands Version 9.0(1.3) Introduced on the S5000. deny – configures a filter to drop packets. permit – configures a filter to forward packets. show cam-acl Show space allocated for IPv6 ACLs. S5000 Syntax Command Modes Command History Example show cam-acl • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
FcoeAcl iscsiOptAcl Related Commands : : 2 2 cam-acl – configures CAM profiles to support IPv6 ACLs. show cam-acl-egress Show information on FP groups allocated for egress ACLs. S5000 Syntax Command Modes Command History Example show cam-acl-egress • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Command Modes Command History Example ACCESS-LIST Version 9.0(1.3) Introduced on the S5000. FTOS(conf-ipv6-acl)#show config ! ipv6 access-list Acl1 seq 5 permit ipv6 1111::2222/127 host 3333::1111 log count bytes seq 10 permit icmp host 3333:: any mobile-advertisement log seq 15 deny tcp any any rst seq 20 permit udp any any gt 100 count FTOS(conf-ipv6-acl)# show ipv6 accounting access-list View the IPv6 access-lists created on the S5000 and the sequence of filters.
Usage Information Example Field Description “Ingress IPv6...” Displays the name of the IPv6 ACL, in this Example “AclList1”. “seq 10...” Displays the filter. If the keywords count or byte were configured in the filter, the number of packets or bytes processed by the filter is displayed at the end of the line.
test cam-usage Verify that enough ACL CAM space is available for the IPv6 ACLs you have created. S5000 Syntax Parameters test cam-usage service-policy inputinput-policy—map name input policy-map name Defaults none Command Modes EXEC Privilege Command History Usage Information Version 9.0(1.3) Enter the name of the policy-map to verify. Introduced on the S5000. This command applies to both IPv4 and IPv6 CAM Profiles, but is best used when verifying QoS optimization for IPv6 ACLs.
unit -------------------------------------------------------------4| 0| IPv4Flow| 232| 0| Allowed 4| 0| IPv6Flow| 0| 0| Allowed FTOS# FTOS#test cam-usage service-policy input pmap_12 stack-unit 2 port-set 1 Stack-| Portpipe| CAM Partn| Avail CAM| Est CAM/Port| Status unit --------------------------------------------------------------2| 1| IPv4Flow| 232| 0| Allowed 2| 1| IPv6Flow| 0| 0| Allowed FTOS# IPv6 Route Map Commands The following commands allow you to configure route maps and their redistribution cr
match ipv6 next-hop Configure a filter which matches based on the next-hop IPv6 addresses specified in the IPv6 prefix list. S5000 Syntax match ipv6 next-hop prefix-list prefix-list-name To delete a match, use the no match ipv6 next-hop prefix-list prefixlist-name command. Parameters prefix-list prefix- list-name Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version 9.0(1.
route-map Designate a IPv6 route map name and enter ROUTE-MAP mode. S5000 Syntax route-map map-name To delete a route map, use the no route-map map-name command. Parameters map-name Defaults Not configured. Command Modes ROUTE-MAP Command History Example Version 9.0(1.3) Enter a text string to name the route map, up to 140 characters. Introduced on the S5000.
Usage Information The set ipv6 next-hop command is the only way to set an IPv6 Next-Hop. show config View the current route map configuration. S5000 Syntax show config Command Modes ROUTE-MAP Command History Example Version 9.0(1.3) Introduced on the S5000. FTOS(config-route-map)#show config ! route-map Rmap1 permit 10 match ip address v4plist match ipv6 address plist1 match ipv6 next-hop prefix-list plist2 match ipv6 route-source prefix-list plist3 set next-hop 1.1.1.
Set clauses: next-hop 1.1.1.1 ipv6 next-hop 3333:2222:: Related Commands route-map – configures a route map.
25 IPv6 Basics IPv6 Basic Commands are supported on the Dell Networking S5000 switch. NOTE: For information about the Dell Networking operating software (FTOS) version and platform that supports IPv6 in each software feature, refer to the "IPv6 Addressing" chapter of the FTOS Configuration Guide. clear ipv6 fib Clear (refresh) all forwarding information base (FIB) entries on a stack-unit.
Command Modes Command History EXEC Privilege Version 9.0(1.3) Introduced on the S5000. clear ipv6 mld_host Clear the IPv6 MLD host counters and reset the elapsed time. S5000 Syntax clear ipv6 mld_host Command Modes EXEC Command History Version 9.0(1.3) Introduced on the S5000. ipv6 address autoconfig Configure IPv6 address auto-configuration for the management interface.
To remove the IPv6 address, use the no ipv6 address {ipv6-address prefixlength} command. Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults none Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000.
Default 100 pps Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. ipv6 flowlabel-zero Configure system to set the flow label field in the packets to zero. S5000 Syntax ipv6 flowlabel-zero To disable the 0 from being set in the field and allow the field to be filled by protocol operations, use the no ipv6 flowlabel-zero command. Default Disabled Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
ipv6 name-server Enter up to six IPv6 addresses of name servers. The order you enter the addresses determines the order of their use. S5000 Syntax Parameters ipv6 name-server ipv6-address [ipv6-address2... ipv6-address6] ipv6-address Enter the IPv6 address (X:X:X:X::X) of the name server to be used. ipv6-address2... ipv6-address6 Enter up five more IP addresses, in dotted decimal format, of name servers to be used. Separate the addresses with a space.
ipv6 nd prefix Specify which IPv6 prefixes are included in Neighbor Advertisements. S5000 Syntax Parameters Command Modes Command History Usage Information 640 ipv6 nd prefix {ipv6-prefix | prefix-length | default} [noadvertise] | [no-autoconfig] [no-rtr-address] [off-link] [lifetime {valid | infinite} {preferred | infinite}] ipv6-prefix Enter an IPv6 prefix. prefix-length Enter the prefix followed by the prefix length. The length range is 0 to 128.
ipv6 route Establish a static IPv6 route. S5000 Syntax ipv6 route ipv6-address prefix-length {ipv6-address | interface | interface ipv6-address} [distance] [tag value] [permanent] To remove the IPv6 route, use the no ipv6 route ipv6-address prefix-length {ipv6-address | interface | interface ipv6-address} [distance] [tag value] [permanent] command. Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format.
tag value (OPTIONAL) Enter the keyword tag followed by a tag value number. The range is 1 to 4294967295. permanent (OPTIONAL) Enter the keyword permanent to specify that the route is not to be removed, even if the interface assigned to that route goes down. NOTE: If you disable the interface with an IPv6 address associated with the keyword permanent, the route disappears from the routing table. Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.
show ipv6 cam stack-unit Displays the IPv6 CAM entries for the specified stack-unit. S5000 Syntax Parameters show ipv6 cam stack-unit unit-number port-set {number} [summary | index | ipv6 address] stack-unit unit- number Enter the keyword stack unit’ followed by the unit number. The range is 0 to 11. port-set Enter the keyword port pet followed by the port number. Values are 0 or 1.
show ipv6 control-plane icmp Displays the status of the icmp control-plane setting for the error eate limit setting. S5000 Syntax show ipv6 control-plane icmp Default 100 Command Modes EXEC Command History Related Commands Version 9.0(1.3) Introduced on the S5000. ipv6 flowlabel-zero – Configure IPv6 address auto-configuration for the management interface. show ipv6 fib stack-unit View all FIB entries.
show ipv6 flowlabel-zero Display the flow label zero setting. S5000 Syntax show ipv6 flowlabel-zero Default Disabled Command Modes EXEC Command History Related Commands Version 9.0(1.3) Introduced on the S5000. ipv6 nd dad attempts – Configure system to set the flow label field in the packets to zero. show ipv6 interface Display the status of interfaces configured for IPv6.
Defaults Command Modes Command History configured (OPTIONAL) View information on all IPv6 configured interfaces. stack-unit unitnumber (OPTIONAL) View information for a specific stack-unit. The range is 0 to 11. none • • EXEC EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information The Management port is enabled by default (no shutdown). If necessary, use the ipv6 address command to assign an IPv6 address to the Management port.
ND ND ND ND reachable time is 31000 milliseconds base reachable time is 30000 milliseconds retransmit interval is 1000 milliseconds hop limit is 64 FTOS# Example (Brief) FTOS#show ipv6 interface brief TenGigabitEthernet 0/0 [up/up] fe80::201:e8ff:fe3a:143e 10::1/64 ... ManagementEthernet 0/0 [up/up] fe80::201:e8ff:fe5d:b74c fdaa:bbbb:cccc:1004::50/64 ... Vlan 3 [up/up] fe80::201:e8ff:fe3a:19b7 show ipv6 mld_host Display the IPv6 MLD host counters.
Reports Leaves MLDv2 Queries MLDv1 Queries Errors: Malformed Packets: 79962 ---18000 0 18034 0 ------- 4510 show ipv6 route Displays the IPv6 routes. S5000 Syntax Parameters show ipv6 route [ipv6-address prefix-length] [hostname] [all] [bgp as number] [connected] [isis tag] [list prefix-list name] [ospf process-id] [static] [summary] ipv6-address prefix-length (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128.
Example Field Description (undefined) Identifies the type of route: • L = Local • C = connected • S = static • R = RIP • B = BGP • IN = internal BGP • EX = external BGP • LO = Locally Originated • O = OSPF • IA = OSPF inter area • N1 = OSPF NSSA external type 1 • N2 = OSPF NSSA external type 2 • E1 = OSPF external type 1 • E2 = OSPF external type 2 • i = IS-IS • L1 = IS-IS level-1 • L2 = IS-IS level-2 • IA = IS-IS inter-area • * = candidate default • > = non-active
C L Example (Summary) 2004::/32 [0/0] Direct, Te 1/1, 00:28:49 fe80::/10 [0/0] Direct, Nu 0, 00:29:09 FTOS#show ipv6 route summary Route Source Active Routes Non-active Routes connected 5 0 static 0 0 Total 5 0 Total 5 active route(s) using 952 bytes trust ipv6-diffserv Allows the dynamic classification of IPv6 DSCP. S5000 Syntax trust ipv6-diffserv To remove the definition, use the no trust ipv6-diffserv command.
IPv6 Border Gateway Protocol (IPv6 BGP) 26 IPv6 Border Gateway Protocol (IPv6 BGP) is supported on the Dell Networking S5000 switch. This chapter includes the following sections: • IPv6 BGP Commands • IPv6 MBGP Commands IPv6 BGP Commands BGP is an external gateway protocol that transmits interdomain routing information within and between autonomous systems (AS). BGP version 4 (BGPv4) supports classless interdomain routing and the aggregation of routes and AS paths.
attribute-map map-name (OPTIONAL) Enter the keywords attribute-map followed by the name of a configured route map to modify attributes of the aggregate, excluding AS_PATH and NEXT_HOP attributes. summary-only (OPTIONAL) Enter the keywords summary-only to advertise only the aggregate address. Specific routes are not advertised. suppress-map (OPTIONAL) Enter the keywords suppress-map followed by the name of a configured route map to identify which more-specific routes in the aggregate are suppressed.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Any update without a MED attribute is the least preferred route. If you enable this command, use the capture bgp-pdu max-buffer-size * command to recompute the best path. bgp bestpath as-path ignore Ignore the AS PATH in BGP best path calculations. S5000 Syntax bgp bestpath as-path ignore To return to the default, use the no bgp bestpath as-path ignore command.
If you enable this command, use the capture bgp-pdu max-buffer-size * command to recompute the best path. bgp bestpath med missing-as-best During path selection, indicate a preference to paths with missing MED (MULTI_EXIT_DISC) over those paths with an advertised MED attribute. S5000 Syntax bgp bestpath med missing-as-best To return to the default selection, use the no bgp bestpath med missing-as-best command. Defaults Disabled. Command Modes ROUTER BGP Command History Usage Information Version 9.
neighbor route-reflector-client – configures a route reflector and clients. bgp cluster-id Assign a cluster ID to a BGP cluster with more than one route reflector. S5000 Syntax bgp cluster-id {ip-address | number} To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command. Parameters ip-address Enter an IP address as the route reflector cluster ID. number Enter a route reflector cluster ID as a number from 1 to 4294967295. Defaults Not configured.
Parameters as-number Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Enter the AS number. The range is 1 to 65535. Introduced on the S5000. The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. The next hop, MED, and local preference information is preserved throughout the confederation.
bgp dampening Enable BGP route dampening and configure the dampening parameters. S5000 Syntax Parameters bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] half-life (OPTIONAL) Enter the number of minutes after which the Penalty is decreased. After the router assigns a Penalty of 1024 to a route, the Penalty is decreased by half, after the half-life period expires. The range is 1 to 45. The default is 15 minutes.
bgp default local-preference Change the default local preference value for routes exchanged between internal BGP peers. S5000 Syntax bgp default local-preference value To return to the default value, use the no bgp default local-preference command. Parameters value Defaults 100 Command Modes ROUTER BGP Command History Version 9.0(1.3) Enter a number to assign to routes as the degree of preference for those routes.
show ip protocols – views information on routing protocols. bgp fast-external-failover Enable the fast external failover feature, which immediately resets the BGP session if a link to a directly connected external peer fails. S5000 Syntax bgp fast-external-failover To disable fast external failover, use the no bgp fast-external-failover command. Defaults Enabled Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
For more information about using the 2- or 4-Byte format, refer to the FTOS Configuration Guide. bgp graceful-restart Enable graceful restart on a BGP neighbor, a BGP node, or designate a local router to support graceful restart as a receiver only. S5000 Syntax bgp graceful-restart [restart-time seconds] [stale-path-time seconds] [role receiver-only] To return to the default, enter the no bgp graceful-restart command.
bgp log-neighbor-changes Enable logging of BGP neighbor resets. S5000 Syntax bgp log-neighbor-changes To disable logging, use the no bgp log-neighbor-changes command. Defaults Enabled. Command Modes ROUTER BGP Command History Version 9.0(1.3) Introduced on the S5000. Usage Information The bgp log-neighbor-changes command appears in the show config command output. Related Commands show config – views the current configuration.
bgp recursive-bgp-next-hop Enable next-hop resolution through other routes learned by BGP. S5000 Syntax bgp recursive-bgp-next-hop To disable next-hop resolution, use the no bgp recursive-bgp-next-hop command. Defaults Enabled. Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. This command is a knob to disable BGP next-hop resolution using BGP learned routes.
the show bgp commands, which are filtered through regular expressions, use up CPU cycles particularly with large databases. The Regex Engine Performance Enhancement feature optimizes the CPU usage by caching and reusing regular expression evaluation results. This caching and reuse may be at the expense of processor memory. Example FTOS(conf-router_bgp)#no bgp regex-eval-optz-disable FTOS(conf-router_bgp)#do show ip protocols Routing Protocol is "ospf 22222" Router ID is 2.2.2.
bgp soft-reconfig-backup Use this command only when route-refresh is not negotiated between peers to avoid having a peer re-send BGP updates. S5000 Syntax bgp soft-reconfig-backup To return to the default setting, use the no bgp soft-reconfig-backup command. Defaults Off Command Modes ROUTER BGPV6 ADDRESS FAMILY (conf-router_bgpv6_af) Command History Version 9.0(1.3) Introduced on the S5000.
show capture bgp-pdu neighbor – configures a route reflector and clients. capture bgp-pdu neighbor (ipv6) Enable capture of an IPv6 BGP neighbor packet. S5000 Syntax capture bgp-pdu neighbor ipv6-address direction {both | rx | tx} To disable capture of the IPv6 BGP neighbor packet, use the no capture bgp-pdu neighbor ipv6-address command. Parameters Defaults ipv6-address Enter the IPv6 address of the target BGP neighbor.
ipv4 multicast soft [in | out] (OPTIONAL) Enter the keywords ipv4 multicast soft [in | out] to set options within the specified IPv4 address family. ipv6 unicast soft [in | out] (OPTIONAL) Enter the keywords ipv6 multicast soft [in | out] to set options within the specified IPv6 address family. soft (OPTIONAL) Enter the keyword soft to configure and activate policies without resetting the BGP TCP session, that is, BGP Soft Reconfiguration.
multicast (OPTIONAL) Enter the keyword multicast to select the multicast option within the selected address family. Multicast is supported on IPv4 only. soft (OPTIONAL) Enter the keyword soft to configure and activate policies without resetting the BGP TCP session; that is, BGP Soft Reconfiguration. NOTE: If you enter clear ip bgp ipv6-address soft, both inbound and outbound policies are reset. Command Modes Command History in (OPTIONAL) Enter the keyword in to activate only inbound policies.
multicast (OPTIONAL) Enter the keyword multicast to select the multicast option within the selected address family. Multicast is supported on IPv4 only. soft (OPTIONAL) Enter the keyword soft to configure and activate policies without resetting the BGP TCP session; that is, BGP Soft Reconfiguration. NOTE: If you enter clear ip bgp ip6-address soft, both inbound and outbound policies are reset. Command Modes Command History in (OPTIONAL) Enter the keyword in to activate only inbound policies.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History Usage Information EXEC Privilege Version 9.0(1.3) Introduced on the S5000. After you enter this command, the software deletes the history routes and returns the suppressed routes to the active state.
Command Modes Command History EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information If you enter the clear ip bgp ipv6 flap-statistics command without any parameters, all statistics are cleared. Related Commands show ip bgp ipv6 unicast flap-statistics – views BGP flap statistics. clear ip bgp ipv6 unicast soft Clear and reapply policies for IPv6 unicast routes without resetting the TCP connection; that is, perform BGP soft reconfiguration.
debug ip bgp Allows you to view all information on BGP, including BGP events, keepalives, notifications, and updates. S5000 Syntax debug ip bgp [ipv6-address | peer-group peer-group-name] [in | out] To disable all BGP debugging, use the no debug ip bgp command. Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
debug ip bgp events Allows you to view information on local BGP state changes and other BGP events. S5000 Syntax debug ip bgp [ipv6-address | peer-group peer-group-name] events [in | out] To disable debugging, use the no debug ip bgp ipv6-address | peer-group peer-group-name] events command. Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128.
Command Modes Command History EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information Entering a no debug ip bgp command removes all configured debug commands for BGP. Related Commands show ip bgp ipv6 unicast dampened-paths – views BGP dampened routes. debug ip bgp ipv6 unicast soft-reconfiguration Enable soft-reconfiguration debugging for IPv6 unicast routes.
debug ip bgp keepalives Allows you to view information about BGP keepalive messages. S5000 Syntax debug ip bgp [ipv6-address | peer-group peer-group-name] keepalives [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] keepalives [in | out] command. Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group peer- group-name Command Modes Command History Usage Information (OPTIONAL) Enter the keywords peer-group followed by the name of the peer group. in (OPTIONAL) Enter the keyword in to view BGP notifications received from neighbors. out (OPTIONAL) Enter the keyword out to view BGP notifications sent to neighbors. EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Command Modes EXEC Privilege Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Entering a no debug ip bgp command removes all configured debug commands for BGP. default-metric Allows you to change the metrics of redistributed routes to locally originated routes. Use this command with the redistribute command. S5000 Syntax default-metric number To return to the default setting, use the no default-metric command.
Defaults none Command Modes ROUTER BGP Command History Related Commands Version 9.0(1.3) Introduced on the S5000. router bgp – enters ROUTER mode on the switch. distance bgp Configure three administrative distances for routes. S5000 Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command.
maximum-paths Configure the maximum number of parallel routes (multipath support) BGP supports. S5000 Syntax maximum-paths {ebgp | ibgp} number To return to the default values, use the no maximum-paths command. Parameters ebgp Enter the keyword ebgp to enable multipath support for External BGP routes. ibgp Enter the keyword ibgp to enable multipath support for Internal BGP routes. number Enter a number as the maximum number of parallel paths. The range is 1 to 16. The default is 1.
Defaults Disabled. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 9.0(1.3) Introduced on the S5000. By default, when a neighbor/peer group configuration is created in the Router BGP context, it is enabled for the IPv6/Unicast AFI/SAFI. By using activate in the new context, the neighbor/peer group is enabled for AFI/SAFI. neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group.
neighbor allowas-in Set the number of times an AS number can occur in the AS path. S5000 Syntax neighbor {ip-address | peer-group-name} allowas-in number To return to the default value, use the no neighbor {ip-address | peer-groupname} allowas-in command. Parameters ip-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
route-map mapname (OPTIONAL) Enter the keywords route-map followed by the name of a configured route map. Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 9.0(1.3) Introduced on the S5000. If you apply a route map to a BGP peer or neighbor with the neighbor defaultoriginate command configured, the software does not apply the set filters in the route map to that BGP peer or neighbor.
neighbor distribute-list Distribute BGP information using an established prefix list. S5000 Syntax neighbor {ipv6-address | peer-group-name} distribute-list prefix-list-name {in | out} To delete a neighbor distribution list, use the no neighbor {ipv6-address | peergroup-name} distribute-list prefix-list-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
peer-group-name Enter the name of the peer group. ttl (OPTIONAL) Enter the number of hops as the time to live (ttl) value. The range is 1 to 255. The default is 255. Defaults Disabled. Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000. To prevent loops, the neighbor ebgp-multihop command does not install default routes of the multihop peer. Networks not directly connected are not considered valid for best path selection.
neighbor filter-list Configure a BGP filter based on the AS-PATH attribute. S5000 Syntax neighbor {ipv6-address | peer-group-name} filter-list as-pathname {in | out} To delete a BGP filter, use the no neighbor {ipv6-address | peer-groupname} filter-list as-path-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
maximum Enter a number as the maximum number of prefixes allowed for this BGP router. The range is 1 to 4294967295. threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this threshold, the switch software sends a message. The range is 1 to 100 percent. The default is 75. warning-only (OPTIONAL) Enter the keyword warning-only to set the router to send a log message when the maximum value is reached.
Command Modes Command History Usage Information ROUTER BGPV6-ADDRESS FAMILY Version 9.0(1.3) Introduced on the S5000. If you configure the set ipv6 next-hop command in ROUTE-MAP mode, its configuration takes precedence over the neighbor next-hop-self command. neighbor peer-group (assigning peers) Allows you to assign one peer to a existing peer group.
A peer group must exist before you add a peer to it. If the peer group is disabled (shutdown) the peers within the group are also disabled (shutdown). Related Commands capture bgp-pdu max-buffer-size – resets BGP sessions. neighbor peer-group (creating group) – creates a peer group. show ip bgp ipv6 unicast peer-group – views BGP peers. show ip bgp ipv6 unicast neighbors – views BGP neighbors configurations. neighbor peer-group (creating group) Allows you to create a peer group and assign it a name.
To delete a passive peer-group, use the no neighbor peer-group-name peergroup passive command. Parameters peer-group-name Defaults Not configured. Command Modes ROUTER BGP Command History Version 9.0(1.3) Enter a text string up to 16 characters long as the name of the peer group. Introduced on the S5000. Usage Information After you configure a peer group as passive, you must assign it a subnet using the neighbor subnet command.
Related Commands router bgp – enters the ROUTER BGP mode and configure routes in an AS. neighbor remove-private-as Remove private AS numbers from the AS-PATH of outgoing updates. S5000 Syntax neighbor {ipv6-address | peer-group-name} remove-private-as To return to the default, use the no neighbor {ipv6-address | peer-groupname} remove-private-as command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. map-name Enter the name of an established route map. If the Route map is not configured, the default is deny (to drop all routes). in Enter the keyword in to filter inbound routes. out Enter the keyword out to filter outbound routes. Defaults Not configured.
Command Modes Command History Usage Information ROUTER BGPV6-ADDRESS FAMILY Version 9.0(1.3) Introduced on the S5000. The first time you enter this command it configures the neighbor as a route reflector and members of the route-reflector cluster. Internal BGP (IBGP) speakers do not need to be fully meshed if you configure a route reflector. When all clients of a route reflector are disabled, the neighbor is no longer a route reflector.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to disable or enable all routers within the peer group. Defaults Enabled (that is, BGP neighbors and peer groups are disabled.) Command Modes ROUTER BGP Command History Version 9.0(1.3) Introduced on the S5000.
Usage Information This command enables soft-reconfiguration for the specified BGP neighbor. BGP stores all updates for inbound IPv6 unicast routes received by the neighbor but does not reset the peersession. CAUTION: Inbound update storage is a memory-intensive operation. The entire BGP update database from the neighbor is stored in memory regardless of the inbound policy results applied on the neighbor.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults Command Modes Command History Usage Information peer-group-name Enter the name of the peer group to set the timers for all routers within the peer group. keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. the range is 1 to 65535. the default is 60 seconds.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to set the timers for all routers within the peer group. loopback Enter the keyword loopback followed by a number of the loopback interface. The range is 0 to 16383. interface Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
NOTE: Reset the neighbor connection (the capture bgp-pdu max-buffer-size * command) to apply the weight to the connection and recompute the best path. neighbor X:X:X::X password Enable TCP MD5 Authentication for an IPv6 BGP peer session. S5000 Syntax neighbor x:x:x::x password {7 |
route-map mapname (OPTIONAL) Enter the keywords route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ipv6 address • match ipv6 next-hop • match ipv6 route-source • set ipv6 next-hop If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Related Commands Version 9.0(1.3) Introduced on the S5000.
redistribute Redistribute routes into BGP. S5000 Syntax redistribute {connected | static} [route-map map-name] To disable redistribution, use the no redistribution {connected | static} command. Parameters connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static to redistribute manually configured routes. These routes are treated as incomplete routes.
redistribute isis Redistribute IS-IS routes into BGP. S5000 Syntax redistribute isis [level-1 | level-1-2 | level-2] [metric metric-value | metric-type {external | internal}] [route-map map-name] To stop redistribution of IS-IS routes, use the no redistribute isis command. Parameters level-1 | level-1-2 | level-2] (OPTIONAL) Enter the type (level) of routes to redistribute. metric (OPTIONAL) Assign metric to an interface for use with IPv6 information.
redistribute ospf Redistribute OSPFv3 routes into BGP. S5000 Syntax redistribute ospf process-id [[match external {1 | 2}] [match internal]] [route-map map-name] To stop redistribution of OSPF routes, use the no redistribute ospf process-id command. Parameters process-id Enter the number of the OSPFv3 process. The range is 1 to 65535. match external {1 | 2} (OPTIONAL) Enter the keywords match external to redistribute OSPF external routes. You can specify 1 or 2 to redistribute those routes only.
router bgp Enter ROUTER BGP mode to configure and enable BGP. S5000 Syntax router bgp as-number To disable BGP, use the no router bgp as-number command. Parameters as-number Defaults Not enabled. Command Modes CONFIGURATION Command History Version 9.0(1.3) Enter the AS number. The range is 1 to 65535. Introduced on the S5000. show capture bgp-pdu neighbor Display BGP packet capture information for an IPv6 address on the S5000.
show config View the current ROUTER BGP configuration.
longer-prefixes Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Enter the keywords longer-prefixes to view all routes with a common prefix. Introduced on the S5000. When you enable bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason. show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster.
Command Modes Command History Usage Information local-AS Enter the keywords local-AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED. All routes with the NO_EXPORT_SUBCONFED (0xFFFFFF03) community attribute must not be advertised to external BGP peers. no-advertise Enter the keywords no-advertise to view all routes containing the well-known community attribute of NO_ADVERTISE.
show ip bgp ipv6 unicast dampened-paths View BGP routes that are dampened (non-active). S5000 Syntax Command Modes Command History show ip bgp ipv6 unicast dampened-paths • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. show ip bgp ipv6 unicast detail Display BGP internal information for IPv6 Unicast address family. S5000 Syntax show ip bgp ipv6 unicast detail Defaults none Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. To view the total number of COMMUNITY attributes found, use the show ip bgp ipv6 unicast summary command. The text line above the route table states the number of COMMUNITY attributes found. The show ip bgp ipv6 unicast community command without any parameters lists BGP routes with at least one BGP community attribute and the output is the same as for the show ip bgp ipv6 unicast command output.
filter-list as-path- name regexp regular- expression (OPTIONAL) Enter the keywords filter-list followed by the name of a configured AS-PATH ACL. Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (0 or more sequences). • + = (plus) the sequences in a pattern (1 or more sequences).
show ip bgp ipv6 unicast neighbors Displays information on IPv6 unicast routes exchanged by BGP neighbors. S5000 Syntax Parameters show ip bgp ipv6 unicast neighbors [ipv4-neighbor-addr | ipv6neighbor-addr] [advertised-routes | dampened-routes | detail | flap-statistics | routes | received-routes [network [networkmask]] | denied-routes [network [network-mask]]] ipv6 unicast Enter the keywords ipv6 unicast to view information only related to IPv6 unicast routes.
Usage Information The following describes the show ip bgp ipv6 unicast neighbors command shown in the Example below. Lines Beginning with Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one. If they are located in the same AS, then the link is internal; otherwise, the link is external.
Example Connections established Displays the number of TCP connections established and dropped between the two peers to exchange BGP information. Last reset Displays the amount of time since the peering session was last reset. Also states if the peer resets the peering session. If the peering session was never reset, the word “never” is displayed. Local host: Displays the peering address of the local router and the TCP port number.
Received 27 messages, 3 notifications, 0 in queue Sent 0 messages, 0 notifications, 0 in queue Received 8 updates, Sent 0 updates Route refresh request: received 0, sent 0 Minimum time between advertisement runs is 30 seconds Minimum time before advertisements start is 0 seconds Capabilities received from neighbor for IPv6 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) Capabilities advertised to neighbor for IPv6 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) Fo
Command History Example Version 9.0(1.3) Introduced on the S5000.
9000::4:2 9000::5:2 9000::6:2 9000::7:2 9000::8:2 9000::9:2 9000::a:2 9000::b:14 FTOS# 18508 1 2 3 18508 18508 18508 18508 0 35 35 35 35 44 35 29 0 32 32 32 32 19 32 29 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 never Active 00:16:42 0 00:16:39 0 00:16:41 0 00:16:42 0 00:16:41 0 00:16:43 0 00:13:01 0 show ip bgp next-hop View all next hops (using learned routes only) with current reachability and flap status.
Parameters regexp regular- expression Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (0 or more sequences). • + = (plus) the sequences in a pattern (1 or more sequences). • ? = (question mark) sequences in a pattern (either 0 or 1 sequences). NOTE: You must enter an escape sequence (CTRL+v) prior to entering the ? regular expression.
show ip bgp paths community View all unique COMMUNITY numbers in the BGP database. S5000 Syntax Command Modes Command History show ip bgp paths community • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. show ip bgp paths extcommunity View all unique extended community information in the BGP database. S5000 Syntax Command Modes Command History show ip bgp paths extcommunity • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on theS5000.
• + = (plus) the sequences in a pattern (1 or more sequences). • ? = (question mark) sequences in a pattern (either 0 or 1 sequences). NOTE: You must enter an escape sequence (CTRL+v) prior to entering the ? regular expression. Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) • [ ] = (brackets) a range of single-character patterns. • ^ = (caret) the beginning of the input string.
IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). The Dell Networking operating software (FTOS) MBGP is implemented as per IETF RFC 1858. address family This command changes the context to subsequent address family identifier (SAFI). S5000 Syntax address family ipv6 unicast To remove SAFI context, use the no address family ipv6 unicast command.
advertise-map map-name (OPTIONAL) Enter the keywords advertise-map followed by the name of a configured route map to set filters for advertising an aggregate route. as-set (OPTIONAL) Enter the keywords as-set to generate path attribute information and include it in the aggregate. AS_SET includes AS_PATH and community information from the routes included in the aggregated route.
Parameters half-life (OPTIONAL) Enter the number of minutes after which the Penalty is decreased. After the router assigns a Penalty of 1024 to a route, the Penalty is decreased by half, after the half-life period expires. The range is 1 to 45. The default is 15 minutes. reuse (OPTIONAL) Enter a number as the reuse value, which is compared to the flapping route’s Penalty value. If the Penalty value is less than the reuse value, the flapping route is once again advertised (or no longer suppressed).
ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History dampening (OPTIONAL) Enter the keyword dampening to clear route flap dampening information. flap-statistics (OPTIONAL) Enter the keywords flap-statistics to reset the flap statistics on all prefixes from that neighbor.
Parameters Command Modes Command History network (OPTIONAL) Enter the IPv6 network address in x:x:x:x::x format to clear flap statistics. filter-list list (OPTIONAL) Enter the keywords filter-list followed by the name of a configured AS-PATH list (maximum 16 characters). regexp regexp (OPTIONAL) Enter the keyword regexp followed by regular expressions. Use one or a combination of the following: • . (period) matches on any single character, including white space.
debug ip bgp ipv6 unicast peer-group updates View information about BGP peer-group updates. S5000 Syntax debug ip bgp ipv6 unicast peer-group peer-group-name updates [in | out] To disable debugging, use the no debug ip bgp ipv6 unicast peer-group peer-group-name updates [in | out] command. Parameters Command Modes Command History peer-group peergroup-name Enter the keywords peer-group followed by the name of the peergroup. updates Enter the keyword updates to view BGP update information.
Defaults Disabled. Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. distance bgp Define an administrative distance for routes. S5000 Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command. Parameters Defaults Command Modes Command History Usage Information external-distance Enter a number to assign to routes learned from a neighbor external to the AS. The range is 1 to 255.
neighbor activate Allows you to enable a specified neighbor/peer group for the current address and subsequent address family identifier (AFI/SAFI). S5000 Syntax neighbor [ipv6-address | peer-group-name] activate To disable, use the no neighbor [ipv6-address | peer-group-name] activate command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Identify a peer group by name.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults Command Modes Command History peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group. seconds Enter a number as the time interval, in seconds, between BGP advertisements. The range is 0 to 600 seconds. The default is 5 seconds for internal BGP peers and 30 seconds for external BGP peers.
neighbor distribute-list Distribute BGP information using an established prefix list. S5000 Syntax neighbor {ipv6-address | peer-group-name} distribute-list prefix-list-name {in | out} To delete a neighbor distribution list, use the no neighbor {ipv6-address | peergroup-name} distribute-list prefix-list-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to apply the filter to all routers in the peer group. access-list-name Enter the name of an established AS-PATH access list. If the ASPATH access list is not configured, the default is permit (to allow routes). in Enter the keyword in to filter inbound BGP routes. out Enter the keyword out to filter outbound BGP routes. Defaults Not configured.
Defaults threshold = 75 Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version 9.0(1.3) Introduced on the S5000. neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. S5000 Syntax neighbor {ipv6-address | peer-group-name} next-hop-self To return to the default setting, use the no neighbor {ipv6-address | peergroup-name} next-hop-self command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to remove the private AS numbers. Defaults Disabled (that is, the private AS number are not removed). Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version 9.0(1.3) Introduced on theS5000. neighbor route-map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group.
neighbor route-reflector-client Configure a neighbor as a member of a route reflector cluster. S5000 Syntax neighbor {ipv6-address | peer-group-name} route-reflectorclient To indicate that the neighbor is not a route reflector client or to delete a route reflector configuration, use the no neighbor {ipv6-address | peer-group-name} route-reflector-client command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format.
route-map mapname (OPTIONAL) Enter the keywords route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ipv6 address • match ipv6 next-hop • match ipv6 route-source • set ipv6 next-hop If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version 9.0(1.3) Introduced on the S5000.
• set ipv6 next-hop If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 9.0(1.3) Introduced on the S5000. If you do not configure the default-metric command, in addition to the redistribute command, or there is no route map to set the metric, the metric for redistributed static and connected is “0”.
Example Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0::0/0 is listed in this column, local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network.
show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster. S5000 Syntax Paramters Command Modes Command History show ip bgp ipv6 unicast cluster-list [cluster-id] cluster-id • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Enter the cluster id in dotted decimal format. Introduced on the S5000. show ip bgp ipv6 unicast community View information on all routes with community attributes or view specific BGP community groups.
• Command History Usage Information EXEC Privilege Version 9.0(1.3) Introduced on the S5000. To view the total number of COMMUNITY attributes found, use the show ip bgp ipv6 unicast summary command. The text line above the route table states the number of COMMUNITY attributes found. show ip bgp ipv6 unicast community-list View routes that are affected by a specific community list.
show ip bgp ipv6 unicast detail Display detailed BGP information. S5000 Syntax Command Modes Command History Example show ip bgp ipv6 unicast detail • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes. S5000 Syntax Parameters show ip bgp ipv6 unicast flap-statistics [ipv6-address prefixlength] [filter-list as-path-name] [regexp regular-expression] ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128.
Command History Example Version 9.0(1.3) Introduced on the S5000. FTOS#show ip bgp ipv6 unicast flap-statistics BGP table version is 8, local router ID is 5.5.10.
Parameters ipv6-address prefix-length (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History Usage Information advertised-routes (OPTIONAL) Enter the keywords advertised-routes to view only the routes the neighbor sent.
Example Received messages This line displays the number of BGP messages received, the number of notifications (error messages), and the number of messages waiting in a queue for processing. Sent messages The line displays the number of BGP messages sent, the number of notifications (error messages), and the number of messages waiting in a queue for processing. Received updates This line displays the number of BGP updates received and sent.
CISCO_ROUTE_REFRESH(128) Capabilities advertised to neighbor for IPv6 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) For address family: IPv6 Unicast BGP table version 12, neighbor version 12 2 accepted prefixes consume 32 bytes Prefixes accepted 1 (consume 4 bytes), withdrawn 0 by peer Prefixes advertised 0, rejected 0, withdrawn 0 from peer Connections established 3; dropped 2 Last reset 00:00:39, due to Closed by neighbor Notification History 'OPEN error/Bad AS' Sent : 0 Recv: 1 Lo
show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. S5000 Syntax Parameters Command Modes Command History Related Commands show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group.
BGP table version Displays the BGP table version and the main routing table version. network entries Displays the number of network entries, route paths, and the amount of memory used to process those entries. BGP path attribute entries Displays the number of BGP path attributes and the amount of memory used to process them. BGP AS-PATH entries Displays the number of BGP AS_PATH attributes processed and the amount of memory used to process them.
penalized paths Neighbor AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/Pfx 5ffe:10::3 5ffe:11::3 FTOS# 1 1 28 27 0 0 12 12 0 0 0 00:01:01 0 00:00:55 2 2 iscsi aging time Set the aging time for iSCSI sessions. S5000 Syntax iscsi aging time time To remove the iSCSI session aging time, use the no iscsi aging time command. Parameters time Defaults 10 minutes Command Modes CONFIGURATION Command History 744 Version 9.0(1.3) Enter the aging time for the iSCSI session.
27 iSCSI Optimization Internet small computer system interface (iSCSI) optimization enables quality-of-service (QoS) treatment for iSCSI storage traffic on an S5000 switch. Use the following Dell Networking operating software (FTOS) commands to configure and verify the iSCSI optimization feature. advertise dcbx-app-tlv Configure DCBx to send iSCSI TLV advertisements. S5000 Syntax advertise dcbx-app-tlv iscsi To disable DCBx iSCSI TLV advertisements, use the no advertise dcbx-app-tlv iscsi command.
Defaults 10 minutes Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. iscsi cos Set the QoS policy that is applied to the iSCSI flows. S5000 Syntax iscsi cos {enable | disable | dot1p vlan-priority-value [remark] | dscp dscp-value [remark]} To disable the QoS policy, use the no iscsi cos dscp command.
iscsi enable Globally enable iSCSI optimization. S5000 Syntax iscsi enable To disable iSCSI optimization, use the no iscsi command. Parameters enable Defaults Disabled. Command Modes CONFIGURATION Command History Version 9.0(1.3) Enter the keyword enable to enable the iSCSI optimization feature. Introduced on the S5000. iscsi priority-bits Configure the priority bitmap that advertises in the iSCSI application TLVs.
Command History Version 9.0(1.3) Introduced on the S5000. iscsi target port Configure the iSCSI target ports and optionally, the IP addresses on which iSCSI communication is monitored. S5000 Syntax iscsi target port [tcp-port-2...tcp-port-16]ip-address [ipaddress] To remove the configured iSCSI target ports or IP addresses, use the no iscsi target port command. Parameters tcpport-2...tcpport16 Enter the tcp-port number of the iSCSI target ports.
Command History Example Related Commands Version 9.0(1.3) Introduced on the S5000. FTOS#show iscsi iSCSI is enabled iSCSI session monitoring is disabled iSCSI COS : dot1p is 4 no-remark Session aging time: 10 Maximum number of connections is 256 -----------------------------------------------iSCSI Targets and TCP Ports: -----------------------------------------------TCP Port Target IP Address 3260 860 • show iscsi session – displays information about active iSCSI sessions on the switch.
Related Commands • show iscsi – displays the currently configured iSCSI settings. • show iscsi session detailed – displays detailed information about active iSCSI sessions on the switch. • show run iscsi – shows run iscsi. show iscsi session detailed Display detailed information on active iSCSI sessions on the switch.
• show run iscsi – shows run iscsi. show run iscsi Display all globally configured non-default iSCSI settings in the current FTOS session. S5000 Syntax show run iscsi Command Modes EXEC Privilege Command History Related Commands Version 9.0(1.3) Introduced on the S5000. • show iscsi – displays the currently configured iSCSI settings. • show iscsi session – displays detailed information about active iSCSI sessions on the switch.
28 Intermediate System to Intermediate System (ISIS) The intermediate system to intermediate system (IS-IS) protocol for IPv4 and IPv6 is supported on the S5000 switch. IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic. A router is considered an intermediate system. Networks are partitioned into manageable routing domains, called areas.
advertise Leak routes between levels (distribute IP prefixes between Level 1 and Level 2 and vice versa). S5000 Syntax advertise {level1-into-level2 | level2-into-level1} prefixlist-name To return to the default, use the no advertise {level1-into-level2 | level2into-level1}[prefix-list-name] command. Parameters Defaults level1-into-level2 Enter the keywords level1-into-level2 to advertise Level 1 routes into Level 2 LSPs. This is the default.
encryption-type (OPTIONAL) Enter 7 to encrypt the password using DES. password Enter a 1 to 16-character length alphanumeric string to prevent unauthorized access or incorrect routing information corrupting the link state database. The password is processed as plain text, which only provides limited security. Defaults Not configured. Command Modes ROUTER ISIS Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
clear isis Restart the IS-IS process. All IS-IS data is cleared. S5000 Syntax Parameters Command Modes Command History clear isis [tag] {* | database | traffic} tag (Optional) Enter an alphanumeric string to specify the IS-IS routing tag area. * Enter the keyword * to clear all IS-IS information and restart the IS-IS process. This command removes IS-IS neighbor information and IS-IS LSP database information and the full SPF calculation is done. database Clears IS-IS LSP database information.
debug isis Enable debugging for all IS-IS operations. S5000 Syntax debug isis To disable debugging of IS-IS, use the no debug isis command. Command Modes Command History Usage Information EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Entering debug isis enables all debugging parameters. Use this command to display all debugging information in one output. To turn off debugging, you normally enter separate no forms of each command.
debug isis local-updates Enables debugging on a specific interface and provides diagnostic information to debug IS-IS local update packets. S5000 Syntax debug isis local-updates [interface] To turn off debugging, use the no debug isis local-updates [interface] command. Parameters Command Modes Command History interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Command Modes Command History • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60. • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128. • For a VLAN interface, enter the keyword vlan followed by a VLAN id number from 1 to 4094. EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Command Modes Command History • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60. • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128. • For a VLAN interface, enter the keyword vlan followed by a VLAN id number from 1 to 4094. EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
metric value in the default-information originate command is set to a number higher than 63, the metric value advertised in the LSPs is 63. If the metric-style command is set for Wide mode, the metric value in the default-information originate command is advertised. Related Commands • redistribute – redistributes routes from one routing domain to another routing domain. • isis metric – configures a metric for an interface. • metric-style – sets the metric style for the router.
indicates lower reliability. Routes with smaller values are given preference.) The default is 115. Defaults ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and enter a mask in either dotted decimal or /prefix format. prefix-list (OPTIONAL) Enter the name of a prefix list name. weight = 115 Command Modes Command History Usage Information • • ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version 9.0(1.3) Introduced on the S5000.
Defaults Not configured. Command Modes Command History • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version 9.0(1.3) Related Commands Introduced on the S5000. • distribute-list out – suppresses networks from being advertised in updates. • redistribute – redistributes routes from one routing domain to another routing domain. distribute-list out Suppress network prefixes from being advertised in outbound updates.
Usage Information Related Commands You can assign a name to a routing process so a prefix list IS applied to only the routes derived from the specified routing process. • distribute-list in – filters the networks received in updates. • redistribute – redistributes routes from one routing domain to another routing domain. distribute-list redistributed-override Suppress flapping of routes when the same route is redistributed into IS-IS from multiple routers in the network.
Defaults No default password. Command Modes ROUTER ISIS Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The domain password is inserted in Level 2 link state PDUs (LSPs), complete sequence number PDUs (CSNPs), and partial sequence number PDUs (PSNPs). Related Commands • area-password – configures an IS-IS area authentication password. • isis priority – configures the authentication password for an interface.
graceful-restart interval Set the graceful restart grace period, the time during that all graceful restart attempts are prevented. S5000 Syntax graceful-restart interval minutes To return to the default, use the no graceful-restart interval command. Parameters minutes Defaults 5 minutes Command Modes ROUTER ISIS Command History Version 9.0(1.3) Enter the graceful-restart interval minutes. The range is 1 to 20 minutes. The default is 5 minutes. Introduced on the S5000.
graceful-restart t2 Configure the wait time for the graceful restart timer T2 that a restarting router uses as the wait time for each database to synchronize. S5000 Syntax graceful-restart t2 {level-1 | level-2} seconds To return to the default, use the no graceful-restart t2 command. Parameters level-1, level-2 Enter the keywords level-1 or level-2 to identify the database instance type to which the wait interval applies. seconds Enter the gracefule-restart t2 time in seconds.
Usage Information The running router sets the remaining time value to the current adjacency hold time. You can override this setting by implementing this command. Override the default restart-wait time by entering the no graceful-restart restart-wait command. When you disable restart-wait, the current adjacency hold time is used. Set the t3 timer to adjacency on the restarting router when implementing this command.
hello padding Use to turn ON or OFF padding for LAN and point-to-point hello PDUs or to selectively turn padding ON or OFF for LAN or point-to-point hello PDUs. S5000 Syntax hello padding [multi-point | point-to-point] To return to the default, use the no hello padding [multi-point | point-topoint] command. Parameters multi-point (OPTIONAL) Enter the keywords multi-point to pad only LAN hello PDUs. point-to-point (OPTIONAL) Enter the keywords point-to-point to pad only point-to-point PDUs.
Usage Information Use this command to build name-to-systemID mapping tables through the protocol. All show commands that display systems also display the hostname. Related Commands clns host – defines a name-to-NSAP mapping. ignore-lsp-errors Ignore LSPs with bad checksums instead of purging those LSPs. S5000 Syntax ignore-lsp-errors To return to the default values, use the no ignore-lsp-errors command. Defaults In IS-IS, the default deletes LSPs with internal checksum errors (no ignore-lsperrors).
Usage Information Use the net command to assign a network entity title to enable IS-IS. Related Commands • net – configures an IS-IS network entity title (NET) for the routing process. • router isis – enables the IS-IS routing protocol. ipv6 router isis Enable the IPv6 IS-IS routing protocol and specify an IPv6 IS-IS process. S5000 Syntax ipv6 router isis [tag] To disable IS-IS routing, use the no router isis [tag] command. Parameters tag (OPTIONAL) This is a unique name for a routing process.
isis circuit-type Configure the adjacency type on interfaces. S5000 Syntax isis circuit-type {level-1 | level-1-2 | level-2-only} To return to the default values, use the no isis circuit-type command. Parameters level-1 You can form a Level 1 adjacency if there is at least one common area address between this system and neighbors. You cannot form Level 2 adjacencies on this interface.
level-1 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 1. level-2 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 2. Defaults seconds = 10; level-1 (if not otherwise specified) Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
Related Commands isis hello-multiplier – specifies the number of IS-IS hello packets a neighbor must miss before the router declares the adjacency as down. isis hello-multiplier Specify the number of IS-IS hello packets a neighbor must miss before the router declares the adjacency down. S5000 Syntax isis hello-multiplier multiplier [level-1 | level-2] To return to the default values, use the no isis hello-multiplier [multiplier] [level-1 | level-2] command.
Defaults Padding of hello PDUs is enabled (ON). Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000. Usage Information Hello PDUs are “padded” only when both the global and interface padding options are ON. Turning either one OFF disables padding for the corresponding interface. Related Commands hello padding – turns ON or OFF padding for LAN and point-to-point hello PDUs. isis ipv6 metric Assign metric to an interface for use with IPv6 information.
isis metric Assign a metric to an interface. S5000 Syntax isis metric default-metric [level-1 | level-2] To return to the default values, use the no isis metric [default-metric] [level-1 | level-2] command. Parameters default-metric Metric assigned to the link and used to calculate the cost from each other router via the links in the network to other destinations. You can configure this metric for Level 1 or Level 2 routing.
isis password Configure an authentication password for an interface. S5000 Syntax isis password [hmac-md5] password [level-1 | level-2] To delete a password, use the no isis password [password] [level-1 | level-2] command. Parameters encryption-type (OPTIONAL) Enter 7 to encrypt the password using DES. hmac-md5 (OPTIONAL) Enter the keywords hmac-md5 to encrypt the password using MD5. password Assign the interface authentication password.
Parameters value This value sets the router priority. The higher the value, the higher the priority. The range is 0 to 127. The default is 64. level-1 (OPTIONAL) Specify the priority for Level 1. This is the default. level-2 (OPTIONAL) Specify the priority for Level 2. Defaults value = 64; level-1 (if not otherwise specified). Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000. You can configure priorities independently for Level 1 and Level 2.
If you are configuring only one area in your network, you do not need to run both Level 1 and Level 2 routing algorithms. You can configure the IS type as Level 1. log-adjacency-changes Generate a log messages for adjacency state changes. S5000 Syntax log-adjacency-changes To disable this function, use the no log-adjacency-changes command. Defaults Adjacency changes are not logged. Command Modes ROUTER ISIS Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
second_wait_inte rval seconds Defaults Refer to Parameters. Command Modes ROUTER ISIS Command History Usage Information Version 9.0(1.3) (OPTIONAL) Enter the wait interval, in seconds, between the first and second LSP generation. The range is 0 to 120 seconds. The default is 5 seconds. Introduced on the S5000. LSP throttling slows down the frequency at which LSPs are generated during network instability.
lsp-refresh-interval Set the link state PDU (LSP) refresh interval. LSPs must be refreshed before they expire. When the LSPs are not refreshed after a refresh interval, they are kept in a database until their max-lsp-lifetime reaches zero and then LSPs is purged. S5000 Syntax lsp-refresh-interval seconds To restore the default refresh interval, use the no lsp-refresh-interval command. Parameters seconds Defaults 900 seconds Command Modes ROUTER ISIS Command History Usage Information Version 9.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Use this command to configure the number of area addresses on router. This value must be consistent with routers in the same area, otherwise the router forms only Level 2 adjacencies. The value must be same among all the routers to form Level 1 adjacencies. max-lsp-lifetime Set the maximum time that link-state packets (LSPs) exist without being refreshed.
Parameters Defaults Command Modes Command History number Enter a number as the maximum number of parallel paths an IP routing installs in a routing table. The range is 1 to 16. The default is 4. 4 • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version 9.0(1.3) Introduced on the S5000. metric-style Configure a router to generate and accept old-style, new-style, or both styles of type, length, and values (TLV).
multi-topology Enables multi-topology IS-IS. It also allows enabling/disabling of old and new style TLVs for IP prefix information in the LSPs. S5000 Syntax multi-topology [transition] To return to a single topology configuration, use the no multi-topology [transition] command. Parameters transition Defaults Disabled Command Modes CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 Command History Version 9.0(1.3) Introduced on the S5000.
passive-interface Suppress routing updates on an interface. This command stops the router from sending updates on that interface. S5000 Syntax passive-interface interface-type slot/port To delete a passive interface configuration, use the no passive-interface interface command. Parameters interface-type slot/port Defaults Not configured. Command Modes ROUTER ISIS Command History Usage Information Version 9.0(1.3) Enter the interface type and slot/port or number information.
{external | internal}] [level-1 | level-1-2 | level-2] [routemap map-name] command. Parameters Defaults Command Modes Command History Usage Information connected Enter the keyword connected to redistribute active routes into ISIS. rip Enter the keyword rip to redistribute RIP routes into IS-IS. static Enter the keyword static to redistribute user-configured routes into IS-IS. metric metricvalue (OPTIONAL) Assign a value to the redistributed route. The range is 0 to 16777215. The default is 0.
How a metric value assigned to a redistributed route is advertised depends on how on the configuration of the metric-style command. If the metric-style command is set for Narrow or Transition mode and the metric value in the redistribute command is set to a number higher than 63, the metric value advertised in LSPs is 63. If the metric-style command is set for Wide mode, the metric value in the redistribute command is advertised.
If you do not specify a map-name, all routes are redistributed. If you specify a keyword, but fail to list route map tags, no routes are imported. Defaults Command Modes Command History IS-IS Level 2 routes only • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version 9.0(1.3) Introduced on the S5000. Usage Information BGP to IS-IS redistribution supports “match” options using route maps.
metric-type {external | internal} (OPTIONAL) The external link type associated with the default route advertised into a routing domain. The two options are: • external • internal level-1 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 1 routes. level-1-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level-1-2 routes. level-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 2 routes. This is the default.
router isis Allows you to enable the IS-IS routing protocol and to specify an IP IS-IS process. S5000 Syntax router isis [tag] To disable IS-IS routing, use the no router isis [tag] command. Parameters tag (OPTIONAL) This is a unique name for a routing process. A null tag is assumed if the tag option is not specified. The tag name must be unique for all IP router processes for a given router. Defaults Not configured. Command Modes ROUTER ISIS Command History Usage Information Version 9.0(1.
• Command History Usage Information CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version 9.0(1.3) Introduced on the S5000. Set the overload bit when a router experiences problems, such as a memory shortage due to an incomplete link state database which can result in an incomplete or inaccurate routing table. If you set the overload bit in its LSPs, other routers ignore the unreliable router in their SPF calculations until the router has recovered.
show isis database Display the IS-IS link state database. S5000 Syntax Parameters Command Modes Command History Usage Information show isis database [level-1 | level-2] [local] [detail | summary] [lspid] level-1 (OPTIONAL) Displays the Level 1 IS-IS link-state database. level-2 (OPTIONAL) Displays the Level 2 IS-IS link-state database. local (OPTIONAL) Displays local link-state database information. detail (OPTIONAL) Detailed link-state database information of each LSP displays when specified.
Example LSP Seq Num This value is the sequence number for the LSP that allows other systems to determine if they have received the latest information from the source. LSP Checksum This is the checksum of the entire LSP packet. LSP Holdtime This value is the amount of time, in seconds, that the LSP remains valid. A zero holdtime indicates that this is a purged LSP and is being removed from the link state database.
Area Address: 49.0000.0001 NLPID: 0xCC 0x8E IP Address: 10.1.1.1 IPv6 Address: 1011::1 Topology: IPv4 (0x00) IPv6 (0x8002) Metric: 10 IS OSPF.00 Metric: 10 IS (MT-IPv6) OSPF.00 Metric: 10 IP 10.1.1.0 255.255.255.0 Metric: 10 IP 15.1.1.0 255.255.255.0 Metric: 20 IP 10.3.3.0 255.255.255.
Database Sync count FTOS# : 0 (level-1), 0 (level-2) show isis hostname Display IS-IS host names configured or learned on the S5000 switch. S5000 Syntax Command Modes Command History Example show isis hostname • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. FTOS#show isis hostname System Id Dynamic Name Static Name *F100.E120.0013 Dell ISIS FTOS# show isis interface Display detailed IS-IS interface status and configuration information.
• Command Modes Command History Example • EXEC • EXEC Privilege Version 9.0(1.3) For a VLAN interface, enter the keyword vlan followed by a VLAN id number from 1 to 4094. Introduced on the S5000. FTOSF>show isis int TenGigabitEthernet 0/7 is up, line protocol is up MTU 1497, Encapsulation SAP Routing Protocol: IS-IS Circuit Type: Level-1-2 Interface Index 37847070, Local circuit ID 1 Level-1 Metric: 10, Priority: 64, Circuit ID: systest-3.
interface-type slot/port Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Enter one of the following keywords followed by slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below. • For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63.
49.0000.0001 IP Address(es): 25.1.1.3* MAC Address: 0000.0000.0000 Hold Time: 28 Link Local Address: fe80::201:e8ff:fe00:492c Topology: IPv4 IPv6 , Common (IPv4 IPv6 ) Adjacency being used for MTs: IPv4 IPv6 FTOS# show isis protocol Display IS-IS routing information. S5000 Syntax Command Modes Command History Example 798 show isis protocol • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The bold section below identifies that Multi-Topology IS-IS is enabled.
show isis traffic This command allows you to display IS-IS traffic interface information. S5000 Syntax Parameters Command Modes Command History Usage Information show isis traffic [interface-type slot/port] interface-type slot/port • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Enter one of the following keywords followed by slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
Field Description Level-1/Level-2 LSPs CSNPs (sent/ rcvd) Displays the number. of CSNP LSPs sent and received Level-1/Level-2 LSPs PSNPs (sent/ rcvd) Displays the number. of times designated router elections ran Level-1/Level-2 DR Elections Displays the number. of times designated router elections ran Level-1/Level-2 SPF Calculations Displays the number. of shortest path first calculations LSP checksum errors received Displays the number.
spf-interval Specify the minimum interval between shortest path first (SPF) calculations. S5000 Syntax spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] To restore default values, use the no spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] command.
seconds). After the network calms down and there are no triggers for two times the maximum interval, fast behavior is restored (the initial wait time).
Link Aggregation Control Protocol (LACP) 29 This chapter contains commands for Dell Networking’s implementation of the link aggregation control protocol (LACP) for creating dynamic link aggregation groups (LAGs)—known as “port-channels” in the Dell Networking operating software [FTOS]. The LACP commands in this chapter are supported by FTOS on the S5000 switch. NOTE: For static LAG commands, refer to Port Channel Commands in the Interfaces chapter), based on the standards specified in the IEEE 802.
To disable LACP debugging, use the no debug lacp [config | events | pdu [interface-type slot/port][in | out]] command. Parameters config (OPTIONAL) Enter the keyword config to debug the LACP configuration. events (OPTIONAL) Enter the keyword events to debug the LACP event information. pdu in | out (OPTIONAL) Enter the keyword pdu to debug the LACP Protocol Data Unit information.
Defaults 1 second Command Modes INTERFACE (conf-if-po-number) Command History Version 9.0(1.3) Introduced on the S5000. Usage Information This command applies to dynamic port-channel interfaces only. When applied on a static portchannel, this command has no effect. Related Commands show lacp – displays the lacp configuration.
Defaults 32768 Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000. port-channel mode Configure the LACP port channel mode. S5000 Syntax Parameters port-channel number mode [active] [passive] [off] number Enter the keywords port-channel followed by a number. The range is 1 to 128. active Enter the keyword active to set the mode to the active state. NOTE: LACP modes are defined in Usage Information below.
port-channel-protocol lacp Enable LACP on any LAN port. S5000 Syntax port-channel-protocol lacp To disable LACP on a LAN port, use the no port-channel-protocol lacp command. Command Modes Command History Related Commands INTERFACE Version 9.0(1.3) Introduced on the S5000. show lacp – displays the LACP information. show interfaces port-channel – displays information on configured Port Channel groups. show lacp Display the LACP matrix.
A - Active LACP, B - Passive LACP, C - Short Timeout, D - Long Timeout E - Aggregatable Link, F - Individual Link, G - IN_SYNC, H OUT_OF_SYNC I - Collection enabled, J - Collection disabled, K Distribution enabled L - Distribution disabled, M - Partner Defaulted, N - Partner Non-defaulted, O - Receiver is in expired state, P - Receiver is not in expired state Port Te 10/6 is enabled, LACP is enabled Actor Admin: State ACEHJLMP Key 1 Oper: State ACEGIKNP Key 1 Partner Admin: State BDFHJLMP Key 0 Oper: State
30 Layer 2 This chapter describes commands to configure Layer 2 features. This chapter contains the following sections: • MAC Addressing Commands • Virtual LAN (VLAN) Commands • Far-End Failure Detection (FEFD) The VLAN commands are supported on the S5000 Dell Networking switch. MAC Addressing Commands The following commands are related to configuring, managing, and viewing MAC addresses. clear mac-address-table dynamic Clear the MAC address table of all MAC address learned dynamically.
vlan vlan-id Command Modes Command History • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60. • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128. Enter the keyword vlan followed by a VLAN ID number from 1 to 4094. EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
To remove a MAC address, use the no mac-address-table static mac-address output interface-type slot/port vlan vlan-id command. Parameters mac-address Enter the 48-bit hexidecimal address in nn:nn:nn:nn:nn:nn format. output interfacetype slot/port Enter the keyword output followed by one of the following interfaces: vlan vlan-id Defaults Not configured. Command Modes CONFIGURATION Command History Related Commands Version 9.0(1.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. For information about the specific trap sent and the corresponding Syslog, refer to the SNMP Traps chapter. mac-address-table station-move refresh-arp Ensure that address resolution protocol (ARP) refreshes the egress interface when a station move occurs due to a topology change.
Command Modes Command History Usage Information INTERFACE Version 9.0(1.3) Introduced on the S5000. This command and its options are supported on physical interfaces, static LAGs, LACP LAGs, and VLANs. If you do not specify the vlan option, the MAC address counters is not VLAN-based. That is, the sum of the addresses learned on all VLANs (not having any learning limit configuration) is counted against the MAC learning limit.
shutdown Enter the keyword shutdown to shut down the port on a learninglimit violation. Defaults none Command Modes INTERFACE (conf-if-interface-slot/port) Command History Version 9.0(1.3) Introduced on the S5000. Usage Information This is supported on physical interfaces, static LAGs, and LACP LAGs. Related Commands show mac learning-limit – displays details of the mac learning-limit.
mac learning-limit station-move-violation Specify the actions for a station move violation. S5000 Syntax mac learning-limit station-move-violation {log | shutdown-both | shutdown-offending | shutdown-original} To disable a configuration, use the no mac learning-limit station-moveviolation command, followed by the configured keyword. Parameters log Enter the keyword log to generate a syslog message on a station move violation.
Command History Version 9.0(1.3) Introduced on the S5000. show cam mac stack-unit Display the content addressable memory (CAM) size and the portions allocated for MAC addresses and for MAC ACLs.
• Example Command History EXEC Privilege FTOS#show cam mac stack-unit 0 port-set 0 VlanId Mac Address Region Interface 0 5c:f9:dd:ee:ff:c2 LOCAL_DA 00001 0 ff:ff:ff:ff:ff:ff STATIC 00001 0 00:10:18:ff:ff:ff STATIC N/A FTOS# Version 9.0(1.3) Introduced on the S5000. show mac-address-table Display the MAC address table.
interface interface-type Command Modes Command History Usage Information (OPTIONAL) Instead of entering the keyword interface followed by the interface type, slot and port information, as above, you can enter the interface type, followed by just a slot number. vlan vlan-id (OPTIONAL) Enter the keyword vlan followed by the VLAN id number to display the MAC address assigned to the VLAN. The range is 1 to 4094.
MAC Entries... Displays the number of MAC entries learnt per VLAN. Dynamic Address... Lists the number of dynamically learned MAC addresses. Static Address... Lists the number of user-defined MAC addresses. Total MAC... Lists the total number of MAC addresses used by the switch.
show mac accounting access-list Display destination counters for Layer 2 traffic (available on physical interfaces only). S5000 Syntax Parameters show mac accounting {access—list name {interface type slot/ port} {in | out}}} access-list name Enter the name of a configured access-list, up to 140 characters.
Related Commands show mac accounting access-list – displays the MAC access list configurations and counters (if configured). show mac learning-limit Display MAC address learning limits set for various interfaces. S5000 Syntax Parameters show mac learning-limit [violate-action] [detail] [interface type slot/port ] violate-action (OPTIONALY) Enter the keywords violate-action to display the MAC learning limit violation status.
Virtual LAN (VLAN) Commands The following commands configure and monitor virtual LANs (VLANs). VLANs are a virtual interface and use many of the same commands as physical interfaces. You can configure an IP address and Layer 3 protocols on a VLAN called Inter-VLAN routing. FTP, TFTP, ACLs and SNMP are not supported on a VLAN. Occasionally, while sending broadcast traffic over multiple Layer 3 VLANs, the VRRP state of a VLAN interface may continually switch between Master and Backup.
Defaults The Default VLAN is VLAN 1. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. Usage Information To return VLAN 1 as the Default VLAN, use this command syntax (default-vlan-id 1). Related Commands interface vlan – configures a VLAN. The Default VLAN contains only untagged interfaces. default-vlan disable Disable the default VLAN so that all switchports are placed in the Null VLAN until they are explicitly configured as a member of another VLAN.
Usage Information Related Commands To display information about a named VLAN, enter the show vlan command with the name parameter or the show interfaces description command. description – assigns a descriptive text string to the interface. interface vlan – configures a VLAN. show vlan – displays the current VLAN configurations on the switch. show config Display the current configuration of the selected VLAN. S5000 Syntax show config Command Modes INTERFACE VLAN Command History Example Version 9.
id vlan-id (OPTIONAL) Enter the keyword id followed by a number from 1 to 4094. Only information on the VLAN specified is displayed. name vlan-name (OPTIONAL) Enter the keyword name followed by the name configured for the VLAN. Only information on the VLAN named is displayed. Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) The following describes the show vlan command shown in the Example below.
* Example (VLAN ID) NUM 1 2 Status Inactive Active Description 3 Active T Po20(Te 13/6) 4 Active U Po2(Te 13/2) 5 Active T Po20(Te 13/6) 6 Active U Po3(Te 13/4) 7 Active T Po20(Te 13/6) P 100 Active T Po1(Te 0/1) C 101 I 102 FTOS# Inactive T Te 0/3 Inactive T Te 0/4 Q Ports U Po1(Te 13/0) T Po20(Te 13/6), Te 13/25 T Te 13/7 T Te 13/7 U Te 13/1 T Po20(Te 13/6) T Te 13/7 T Te 13/7 U Te 13/3 T Po20(Te 13/6) T Te 13/7 T Te 13/7 U Te 13/5 T Te 0/2 FTOS# show vlan id 40 Codes: Q: U x G - * -
3 FTOS# Example (Name) 0 1800 3.3.3.2/24 FTOSconf)#interface vlan 222 FTOS(conf-if-vl-222)#name test FTOS(conf-if-vl-222)#do show vlan name test Codes: Q: U x G - * - Default VLAN, G - GVRP VLANs Untagged, T - Tagged Dot1x untagged, X - Dot1x tagged GVRP tagged, M - Vlan-stack NUM Status Description 222 Inactive FTOS(conf-if-vl-222)# Related Commands Q Ports U Te 1/22 vlan-stack compatible – enables the Stackable VLAN feature on the selected VLAN. interface vlan – configures a VLAN.
Usage Information When you use the no tagged command, the interface is automatically placed in the Default VLAN as an untagged interface unless the interface is a member of another VLAN. If the interface belongs to several VLANs, you must remove it from all VLANs to change it to an untagged interface. Tagged interfaces can belong to multiple VLANs, while untagged interfaces can only belong to one VLAN at a time. Related Commands interface vlan – configures a VLAN.
Related Commands interface vlan – configures a VLAN. tagged – specifies which interfaces in a VLAN are tagged. untagged Add a Layer 2 interface to a VLAN as an untagged interface. S5000 Syntax untagged interface-type slot/port To remove an untagged interface from a VLAN, use the no untagged interface-type slot/port command. Parameters interface-type slot/port Enter the interface type and slot/port or number information. Valid slot numbers are 0-11.
Far-End Failure Detection (FEFD) The Dell Networking operating software (FTOS) supports far-end failure detection (FEFD) on the Ethernet interfaces of the S5000 switch. The FEFD feature detects and reports far-end link failures. • FEFD is not supported on the Management interface. • During an stack-unit failover, FEFD is operationally disabled for approximately 8-10 seconds. • By default, FEFD is disabled. debug fefd Enable debugging of FEFD.
fefd Enable far-end failure detection on an interface. S5000 Syntax fefd To disable FEFD on an interface, use the no fefd command. Defaults Disabled. Command Modes INTERFACE Command History Usage Information Related Commands Version 9.0(1.3) Introduced on the S5000. When you enter no fefd for an interface and fefd-global, FEFD is enabled on the interface because the no fefd command is not retained in the configuration file.
fefd-global Enable FEFD globally on the system. S5000 Syntax fefd-global [mode {normal | aggressive}] To disable FEFD globally, use the no fefd-global [mode {normal | aggressive}] command. Parameters normal (OPTIONAL) Enter the keywords mode normal to change the link state to “unknown” when a far-end failure is detected by the software on that interface. When the interface is placed in “unknown” state, the software brings down the line protocol. The default is Normal mode.
Parameters seconds Defaults 15 seconds Command Modes CONFIGURATION Command History Related Commands Version 9.0(1.3) Enter a number as the time between FEFD control packets. The range is 3 to 300 seconds. The default is 15 seconds. Introduced on the S5000. • fefd – enables far-end failure detection. • fefd-global – enables FEFD globally on the system. fefd interval Set an interval between control packets.
Parameters normal (OPTIONAL) Enter the keyword normal to change the link state to “unknown” when a far-end failure is detected by the software on that interface. When the interface is placed in “unknown” state, the software brings down the line protocol. aggressive (OPTIONAL) Enter the keyword aggressive to change the link state to “error-disabled” when a far-end failure is detected by the software on that interface.
Related Commands • fefd – enables far-end failure detection. show fefd View FEFD status globally or on a specific interface. S5000 Syntax Parameters Command Modes Command History Usage Information show fefd [interface-type slot/port] interface-type slot/port • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Enter one of the following keywords and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
• Example Related Commands 836 Admin Shutdown (interface is disabled with the shutdown command). FTOS#sh fefd FEFD is globally 'ON', interval is 10 seconds, mode is 'Aggressive'.
Link Layer Discovery Protocol (LLDP) 31 Link layer discovery protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. This chapter contains the following sections: • LLPD Commands • LLDP-MED Commands LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management.
vlan-name Enter the keywords vlan-name to advertise the vlan-name TLV. Defaults Disabled. Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command History Related Commands Version 9.0(1.3) Introduced on the S5000. protocol lldp (Configuration) – enables LLDP globally. debug lldp interface – debugs LLDP. show lldp neighbors – displays the LLDP neighbors. show running-config lldp – displays the LLDP running configuration.
Parameters systemcapabilities Enter the keywords system-capabilities to advertise the system capabilities TLVs. systemdescription Enter the keywords system-description to advertise the system description TLVs. system-name Enter the keywords system-description to advertise the system description TLVs. Defaults none Command Modes CONFIGURATION (conf-lldp) Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
clear lldp neighbors Clear LLDP neighbor information for all interfaces or a specific interfaces. S5000 Syntax Parameters clear lldp neighbors {interface type slot/port} interface type slot/port Defaults none Command Modes EXEC Privilege Command History Version 9.0(1.3) Enter the interface keyword followed by the interface type and slot/port information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
all (OPTIONAL) Enter the keyword all to display information on all interfaces. events (OPTIONAL) Enter the keyword events to display major events such as timer events. packet (OPTIONAL) Enter the keyword packet to display information regarding packets coming in or going out. brief (OPTIONAL) Enter the keyword brief to display brief packet information. detail (OPTIONAL) Enter the keyword detail to display detailed packet information.
hello Configure the rate at which the LLDP control packets are sent to its peer. S5000 Syntax hello seconds To revert to the default, use the no hello seconds command. Parameters seconds Enter the rate, in seconds, at which the control packets are sent to its peer. The rate is 5 to 180 seconds. The default is 30 seconds. Defaults 30 seconds Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command History Version 9.0(1.3) Introduced on the S5000.
multiplier Set the number of consecutive misses before LLDP declares the interface dead. S5000 Syntax multiplier integer To return to the default, use the no multiplier integer command. Parameters integer Enter the number of consecutive misses before the LLDP declares the interface dead. The range is 2 to 10. Defaults 4 x hello Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command History Version 9.0(1.3) Introduced on the S5000.
Defaults LLDP is not enabled on the interface. Command Modes INTERFACE (conf-if-interface-lldp) Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Before LLDP can be configured on an interface, it must be enabled globally from CONFIGURATION mode. This command places you in LLDP mode on the interface; it does not enable the protocol. When you enter the LLDP protocol in the Interface context, it overrides global configurations.
Te 1/21 Te 1/31 R2 R3 TenGigabitEthernet TenGigabitEthernet 2/11 3/11 00:01:e8:06:95:3e 00:01:e8:09:c2:4a show lldp statistics Display the LLDP statistical information. S5000 Syntax show lldp statistics Defaults none Command Modes EXEC Privilege Command History Example Version 9.0(1.3) Introduced on the S5000.
multiplier 3 no disable FTOS# LLDP-MED Commands The following are the LLDP-MED (Media Endpoint Discovery) commands. FTOS LLDP-MED commands are an extension of the set of LLDP TLV advertisement commands. The S5000 switch supports all commands. As defined by ANSI/TIA-1057, LLDP-MED provides organizationally specific TLVs (Type Length Value), so that endpoint devices and network connectivity devices can advertise their characteristics and configuration information.
Defaults Unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History Related Commands Version 9.0(1.3) Introduced on the S5000. protocol lldp (Configuration) – enables LLDP globally. debug lldp interface – debugs LLDP. show lldp neighbors – displays the LLDP neighbors. show running-config lldp – displays the LLDP running configuration.
advertise med location-identification Configure the system to advertise a location identifier. S5000 Syntax advertise med location-identification {coordinate-based value | civic-based value | ecs-elin value} To return to the default, use the no advertise med location-identification {coordinate-based value | civic-based value | ecs-elin value} command. Parameters coordinate-based value Enter the keywords coordinate-based followed by the coordinated based location in hexadecimal value of 16 bytes.
Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History Version 9.0(1.3) Introduced on the S5000. Usage Information Advertise the Extended Power via MDI on all ports that are connected to an 802.3af powered, LLDP-MED endpoint device. Related Commands debug lldp interface – debugs LLDP. show lldp neighbors – displays the LLDP neighbors. show running-config lldp – displays the LLDP running configuration.
advertise med streaming-video Configure the system to advertise streaming video services for broadcast or multicast-based video. This does not include video applications that rely on TCP buffering. S5000 Syntax advertise med streaming-video {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med streaming-video {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is 1 to 4094.
Command Modes Command History Related Commands CONFIGURATION (conf-lldp) Version 9.0(1.3) Introduced on the S5000. debug lldp interface – debugs LLDP. show lldp neighbors – displays the LLDP neighbors. show running-config lldp – displays the LLDP running configuration. advertise med video-signaling Configure the system to advertise video control packets that use a separate network policy than video data.
To return to the default, use the no advertise med voice {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is 1 to 4094. priority-tagged Enter the keywords priority-tagged followed the Layer 2 priority. The range is 0 to 7. number Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History Related Commands Version 9.0(1.3) Introduced on the S5000. debug lldp interface – debugs LLDP. show lldp neighbors – displays the LLDP neighbors.
Multicast Source Discovery Protocol (MSDP) 32 Multicast source discovery protocol (MSDP) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections. FTOS supports MSDP commands on the S5000 switch. debug ip msdp Turn on MSDP debugging.
To clear the MSDP rejected source-active entries, use the no ip msdp cacherejected-sa {number} command followed by the ip msdp cache-rejected-sa {number} command. Parameters number Defaults none Command Modes CONFIGURATION Command History Related Commands Version 9.0(1.3) Enter the number of rejected SA entries to cache. The range is 0 to 32766. Introduced on the S5000.
ip msdp log-adjacency-changes Enable logging of MSDP adjacency changes. S5000 Syntax ip msdp log-adjacency-changes To disable logging, use the no ip msdp log-adjacency-changes command. Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. ip msdp mesh-group Configure a peer to be a member of a mesh group.
ip msdp originator-id Configure the MSDP Originator ID. S5000 Syntax ip msdp originator-id {interface-type slot/port} To remove the originator-id, use the no ip msdp originator-id {interfacetype slot/port} command. Parameters interface-type slot/port Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.0(1.3) Enter the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
connect-source interface For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. • For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383.
ip msdp redistribute Filter local PIM SA entries in the SA cache. SAs which are denied by the ACL will time out and not be refreshed. Until they time out, they continue to reside in the MSDP SA cache. S5000 Syntax Parameters ip msdp redistribute [list acl-name] list acl-name Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) lEnter the name of an extended ACL that contains permitted SAs.
Command History Version 9.0(1.3) Introduced on the S5000. ip msdp sa-limit Configure the upper limit of source-active (SA) entries in SA-cache. S5000 Syntax ip msdp sa-limit number To return to the default, use the no ip msdp sa-limit number command. Parameters number Defaults 50000 Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Enter the maximum number of SA entries in SA-cache. The range is 0 to 40000. Introduced on the S5000.
Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. ip multicast-msdp Enable MSDP. S5000 Syntax ip multicast-msdp To exit MSDP, use the no ip multicast-msdp command. Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. show ip msdp Display the MSDP peer status, SA cache, or peer summary.
Example FTOS#show ip msdp peer 100.1.1.1 Peer Addr: 100.1.1.1 Local Addr: 100.1.1.2(639) Connect Source: none State: Established Up/Down Time: 00:00:08 Timers: KeepAlive 60 sec, Hold time 75 sec SourceActive packet count (in/out): 0/0 SAs learned from this peer: 0 SA Filtering: Input (S,G) filter: none Output (S,G) filter: none FTOS# Example (Sacache) Example (Summary) FTOS#show ip msdp sa-cache MSDP Source-Active Cache - 1 entries GroupAddr SourceAddr RPAddr UpTime 224.1.1.1 172.21.220.10 172.21.3.
Multiple Spanning Tree Protocol (MSTP) 33 Multiple spanning tree protocol (MSTP), as implemented by FTOS, conforms to IEEE 802.1s. MSTP is supported by the Dell Networking operating software (FTOS) on the S5000 switch. debug spanning-tree mstp Enable debugging of the multiple spanning tree protocol and view information on the protocol.
Command History Example Version 9.0(1.3) Introduced on the S5000. FTOS#debug spanning-tree mstp bpdu tengigabitethernet 2/0 ? in Receive (in) out Transmit (out) description Enter a description of the multiple spanning tree. S5000 Syntax description {description} To remove the description, use the no description {description} command. Parameters description Enter a description to identify the multiple spanning tree (maximum 80 characters).
Related Commands spanning-tree mstp – enters MULTIPLE SPANNING TREE mode. forward-delay The amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. S5000 Syntax forward-delay seconds To return to the default setting, use the no forward-delay command. Parameters seconds Enter the number of seconds the interface waits in the Blocking State and the Learning State before transiting to the Forwarding State. The range is 4 to 30.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. forward-delay – the amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. max-age – changes the wait time before MSTP refreshes protocol configuration information. max-age Set the time interval for the MSTB to maintain configuration information before refreshing that information.
Defaults 20 hops Command Modes MULTIPLE SPANNING TREE Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The max-hops command is a configuration command that applies to both the IST and all MST instances in the MSTP region. The BPDUs sent out by the root switch set the remaining-hops parameter to the configured value of max-hops.
name The name you assign to the multiple spanning tree region. S5000 Syntax name region-name To remove the region name, use the no name command. Parameters region-name Enter the MST region name. The range is 32 character limit. Defaults no default name. Command Modes MULTIPLE SPANNING TREE Command History Version 9.0(1.3) Introduced on the S5000. Usage Information For two MSTP switches to be within the same MSTP region, the switches must share the same region name (including matching case).
Related Commands disable – disables multiple spanning tree. revision The revision number for the multiple spanning tree configuration. S5000 Syntax revision range To return to the default values, use the no revision command. Parameters range Enter the revision number for the MST configuration. The range is 0 to 65535. The default is 0. Defaults 0 Command Modes MULTIPLE SPANNING TREE Command History Version 9.0(1.3) Introduced on the S5000.
MSTI 10 VLAN 101-105 max-hops 5 FTOS(conf-mstp)# show spanning-tree mst configuration View the multiple spanning tree configuration. S5000 Syntax Command Modes Command History show spanning-tree mst configuration • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information You must enable the multiple spanning tree protocol prior to using this command.
Command Modes Command History • • EXEC EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information You must enable the multiple spanning tree protocol prior to using this command. Example FTOS#show spanning-tree msti 10 MSTI 10 VLANs mapped 101-105 Bridge Identifier has priority 32768, Address 0001.e802.3506 Configured hello time 2, max age 20, forward delay 15, max hops 5 Current root has priority 16384, Address 0001.e800.
Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID ---------------------------------------------------------Te 0/0 128.257 128 20000 EDS 0 32768 0001.e801.6aa8 128.257 Interface Name Role PortID Prio Cost Sts Cost Link-type Edge Boundary ---------------------------------------------------------Te 0/0 ErrDis 128.257 128 20000 EDS 0 P2P No No FTOS#show spanning-tree msti 0 MSTI 0 VLANs mapped 1-4094 Root Identifier has priority 32768, Address 0001.e801.
spanning-tree Enable the multiple spanning tree protocol on the interface. S5000 Syntax spanning-tree To disable the multiple spanning tree protocol on the interface, use the no spanningtree command. Parameters spanning-tree Defaults Enable. Command Modes INTERFACE Command History Version 9.0(1.3) Enter the keywords spanning-tree to enable the MSTP on the interface. Introduced on the S5000. spanning-tree msti Configure multiple spanning tree instance cost and priority for an interface.
Defaults Command Modes Command History • cost = depends on the interface type • priority = 128 INTERFACE Version 9.0(1.3) Introduced on the S5000. spanning-tree mstp Configures a Layer 2 MSTP interface as an edge port with (optionally) a bridge protocol data unit (BPDU) guard, or enables the root guard or loop guard feature on the interface.
message is displayed: % Error: RootGuard is configured. Cannot configure LoopGuard. When used in an MSTP network, if root guard blocks a boundary port in the CIST, the port is also blocked in all other MST instances. Enabling Portfast BPDU guard and loop guard at the same time on a port results in a port that remains in a blocking state and prevents traffic from flowing through it.
34 Multicast FTOS supports multicast commands on the S5000 switch. This chapter contains the following sections: • IPv4 Multicast Commands • IPv6 Multicast Commands IPv4 Multicast Commands The following section contains the IPv4 multicast commands. clear ip mroute Clear learned multicast routes on the multicast forwarding table. To clear the protocol-independent multicast (PIM) tree information base, use the clear ip pim tib command.
ip mroute Assign a static mroute. S5000 Syntax ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] To delete a specific static mroute, use the ip mroute destination mask {ipaddress | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] command. To delete all mroutes matching a certain mroute, use the no ip mroute destination mask command.
ip multicast-limit Use this feature to limit the number of multicast entries on the system. S5000 Syntax Parameters ip multicast-limit limit limit Defaults 400 Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Enter the desired maximum number of multicast entries on the system. The range is 1 to 2000. Introduced on the S5000. This features allows you to limit the number of multicast entries on the system.
Related Commands ip pim sparse-mode – enables IGMP and PIM on an interface. show ip mroute View the multicast routing table. S5000 Syntax Parameters show ip mroute [static | group-address [source-address] | active [rate] | summary] static (OPTIONAL) Enter the keyword static to view static multicast routes. group-address [source-address] (OPTIONAL) Enter the multicast group-address to view only routes associated with that group.
Outgoing interface list: TenGigabitEthernet 4/11 TenGigabitEthernet 4/13 (165.87.1.7, 225.1.2.1), uptime 00:03:17 Incoming vlan: Vlan 2 Outgoing interface list: TenGigabitEthernet 4/11 TenGigabitEthernet 4/13 TenGigabitEthernet 4/20 Usage Information Example The following describes output for the show ip mroute command shown in the Example below. Field Description (S, G) Displays the forwarding entry in the multicast route table.
show ip rpf View reverse path forwarding. S5000 Syntax Command Modes Command History Usage Information show ip rpf • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Static mroutes are used by network administrators to control the reach-ability of the multicast sources. If a PIM-registered multicast source is reachable using static mroute as well as unicast route, the distance of each route is examined and the route with shorter distance is the one the PIM selects for reach-ability.
Defaults 400 Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. This features allows you to limit the number of multicast entries on the system. This number is the sum total of all the multicast entries on all stack-units in the system. For each stack-unit, the multicast module only installs the maximum possible number of entries, depending on the configured CAM profile. Use the IN-L3-McastFib CAM partition to store multicast routes.
Neighbor Discovery Protocol (NDP) 35 FTOS supports Neighbor Discovery Protocol for IPv6 on the S5000 switch. NDP for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4.
interface type slot/port Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) To remove all neighbor entries learned on a specific interface, enter the keyword interface followed by the interface type and slot/ port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below. • For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63.
Related Commands mtu – sets the maximum link MTU (frame size) for an Ethernet interface. ipv6 neighbor Configure a static entry in the IPv6 neighbor discovery. S5000 Syntax ipv6 neighbor {ipv6-address} {interface-type slot/port} {hardware_address} To remove a static IPv6 entry from the IPv6 neighbor discovery, use the no ipv6 neighbor {ipv6-address} {interface-type slot/port} command. Parameters ipv6-address Enter the IPv6 address of the neighbor in the x:x:x:x::x format.
show ipv6 neighbors Display IPv6 discovery information. Entering the command without options shows all IPv6 neighbor addresses stored on the control processor (CP). S5000 Syntax Parameters show ipv6 neighbors [ipv6-address] [interface type slot/port] ipv6-address Enter the IPv6 address of the neighbor in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zero.
fe80::201:e8ff:fe17:5cb0 1439 00:01:e8:17:5c:b0 fe80::201:e8ff:fe17:5cb1 1439 00:01:e8:17:5c:b1 fe80::201:e8ff:fe17:5cae 1439 00:01:e8:17:5c:ae fe80::201:e8ff:fe17:5cae 1439 00:01:e8:17:5c:ae fe80::201:e8ff:fe17:5cae 1439 00:01:e8:17:5c:ae STALE Po 32 - CP STALE Po 255 - CP STALE Te 1/3 Vl 100 CP STALE Te 1/5 Vl 1000 CP STALE Te 1/7 Vl 2000 CP FTOS# 889
NPIV Proxy Gateway 36 The N-port identifier virtualization (NPIV) Proxy Gateway (NPG) feature provides FCoE-FC bridging capability on the S5000 switch, allowing server CNAs to communicate with SAN fabrics over the S5000. To configure the S5000 to operate as an NPIV proxy gateway, use the following commands: dcb-map Create a DCB map to configure priority flow control (PFC) and enhanced transmission selection (ETS) on Ethernet ports that support converged Ethernet traffic.
description In an FCoE map, add a text description of the FCoE and FC parameters used to transmit storage traffic over an S5000 NPIV proxy gateway in a converged fabric. S5000 Syntax Parameters description text text Defaults None Command Modes FCOE MAP Command History Version 9.0(1.3) Enter a maximum of 32 characters. Introduced on the S5000. Usage Information The text description is displayed in show fcoe-map command output.
FCoE-enabled servers and switches with the necessary parameters to log in to a SAN fabric. Use the fcoe-map command to create an FCoE map. On an S5000 NPIV proxy gateway, an FCoE map is applied on fabric-facing FC ports and serverfacing Ethernet ports. Use the fabric command to apply an FCoE map on an FC port. Use the fcoe-map command to apply an FCoE map on an Ethernet port.
Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show fcoe-map— displays the Fibre Channel and FCoE configuration parameters in FCoE maps. fc-map In an FCoE map, configure the FCoE mapped address prefix (FC-MAP) value which is used to identify FCoE traffic transmitted on the FCoE VLAN for the specified fabric.
fcf-priority In an FCoE map, configure the priority used by a server CNA to select an upstream FCoE forwarder (FCF). S5000 Syntax Parameters fcf—priority priority priority Defaults 128 Command Modes FCOE MAP Command History Usage Information Version 9.0(1.3) Enter the priority assigned to the S5000 NPIV proxy gateway, which appears to a downstream server CNA as an FCF. The range of FCF priority values is from 1 to 255. Introduced on the S5000.
Usage Information An FCoE map is a template used to map FCoE and FC parameters in a converged fabric. An FCoE map is used to virtualize upstream FC ports on an S5000 NPIV proxy gateway so that they appear to downstream server CNA ports as FCoE forwarder (FCF) ports on an FCoE network.
fka-adv-period In an FCoE map, configure the time interval used to transmit FIP keepalive (FKA) advertisements. S5000 Syntax Parameters fka-adv-period seconds seconds Defaults 8 seconds Command Modes FCOE MAP Command History Version 9.0(1.3) Enter the time period (in seconds) used to send FIP keepalive messages to peer devices. The range is from 8 to 90 seconds. Introduced on the S5000.
You configure the association between a dedicated VLAN, which carries FCoE traffic from server CNAs over the NPIV proxy gateway to a SAN fabric in which destination storage arrays are installed, in an FCoE map by using the fabric id vlan command. When you apply an FCoE map to a server-facing Ethernet port, the port is automatically configured as a tagged member of the FCoE VLAN.
priority-pgid Assign 802.1p priority traffic to a priority group in a DCB map. S5000 Syntax Parameters priority-pgid dot1p0_group-num dot1p1_group-num dot1p2_groupnum dot1p3_group-num dot1p4_group-num dot1p5_group-num dot1p6_group-num dot1p7_group-num dot1p0_groupnum Enter the priority group number for each 802.1p class of traffic in a DCB map.
• Priority group 4 contains traffic with dot1p priority 5, 6, and 7. To remove a priority-pgid configuration from a DCB map, enter the no priority-pgid command. Related Commands dcb-map — creates a DCB map to configure PFC and ETS parameters and applies the PFC and ETS settings on Ethernet ports. priority-group bandwidth pfc— configures the ETS bandwidth allocation and the PFC setting used to manage the port traffic in an 802.1p priority group.
Repeat the priority-group bandwidth pfc command to configure PFC and ETS traffic handling for each priority group in a DCB map. You can enable PFC on a maximum of two priority queues. If you configure more than one priority group as strict priority, the higher numbered priority queue is given preference when scheduling data traffic. If a priority group does not use its allocated bandwidth, the unused bandwidth is made available to other priority groups.
An FCoE map is used to identify the SAN fabric to which FCoE storage traffic is sent and to virtualize S5000 FC ports so that they appear to downstream server CNA ports as FCoE Forwarder (FCF) ports on an FCoE network. The following table describes the show fcoe-map brief and show fcoe-map mapname output shown in the examples below. Example Field Description Fabric-Name Name of a SAN fabric. Fabric ID The ID number of the SAN fabric to which FC traffic is forwarded.
Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show npiv devices Display the FCoE and FC devices currently logged in to an S5000 NPIV proxy gateway. S5000 Syntax Parameters Command Modes Command History Usage Information show npiv devices [brief] brief Displays an overview of current server CNA-fabric connections over an S5000 NPIV proxy gateway. • EXEC • EXEC Privilege Version 9.0(1.
Example Field Description Status Operational status of the link between a server CNA port and a SAN fabric: Logged In - Server has logged in to the fabric and is able to transmit FCoE traffic.
Example Related Commands Field Description LoginMethod Method used by the server CNA to log in to the fabric; for example, FLOGI or FDISC. Secs Number of seconds that the fabric connection is up. State Status of the fabric connection: logged in.
Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Use the show interfaces fibrechannel command to display information on the Fibre Channel capability of a switch. The following table describes the show fc switch output shown in the following example. Switch Mode Fibre Channel mode of operation of an S5000 switch. Default: NPG (configured as an NPIV proxy gateway). Switch WWN Factory-assigned worldwide node (WWN) name of the S5000.
The following table describes the show qos dcb-map output shown in the example below. Example Field Description State Complete: All mandatory DCB parameters are correctly configured. In progress: The DCB map configuration is not complete. Some mandatory parameters are not configured. PFC Mode PFC configuration in DCB map: On (enabled) or Off. PG Priority group configured in the DCB map. TSA Transmission scheduling algorithm used by the priority group: Enhanced Transmission Selection (ETS).
Open Shortest Path First (OSPFv2) 37 Open Shortest Path First (OSPFv2) is supported on the S5000 switch. Up to 16 OSPF instances can run simultaneously on the S5000. OSPF is an interior gateway protocol (IGP), which means that it distributes routing information between routers in a single autonomous system (AS). OSPF is also a link-state protocol in which all routers contain forwarding tables derived from information about their links to their neighbors.
area nssa Specify an area as a not so stubby area (NSSA). S5000 Syntax area area-id nssa [default-information-originate] [noredistribution] [no-summary] To delete an NSSA, use the no area area-id nssa command. Parameters area-id Specify the OSPF area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535. defaultinformationoriginate (OPTIONAL) Allows external routing information to be imported into the NSSA by using Type 7 default.
not-advertise Defaults Not configured. Command Modes ROUTER OSPF Command History Version 9.0(1.3) (OPTIONAL) Enter the keywords not-advertise to set the status to DoNotAdvertise (that is, the Type 3 summary-LSA is suppressed and the component networks remain hidden from other areas.) Introduced on the S5000. Usage Information Only the routes within an area are summarized, and that summary is advertised to other areas by the ABR. External routes are not summarized.
area virtual-link Set a virtual link and its parameters. S5000 Syntax area area-id virtual-link router-id [[authentication-key [encryption-type] key] | [message-digest-key keyid md5 [encryption-type] key]] [dead-interval seconds] [hello-interval seconds] [retransmit-interval seconds] [transmit-delay seconds] To delete a virtual link, use the no area area-id virtual-link router-id command.
transmit-delay seconds Defaults Command Modes Command History Usage Information (OPTIONAL) Enter the keywords transmit-delay followed by the number of seconds for the interval. The range is 1 to 8192. The default is 1 second. • dead-interval seconds = 40 seconds • hello-interval seconds = 10 seconds • retransmit-interval seconds = 5 seconds • transmit-delay seconds = 1 second ROUTER OSPF Version 9.0(1.3) Introduced on the S5000.
clear ip ospf Clear all OSPF routing tables. S5000 Syntax Parameters Command Modes Command History clear ip ospf process-id [process] process-id Enter the OSPF Process ID to clear a specific process. If no Process ID is entered, all OSPF processes are cleared. process (OPTIONAL) Enter the keyword process to reset the OSPF process. EXEC Privilege Version 9.0(1.3) Introduced on the S5000. clear ip ospf statistics Clear the packet statistics in interfaces and neighbors.
neighbor routerid Defaults none Command Modes EXEC Privilege Command History Related Commands Version 9.0(1.3) (OPTIONAL) Enter the keyword neighbor followed by the neighbor’s router-id in dotted decimal format (A.B.C.D.). Introduced on the S5000. show ip ospf statistics – displays the OSPF statistics. debug ip ospf Display debug information on OSPF. Entering the debug ip ospf commands enables OSPF debugging for the first OSPF process.
8:14 Displays the time stamp. OSPF Displays the OSPF process ID: instance ID. v: Displays the OSPF version. FTOS supports version 2 only. t: Displays the type of packet sent: • 1 - Hello packet • 2 - database description • 3 - link state request • 4 - link state update • 5 - link state acknowledgement l: Displays the packet length. rid: Displays the OSPF router ID. aid: Displays the Autonomous System ID. chk: Displays the OSPF checksum.
Example • T + (router can support TOS) • T - (router cannot support TOS) hi: Displays the amount of time configured for the HELLO interval. di: Displays the amount of time configured for the DEAD interval. dr: Displays the IP address of the designated router. bdr: Displays the IP address of the Border Area Router. FTOS#debug ip ospf 1 packet OSPF process 90, packet debugging is on FTOS# 08:14:24 : OSPF(100:00): Xmt. v:2 t:1(HELLO) l:44 rid:192.1.1.1 aid:0.0.0.
Command Modes ROUTER OSPF Command History Related Commands Version 9.0(1.3) Introduced on the S5000. redistribute – redistributes routes from other routing protocols into OSPF. default-metric Change the metrics of redistributed routes to a value useful to OSPF. Use this command with the redistribute command. S5000 Syntax default-metric number To return to the default values, use the no default-metric [number] command. Parameters number Defaults Disabled.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. show ip ospf asbr – displays the VLAN configuration. distance Define an administrative distance for particular routes to a specific IP address. S5000 Syntax distance weight [ip-address mask access-list-name] To delete the settings, use the no distance weight [ip-address mask accesslist-name] command. Parameters weight Specify an administrative distance. The range is 1 to 255. The default is 110.
Parameters external dist3 (OPTIONAL) Enter the keyword external followed by a number to specify a distance for external type 5 and 7 routes. The range is 1 to 255. The default is 110. inter-area dist2 (OPTIONAL) Enter the keywords inter-area followed by a number to specify a distance metric for routes between areas. The range is 1 to 255. The default is 110. intra-area dist1 (OPTIONAL) Enter the keywords intra-area followed by a number to specify a distance metric for all routes within an area.
Defaults Not configured. Command Modes ROUTER OSPF Command History Version 9.0(1.3) • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128. • For a VLAN interface, enter the keyword vlan followed by a VLAN id number from 1 to 4094. Introduced on the S5000. distribute-list out Apply a filter to restrict certain routes destined for the local routing table after the SPF calculation.
fast-convergence This command sets the minimum LSA origination and arrival times to zero (0), allowing more rapid route computation so that convergence takes less time. S5000 Syntax fast-convergence {number} To cancel fast-convergence, use the no fast convergence command. Parameters number Defaults none. Command Modes ROUTER OSPF Command History Usage Information Version 9.0(1.3) Enter the convergence level desired. The higher this parameter is set, the faster OSPF converge takes place.
to reduce flooding overhead by selectively flooding on a subset of the interfaces between two routers. When you enable flood-2328, this command configures FTOS to flood LSAs on all interfaces. graceful-restart grace-period Specifies the time duration, in seconds, that the router’s neighbors will continue to advertise the router as fully adjacent regardless of the synchronization state during a graceful restart.
Command History Version 9.0(1.3) Introduced on the S5000. graceful-restart mode Enable the graceful restart mode. S5000 Syntax graceful-restart mode [planned-only | unplanned-only] To disable graceful restart mode, use the no graceful-restart mode command. Parameters planned-only (OPTIONAL) Enter the keywords planned-only to indicate graceful restart is supported in a planned restart condition only.
Command History Version 9.0(1.3) Introduced on the S5000. ip ospf auth-change-wait-time OSPF provides a grace period while OSPF changes its interface authentication type. During the grace period, OSPF sends out packets with new and old authentication scheme untill the grace period expires. S5000 Syntax ip ospf auth-change-wait-time seconds To return to the default, use the no ip ospf auth-change-wait-time command. Parameters seconds Defaults zero (0) seconds.
Usage Information All neighboring routers in the same network must use the same password to exchange OSPF information. ip ospf cost Change the cost associated with the OSPF traffic on an interface. S5000 Syntax ip ospf cost cost To return to default value, use the no ip ospf cost command. Parameters cost Enter a number as the cost. The range is 1 to 65535. Defaults The default cost is based on the reference bandwidth. Command Modes INTERFACE Command History Version 9.0(1.
Command History Version 9.0(1.3) Introduced on the S5000. Usage Information By default, the dead interval is four times the default hello-interval. Related Commands ip ospf hello-interval – sets the time interval between the hello packets. ip ospf hello-interval Specify the time interval between the hello packets sent on the interface. S5000 Syntax ip ospf hello-interval seconds To return to the default value, use the no ip ospf hello-interval command.
key Enter a continuous character string as the password. Defaults No MD5 authentication is configured. Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000. To change to a different key on the interface, enable the new key while the old key is still enabled. The FTOS sends two packets: the first packet authenticated with the old key and the second packet authenticated with the new key.
point-to-point Defaults Not configured. Command Modes ROUTER OSPF Command History Version 9.0(1.3) Enter the keywords point-to-point to designate the interface as part of a point-to-point network. Introduced on the S5000. ip ospf priority Set the priority of the interface to determine the designated router for the OSPF network. S5000 Syntax ip ospf priority number To return to the default setting, use the no ip ospf priority command.
This interval must be greater than the expected round-trip time for a packet to travel between two routers. Defaults 5 seconds Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Set the time interval to a number large enough to prevent unnecessary retransmissions. For example, the interval should be larger for interfaces connected to virtual links.
Command Modes Command History ROUTER OSPF Version 9.0(1.3) Introduced on the S5000. maximum-paths Enable the software to forward packets over multiple paths. S5000 Syntax maximum-paths number To disable packet forwarding over multiple paths, use the no maximum-paths command. Parameters number Defaults 4 Command Modes ROUTER OSPF Command History Version 9.0(1.3) Specify the number of paths. The range is 1 to 16. The default is 4 paths. Introduced on the S5000.
network area Define which interfaces run OSPF and the OSPF area for those interfaces. S5000 Syntax network ip-address mask area area-id To disable an OSPF area, use the no network ip-address mask area area-id command. Parameters ip-address Specify a primary or secondary address in dotted decimal format. The primary address is required before adding the secondary address. mask Enter a network mask in /prefix format.
Parameters Command Modes Command History Usage Information default Enter the keyword default to make all OSPF interfaces (current and future) passive. interface Enter the following keywords and slot/port or number information: • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
• If passive-interface default is specified, then save no passiveinterface interface into the running configuration. No passive-interface default • Clear everything and revert to the default behavior. • All previously marked passive interfaces are removed. • May update ABR status. debug ip ospf Display debug information on OSPF. Entering the debug ip ospf commands enables OSPF debugging for the first OSPF process.
v: Displays the OSPF version. FTOS supports version 2 only. t: Displays the type of packet sent: • 1 - Hello packet • 2 - database description • 3 - link state request • 4 - link state update • 5 - link state acknowledgement l: Displays the packet length. rid: Displays the OSPF router ID. aid: Displays the Autonomous System ID. chk: Displays the OSPF checksum. aut: States if OSPF authentication is configured.
Example hi: Displays the amount of time configured for the HELLO interval. di: Displays the amount of time configured for the DEAD interval. dr: Displays the IP address of the designated router. bdr: Displays the IP address of the Border Area Router. FTOS#debug ip ospf 1 packet OSPF process 90, packet debugging is on FTOS# 08:14:24 : OSPF(100:00): Xmt. v:2 t:1(HELLO) l:44 rid:192.1.1.1 aid:0.0.0.1 chk:0xa098 aut:0 auk: keyid:0 to:Te 4/3 dst: 224.0.0.5 netmask:255.255.255.
Command History Version 9.0(1.3) Introduced on the S5000. redistribute isis Redistribute IS-IS routing information throughout the OSPF instance. S5000 Syntax redistribute isis [tag] [level-1 | level-1-2 | level-2] [metric metric-value | metric-type type-value] [route-map map-name] [tag tag-value] To disable redistribution, use the no redistribute isis [tag] [level-1 | level-1-2 | level-2] [metric metric-value | metric-type typevalue] [route-map map-name] [tag tag-value] command.
router-id Use this command to configure a fixed router ID. S5000 Syntax router-id ip-address To remove the fixed router ID, use the no router-id ip-address command. Parameters ip-address Defaults none. Command Modes ROUTER OSPF Command History Version 9.0(1.3) Enter the router ID in the IP address format. Introduced on the S5000. Usage Information You can configure an arbitrary value in the IP address format for each router. However, each router ID must be unique.
Command Modes Command History Usage Information CONFIGURATION Version 9.0(1.3) Introduced on the S5000. You must have an IP address assigned to an interface to enter ROUTER OSPF mode and configure OSPF. After the OSPF process and the VRF are tied together, you cannot use the OSPF Process ID again in the system. Example FTOS(conf)#router ospf 2 FTOS(conf-router_ospf)# show config Display the non-default values in the current OSPF configuration.
• Command History Usage Information EXEC Privilege Version 9.0(1.3) Introduced on the S5000. If you delete all the network area commands for Area 0, the show ip ospf command output does not list Area 0. The following describes the output from the show ip ospf command shown in the Example below. Line Beginning with Description Routing Process... Displays the OSPF process ID and the IP address associated with the process ID. Supports only...
show ip ospf asbr Display all autonomous system boundary routers (ASBR) visible to OSPF. S5000 Syntax Parameters Defaults Command Modes Command History Usage Information show ip ospf process-id asbr process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Use this command to isolate problems with external routes.
databasesummary Command Modes Command History Usage Information Example (OPTIONAL) Enter the keywords database-summary to the display the number of LSA types in each area and the total number of LSAs. • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes output for the show ip ospf process-id database command shown in the Example below. Field Description Link ID Identifies the router ID. ADV Router Identifies the advertising router’s ID.
Related Commands show ip ospf database asbr-summary – displays only ASBR summary LSA information. show ip ospf database asbr-summary Display information about autonomous system (AS) boundary LSAs. S5000 Syntax Parameters show ip ospf process-id database asbr-summary [link-state-id] [adv-router ip-address] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process.
Example Link State ID Displays the Link State ID. Advertising Router Identifies the advertising router’s ID. Checksum Displays the Fletcher checksum of the an LSA’s complete contents. Length Displays the length in bytes of the LSA. Network Mask Displays the network mask implemented on the area. TOS Displays the Type of Service (TOS) options. Option 0 is the only option. Metric Displays the LSA metric. FTOS#show ip ospf 100 database asbr-summary OSPF Router with ID (1.1.1.
link-state-id adv-router ipaddress Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Specify LSA ID in dotted decimal format. The LSA ID value depends on the LSA type, and it can be one of the following: • the network’s IP address for Type 3 LSAs or Type 5 LSAs • the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs • the default destination (0.0.0.
External Route Tag Example Displays the 32-bit field attached to each external route. This field is not used by the OSPF protocol, but can be used for external route management. FTOS#show ip ospf 1 database external OSPF Router with ID (20.20.20.5) (Process ID 1) Type-5 AS External LS age: 612 Options: (No TOS-capability, No DC, E) LS type: Type-5 AS External Link State ID: 12.12.12.2 Advertising Router: 20.31.3.
link-state-id adv-router ipaddress Command Modes Command History Usage Information Example • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Specify LSA ID in dotted decimal format. The LSA ID value depends on the LSA type, and it can be one of the following: • the network’s IP address for Type 3 LSAs or Type 5 LSAs • the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs • the default destination (0.0.0.
Link State ID: 202.10.10.2 Advertising Router: 20.20.20.8 LS Seq Number: 0x80000006 Checksum: 0xa35 Length: 36 Network Mask: /24 Attached Router: 20.20.20.8 Attached Router: 20.20.20.9 Attached Router: 20.20.20.7 Network (Area 0.0.0.1) LS age: 252 Options: (TOS-capability, No DC, E) LS type: Network Link State ID: 192.10.10.2 Advertising Router: 192.10.10.2 LS Seq Number: 0x80000007 Checksum: 0x4309 Length: 36 Network Mask: /24 Attached Router: 192.10.10.2 Attached Router: 20.20.20.1 Attached Router: 20.20.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. show ip ospf database – displays OSPF database information. show ip ospf database opaque-area Display the opaque-area (type 10) LSA information. S5000 Syntax Parameters show ip ospf process-id database opaque-area [link-state-id] [adv-router ip-address] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process.
Example LS Type Displays the LSA’s type. Link State ID Displays the Link State ID. Advertising Router Identifies the advertising router’s ID. Checksum Displays the Fletcher checksum of the an LSA’s complete contents. Length Displays the length in bytes of the LSA. Opaque Type Displays the Opaque type field (the first 8 bits of the Link State ID). Opaque ID Displays the Opaque type-specific ID (the remaining 24 bits of the Link State ID).
Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format. The LSA ID value depends on the LSA type, and it can be one of the following: adv-router ipaddress Command Modes Command History Related Commands • EXEC • EXEC Privilege Version 9.0(1.
Command Modes Command History Related Commands • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. show ip ospf database – displays OSPF database information. show ip ospf database router Display the router (type 1) LSA information. S5000 Syntax Parameters show ip ospf process-id database router [link-state-id] [advrouter ip-address] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process.
• • Example DC or No DC is displayed depending on whether the originating router can support OSPF over demand circuits. E or No E is displayed on whether the originating router can accept AS External LSAs. LS Type Displays the LSA type. Link State ID Displays the Link State ID. Advertising Router Identifies the router ID of the LSA’s originating router. LS Seq Number Displays the link state sequence number. This number detects duplicate or old LSAs.
TOS 0 Metric: 1 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.142.2 (Link Data) Router Interface address: 192.68.142.2 Number of TOS metric: 0 TOS 0 Metric: 1 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.141.2 (Link Data) Router Interface address: 192.68.141.2 Number of TOS metric: 0 TOS 0 Metric: 1 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.140.2 (Link Data) Router Interface address: 192.68.140.
• Command History Usage Information Example EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes output for the show ip ospf process-id database summary command shown in the Example below. LS Age Displays the LSA age. Options Displays the optional capabilities available on router. The following options can be found in this item: • TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
Link State ID: 192.68.32.0 Advertising Router: 1.1.1.10 LS Seq Number: 0x80000016 Checksum: 0x987c Length: 28 Network Mask: /24 TOS: 0 Metric: 1 LS age: 7 Options: (No TOS-capability, No DC, E) LS type: Summary Network Link State ID: 192.68.33.0 Advertising Router: 1.1.1.10 LS Seq Number: 0x80000016 Checksum: 0x1241 Length: 28 Network Mask: /26 TOS: 0 Metric: 1 FTOS# Related Commands show ip ospf database – displays OSPF database information. show ip ospf interface Display the OSPF interfaces configured.
Command Modes Command History Usage Information Example • • EXEC EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes output for the show ip ospf process-id interface command shown in the Example below. Line beginning with Description TenGigabitEthern et... This line identifies the interface type slot/port and the status of the OSPF protocol on that interface. Internet Address... This line displays the IP address, network mask and area assigned to this interface.
Process ID 1, Router ID 192.168.253.2, Network Type BROADCAST, Cost: 1 Transmit Delay is 1 sec, State DROTHER, Priority 1 Designated Router (ID) 192.168.253.5, Interface address 192.168.0.4 Backup Designated Router (ID) 192.168.253.3, Interface address 192.168.0.2 Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5 Hello due in 00:00:08 Neighbor Count is 3, Adjacent neighbor count is 2 Adjacent with neighbor 192.168.253.5 (Designated Router) Adjacent with neighbor 192.168.253.
Example FTOS#show ip ospf 34 neighbor Neighbor ID 20.20.20.7 192.10.10.2 20.20.20.1 FTOS# Pri State Dead Time Address 1 FULL/DR 00:00:32 182.10.10.3 1 FULL/DR 00:00:37 192.10.10.2 1 FULL/DROTHER00:00:36 192.10.10.4 Interface Area Te 0/0 0.0.0.2 Te 0/1 0.0.0.1 Te 0/1 0.0.0.1 show ip ospf routes Display routes as calculated by OSPF and stored in OSPF RIB.
show ip ospf statistics Display OSPF statistics. S5000 Syntax Parameters show ip ospf process-id statistics global | [interface name {neighbor router-id}] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. global Enter the keyword global to display the packet counts received on all running OSPF interfaces and packet counts received and transmitted by all OSPF neighbors.
LSReq Number of link state request packets. LSUpd Number of link state update packets. LSAck Number of link state acknowledgement packets. TxQ-Len The transmission queue length. RxQ-Len The reception queue length. Tx-Mark The highest number mark in the transmission queue. Rx-Mark The highest number mark in the reception queue. Hello-Q The queue, for transmission or reception, for the hello packets. LSR-Q The queue, for transmission or reception, for the link state request packets.
Unknown-Pkt Example Received packet is not an OSPF packet.
TX 62 2 Dead-Timer LSU-Q-Len LSR-Q-Len Related Commands 1 0 0 37, Transmit-Timer 0, LSU-Q-Wmark 0, LSR-Q-Wmark 0 0 1 clear ip ospf statistics – clears the packet statistics in all interfaces and neighbors. show ip ospf timers rate-limit Show the LSA currently in the queue waiting for timers to expire. S5000 Syntax Parameters Defaults Command Modes Command History Example show ip ospf process-id timers rate-limit process-id Enter the OSPF Process ID to show a specific process.
Parameters Defaults Command Modes Command History process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information Use this command to isolate problems with inter-area and external routes. In OSPF inter-area and external routes are calculated by adding LSA cost to the cost of reaching the router.
Example Run as... This line states the nature of the virtual link. Transit area... This line identifies the area through which the virtual link was created, the interface used, and the cost assigned to that link. Transmit Delay... This line displays the transmit delay assigned to the link and the State of the OSPF neighbor. Timer intervals... This line displays the timer values assigned to the virtual link.
Defaults Not configured. Command Modes ROUTER OSPF Command History Version 9.0(1.3) Introduced on the S5000. Usage Information The area range command summarizes routes for the different areas. Related Commands area range – summarizes routes within an area. With the not-advertise parameter configured, you can use this command to filter out some external routes. For example, if you want to redistribute static routes to OSPF, but you don't want OSPF to advertise routes with prefix 1.1.0.
timers throttle lsa all Configure LSA transmit intervals. S5000 Syntax timers throttle lsa all {start-interval | hold-interval | maxinterval} To return to the default, use the no timers throttle lsa command. Parameters Defaults Command Modes Command History Usage Information start-interval Set the minimum interval between initial sending and resending the same LSA. The range is 0 to 600,000 milliseconds. hold-interval Set the next interval to send the same LSA.
Defaults 1000 msec Command Modes ROUTER OSPF Command History 968 Version 9.0(1.3) Introduced on the S5000.
Policy-based Routing (PBR) 38 Policy-based routing (PBR) allows you to apply routing policies to specific interfaces. To enable PBR, create a redirect list and apply it to the interface. After the redirect list is applied to the interface, all traffic passing through the interface is subject to the rules defined in the redirect list. FTOS supports PBR on the S5000 switch.
ip redirect-group Apply a redirect list (policy-based routing) on an interface. You can apply multiple redirect lists to an interface by entering this command multiple times. S5000 Syntax ip redirect-group redirect-list-name To remove a redirect list from an interface, use the no ip redirect-group name command. Parameters redirect-listname Defaults none Command Modes INTERFACE (conf-if-vl-) Command History Usage Information Version 9.0(1.3) Enter the name of a configured redirect list.
Parameters redirect-listname Defaults none Command Modes CONFIGURATION Command History Version 9.0(1.3) Enter the name of a redirect list. Introduced on the S5000. permit Configure a rule for the redirect list.
bit (OPTIONAL) For TCP protocol type only, enter one or a combination of the following TCP flags: operator • ack = acknowledgement • fin = finish (no more data from the user) • psh = push function • rst = reset the connection • syn = synchronize sequence number • urg = urgent field (OPTIONAL) For TCP and UDP parameters only. Enter one of the following logical operand: • Defaults none Command Modes REDIRECT-LIST Command History Version 9.0(1.
ip-protocolnumber Enter a number from 0 to 255 for the protocol identified in the IP protocol header.
seq Configure a filter with an assigned sequence number for the redirect list. S5000 Syntax seq sequence-number {permit | redirect {ip-address} {ipprotocol-number | protocol-type} {source mask | any | host ipaddress} {destination mask | any | host ip-address} [bit] [operator] To delete a filter, use the no seq sequence-number command. Parameters 974 sequencenumber Enter a number from 1 to 65535. permit Enter the keyword permit assign the sequence to the permit list.
operator Defaults none Command Modes REDIRECT-LIST Command History Version 9.0(1.3) (OPTIONAL) For TCP and UDP parameters only. Enter one of the following logical operand: • eq = equal to • neq = not equal to • gt = greater than • lt= less than • range = inclusive range of ports (you must specify two ports for the port command parameter.) Introduced on the S5000. show ip redirect-list View the redirect list configuration and the interfaces it is applied to.
Po 3 FTOS# 976
PIM-Sparse Mode (PIM-SM) 39 FTOS supports protocol-independent multicast (PIM) commands on the S5000 switch. This chapter contains the following sections: • IPv4 PIM-Sparse Mode Commands • IPv6 PIM-Sparse Mode Commands IPv4 PIM-Sparse Mode Commands The following describes the IPv4 PIM-sparse mode (PIM-SM) commands. clear ip pim rp-mapping Used by the bootstrap router (BSR) to remove all or particular rendezvous point (RP) advertisement.
Parameters Command Modes Command History group (OPTIONAL) Enter the multicast group address in dotted decimal format (A.B.C.D). EXEC Privilege Version 9.0(1.3) Introduced on the S5000. clear ip pim snooping tib Clear tree information discovered by PIM-SM snooping from the PIM database.
Parameters bsr (OPTIONAL) Enter the keyword bsr to view PIM Candidate RP/BSR activities. events (OPTIONAL) Enter the keyword group to view PIM messages for a specific group. group (OPTIONAL) Enter the keyword group to view PIM messages for a specific group. packet [in | out] (OPTIONAL) Enter the keyword packet to view PIM packets.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. This command is applied to the subsequent PIM-BSR. Existing BSR advertisements are cleaned up by time out. Candidate RP advertisements can be cleaned using the clear ip pim rp-mapping command. ip pim bsr-candidate Configure the PIM router to join the Bootstrap election process.
ip pim dr-priority Change the designated router (DR) priority for the interface. S5000 Syntax ip pim dr-priority priority-value To remove the DR priority value assigned, use the no ip pim dr-priority command. Parameters priority-value Defaults 1 Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Enter a number. Preference is given to larger/higher number. The range is 0 to 4294967294. The default is 1. Introduced on the S5000.
Defaults as above Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. When an NSF-capable router comes up, it announces the graceful restart capability and restart duration as a Hello option. The receiving router notes the Hello option. Routers not NSF-capable discard the unknown Hello option and adjacency is not affected.
ip pim ingress-interface-map When the Dell Networking system is the RP, statically map potential incoming interfaces to (*,G) entries to create a lossless multicast forwarding environment. S5000 Syntax Parameters ip pim ingress-interface-map std-access-list std-access-list Defaults none Command Modes INTERFACE Command History Example Version 9.0(1.3) Enter the name of an standard access list. Introduced on the S5000. FTOS(conf)# ip access-list standard map1 FTOS(config-std-nacl)# permit 224.0.
ip pim query-interval Change the frequency of PIM Router-Query messages. S5000 Syntax ip pim query-interval seconds To return to the default value, use the no ip pim query-interval seconds command. Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Version 9.0(1.3) Enter a number as the number of seconds between router query messages. The range: 0 to 65535. The default is 30 seconds. Introduced on the S5000.
ip pim rp-address Configure a static PIM rendezvous point (RP) address for a group or access-list. S5000 Syntax ip pim rp-address address {group-address group-address mask} override To remove an RP address, use the no ip pim rp-address address {groupaddress group-address mask} override command. Parameters address Enter the RP address in dotted decimal format (A.B.C.D).
priority Not configured. Command Modes CONFIGURATION Usage Information For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60.
Usage Information Because PIM-SM snooping is used in a Layer 2 environment, PIM-SM snooping and PIM multicast routing are mutually exclusive. PIM-SM snooping cannot be enabled on a switch/ router if PIM-SM or PIM-DM is enabled. If enabled at the global level, PIM-SM snooping is automatically enabled on all VLANs unless the no ip pim snooping command has been entered on a VLAN. If enabled at the VLAN level, PIM-SM snooping requires that you also enter the no shutdown command to enable the interface.
ip pim sparse-mode sg-expiry-timer Enable expiry timers globally for all sources, or for a specific set of (S,G) pairs defined by an access list. S5000 Syntax ip pim sparse-mode sg-expiry-timer seconds [access-list name] To disable configured timers and return to default mode, use the no ip pim sparsemode sg-expiry-timer command. Parameters seconds Enter the number of seconds the S, G entries are retained. The range is 211 to 86400.
Usage Information This is applicable to last hop routers on the shared tree towards the rendezvous point (RP). no ip pim snooping dr-flood Disable the flooding of multicast packets to the PIM designated router. S5000 Syntax no ip pim snooping dr-flood To re-enable the flooding of multicast packets to the PIM designated router, use the ip pim snooping dr-flood command. Defaults Enabled. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
Command Modes Command History Example • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. FTOS#show ip pim bsr-router PIMv2 Bootstrap information This system is the Bootstrap Router (v2) BSR address: 7.7.7.7 (?) Uptime: 16:59:06, BSR Priority: 0, Hash mask length: 30 Next bootstrap message in 00:00:08 This system is a candidate BSR Candidate BSR address: 7.7.7.7, priority: 0, hash mask length: 30 FTOS# show ip pim interface View information on the interfaces with IP PIM enabled.
Example Field Description Nbr Count Displays the number of PIM neighbors discovered over this interface. Query Intvl Displays the query interval for Router Query messages on that interface (configured with ip pim query-interval command). DR Prio Displays the Designated Router priority value configured on the interface (use the ip pim dr-priority command). DR Displays the IP address of the Designated Router for that interface. FTOS#show ip pim interface Address Interface Ver/ Mode 172.21.200.
Ver Displays the PIM version number. • DR prio/Mode Example v2 = PIM version 2 Displays the Designated Router priority and the mode. • 1 = default Designated Router priority (use the ip pim drpriority command) • DR = Designated Router • S = Sparse mode FTOS#show ip pim neighbor Neighbor Interface Uptime/Expires Ver Address 127.87.3.4 Te 7/16 09:44:58/00:01:24 v2 FTOS# DR Prio/Mode 1 / S show ip pim rp View all multicast groups-to-RP mappings.
Example (Mapping) FTOS#sh ip pim rp mapping Group(s): 224.0.0.0/4 RP: 165.87.20.4, v2 Info source: 165.87.20.5, via bootstrap, priority 0 Uptime: 00:03:11, expires: 00:02:46 RP: 165.87.20.3, v2 Info source: 165.87.20.5, via bootstrap, priority 0 Uptime: 00:03:11, expires: 00:03:03 FTOS# Example (Address) FTOS#sh ip pim rp 229.1.2.1 Group RP 229.1.2.1 165.87.20.4 FTOS# show ip pim snooping interface Display information on VLAN interfaces with PIM-SM snooping enabled.
Example (#2) DR Prio Displays the Designated Router priority value configured on the interface (ip pim dr-priority command). DR Displays the IP address of the Designated Router for that interface. FTOS#show ip pim snooping interface Interface Ver Nbr DR DR Count Prio Vlan 2 v2 3 1 165.87.32.2 show ip pim snooping neighbor Display information on PIM neighbors learned through PIM-SM snooping.
Example • 1 = default Designated Router priority (use the ip pim drpriority command) • DR = Designated Router • S = Sparse mode FTOS#show ip pim snooping neighbor Neighbor Interface Address 165.87.32.2 Vl 2 [Te 4/13 ] 165.87.32.10 Vl 2 [Te 4/11 ] 165.87.32.
Example uptime Displays the amount of time the entry has been in the PIM multicast route table. expires Displays the amount of time until the entry expires and is removed from the database. RP Displays the IP address of the RP/source for this entry.
flags: j Incoming interface: Vlan 2, RPF neighbor 0.0.0.0 Outgoing interface list: TenGigabitEthernet 4/11 Upstream Port -/TenGigabitEthernet 4/13 DR Port -/TenGigabitEthernet 4/20 RPF 165.87.32.10 00:00:08/00:02:52 show ip pim summary View information about PIM-SM operation. S5000 Syntax Command Modes Command History Example show ip pim summary • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Data path event summary: 0 no-cache messages received 0 last-hop switchover messages received 0/0 pim-assert messages sent/received 0/0 register messages sent/received Memory usage: TIB Nexthop cache Interface table Neighbor table RP Mapping : : : : : 3768 bytes 0 bytes 992 bytes 528 bytes 0 bytes show ip pim tib View the PIM tree information base (TIB).
• Example L = local to the multicast group • P = route was pruned • R = the forwarding entry is pointing toward the RP • F = FTOS is registering this entry for a multicast source • T = packets were received via Shortest Tree Path • J = first packet from the last hop router is received and the entry is ready to switch to SPT • K = acknowledge pending state Incoming interface Displays the reverse path forwarding (RPF) interface towards the RP/ source.
Outgoing interface list: TenGigabitEthernet 8/0 show running-config pim Display the current configuration of PIM-SM snooping. S5000 Syntax show running-config pim Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. Example FTOS#show running-config pim ! ip pim snooping enable Related Commands ip pim snooping – enables PIM-SM snooping. IPv6 PIM-Sparse Mode Commands The following describes the IPv6 PIM-sparse mode (PIM-SM) commands.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. show ipv6 pim tib – displays the IPv6 PIM tree information base (TIB) debug ipv6 pim Invoke IPv6 PIM debugging. S5000 Syntax debug ipv6 pim [bsr | events | group group | packet | register [group] | state | | timer [assert | hello | joinprune | register]] To disable IPv6 PIM debugging, use the no debug ipv6 pim command.
Command History Version 9.0(1.3) Introduced on the S5000. ipv6 pim bsr-border Invoke IPv6 PIM debugging. S5000 Syntax debug ipv6 pim [bsr | events | group group | packet | register [group] | state | | timer [assert | hello | joinprune | register]] To disable IPv6 PIM debugging, use the no debug ipv6 pim command. Parameters bsr (OPTIONAL) Enter the keyword bsr to invoke debugging of IPv6 PIM Candidate RP/BSR activities.
ipv6 pim bsr-candidate Configure the router as a bootstrap (BSR) candidate. S5000 Syntax ipv6 pim bsr-candidate interface-type slot/port [hash-masklength] [priority] To disable the bootstrap candidate, use the no ipv6 pim bsr-candidate command. Parameters interface-type slot/port Enter the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
Parameters priority-value Defaults 1 Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Enter a number. Preference is given to larger/higher number. The range is 0 to 4294967294. The default is 1. Introduced on the S5000. The router with the largest value assigned to an interface becomes the designated router. If two interfaces contain the same designated router priority value, the interface with the largest interface IP address becomes the designated router.
ipv6 pim query-interval Change the frequency of IPv6 PIM router-query messages. S5000 Syntax ipv6 pim query-interval seconds To return to the default value, use the no ipv6 pim query-interval seconds command. Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Version 9.0(1.3) Enter a number as the number of seconds between router query messages. The range is 0 to 65535. The default is 30 seconds. Introduced on the S5000.
ipv6 pim register-filter Configure the source DR so that it does not send register packets to the RP for the specified sources and groups. S5000 Syntax Parameters ipv6 pim register-filter access-list access-list Defaults none Command Modes CONFIGURATION Command History Example Version 9.0(1.3) Enter the name of the extended ACL that contains the sources and groups to be filtered. Introduced on the S5000.
override Enter the keyword override to override the BSR updates with static RP. The override takes effect immediately during enable/ disable. NOTE: This option is applicable to multicast group range. Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The RP addresses are stored in the order in which they are entered. RP addresses learnt via BSR take priority over static RP addresses.
Defaults none Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. ipv6 pim sparse-mode Enable IPv6 PIM sparse mode on the interface. S5000 Syntax ipv6 pim sparse-mode To disable IPv6 PIM sparse mode, use the no ipv6 pim sparse-mode command. Defaults Disabled. Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. PIM leaf routers join the shortest path tree immediately after the first packet arrives from a new source. show ipv6 pim bsr-router View information on the bootstrap router (v2). S5000 Syntax Command Modes Command History Example show ipv6 pim bsr-router • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Example FTOS#show ipv6 pim interface Interface Ver/ Nbr Query DR Mode Count Intvl Prio Te 10/3 v2/S 1 30 1 Address : fe80::201:e8ff:fe02:140f DR : this router Te 10/11 v2/S 0 30 1 Address : fe80::201:e8ff:fe02:1417 DR : this router FTOS# show ipv6 pim neighbor Displays IPv6 PIM neighbor information. S5000 Syntax Parameters Command Modes Command History Example show ipv6 pim neighbor [detail] detail (OPTIONAL) Enter the keyword detail to displayed PIM neighbor detailed information.
Parameters mapping (OPTIONAL) Enter the keyword mapping to display the multicast groups-to-RP mapping and information on how RP is learnt. group-address (OPTIONAL) Enter the multicast group address in the x:x:x:x::x format to view RP mappings for a specific group. NOTE: The :: notation specifies successive hexadecimal fields of zero. Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
NOTE: The :: notation specifies successive hexadecimal fields of zero. Command Modes Command History Example • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
PIM-Source Specific Mode (PIM-SSM) 40 FTOS supports protocol-independent multicast (PIM)-source specific mode (PIM-SSM) commands on the S5000. This chapter contains the following sections: • IPv4 PIM Commands • IPv4 PIM-Source Specific Mode Commands • IPv6 PIM Commands • IPv6 PIM-Source Specific Mode Commands IPv4 PIM Commands The following commands apply to IPv4 PIM-SM, PIM-SSM, and PIM-DM.
ip pim ssm-range Specify the SSM group range using an access list. S5000 Syntax Parameters ip pim ssm-range {access_list_name} access_list_nam e Enter the name of the access list. Defaults Default SSM range is 232/8 and ff3x/32 Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. FTOS supports standard access lists for the SSM range. You cannot use extended ACLs for configuring the SSM range.
Command History Version 9.0(1.3) Introduced on the S5000. IPv6 PIM Commands The following commands apply to IPv6 PIM-SM and PIM-SSM. • clear ipv6 pim tib • debug ip pim • ipv6 pim dr-priority • ipv6 pim join-filter • ipv6 pim query-interval • ipv6 pim neighbor-filter • show ipv6 pim interface • show ipv6 pim neighbor • show ipv6 pim tib IPv6 PIM-Source Specific Mode Commands The IPv6 PIM-SSM commands are as follows.
41 Port Monitoring The port monitoring feature allows you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port. The commands in this chapter are supported on the S5000. Important Points to Remember • Port monitoring is supported on physical ports only. Logical interfaces, such as Port Channels and virtual local area networks (VLANs), are not supported.
Defaults none Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Command History Related Commands Version 9.0(1.3) Introduced on the S5000. monitor session – enables a monitoring session. monitor session Create a session for monitoring traffic with port monitoring. S5000 Syntax monitor session session-ID To delete a session, use the no monitor session session-ID command. To delete all monitor sessions, use the no monitor session all command.
Defaults none Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Command History Example Version 9.0(1.3) Introduced on the S5000. FTOS(conf-mon-sess-11)#show config ! monitor session 11 source TenGigabitEthernet 10/0 destination TenGigabitEthernet 10/47 direction rx FTOS# show monitor session Display the monitor information of a particular session or all sessions.
show running-config monitor session Display the running configuration of all monitor sessions or a specific session. S5000 Syntax show running-config monitor session {session-ID} To display the running configuration for all monitor sessions, use the show runningconfig monitor session command. Parameters Defaults Command Modes Command History session-ID (OPTIONAL) Enter a session identification number. The range 0 to 65535. none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
source (port monitoring) Configure a port monitor source. S5000 Syntax source interface destination interface-type slot/port direction {rx | tx | both} To disable a monitor source, use the no source interface-type slot/port destination interface direction {rx | tx | both} command. Parameters interface-type slot/port Enter the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
Per-VLAN Spanning Tree Plus (PVST+) 42 The Dell Networking operating software (FTOS) implementation of per-VLAN spanning tree plus (PVST+) is based on the IEEE 802.1d standard spanning tree protocol. PVST+ is supported by FTOS on the S5000 switch. NOTE: For easier command line entry, the plus (+) sign is not used at the command line. description Enter a description of the PVST+. S5000 Syntax description {description} To remove the description, use the no description {description} command.
Defaults Disabled. Command Modes CONFIGURATION (conf-pvst) Command History Related Commands Version 9.0(1.3) Introduced on the S5000. protocol spanning-tree pvst – enter PVST+ mode. extend system-id Use extend system ID to augment the Bridge ID with a VLAN ID so that PVST+ differentiate between BPDUs for each VLAN. If for some reason on VLAN receives a BPDU meant for another VLAN, PVST+ will then not detect a loop, and both ports can remain in forwarding state.
protocol spanning-tree pvst Enter the PVST+ mode to enable PVST+ on a device. S5000 Syntax protocol spanning-tree pvst To disable PVST+, use the disable command. Defaults none Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000.
interface type slot/port guard Defaults Usage Information Example (Brief) • For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60. • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128.
Name Role PortID Prio Cost Sts Cost Link-type Edge ----------------------------------------------------Te 1/0 Root 128.130 128 20000 FWD 20000 P2P No Te 1/1 Altr 128.131 128 20000 BLK 20000 P2P No Te 1/16 Desg 128.146 128 20000 FWD 20000 P2P Yes Te 1/17 Desg 128.147 128 20000 FWD 20000 P2P Yes Example FTOS#show spanning-tree pvst vlan 2 VLAN 2 Root Identifier has priority 4096, Address 0001.e805.e306 Root Bridge hello time 2, max age 20, forward delay 15 Bridge Identifier has priority 4096, Address 0001.
Edge port:no (default) port guard :none (default) Link type: point-to-point (auto) bpdu filter:disable (default) Bpdu guard :disable (default) Bpdus sent 152, received 27562 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID ----------------------------------------------------------Te 1/0 128.1223 128 20000 EDS 0 32768 0001.e800.a12b 128.
shutdown-onviolation (OPTIONAL) Enter the keywords shutdown-on-violation to hardware disable an interface when a BPDU is received and the port is disabled. err-disable Enter the keywords err-disable to enable the port to be put into the error-disable state (EDS) if an error condition occurs. vlan vlan-range Enter the keyword vlan followed by the VLAN number(s). The range is 1 to 4094. cost number Enter the keyword cost followed by the port cost value. The range is 1 to 200000.
When used in a PVST+ network, loop guard is performed per-port or per-port channel at a VLAN level. If no BPDUs are received on a VLAN interface, the port or port-channel transitions to a Loop-Inconsistent (blocking) state only for this VLAN. Enabling Portfast BPDU guard and loop guard at the same time on a port results in a port that remains in a Blocking state and prevents traffic from flowing through it.
Related Commands show spanning-tree pvst – views the PVST+ configuration. tc-flush-standard Enable MAC address flushing after receiving every topology change notification. S5000 Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. By default, FTOS implements an optimized flush mechanism for PVST+.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. vlan forward-delay – changes the time interval before FTOS transitions to the Forwarding state. vlan hello-time – change the time interval between BPDUs. vlan max-age – changes the time interval before PVST+ refreshes. show spanning-tree pvst – displays the PVST+ configuration. vlan forward-delay Set the amount of time the interface waits in the Listening state and the Learning state before transitioning to the Forwarding state.
vlan hello-time Set the time interval between generation of PVST+ 7 BPDUs. S5000 Syntax vlan vlan-range hello-time seconds To return to the default value, use the no vlan hello-time command. Parameters vlan vlan-range Enter the keyword vlan followed by the VLAN number(s). The range is 1 to 4094. hello-time Enter the keywords hello-time followed by the time interval, in seconds, between transmission of BPDUs. The range is 1 to 10 seconds. The default is 2 seconds.
Command Modes Command History Related Commands CONFIGURATION (conf-pvst) Version 9.0(1.3) Introduced on the S5000. vlan bridge-priority – sets the bridge-priority value. vlan forward-delay – changes the time interval before FTOS transitions to the forwarding state. vlan hello-time – changes the time interval between BPDUs. show spanning-tree pvst – displays the PVST+ configuration.
Quality of Service (QoS) 43 The Dell Networking operating software (FTOS) commands for quality of service (QoS) include traffic conditioning and congestion control. QoS commands are supported on the S500 switch. This chapter contains the following sections: • Global Configuration Commands • Per-Port QoS Commands • Policy-Based QoS Commands Global Configuration Commands There is only one global configuration QoS command.
Per-Port QoS Commands Per-port QoS (port-based QoS) allows you to define the QoS configuration on a per-physical-port basis. dot1p-priority Assign a value to the IEEE 802.1p bits on the traffic received by this interface. S5000 Syntax dot1p-priority priority-value To delete the IEEE 802.1p configuration on the interface, use the no dot1p-priority command. Defaults Enter a value from 0 to 7. Table 9. Priority Values for 802.
rate police Police the incoming traffic rate on the selected interface. S5000 Syntax Parameters rate police [kbps] committed-rate [burst-KB] [peak [kbps] peakrate [burst-KB]] [vlan vlan-id] kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Specify a value after the keyword as a multiple of 64. committed-rate Enter the bandwidth in Mbps. The range is 0 to 10000. burst-KB (OPTIONAL) Enter the burst size in KB. The range is 16 to 200000. The default is 50.
rate shape Shape the traffic output on the selected interface. S5000 Syntax Parameters rate shape [kbps] rate [burst-KB] kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Specify a value after the keyword as a multiple of 64. rate Enter the outgoing rate in multiples of 10 Mbps. The range is 10 to 10000. burst-KB (OPTIONAL) Enter the burst size in KB. The range is 0 to 10000. The default is 10. Defaults Granularity for rate is Mbps unless you use the kbps option.
Usage Information To apply dot1p-queue-mapping, use the service-class dynamic dot1p command. Related Commands show qos dot1p-queue-mapping – displays the dot1p priority to queue mapping on the switch. service-class dynamic dot1p Honor all 802.1p markings on incoming switched traffic on an interface (from INTERFACE mode) or on all interfaces (from CONFIGURATION mode). A CONFIGURATION mode entry supersedes an INTERFACE mode entries.
are automatically configured; you cannot assign the service-class dynamic command to individual interfaces in a port channel. All traffic is by default mapped to the same queue, Queue 0. If you honor dot1p on ingress, you can create service classes based the queueing strategy using the service-class dynamic dot1p command from INTERFACE mode. You may apply this queuing strategy to all interfaces by entering this command from CONFIGURATION mode.
Parameters unicast number Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Enter the keyword unicast followed by the queue number. The range is 1 to 3. Introduced on the S5000. After you configure a unicast queue as strict-priority, that particular queue, on the entire chassis, is treated as a strict-priority queue. Traffic for a strict priority is scheduled before any other queues are serviced.
Related Commands qos-policy-output – creates a QoS output policy. class-map Create/access a class map. Class maps differentiate traffic so that you can apply separate quality of service policies to each class. S5000 Syntax Parameters class-map {match-all | match-any} class-map-name [layer2] match-all Determines how packets are evaluated when multiple match criteria exist.
match mac vlan – configures a match criterion for a class map based on VLAN ID. service-queue – assigns a class map and QoS policy to different queues. show qos class-map – views the current class map information. clear qos statistics Clears Matched Packets, Matched Bytes, and Dropped Packets.
Parameters description Enter a description to identify the policies (80 characters maximum). Defaults none Command Modes CONFIGURATION (policy-map-input and policy-map-output; conf-qos-policy-in and conf-qospolicy-out; wred) Command History Related Commands Version 9.0(1.3) Introduced on the S5000. policy-map-input – creates an input policy map. policy-map-output – creates an output policy map. qos-policy-input – creates an input QoS-policy on the router.
match ip dscp Use a differentiated services code point (DSCP) value as a match criteria. S5000 Syntax match ip dscp dscp-list To remove a DSCP value as a match criteria, use the no match ip dscp dscp-list command. Parameters dscp-list Enter the IP DSCP value(s) that is to be the match criteria. Separate values by commas — no spaces ( 1,2,3 ) or indicate a list of values separated by a hyphen (1-3). The range is 0 to 63.
set-ip-dscp value (OPTIONAL) Enter the keywords set-ip-dscp followed by the IP DSCP value. The matched traffic is marked with the DSCP value. The range is 0 to 63. Defaults none Command Modes CLASS-MAP CONFIGURATION (config-class-map) Command History Usage Information Version 9.0(1.3) Introduced on the S5000. You must enter the class-map command in order to access this command. After the class map is identified, you can configure the match criteria.
match mac dot1p Configure a match criterion for a class map based on a dot1p value. S5000 Syntax Parameters match mac dot1p {dot1p-list} dot1p-list Defaults none Command Modes CLASS-MAP Command History Version 9.0(1.3) Enter a dot1p value. The range is 0 to 7. Introduced on the S5000. Usage Information You must enter the class-map command in order to access this command. After the class map is identified, you can configure the match criteria.
policy-aggregate Allow an aggregate method of configuring per-port QoS via policy maps. An aggregate QoS policy is part of the policy map (input/output) applied on an interface. S5000 Syntax policy-aggregate qos-policy-name To remove a policy aggregate configuration, use the no policy-aggregate qospolicy-name command. Parameters qos-policy-name Enter the name of the policy map in character format (32 characters maximum).
layer2 Defaults Layer 3 Command Modes CONFIGURATION Command History Version 9.0(1.3) (OPTIONAL) Enter the keyword layer2 to specify a Layer 2 Class Map. The default is Layer 3. Introduced on the S5000. Usage Information The input policy map is used to classify incoming traffic to different flows using class-map, QoS policy, or incoming packets DSCP. This command enables Policy-Map-Input Configuration mode (conf-policy-map-in).
qos-policy-input Create a QoS input policy on the router. S5000 Syntax qos-policy-input qos-policy-name [layer2] To remove an existing input QoS policy from the router, use the no qos-policy-input qos-policy-name [layer2] command. Parameters qos-policy-name Enter the name for the policy map in character format (32 characters maximum). layer2 (OPTIONAL) Enter the keyword layer2 to specify a Layer 2 Class Map. The default is Layer 3.
Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Use this command to specify the name of the output QoS policy. After specifying the output policy, you can define rate-limit and bandwidth-percentage. This command enables QosPolicy-Output Configuration mode—(conf-qos-policy-out).
qos-policy-input – creates a QoS output policy. rate-shape Shape traffic output as part of the designated policy. S5000 Syntax Parameters rate-shape [kbps] rate [burst-KB] kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Specify a value after the keyword as a multiple of 64. rate Enter the outgoing rate in multiples of 10 Mbps. The range is 10 to 10000. burst-KB (OPTIONAL) Enter the burst size in KB. The range is 0 to 10000. The default is 10.
layer2 Defaults Layer 3 Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) (OPTIONAL) Enter the keyword layer2 to specify a Layer 2 Class Map. The default is Layer 3. Introduced on the S5000. You can attach a single policy-map to one or more interfaces to specify the service-policy for those interfaces. A policy map attached to an interface can be modified. NOTE: The service-policy commands are not allowed on a port channel.
service-queue Assign a class map and QoS policy to different queues. S5000 Syntax service-queue queue-id [class-map class-map-name] [qos-policy qos-policy-name] To remove the queue assignment, use the no service-queue queue-id [classmap class-map-name] [qos-policy qos-policy-name] command. Parameters queue-id Enter the value used to identify a queue. The range is 0 to 3 (four queues per interface; four queues are reserved for control traffic).
Parameters ip-dscp value (OPTIONAL) Enter the keywords ip-dscp followed by the IP DSCP value. The range is 0 to 63. mac-dot1p value Enter the keywords mac-dot1p followed by the dot1p value. On theS5000, the allowed values are: 0, 2, 4, 6. Defaults none Command Modes CONFIGURATION (conf-qos-policy-in) Command History Usage Information Version 9.0(1.3) Introduced on the S5000. After the IP DSCP bit is set, other QoS services can then operate on the bit settings.
show qos dot1p-queue-mapping Displays the dot1p priority to queue mapping on the switch. S5000 Syntax Defaults Command Modes Command History Related Commands show qos dot1p-queue-mapping • dot1p Priority: 0 1 2 3 4 5 6 7 • Queue: 0 0 0 1 2 3 3 3 EXEC Privilege Version 9.0(1.3) Introduced on the S5000. service-class dot1p-mapping – Identifies the class map. show qos policy-map View the QoS policy map information.
Defaults Command Modes Command History Example (IPv4) none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
show qos policy-map-input View the input QoS policy map details. S5000 Syntax Parameters show qos policy-map-input [policy-map-name] [class class-mapname] [qos-policy-input qos-policy-name] policy-map-name Enter the policy map name. class class-mapname Enter the keyword class followed by the class map name. qos-policy-input Enter the keyword qos-policy-input followed by the QoS policy name. qos-policy-name Defaults Command Modes Command History Example none • EXEC • EXEC Privilege Version 9.
show qos policy-map-output View the output QoS policy map details. S5000 Syntax Parameters show qos policy-map-output [policy-map-name] [qos-policy-output qos-policy-name] policy-map-name Enter the policy map name. qos-policy-output Enter the keyword qos-policy-output followed by the QoS policy name. qos-policy-name Defaults Command Modes Command History Example none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Example FTOS#show qos qos-policy-input Qos-policy-input QosInput Rate-police 100 50 peak 100 50 Dscp 32 FTOS# show qos qos-policy-output View the output QoS policy details. S5000 Syntax Parameters Defaults Command Modes Command History Example show qos qos-policy-output [qos-policy-name] qos-policy-name Enter the QoS policy name. none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
• Defaults Command Modes Command History Usage Information For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes output from the show qos statistics command Example below. Field Description Queue # Queue Number Queued Bytes Snapshot of the byte count in that queue. Matched Pkts The number of packets that matched the class-map criteria.
Usage Information The following describes output from the show qos statistics command Example below. Field Description Queue # Queue Number Queued Bytes (Cumulative) Snapshot of the byte count in that queue. Queued Pkts (Cumulative) Cumulative packet count in that queue. Matched Pkts The number of packets that matched the class-map criteria. NOTE: When you configure trust, matched packet counters are not incremented in this field.
Parameters Defaults wred-profilename none Command Modes Command History Example Enter the WRED profile name to view the profile details. • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. FTOS#show qos wred-profile Wred-profile-name wred_drop wred_ge_y wred_ge_g wred_teng_y wred_teng_g WRED1 min-threshold 0 1024 2048 4096 8192 2000 max-threshold 0 2048 4096 8192 16384 7000 test cam-usage Check the Input Policy Map configuration for the CAM usage.
An input policy map with both Trust and Class-map configuration, the Class-map rules are ignored and only the Trust rule is programmed in the CAM. In such an instance, the Estimated CAM output column will contain the size of the CAM space required for the Trust rule and not the Class-map rule. The following describes output from the text cam-usage service-policy input policy-map stack-unit command shown in the Example below. Field Description Stack-Unit Indicates the stack-unit number.
13 FTOS# 1 L2ACL 400 200 Alwd(2) trust Specify dynamic classification (DSCP) or dot1p to trust. S5000 Syntax Parameters trust {diffserv [fallback]| dot1p [fallback]} diffserv Enter the keyword diffserv to specify trust of DSCP markings. dot1p Enter the keyword dot1p to specify trust dot1p configuration. fallback Enter the keyword fallback to classify packets according to their DSCP value as a secondary option in case no match occurs against the configured class maps.
DSCP/CP hex Range (XXX) DSCP Definition Traditional IP Precedence Internal Queue ID DSCP/CP Decimal 000XXX BE (Best Effort) Best Effort 0 0–15 wred Designate the WRED profile to yellow or green traffic. S5000 Syntax wred {yellow | green} profile-name To remove the WRED drop precedence, use the no wred {yellow | green} [profile-name] command. Parameters yellow | green Enter the keyword yellow for yellow traffic. A DSCP value of xxx110 and xxx100 maps to yellow.
wred-profile Create a WRED profile and name the profile. S5000 Syntax wred-profile wred-profile-name To remove an existing WRED profile, use the no wred-profile command. Parameters wred-profilename Enter your WRED profile name in character format (16 character maximum). Or use one of the pre-defined WRED profile names. You can configure up to 26 WRED profiles plus the five pre-defined profiles, for a total of 31 WRED profiles.
Private VLAN (PVLAN) 44 FTOS supports the private VLAN (PVLAN) feature on the S5000 switch. Private VLANs extend the FTOS security suite by providing Layer 2 isolation between ports within the same private VLAN. A private VLAN partitions a traditional VLAN into subdomains identified by a primary and secondary VLAN pair. The FTOS private VLAN implementation is based on RFC 3069. For more information, refer to the following commands.
– A trunk port can also belong to a regular VLAN (non-private VLAN). ip local-proxy-arp Enable/disable Layer 3 communication between secondary VLANs in a private VLAN. S5000 Syntax [no] ip local-proxy-arp To disable Layer 3 communication between secondary VLANs in a private VLAN, use the no ip local-proxy-arp command in INTERFACE VLAN mode for the primary VLAN.
Parameters community Enter the keyword community to set the VLAN as a community VLAN. isolated Enter the keyword isolated to configure the VLAN as an isolated VLAN. primary Enter the keyword primary to configure the VLAN as a primary VLAN. Defaults none Command Modes INTERFACE VLAN Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The VLAN: • can be in only one mode, either community, isolated, or primary.
Parameters vlan-list Defaults none Command Modes INTERFACE VLAN Command History Usage Information Related Commands Version 9.0(1.3) Enter the list of secondary VLANs to associate with the selected primary VLAN. The list can be in comma-delimited or hyphenatedrange format, following the convention for the range input. Introduced on the S5000. The list of secondary VLANs can be: • Specified in comma-delimited or hyphenated-range format.
Example (All) Field Description Interface Displays the type of interface and associated slot and port number. Vlan Displays the VLAN ID of the designated interface. PVLAN-Type Displays the type of VLAN in which the designated interface resides. Interface Type Displays the PVLAN port type of the designated interface. Status States whether the interface is operationally up or down.
primary_vlan (OPTIONAL) Enter a private VLAN ID or secondary VLAN ID to display interface details about the designated PVLAN. interface (OPTIONAL) Enter the keyword interface and an interface ID to display the PVLAN configuration of the designated interface. interface Defaults Command Modes Command History Usage Information none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Examples of all types of command output are shown below.
100 200 isolated isolated Yes Yes Te 2/2,4-6 Te 3/2,4-6 Example (Community) FTOS# show vlan private-vlan community Primary Secondary Type Active Ports ------- --------- --------- ------ ----------10 primary Yes Te 2/1,3 101 community Yes Te 2/7-10 20 primary Yes Po 10, 12-13 Te 3/1 201 community No 202 community Yes Te 3/11-12 Example (Specific) FTOS# show vlan private-vlan interface Te 2/1 Primary Secondary Type Active Ports ------- --------- --------- -------------------10 primary Yes Te 2/1 Usage
Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Usage Information The output of this command, shown below, displays the community and isolated VLAN IDs that are associated with each primary VLAN. Example FTOS# show vlan private-vlan mapping Private Vlan: Primary : 100 Isolated : 102 Community : 101 Unknown : 200 Related Commands private-vlan mode – sets the mode of the selected VLAN to community, isolated, or primary.
Usage Information The assignment of the various PVLAN port types to port and port channel (LAG) interfaces is shown below.
Routing Information Protocol (RIP) 45 Routing information protocol (RIP) is a distance vector routing protocol. The Dell Networking operating software (FTOS) supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2) on the S5000. NOTE: For more information about configuring RIP, refer to the FTOS Configuration Guide. auto-summary Restore the default behavior of automatic summarization of subnet routes into network routes. This command applies only to RIP version 2.
debug ip rip Examine RIP routing information for troubleshooting. S5000 Syntax debug ip rip [database | [events [interface-type slot/port] | packet [interface-type slot/port]] | trigger] To turn off debugging output, use the no debug ip rip command. Parameters interface-type slot/port (OPTIONAL) Enter the interface type and ID as one of the following: • For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63.
Parameters always (OPTIONAL) Enter the keyword always to enable the switch software to always advertise the default route. metric metric- value (OPTIONAL) Enter the keyword metric followed by a number as the metric value. The range is 1 to 16. The default is 1. route-map mapname (OPTIONAL) Enter the keywords route-map followed by the name of a configured route-map. Defaults Disabled. Metric: 1. Command Modes ROUTER RIP Command History Usage Information Version 9.0(1.
description Enter a description of the RIP routing protocol. S5000 Syntax description {description} To remove the description, use the no description {description} command. Parameters description Defaults none Command Modes ROUTER RIP Command History Related Commands Version 9.0(1.3) Enter a description to identify the RIP protocol (80 characters maximum). Introduced on the S5000. router rip – enters ROUTER mode on the switch.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. default-metric – assigns one distance metric to all routes learned using the redistribute command. distribute-list in Configure a filter for incoming routing updates. S5000 Syntax distribute-list prefix-list-name in [interface-type slot/port] To delete the filter, use the no distribute-list prefix-list-name in command. Parameters prefix-list-name in Enter the name of a configured prefix list followed by the keyword in.
distribute-list out Configure a filter for outgoing routing updates. S5000 Syntax distribute-list prefix-list-name out [interface-type slot/port | bgp | connected | ospf | static] To delete the filter, use the no distribute-list prefix-list-name out command. Parameters prefix-list-name out Enter the name of a configured prefix list followed by the keyword out. interface-type slot/port (OPTIONAL) Enter the interface type and slot/port or number information. Valid slot numbers are 0-11.
ip poison-reverse Set the prefix of the RIP routing updates to the RIP infinity value. S5000 Syntax ip poison-reverse To disable poison reverse, use the no ip poison-reverse command. Defaults Disabled. Command Modes INTERFACE Command History Related Commands Version 9.0(1.3) Introduced on the S5000. ip split-horizon – sets the RIP routing updates to exclude routing prefixes. ip rip receive version Set the interface to receive specific versions of RIP.
ip rip send version Set the interface to send a specific version of RIP. The version you set on the interface overrides the version command in ROUTER RIP mode. S5000 Syntax ip rip send version [1] [2] To return to the default value, use the no ip rip send version command. Parameters 1 (OPTIONAL) Enter the number 1 for RIP version 1. The default is RIPv1. 2 (OPTIONAL) Enter the number 2 for RIP version 2. Defaults RIPv1 Command Modes INTERFACE Command History Version 9.0(1.
maximum-paths Set RIP to forward packets over multiple paths. S5000 Syntax maximum-paths number To return to the default values, use the no maximum-paths commands. Parameters number Defaults 4 Command Modes ROUTER RIP Command History Usage Information Version 9.0(1.3) Enter the number of paths. The range is 1 to 16. The default is 4 paths. Introduced on the S5000. RIP supports a maximum of 16 ECMP paths. neighbor Define a neighbor router with which to exchange RIP information.
network Enable RIP for a specified network. Use this command to enable RIP on all networks connected to the switch. S5000 Syntax network ip-address To disable RIP for a network, use the no network ip-address command. Parameters ip-address Specify an IP network address in dotted decimal format. You cannot specify a subnet. Defaults No RIP network is configured. Command Modes ROUTER RIP Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
Defaults Not configured. Command Modes ROUTER RIP Command History Version 9.0(1.3) • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60. • For a Port Channel interface, enter the keywords portchannel followed by a number from 1 to 128. • For a VLAN interface, enter the keyword vlan followed by a VLAN id number from 1 to 4094. Introduced on the S5000.
passive-interface Suppress routing updates on a specified interface. S5000 Syntax passive-interface interface-type slot/port To delete a passive interface, use the no passive-interface interface-type slot/port command. Parameters interface-type slot/port Defaults Not configured. Command Modes ROUTER RIP Command History Version 9.0(1.3) Enter the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
Parameters connected Enter the keyword connected to specify that information from active routes on interfaces is redistributed. static Enter the keyword static to specify that information from static routes is redistributed. Defaults Not configured. Command Modes ROUTER RIP Command History Version 9.0(1.3) Introduced on the S5000. Usage Information To redistribute the default route (0.0.0.0/0), configure the default-information originate command.
Command Modes Command History ROUTER RIP Version 9.0(1.3) Introduced on the S5000. redistribute ospf Redistribute routing information from an OSPF process. S5000 Syntax redistribute ospf process-id [match external {1 | 2} | match internal | metric metric-value] [route-map map-name] To disable redistribution, use the no redistribute ospf process-id [match external {1 | 2} | match internal | metric metric-value] [route-map map-name] command.
router rip Enter ROUTER RIP mode to configure and enable RIP. S5000 Syntax router rip To disable RIP, use the no router rip command. Defaults Disabled. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. Usage Information To enable RIP, you must assign a network address using the network command. Example FTOS(conf)#router rip FTOS(conf-router_rip)# Related Commands network – enables RIP. exit – returns to CONFIGURATION mode.
show ip rip database Display the routes that RIP learns. If the switch learned no RIP routes, no output is generated. S5000 Syntax Parameters Command Modes Command History Usage Information Example 1094 show ip rip database [ip-address mask] ip-address (OPTIONAL) Specify an IP address in dotted decimal format to view RIP information on that network only. If you enter an IP address, you must also enter a mask for that IP address.
[50/2] via 1.1.10.2, 00:00:18, Vlan 10 208.250.42.0/24 auto-summary show running-config rip Display the current RIP configuration. S5000 Syntax show running-config rip Defaults none Command Modes EXEC Privilege Command History Example Version 9.0(1.3) Introduced on the S5000. show running-config rip ! router rip distribute-list Test1 in distribute-list Test21 out network 10.0.0.0 passive-interface TenGigabitEthernet 2/0 neighbor 20.20.20.
holddown Enter the number of seconds to specify a time interval during which the route is marked as unreachable but still sending RIP packets. The holddown value should be at least three times the update timer value. The range is zero (0) to 4294967295. The default is 180 seconds. flush Enter the number of seconds to specify the time interval during which the route is advertised as unreachable. When this interval expires, the route is flushed from the routing table.
Remote Monitoring (RMON) 46 FTOS supports remote monitoring (RMON) on the S5000 switch. FTOS RMON is based on IEEE standards, providing both 32-bit and 64-bit monitoring and long-term statistics collection.
interval Time, in seconds, the alarm monitors the MIB variables; this is the alarmSampleType in the RMON alarm table. The range is 5 to 3600 seconds. delta Enter the keyword delta to test the change between MIB variables. This is the alarmSampleType in the RMON alarm table. absolute Enter the keyword absolute to test each MIB variable directly. This is the alarmSampleType in the RMON alarm table.
owner name (OPTIONAL) Enter the keyword owner followed by the owner name to record the owner of the RMON group of statistics. buckets number (OPTIONAL) Enter the keyword buckets followed the number of buckets for the RMON collection history group of statistics. The bucket range is 1 to 1000. The default is 50. interval seconds (OPTIONAL) Enter the keyword interval followed the number of seconds in each polling cycle. The range is 5 to 3600 seconds. The default is 1800 seconds.
rmon event Add an event in the RMON event table. S5000 Syntax rmon event number [log] [trap community] [description string] [owner name] To disable RMON on an interface, use the no rmon event number [log] [trap community] [description string] command. Parameters number Assign an event number in integer format from 1 to 65535. The number value must be unique in the RMON event table. log (OPTIONAL) Enter the keyword log to generate an RMON log entry.
variable The MIB object to monitor. The variable must be in the SNMP OID format; for example, 1.3.6.1.2.1.1.3 The object type must be a 64 bit integer. interval Time, in seconds, the alarm monitors the MIB variables; this is the alarmSampleType in the RMON alarm table. The range is 5 to 3600 seconds. delta Enter the keyword delta to test the change between MIB variables. This is the alarmSampleType in the RMON alarm table. absolute Enter the keyword absolute to test each MIB variable directly.
Command History Example Version 9.0(1.3) Introduced on the S5000. FTOS# show rmon RMON status total memory used 218840 bytes. ether statistics table: 8 entries, 4608 bytes ether history table: 8 entries, 6000 bytes alarm table: 390 entries, 102960 bytes high-capacity alarm table: 5 entries, 1680 bytes event table: 500 entries, 206000 bytes log table: 2 entries, 552 bytes FTOS# show rmon alarms Display the contents of the RMON alarm table.
5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 FTOS# 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 show rmon events Display the contents of the RMON event table.
3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 FTOS# 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 show rmon hc-alarm Display the contents of RMON High-Capacity alarm table. S5000 Syntax Parameters show rmon hc-alarm [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON HighCapacity alarm table in an easy-to-read format.
alarm status: OK FTOS# Example (Brief) FTOS#show rmon hc-alarm brief index SNMP OID ---------------------------------1 1.3.6.1.2.1.1.3 2 1.3.6.1.2.1.1.3 3 1.3.6.1.2.1.1.3 4 1.3.6.1.2.1.1.3 5 1.3.6.1.2.1.1.3 FTOS# show rmon history Display the contents of the RMON Ethernet history table. S5000 Syntax Parameters show rmon history [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry.
9004 FTOS# 134791198 TenGigabitEthernet 3/1 show rmon log Display the contents of the RMON log table. S5000 Syntax Parameters show rmon log [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON log table in an easy-to-read format. Defaults none Command Modes EXEC Command History Version 9.0(1.3) Introduced on the S5000. Usage Information The log table has a maximum of 500 entries.
Parameters index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON Ethernet statistics table in an easy-to-read format. Defaults none Command Modes EXEC Command History Version 9.0(1.3) Introduced on the S5000. Example (Index) FTOS#show rmon statistics 6001 RMON statistics entry 6001 interface: ifIndex.
9002 9003 9004 FTOS# 1108 134529054 134791198 134791198 TenGigabitEthernet 3/0 TenGigabitEthernet 3/1 TenGigabitEthernet 3/1
Rapid Spanning Tree Protocol (RSTP) 47 The Dell Networking operating software (FTOS) implementation of rapid spanning tree protocol (RSTP) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged local area network (LAN) that is comprised of LANs interconnected by bridges. FTOS supports RSTP on the S5000. bridge-priority Set the bridge priority for RSTP.
Parameters all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu interfacetype slot/port {in | out} (OPTIONAL) Enter the keyword bpdu to debug the bridge protocol data units. (OPTIONAL) Enter the keyword interface along with the type slot/ port of the interface you want displayed. Type slot/port options are the following: • For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63.
Defaults none Command Modes SPANNING TREE (The prompt is “config-rstp”.) Command History Related Commands Version 9.0(1.3) Introduced on the S5000. protocol spanning-tree rstp – enters SPANNING TREE mode on the switch. disable Disable RSTP globally on the system. S5000 Syntax disable To enable Rapid Spanning Tree Protocol, use the no disable command. Defaults RSTP is disabled. Command Modes CONFIGURATION RSTP (conf-rstp) Command History Related Commands Version 9.0(1.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. hello-time – changes the time interval between BPDUs. max-age – changes the wait time before RSTP refreshes the protocol configuration information. hello-time Set the time interval between the generation of the RSTP bridge protocol data units (BPDUs). S5000 Syntax hello-time [milli-second] seconds To return to the default value, use the no hello-time command.
max-age Set the time interval for the RSTP bridge to maintain configuration information before refreshing that information. S5000 Syntax max-age seconds To return to the default values, use the no max-age command. Parameters max-age Enter a number of seconds the FTOS waits before refreshing configuration information. The range is 6 to 40 seconds. The default is 20 seconds. Defaults 20 seconds Command Modes CONFIGURATION RSTP (conf-rstp) Command History Related Commands Version 9.0(1.
show config View the current configuration for the mode. Only non-default values are displayed. S5000 Syntax show config Command Modes CONFIGURATION RSTP (conf-rstp) Command History Example Version 9.0(1.3) Introduced on the S5000. FTOS(conf-rstp)#show config ! protocol spanning-tree rstp no disable bridge-priority 16384 show spanning-tree rstp Display the RSTP configuration.
Example (Brief) Sts Port state: root-inconsistent (INCON Root), forwarding (FWD), listening (LIS), blocking (BLK), disabled (DIS), or shut down (EDS Shut). Guard Type Type of STP guard configured (Root, Loop, or BPDU guard) FTOS#show spanning-tree rstp brief Executing IEEE compatible Spanning Tree Protocol Root ID Priority 8192, Address 0001.e805.e306 Root Bridge hello time 4, max age 20, forward delay 15 Bridge ID Priority 16384, Address 0001.e801.
128.257 Designated root has priority 32768, address 0001.e801.6aa8 Designated bridge has priority 32768, address 0001.e801.6aa8 Designated port id is 128.
shutdown-onviolation (OPTIONAL) Enter the keywords shutdown-on-violation to hardware disable an interface when a BPDU is received and the port is disabled. priority priority Enter keyword priority followed by a value in increments of 16 as the priority. The range is 0 to 240. The default is 128. loopguard Enter the keyword loopguard to enable loop guard on an RSTP port or port-channel interface. rootguard Enter the keyword rootguard to enable root guard on an RSTP port or port-channel interface.
tc-flush-standard Enable the MAC address flushing after receiving every topology change notification. S5000 Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled Command Modes CONFIGURATION Command History Usage Information 1118 Version 9.0(1.3) Introduced on the S5000. By default, FTOS implements an optimized flush mechanism for RSTP.
48 Security The commands in this chapter are available on the S5000 switch. This chapter contains various types of security commands offered in the Dell Networking operating software (FTOS).
Parameters system Enter the keyword system to send accounting information of any other AAA configuration. exec Enter the keyword exec to send accounting information when a user has logged in to EXEC mode. commands level Enter the keyword command followed by a privilege level for accounting of commands executed at that privilege level. name | default Enter one of the following: • For default, the default accounting methods is used.
aaa accounting suppress Prevent the generation of accounting records of users with the user name value of NULL. S5000 Syntax aaa accounting suppress null-username To permit accounting records to users with user name value of NULL, use the no aaa accounting suppress null-username command. Defaults Accounting records are recorded for all users. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
show accounting Display the active accounting sessions for each online user. S5000 Syntax show accounting Defaults none Command Modes EXEC Command History Version 9.0(1.3) Introduced on the S5000. Usage Information This command steps through all active sessions and then displays the accounting records for the active account functions.
name Define a name for the list of authorization methods. default Define the default list of authorization methods. local Use the authorization parameters on the system to perform authorization. tacacs+ Use the TACACS+ protocol to perform authorization. none Enter the keyword none to apply no authorization. Defaults none Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000.
Parameters name Define a name for the list of authorization methods. default Define the default list of authorization methods. local Use the authorization parameters on the system to perform authorization. tacacs+ Use the TACACS+ protocol to perform authorization. none Enter the keyword none to apply no authorization. Defaults none Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. authorization Apply an authorization method list to terminal lines.
privilege level (CONFIGURATION mode) Change the access or privilege level of one or more commands. S5000 Syntax privilege mode {level level command | reset command} To delete access to a level and command, use the no privilege mode level level command command.
privilege level (LINE mode) Change the access level for users on the terminal lines. S5000 Syntax privilege level level To delete access to a terminal line, use the no privilege level level command. Parameters level level Enter the keyword level followed by a number for the access level. The range is 0 to 15. Level 1 is EXEC mode and Level 15 allows access to all CLI modes. Defaults level = 15 Command Modes LINE Command History Version 9.0(1.3) Introduced on the S5000.
... method2 Use the enable password. Command Modes CONFIGURATION Usage Information Version 9.0(1.3) enable - use the password defined by the enable password command in CONFIGURATION mode. • line - use the password defined by the password command in LINE mode. • none - no authentication. • radius - use the RADIUS server(s) configured with the radius-server host command. • tacacs+ - use the TACACS+ server(s) configured with the tacacs-server host command.
Parameters method-list-name Enter a text string (up to 16 characters long) as the name of a userconfigured method list that can be applied to different lines. default Enter the keyword default to specify that the method list specified is the default method for all terminal lines. method Enter one of the following methods: ... method4 • enable - use the password defined by the enable password command in CONFIGURATION mode. • line - use the password defined by the password command in LINE mode.
tacacs-server host – specifies a TACACS+ server host. access-class Restrict incoming connections to a particular IP address in a defined IP access control list (ACL). S5000 Syntax access-class access-list-name To delete a setting, use the no access-class command. Parameters access-list-name Defaults Not configured. Command Modes LINE Command History Related Commands Version 9.0(1.3) Enter the name of an established IP Standard ACL. Introduced on the S5000.
Use this parameter only with a password that you copied from the show running-config file of another Dell Networking router. password Enter a text string, up to 32 characters long, as the clear text password. Defaults No password is configured. level = 15. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
Defaults Command History Usage Information Not configured. Version 9.0(1.3) Introduced on the S5000. Only Dell Networking Technical Support staff use this command. enable secret Change the password for the enable command. S5000 Syntax enable secret [level level] [encryption-type] password To delete a password, use the no enable secret [encryption-type] password [level level] command. Parameters level level (OPTIONAL) Enter the keyword level followed by a number as the level of access.
NOTE: The question mark (?) and the tilde (~) are not supported characters. Related Commands show running-config – views the current configuration. privilege level (CONFIGURATION mode) – controls access to the command modes within the switch. login authentication Apply an authentication method list to designated the terminal lines. S5000 Syntax login authentication {method-list-name | default} To use the local user/password database for login authentication, use the no login authentication command.
password Specify a password for users on terminal lines. S5000 Syntax password [encryption-type] password To delete a password, use the no password password command. Parameters encryption-type password (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the password entered. The options are No password is configured. Command Modes LINE Usage Information Related Commands Version 9.0(1.3) 0 is the default and means the password is not encrypted and stored as clear text.
To return to the default, use the no password-attributes [min-length number] [max-retry number] [character-restriction [upper number] [lower number] [numeric number] [special-char number]] command. Parameters min-length number max-retry number (OPTIONAL) Enter the keywords max-retry followed by the number of maximum password retries. The range is 0 to 16. characterrestriction (OPTIONAL) Enter the keywords character-restriction to indicate a character restriction for the password.
level level • interface for INTERFACE modes • line for LINE mode • route-map for ROUTE-MAP mode • router for ROUTER OSPF, ROUTER RIP, ROUTER ISIS and ROUTER BGP modes Enter the keyword level followed by a number for the access level. The range is 0 to 15. Level 1 is EXEC mode and Level 15 allows access to all CLI modes and commands. reset Enter the keyword reset to return the security level to the default setting.
service password-encryption Encrypt all passwords configured in FTOS. S5000 Syntax service password-encryption To store new passwords as clear text, use the no service password-encryption command. Defaults Enabled. Command Modes CONFIGURATION Command History Version 9.0(1.3) Usage Information Introduced on the S5000. CAUTION: Encrypting passwords with this command does not provide a high level of security.
Related Commands privilege level (CONFIGURATION mode) – assigns access control to different command modes. show users Allows you to view information on all users logged into the switch. S5000 Syntax Parameters Command Modes Command History Usage Information Example Related Commands show users [all] all (OPTIONAL) Enter the keyword all to view all terminal lines in the switch. EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
timeout login response Specify how long the software waits for the login input (for example, the user name and password) before timing out. S5000 Syntax timeout login response seconds To return to the default values, use the no timeout login response command. Parameters seconds Defaults See above. Command Modes LINE Command History Usage Information Version 9.0(1.3) Enter a number of seconds the software waits before logging you out.
password Enter the keyword password followed by the encryption-type or the password. secret Enter the keyword secret followed by the encryption-type or the password. encryption-type Enter an encryption type for the password that you will enter. • 0 directs FTOS to store the password as clear text. It is the default encryption type when using the password option. • 7 to indicate that a password encrypted using a DES hashing algorithm will follow.
debug radius View RADIUS transactions to assist with troubleshooting. S5000 Syntax debug radius To disable debugging of RADIUS, use the no debug radius command. Defaults Disabled. Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. ip radius source-interface Specify an interface’s IP address as the source IP address for RADIUS connections.
Command History Version 9.0(1.3) Introduced on the S5000. radius-server deadtime Configure a time interval during which non-responsive RADIUS servers to authentication requests are skipped. S5000 Syntax radius-server deadtime seconds To disable this function or return to the default value, use the no radius-server deadtime command. Parameters seconds Defaults 0 seconds Command Modes CONFIGURATION Command History Version 9.0(1.
server retransmit command. The range is zero (0) to 100. The default is 3 attempts. timeout seconds (OPTIONAL) Enter the keyword timeout followed by the seconds the time interval the switch waits for a reply from the RADIUS server. This parameter overwrites the radius-server timeout command. The range is 0 to 1000. The default is 5 seconds. key [encryptiontype] key (OPTIONAL) Enter the keyword key followed by an optional encryption-type and a string up to 42 characters long as the authentication key.
radius-server key Configure a key for all RADIUS communications between the switch and the RADIUS host server. S5000 Syntax radius-server key [encryption-type] key To delete a password, use the no radius-server key command. Parameters encryption-type key Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the key entered.
Parameters retries Defaults 3 retries Command Modes CONFIGURATION Command History Related Commands Version 9.0(1.3) Enter a number of attempts that FTOS tries to locate a RADIUS server. The range is zero (0) to 100. The default is 3 retries. Introduced on the S5000. radius-server host – configures a RADIUS host. radius-server timeout Configure the amount of time the RADIUS client (the switch) waits for a RADIUS host server to reply to a request.
debug tacacs+ View TACACS+ transactions to assist with troubleshooting. S5000 Syntax debug tacacs+ To disable debugging of TACACS+, use the no debug tacacs+ command. Defaults Disabled. Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. ip tacacs source-interface Specify an interface’s IP address as the source IP address for TACACS+ connections.
Command History Version 9.0(1.3) Introduced on the S5000. tacacs-server host Specify a TACACS+ host. S5000 Syntax Parameters tacacs-server host {hostname | ipv4-address | ipv6-address} [port number] [timeout seconds] [key key] hostname Enter the name of the TACACS+ server host. ipv4-address | ipv6-address Enter the IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::X) of the TACACS+ server host.
tacacs-server key Configure a key for communication between a TACACS+ server and a client. S5000 tacacs-server key [encryption-type] key Syntax To delete a key, use the no tacacs-server key key command. Parameters encryption-type key Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the key entered.
• If 802.1X authorization is enabled and all information from the RADIUS server is valid, the port is placed in the specified VLAN after authentication. • If port security is enabled on an 802.1X port with VLAN assignment, the port is placed in the RADIUS server assigned VLAN. • If 802.1X is disabled on the port, it is returned to the configured access VLAN. • When the port is in the Force Authorized, Force Unauthorized, or Shutdown state, it is placed in the configured access VLAN. • If an 802.
Related Commands dot1x authentication (Configuration) – enables dot1x globally. dot1x auth-fail-vlan Configure an authentication failure VLAN for users and devices that fail 802.1X authentication. S5000 Syntax dot1x auth-fail-vlan vlan-id [max-attempts number] To delete the authentication failure VLAN, use the no dot1x auth-fail-vlan vlanid [max-attempts number] command. Parameters vlan-id Enter the VLAN Identifier. The range is 1 to 4094.
dot1x auth-server Configure the authentication server to RADIUS. S5000 Syntax dot1x auth-server radius Defaults none Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. dot1x guest-vlan Configure a guest VLAN for limited access users or for devices that are not 802.1X capable. S5000 Syntax dot1x guest-vlan vlan-id To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command. Parameters vlan-id Enter the VLAN Identifier. The range is 1 to 4094.
Related Commands dot1x auth-fail-vlan – configures a VLAN for authentication failures. dot1x reauthentication – enables periodic re-authentication. show dot1x interface – displays the 802.1X information on an interface. dot1x max-eap-req Configure the maximum number of times an extensive authentication protocol (EAP) request is transmitted before the session times out. S5000 Syntax dot1x max-eap-req number To return to the default, use the no dot1x max-eap-req command.
Defaults none Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000. The authenticator performs authentication only when port-control is set to auto. dot1x quiet-period Set the number of seconds that the authenticator remains quiet after a failed authentication with a client. S5000 Syntax dot1x quiet-period seconds To disable quiet time, use the no dot1x quiet-time command.
Command Modes Command History Related Commands INTERFACE Version 9.0(1.3) Introduced on the S5000. interface range – configures a range of interfaces. dot1x reauth-max Configure the maximum number of times a port can re-authenticate before the port becomes unauthorized. S5000 Syntax dot1x reauth-max number To return to the default, use the no dot1x reauth-max command. Parameters number Defaults 2 Command Modes INTERFACE Command History Version 9.0(1.
Command History Version 9.0(1.3) Introduced on the S5000. dot1x supplicant-timeout Configure the amount of time after which exchanges with the supplicant time out. S5000 Syntax dot1x supplicant-timeout seconds To return to the default, use theno dot1x supplicant-timeout command. Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Version 9.0(1.3) Enter a time-out value in seconds. The range is 1 to 300, where 300 is implementation dependant. The default is 30.
show dot1x interface Display the 802.1X information on an interface. S5000 Syntax Parameters Defaults Command Modes Command History Example show dot1x interface interface interface Enter one of the following keywords and slot/port or number information: • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
SSH Server and SCP Commands FTOS supports secure shell (SSH) protocol versions 1.5 and 2.0. SSH is a protocol for secure remote login over an insecure network. SSH sessions are encrypted and use authentication. crypto key generate Generate keys for the SSH server. S5000 Syntax NOTE: Some of the parameters in this command require licensing to access. For more information, contact your Dell Networking representative.
Related Commands ip ssh server – enables the SSH server. show crypto – displays the SSH host public keys. debug ip ssh Enables collecting SSH debug information. S5000 Syntax debug ip ssh {client | server} To disable debugging, use the no debug ip ssh {client | server} command. Parameters client Enter the keyword client to enable collecting debug information on the client. server Enter the keyword server to enable collecting debug information on the server.
Usage Information To configure the switch as a SCP server, use the ip ssh server command. Related Commands ip ssh server – enables the SSH and SCP server on the switch. ip ssh authentication-retries Configure the maximum number of attempts that should be used to authenticate a user. S5000 Syntax Parameters ip ssh authentication-retries 1-10 1-10 Defaults 3 Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Enter the number of maximum retries to authenticate a user.
Command History Version 9.0(1.3) Introduced on the S5000. ip ssh hostbased-authentication Enable hostbased-authentication for the SSHv2 server. S5000 Syntax ip ssh hostbased-authentication enable To disable hostbased-authentication for SSHv2 server, use the no ip ssh hostbasedauthentication enable command. Parameters enable Enter the keyword enable to enable hostbased-authentication for SSHv2 server. Defaults Disabled. Command Modes CONFIGURATION Command History Usage Information Version 9.
Parameters 512-869 Defaults Key size 768 Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Enter the key-size number for the server-generated RSA SSHv1 key. The range is 512 to 869. The default is 768. Introduced on the S5000. The server-generated key is used for SSHv1 key-exchange. ip ssh password-authentication Enable password authentication for the SSH server.
Parameters WORD Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Enter the file name for the host-based authentication. Introduced on the S5000. This command specifies the file to be used for the host-based authentication. The creates/ file overwrites the flash://ADMIN_DIR/ssh/knownhosts file and deletes the userspecified file.
Example FTOS#conf FTOS(conf)# ip ssh rhostsfile flash://shosts FTOS(conf)# Usage Information This command specifies the rhost file to be used for host-based authentication. This creates/ file overwrites the flash:/ADMIN_DIR/ssh/shosts file and deletes the user-specified file. Even though this is a global configuration command, it does not appear in the running configuration because this command needs to be run just once.
ip ssh rsa-authentication (EXEC) Add keys for the RSA authentication. S5000 Syntax ip ssh rsa-authentication {my-authorized-keys WORD} To delete the authorized keys, use the no ip ssh rsa-authentication {myauthorized-keys} command. Parameters my-authorizedkeys WORD Defaults none Command Modes EXEC Command History Usage Information Version 9.0(1.3) Enter the keywords my-authorized-keys followed by the file name of the RSA authorized-keys. Introduced on the S5000.
port port-number (OPTIONAL) Enter the keyword port followed by the port number of the listening port of the SSH server. The range is 1 to 65535. The default is 22. [version {1 | 2}] (OPTIONAL) Enter the keyword version followed by the SSH version 1 or 2 to specify only SSHv1 or SSHv2. NOTE: If you enable FIPS mode, you can only select version 2. Defaults Default listening port is 22. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000.
Command History Version 9.0(1.3) Introduced on the S5000. Usage Information This command is useful if the remote SSH client implements Strict Host Key Checking. You can copy the host key to your list of known hosts.
Related Commands ip ssh server – configures an SSH server. show ip ssh client-pub-keys – displays the client-public keys. show ip ssh client-pub-keys Display the client public keys used in host-based authentication. S5000 Syntax show ip ssh client-pub-keys Defaults none Command Modes EXEC Command History Version 9.0(1.3) Introduced on the S5000. Usage Information This command displays the contents of the flash://ADMIN_DIRssh/knownhosts file.
Command Modes Command History EXEC Version 9.0(1.3) Introduced on the S5000. Usage Information This command displays the contents of the flash:/ADMIN_DIR/ssh/authorizedkeys.username file.
-m HMAC algorithm • hmac-sha1: Force ssh to use the hmac-sha1 HMAC algorithm. • hmac-sha1-96: Force ssh to use the hmac-sha1-96 HMAC algorithm. • hmac-md5: Force ssh to use the hmac-md5 HMAC algorithm. • hmac-md5-96: Force ssh to use the hmac-md5-96 HMAC algorithm. -p port-number (OPTIONAL) Enter the keyword -p followed by the port number. The range is 1 to 65536. The default is 22. -v {1 | 2} (OPTIONAL) Enter the keyword -v followed by the SSH version 1 or 2.
clear ip dhcp snooping Clear the DHCP binding table. S5000 Syntax clear ip dhcp snooping binding Defaults none Command Modes EXEC Privilege Command History Related Commands Version 9.0(1.3) Introduced on the S5000. show ip dhcp snooping – displays the contents of the DHCP binding table. ip dhcp relay Enable Option 82. S5000 Syntax Parameters ip dhcp relay information-option [trust-downstream] trust-downstream Defaults Disabled. Command Modes CONFIGURATION Command History Version 9.0(1.
Command History Version 9.0(1.3) Introduced on the S5000. Usage Information When enabled, no learning takes place until you enable snooping on a VLAN. After disabling DHCP Snooping, the binding table is deleted and Option 82, IP Source Guard, and Dynamic ARP Inspection are disabled. Related Commands ip dhcp snooping vlan – enables DHCP Snooping on one or more VLANs. ip dhcp snooping binding Create a static entry in the DHCP binding table.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. show ip dhcp snooping – displays the contents of the DHCP binding table. ip dhcp snooping database Delay writing the binding table for a specified time. S5000 Syntax ip dhcp snooping database write-delay minutes Parameters minutes Defaults none Command Modes CONFIGURATION Command History Version 9.0(1.3) The range is 5 to 21600. Introduced on the S5000. ip dhcp snooping database renew Renew the binding table.
ip dhcp snooping trust Configure an interface as trusted. S5000 Syntax [no] ip dhcp snooping trust Defaults Untrusted Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000. ip dhcp source-address-validation Enable IP Source Guard. S5000 Syntax [no] ip dhcp source-address-validation Defaults Disabled. Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000. ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs.
Usage Information When enabled, the system begins creating entries in the binding table for the specified VLAN(s). NOTE: Learning only happens if there is a trusted port in the VLAN. Related Commands ip dhcp snooping trust – configures an interface as trusted. show ip dhcp snooping Display the contents of the DHCP binding table. S5000 Syntax show ip dhcp snooping binding Defaults none Command Modes Command History Related Commands • EXEC • EXEC Privilege Version 9.0(1.
Service Provider Bridging 49 Service provider bridging is composed of virtual local area network (VLAN) Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the FTOS Configuration Guide Service Provider Bridging chapter. This chapter includes command line information (CLI) for the Dell Networking operating software (FTOS) Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel. FTOS supports L2PT on the S5000 switch.
• • • in | out | both Enter the keyword in, out, or both to debug incoming interfaces, outgoing interfaces, or both incoming and outgoing interfaces. vlan vlan-id Enter the keyword vlan followed by the VLAN id number from 1 to 4094. count value Enter the keyword count followed by the number of debug outputs. The range is 1 to 100. Defaults Debug disabled.
Related Command show protocol-tunnel – displays tunneling information for all VLANs. protocol-tunnel destination-mac Overwrite the BPDU destination MAC address with a specific value. S5000 Syntax Parameters protocol-tunnel destination-mac xstp address stp Change the default destination MAC address used for L2PT to another value. Defaults The default destination MAC is 01:01:e8:00:00:00. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000.
protocol-tunnel rate-limit Enable traffic rate limiting per box. S5000 Syntax protocol-tunnel rate-limit rate To reset the rate limit to the default, use the no protocol-tunnel rate-limit rate command. Parameters rate Defaults 75 frames per second. Command Modes CONFIGURATION Command History Version 9.0(1.3) Enter the rate in frames per second. The range is 75 to 3000. The default is 75. Introduced on the S5000.
1000 1001 1002 1003 1004 1005 STP,PVST LLDP,GVRP MMRP,MVRP LACP,DOT1X OAM,PAUSE E-LMI Te Te Te Te Te Te 5/7,Te 5/7,Te 5/7,Te 5/7,Te 5/7,Te 5/7,Te 5/6 5/6 5/6 5/6 5/6 5/6 Example (Specific VLAN) FTOS#show protocol-tunnel vlan 2 System Rate-Limit: 1000 Frames/second Interface Vlan Protocol(s) Te1/2 2 STP, PVST FTOS# Related Commands show running-config – displays the current configuration.
50 sFlow FTOS supports sFlow commands on the S5000 switch. FTOS sFlow monitoring system includes an sFlow Agent and an sFlow Collector. • The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector. • The sFlow Collector analyzes the sFlow Datagrams received from the different devices and produces a networkwide view of traffic flows.
sflow collector Configure a collector device to which sFlow datagrams are forwarded. S5000 Syntax sflow collector {ipv4-address | ipv6-address} agent-addr {ipv4address | ipv6-address} [number [max-datagram-size number]] | [max-datagram-size number] To delete a configured collector, use the no sflow collector {ipv4-address | ipv6-address} agent-addr {ipv4-address | ipv6-address} [number [max-datagram-size number]] | [max-datagram-size number] command.
sflow enable (Global) Enable sFlow globally. S5000 Syntax sflow enable To disable sFlow, use the no sflow enable command. Defaults Disabled. Command Modes CONFIGURATION Command History Version 9.0(1.3) Introduced on the S5000. Usage Information sFlow is disabled by default. In addition to this command, sFlow needs to be enable on individual interfaces where sFlow sampling is desired. Related Commands sflow enable (Interface) – enables sFlow on Interfaces.
sflow extended-switch enable Enable packing information on a switch only. S5000 Syntax sflow extended-switch enable To disable packing information, use the no sflow extended-switch [enable] command. Parameters enable Defaults Disabled. Command Modes CONFIGURATION Command History Related Commands Version 9.0(1.3) Enter the keyword enable to enable global extended information. Introduced on the S5000. sflow extended-gateway enable – enables packing information on an extended gateway.
Related Commands sflow polling-interval (Interface) – sets the polling interval for an interface. sflow polling-interval (Interface) Set the sFlow polling interval at an interface (overrides the global-level setting.) S5000 Syntax sflow polling-interval interval value To return to the default, use the no sflow polling-interval interval command. Parameters interval value Enter the interval value in seconds. The range is 15 to 86400 seconds. The default is the global counter polling interval.
Usage Information Sample-rate is the average number of packets skipped before the sample is taken. This command changes the global default sampling rate. You can configure an interface to use a different sampling rate than the global sampling rate. If the value entered is not a correct power of 2, the command generates an error message with the previous and next power of 2 value. Select one of these two packet numbers and re-enter the command.
Parameters interface type slot/port Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Enter the interface keyword followed by the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below. • For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63.
show sflow stack-unit Display the sFlow information on a stack-unit. S5000 Syntax Parameters Command Modes Command History show sflow stack—unit {unit-number} unit-number • EXEC • EXEC Privilege Version 9.0(1.3) (OPTIONAL) Enter the stack-unit keyword followed by the unit number. The range is 0 to 11. Introduced on S5000. Usage Information The dropEvent counter (sFlow samples dropped due to sub-sampling) shown in the Example below always displays a value of zero.
51 Simple Network Management Protocol (SNMP) and Syslog This chapter contains commands to configure and monitor the simple network management protocol (SNMP) v1/v2/v3 and Syslog. Both features are supported on the S5000 switch. The chapter contains the following sections: • SNMP Commands • Syslog Commands SNMP Commands The following SNMP commands are available in the Dell Networking operating software (FTOS).
show snmp Display the status of SNMP network elements. S5000 Syntax Command Modes Command History show snmp • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Example FTOS#show snmp engineID Local SNMP engineID: 0000178B02000001E80214A8 Remote Engine ID IP-addr Port 80001F88043132333435 172.31.1.3 5009 80001F88043938373635 172.31.1.3 5008 FTOS# Related Commands snmp-server engineID – configures local and remote SNMP engines on the router. show snmp group Display the group name, security model, status, and storage type of each group. S5000 Syntax Command Modes Command History show snmp group • EXEC • EXEC Privilege Version 9.0(1.
row status: active Related Commands snmp-server group – configures an SNMP server group. show snmp user Display the information configured on each SNMP user name. S5000 Syntax Command Modes Command History Example show snmp user • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Example !----command run on host connected to switch:------! > snmpwalk -c public 10.10.10.130 .1.3.6.1.2.1.31 | grep -i alias | more IF-MIB::ifAlias.134530304 = STRING: This is a port connected to Router2. This is a port connected to IF-MIB::ifAlias.134792448 = STRING: !----command run on Dell switch:-----------! FTOS#snmp ifmib ifalias long !----command run on server connected to switch:------! > snmpwalk -c public 10.10.10.130 .1.3.6.1.2.1.31 | grep -i alias | more IF-MIB::ifAlias.
Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on theS5000. The Example below configures a community named public that is mapped to the security named guestuser with Read Only (ro) permissions. The security-name parameter maps the community string to an SNMPv3 user/security name as defined by the community MIB.
snmp-server contact Configure contact information for troubleshooting this SNMP node. S5000 Syntax snmp-server contact text To delete the SNMP server contact information, use the no snmp-server contact command. Parameters text Defaults none Command Modes CONFIGURATION Command History Version 9.0(1.3) Enter an alphanumeric text string, up to 55 characters long. Introduced on the S5000. snmp-server enable traps Enable SNMP traps.
notificationoption For the envmon notification-type, enter one of the following optional parameters: • cam-utilization • fan • supply • temperature For the snmp notification-type, enter one of the following optional parameters: Defaults Not enabled. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) • authentication • coldstart • linkdown • linkup Introduced on the S5000. FTOS supports up to 16 SNMP trap receivers.
• • remote ipaddress Enter the keyword remote followed by the IP address that identifies the copy of the SNMP on the remote device. udp-port port- Enter the keywords udp-port followed by the user datagram protocol (UDP) port number on the remote device. The range is 0 to 65535. The default is 162. number engineID Defaults As above. Command Modes CONFIGURATION Command History Usage Information The first four octets are set to the private enterprise number.
1 | 2c | 3 • v1v2creadg — maps to a community/security-name with ro permissions. • 1v2cwriteg — maps to a community/security-name rw permissions. (OPTIONAL) Enter the security model version number (1, 2c, or 3): • 1 is the least secure version. • 3 is the most secure of the security modes. • 2c allows transmission of informs and counter 64, which allows for integers twice the width of what is normally allowed. The default is 1.
Example FTOS#conf FTOS(conf)# snmp-server group harig 3 priv read rview FTOS# Related Commands show snmp group – displays the group name, security model, view status, and storage type of each group. show running-config – displays the SNMP running configuration. snmp-server host Configure the recipient of an SNMP trap operation.
noauth (OPTIONAL) Enter the keyword noauth to specify no authentication of a packet. priv (OPTIONAL) Enter the keyword priv to specify both authentication and then scrambling of the packet. community-string Enter a text string (up to 20 characters long) as the name of the SNMP community. NOTE: For version 1 and version 2c security models, this string represents the name of the SNMP community.
The snmp-server host command is used in conjunction with the snmp-server enable command. Use the snmp-server enable command to specify which SNMP notifications are sent globally. For a host to receive most notifications, at least one snmpserver enable command and the snmp-server host command for that host must be enabled.
snmp-server packetsize Set the largest SNMP packet size permitted. Wen the SNMP server is receiving a request or generating a reply, use the snmp-server packetsize global configuration command. S5000 Syntax Parameters snmp-server packetsize byte-count byte-count Defaults 8 Command Modes CONFIGURATION Command History Version 9.0(1.3) Enter one of the following values 8, 16, 24 or 32. Packet sizes are 8000 bytes, 16000 bytes, 32000 bytes, and 64000 bytes. Introduced on the S5000.
Command History Version 9.0(1.3) Introduced on the S5000. Usage Information For this snmp-server trap-source command to be enabled, you must configure an IP address on the interface and enable the interface configured as an SNMP trap source. Related Commands snmp-server community – sets the community string. snmp-server user Configure a new user to an SNMP group.
The default is 1. encrypted (OPTIONAL) Enter the keyword encrypted to specify the password appear in encrypted format (a series of digits, masking the true characters of the string). auth (OPTIONAL) Enter the keyword auth to specify authentication of a packet without encryption. md5 | sha (OPTIONAL) Enter the keyword md5 or sha to designate the authentication level.
NOTE: The number of configurable users is limited to 16. Example FTOS# snmp-server user privuser v3group v3 encrypted auth md5 9fc53d9d908118b2804fe80e3ba8763d priv des56 d0452401a8c3ce42804fe80e3ba8763d Usage Information The following command is an example of how to enter a plain-text password as the string authpasswd for user authuser of group v3group.
Usage Information The oid-tree variable is a full sub-tree starting from 1.3.6 and can not specify the name of a sub-tree or a MIB. The following Example configures a view named rview that allows access to all objects under 1.3.6.1. Example FTOS# conf FTOS#(conf) snmp-server view rview 1.3.6.1 included Related Commands show running-config snmp – displays the SNMP running configuration.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. show logging – displays logging settings and system messages in the internal buffer. default logging buffered Return to the default setting for messages logged to the internal buffer. S5000 Syntax default logging buffered Defaults size = 40960; level = 7 or debugging Command Modes CONFIGURATION Command History Related Commands Version 9.0(1.3) Introduced on the S5000.
default logging monitor Return to the default settings for messages logged to the terminal. S5000 Syntax default logging monitor Defaults level = 7 or debugging Command Modes CONFIGURATION Command History Related Commands Version 9.0(1.3) Introduced on the S5000. logging monitor – sets the logging monitor parameters. terminal monitor – sends system messages to the terminal/monitor. default logging trap Return to the default settings for logging messages to the Syslog servers.
Parameters ipv4-address | ipv6-address Enter an IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::X) address. hostname Enter the name of a host already configured and recognized by the switch. Defaults Disabled. Command Modes CONFIGURATION Command History Related Commands Version 9.0(1.3) Introduced on the S5000. logging on – enables the logging asynchronously to logging buffer, console, Syslog server, and terminal lines. logging trap – enables logging to the Syslog server based on severity.
Related Commands clear logging – clears the logging buffer. default logging buffered – returns the logging buffered parameters to the default setting. show logging – displays the logging setting and system messages in the internal buffer. logging console Specify which messages are logged to the console. S5000 Syntax logging console [level] To return to the default values, use the default logging console command. To disable logging to the console, use the no logging console command.
• cron (Cron/at facility) • deamon (system deamons) • kern (kernel) • local0 (local use) • local1 (local use) • local2 (local use) • local3 (local use) • local4 (local use) • local5 (local use) • local6 (local use) • local7 (local use) • lpr (line printer system) • mail (mail system) • news (USENET news) • sys9 (system use) • sys10 (system use) • sys11 (system use) • sys12 (system use) • sys13 (system use) • sys14 (system use) • syslog (Syslog process) • user (user
logging history Specify which messages are logged to the history table of the switch and the SNMP network management station (if configured). S5000 Syntax logging history level To return to the default values, use the no logging history command. Parameters level Defaults warnings or 4 Command Modes CONFIGURATION Command History Version 9.0(1.
Usage Information When the number of messages reach the limit you set with the logging history size command, older messages are deleted as newer ones are added to the table. Related Commands show logging – displays information logged to the history buffer. logging monitor Specify which messages are logged to Telnet applications. S5000 Syntax logging monitor [level] To disable logging to terminal connections, use the no logging monitor command.
Command History Version 9.0(1.3) Introduced on the S5000. Usage Information When you use the no logging on command, messages are logged only to the console. Related Commands logging – enables logging to the Syslog server. logging buffered – sets the logging buffered parameters. logging console – sets the logging console parameters. logging monitor – sets the logging parameters for the terminal connections.
Usage Information Syslog messages contain the IP address of the interface used to egress the router. By configuring the logging source-interface command, the Syslog packets contain the IP address of the interface configured. Related Commands logging – enables logging to the Syslog server. logging synchronous Synchronize unsolicited messages and FTOS output.
logging trap Specify which messages are logged to the Syslog server based the message severity. S5000 Syntax logging trap [level] To return to the default values, use the default logging trap command. To disable logging, use the no logging trap command. Parameters level Defaults 6 or informational Command Modes CONFIGURATION Command History Version 9.0(1.
Command Modes Command History • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. Example (partial) FTOS#show logging Syslog logging: enabled Console logging: level debugging Monitor logging: level debugging Buffer logging: level debugging, 50 Messages Logged, Size (40960 bytes) Trap logging: level informational Logging to 172.16.1.162 Logging to 10.10.10.4 Logging to 10.1.2.4 Logging to 172.31.1.4 Logging to 133.33.33.
AUTHENTICATION_ENABLE_SUCCESS: Enable password authentication success on vty0 ( 10.11.51.14 ) show logging driverlog stack-unit Display the driver log for the specified stack member. S5000 Syntax Parameters defaults Command Modes Command History Usage Information show logging driverlog stack-unit unit-number stack-unit unitnumber Enter the keywords stack-unit followed by the unit number. The range is 0 to 11. none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Related Commands logging monitor – sets the logging parameters on the monitor/terminal.
Spanning Tree Protocol (STP) 52 The commands in this chapter configure and monitor the IEEE 802.1d spanning tree protocol (STP) and are supported on the S5000 switch. bridge-priority Set the bridge priority of the switch in an IEEE 802.1D spanning tree. S5000 Syntax bridge-priority {priority-value | primary | secondary} To return to the default value, use the no bridge-priority command. Parameters priority-value Enter a number as the bridge priority value. The range is 0 to 65535.
Parameters Command Modes Command History stp-id Enter zero (0). The switch supports one spanning tree group with a group ID of 0. protocol Enter the keyword for the type of STP to debug, either mstp, pvst, or rstp. all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu (OPTIONAL) Enter the keyword bpdu to debug bridge protocol data units. config (OPTIONAL) Enter the keyword config to debug configuration information.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. protocol spanning-tree – enters SPANNING TREE mode on the switch. disable Disable the spanning tree protocol globally on the switch. S5000 Syntax disable To enable Spanning Tree Protocol, use the no disable command. Defaults Enabled (that is, the spanning tree protocol is disabled.) Command Modes SPANNING TREE Command History Related Commands Version 9.0(1.3) Introduced on the S5000.
Related Commands max-age – changes the wait time before STP refreshes protocol configuration information. hello-time – changes the time interval between BPDUs. hello-time Set the time interval between generation of the spanning tree bridge protocol data units (BPDUs). S5000 Syntax hello-time seconds To return to the default value, use the no hello-time command. Parameters seconds Defaults 2 seconds Command Modes SPANNING TREE Command History Related Commands Version 9.0(1.
Command History Related Commands Version 9.0(1.3) Introduced on the S5000. forward-delay – changes the wait time before STP transitions to the Forwarding state. hello-time – changes the time interval between BPDUs. protocol spanning-tree Enter SPANNING TREE mode to enable and configure the spanning tree group. S5000 Syntax protocol spanning-tree stp-id To disable the Spanning Tree group, use the no protocol spanning-tree stp-id command. Parameters stp-id Defaults Not configured.
Command History Example Version 9.0(1.3) Introduced on the S5000. FTOS(config-stp)#show config protocol spanning-tree 0 no disable FTOS(config-stp)# show spanning-tree 0 Display the spanning tree group configuration and status of interfaces in the spanning tree group. S5000 Syntax Parameters Command Modes 1226 show spanning-tree 0 [active | brief | guard | interface type slot/port | root | summary] 0 Enter 0 (zero) to display information about that specific spanning tree group.
Command History Usage Information Example Version 9.0(1.3) Introduced on the S5000. You must enable spanning tree group 0 prior to using this command. The following describes the show spanning-tree 0 command shown in the Example below. Field Description Bridge Identifier... Lists the bridge priority and the MAC address for this STP bridge. Configured hello... Displays the settings for hello time, max age, and forward delay. We are... States whether this bridge is the root bridge for the STG.
Port path cost 4, Port priority 8, Port Identifier 8.26 Designated root has priority 32768, address 0001.e800.0a56 Designated bridge has priority 32768, address 0001.e800.0a56 Designated port id is 8.26, designated path cost 0 Timers: message age 0, forward_delay 0, hold 0 Number of transitions to forwarding state 1 BPDU: sent:18, received 0 The port is not in the portfast mode Port 27 (TenGigabitEthernet 1/2) is Forwarding Port path cost 4, Port priority 8, Port Identifier 8.
Example (Guard) FTOS#show spanning-tree 0 guard Interface Name Instance Sts Guard type --------- -------- --------- ---------Te 0/1 0 INCON(Root) Rootguard Te 0/2 0 LIS Loopguard Te 0/3 0 EDS (Shut) Bpduguard spanning-tree 0 Assigns a Layer 2 interface to STP instance 0 and configures a port cost or port priority, or enables loop guard, root guard, or the Portfast feature on the interface.
priority priority Enter keyword priority followed by a number as the priority. The range is zero (0) to 15. The default is 8. Defaults cost = depends on the interface type; priority = 8 Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000. If you enable portfast bpduguard on an interface and the interface receives a BPDU, the software disables the interface and sends a message stating that fact.
Stacking Commands 53 All commands in this chapter are specific to the Dell Networking operating software (FTOS) on the S5000 switch. The commands are always available and operational. You can use the commands to pre-configure a switch so that the configuration settings are invoked when the switch is attached to other S5000 units. For information about using the S5000 stacking feature, refer to the Stacking chapter in the FTOS Configuration Guide for the S5000.
redundancy force-failover stack-unit Force the standby unit in the stack to become the management unit. S5000 Syntax redundancy force-failover stack-unit Defaults Not enabled. Command Modes EXEC Privilege Command History Version 9.0(1.3) Introduced on the S5000. reset stack-unit Reset any designated stack member except the management unit (master unit). S5000 Syntax Parameters reset stack-unit unit-number hard unit-number Enter the stack-unit number. The range is 0 to 11.
Changed interface state to down: Po 102 Apr 8 10:22:44: %STKUNIT3-M:CP %IFMGR-1-DEL_PORT: Removed port: Te 4/0-3,16-47, Fo 4/48,52,60, Apr 8 10:22:44: %STKUNIT3-M:CP %CHMGR-2-STACKUNIT_DOWN: Stack unit 4 down - reset Apr 8 10:22:44: %STKUNIT2-S:CP %IFMGR-1-DEL_PORT: Removed port: Te 4/0-3,16-47, Fo 4/48,52,60, Apr 8 10:22:50: %S5000:3 %IFAGT-5-STACK_PORT_LINK_DOWN: Changed stack port state to down: 3/12 Related Commands • reload – reboots FTOS.
-- Stack-unit Failover Record ------------------------------------------------Failover Count: 0 Last failover timestamp: None Last failover Reason: None Last failover type: None -- Last Data Block Sync Record: ------------------------------------------------Stack Unit Config: succeeded Apr 17 2013 09:07:10 Start-up Config: succeeded Apr 17 2013 09:07:10 Runtime Event Log: succeeded Apr 17 2013 09:07:10 Running Config: succeeded Apr 17 2013 09:07:10 ACL Mgr: succeeded Apr 17 2013 09:07:10 LACP: no block sync
Interface The unit/port ID of the connected stack port on this unit. Connection The stack port to which this unit’s stack port is connected. Link Speed Link speed of the stack port (10 or 40) in Gb/s. Admin Status The only currently listed status is “up”. Link Status Status of the link between stack ports: up or down.
0/11 1/4 1/5 1/6 1/7 1/8 1/9 1/10 1/11 FTOS# Related Commands 4/15 0/4 0/5 0/6 0/7 2/4 2/5 2/6 2/7 • reset stack-unit – resets the designated S5000 stack member. • show hardware stack-unit – displays the data plane or management plane input and output statistics of the designated component of the designated stack member. • show system – displays the current status of all stack members or a specific member.
stack-unit priority Configure the ability of an S5000 switch to become the management unit of a stack. S5000 Syntax Parameters stack-unit unit-number priority priority-level unit-number Enter the stack-unit number. The range is 0 to 11. priority prioritylevel Specify the management priority assigned to the switch, where 1 is the lowest priority and 14 is the highest priority.
• show system – displays the status of all stack members or a specific member. stack-unit renumber Change the stack-unit number of any stack unit or a stand-alone S5000. S5000 Syntax Parameters stack-unit unit-number renumber unit-number unit-number renumber Defaults none Command Modes EXEC Privilege Command History Usage Information Version 9.0(1.3) Enter the stack-unit number followed by the keyword renumber. The range is 0 to 11.
stack-unit stack-group Configure the stack unit and stack group by specifying an ID when adding units to a stack to ensure the unit is assigned to the correct group. S5000 Syntax stack-unit unit-number stack-group stack-group-number To remove the current stack group configuration, use the no stack-unit unit-number stack-group stack-number command. Parameters unit-number Enter the stack-unit number. The range is 0 to 11. stack-groupnumber Enter the stack-group number. The range is 0 to 15.
booted: Upgrade the stack using the image with which the master switch booted up. flash: After the keyword flash:, enter the location of the source file in the internal flash in the format: //file-pathname or press Enter to launch a prompt sequence. ftp: After the keyword ftp:, enter the location of the source file in the format: //userid:password@host-ip-address/filepathname or press Enter to launch a prompt sequence.
FTOS#upgrade boot bootflash-image stack-unit all booted Current BootFlash information in the system: ============================================================== Card BootFlash Current Version New Version -------------------------------------------------------------Unit0 Boot Flash B 1.3.1.1o 1.3.1.1p Unit7 Boot Flash B 1.3.1.1o 1.3.1.1p Unit8 Boot Flash A 1.3.1.1o 1.3.1.1p Unit9 Boot Flash A 1.3.1.1o 1.3.1.
upgrade system (stack unit) Upgrade the FTOS image on one or all stack units in an S5000 stack from the master switch. S5000 Syntax Parameters upgrade system {flash://file-path | ftp://file-path | scp:// file-path | tftp://file-path | usbflash://file-path} | stackunit {stack-unit—id | all}{A: | B:}} boot Enter the keyword system to change the FTOS image.
tftp: Copy from remote file system, IPv4 or IPv6, (tftp:// hostip/filepath) FTOS#upgrade system ftp://username:password@10.11.1.1/FTOSSH-9.0.1.3.bin !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!! Erasing Sseries ImageUpgrade Table of Contents, please wait .!........................................................ .......................................................... .......................................................... ......................................................
54 Storm Control The Dell Networking operating software (FTOS) storm control feature allows you to limit or suppress traffic during a traffic storm (Broadcast/Unknown Unicast Rate Limiting or Multicast). The S5000 switch supports storm control. Important Points to Remember • Interface commands can only be applied on physical interfaces (virtual local area networks [VLANs] and link aggregation group [LAG] interfaces are not supported).
configuration. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below. Defaults Command Modes Command History Example • For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60. none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Defaults Command Modes Command History Example none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. FTOS#show storm-control multicast tengigabitethernet 1/0 Multicast storm control configuration Interface Direction Packets/Second ----------------------------------------Te 1/0 Ingress 5 FTOS# show storm-control unknown-unicast Display the storm control unknown-unicast configuration.
Example FTOS#show storm-control unknown-unicast tengigabitethernet 3/0 Unknown-unicast storm control configuration Interface Direction Packets/Second --------------------------------------Te 3/0 Ingress 1000 FTOS# storm-control broadcast (Configuration) Configure the percentage of broadcast traffic allowed in or out of the network. S5000 Syntax storm-control broadcast [packets_per_second in] To disable broadcast rate-limiting, use the no storm-control broadcast packets_per_second in] command.
Defaults none Command Modes INTERFACE (conf-if-interface-slot/port) Command History Version 9.0(1.3) Introduced on the S5000. storm-control multicast (Configuration) Configure the packets per second (pps) of multicast traffic allowed in to S5000 networks. S5000 Syntax storm-control multicast packets_per_second in To disable storm-control for multicast traffic into the network, use the no storm-control multicast packets_per_second in command.
Defaults none Command Modes INTERFACE (conf-if-interface-slot/port) Command History Version 9.0(1.3) Introduced on the S5000. storm-control unknown-unicast (Configuration) Configure the percentage of unknown-unicast traffic allowed in or out of the network. S5000 Syntax storm-control unknown-unicast [packets_per_second in] To disable storm control for unknown-unicast traffic, use the no storm-control unknown-unicast [packets_per_second in] command.
Command Modes Command History INTERFACE (conf-if-interface-slot/port) Version 9.0(1.3) Introduced on the S5000.
System Time and Date 55 The commands in this chapter configure time values on the system, either using the Dell Networking operating software (FTOS), or the hardware, or using the network time protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For more information, refer to the “Network Time Protocol” section of the Management chapter in the FTOS Configuration Guide. calendar set Set the time and date for the switch hardware clock.
Example FTOS#calendar set 08:55:00 june 18 2006 FTOS# Related Commands clock read-calendar – sets the software clock based on the hardware clock. clock set – sets the software clock. clock update-calendar – sets the hardware clock based on the software clock. show clock – displays the clock settings. clock read-calendar Set the software clock on the switch from the information set in hardware clock (calendar). S5000 Syntax clock read-calendar Defaults Not configured.
year Defaults Not configured. Command Modes EXEC Privilege Command History Usage Information Version 9.0(1.3) Enter a four-digit number as the year. The range is 1993 to 2035. Introduced on the S5000. You can change the order of the month and day parameters to enter the time and date as time day month year. You cannot delete the software clock. The software clock runs only when the software is up. The clock restarts, based on the hardware clock, when the switch reboots.
end-day Enter the number of the day. The range is 1 to 31. You can enter the name of a month to change the order of the display to time day month year. end-month Enter the name of one of the 12 months in English. You can enter the name of a day to change the order of the display to time day month year. end-time Enter the time in hours:minutes. For the hour variable, use the 24-hour format; example, 17:15 is 5:15 pm. end-year Enter a four-digit number as the year. The range is 1993 to 2035.
• start-day Enter the name of the day that you want daylight saving time to begin. Use English three letter abbreviations; for example, Sun, Sat, Mon, etc. The range is Sun to Sat. start-month Enter the name of one of the 12 months in English. start-time Enter the time in hours:minutes. For the hour variable, use the 24-hour format; example, 17:15 is 5:15 pm.
clock timezone Configure a timezone for the switch. S5000 Syntax clock timezone timezone-name offset To delete a timezone configuration, use the no clock timezone command. Parameters timezone-name Enter the name of the timezone. You cannot use spaces. offset Enter one of the following: Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.
debug ntp Display network time protocol (NTP) transactions and protocol messages for troubleshooting. S5000 Syntax debug ntp {adjust | all | authentication | events | loopfilter | packets | select | sync} To disable debugging of NTP transactions, use the no debug ntp {adjust | all | authentication | events | loopfilter | packets | select | sync} command. Parameters Command Modes Command History adjust Enter the keyword adjust to display information on NTP clock adjustments.
Command History Version 9.0(1.3) Introduced on the S5000. Usage Information You also must configure an authentication key for NTP traffic using the ntp authentication-key command. Related Commands ntp authentication-key – configures the authentication key for NTP traffic. ntp trusted-key – configures a key to authenticate. ntp authentication-key Specify a key for authenticating the NTP server.
ntp broadcast client Set up the interface to receive NTP broadcasts from an NTP server. S5000 Syntax ntp broadcast client To disable broadcast, use the no ntp broadcast client command. Defaults Disabled. Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000. ntp disable Prevent an interface from receiving NTP packets. S5000 Syntax ntp disable To re-enable NTP on an interface, use the no ntp disable command.
Defaults Not configured. Command Modes INTERFACE Command History Version 9.0(1.3) • 224.0.1.1 is configured if the interface address is IPv4 • ff05::101 is configured if the interface address is IPv6 Introduced on the S5000. ntp server Configure an NTP time-serving host. S5000 Syntax Parameters ntp server {hostname | ipv4-address | ipv6-address} [key keyid] [prefer] [version number] ipv4-address | ipv6-address Enter an IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::X).
ntp source Specify an interface’s IP address to be included in the NTP packets. S5000 Syntax ntp source interface-type slot/port To delete the configuration, use the no ntp source command. Parameters interface-type slot/port Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.0(1.3) Enter the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
Command Modes Command History CONFIGURATION Version 9.0(1.3) Introduced on the S5000. Usage Information The number parameter in the ntp trusted-key command must be the same number as the number parameter in the ntp authentication-key command. If you change the ntp authentication-key command, you must also change the ntp trusted-key command. Related Commands ntp authentication-key – sets an authentication key for NTP. ntp authenticate – enables the NTP authentication parameters you set.
Command History Version 9.0(1.3) Introduced on the S5000. Example FTOS#show calendar 16:33:30 UTC Tue Jun 26 2001 FTOS# Related Commands show clock – displays the time and date from the switch software clock. show clock Display the current clock settings. S5000 Syntax Parameters Command Modes Command History show clock [detail] detail (OPTIONAL) Enter the keyword detail to view the source information of the clock. • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
show ntp associations Display the NTP master and peers. S5000 Syntax show ntp associations Command Modes Command History Usage Information Example 1266 • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes the show ntp associations command shown in the Example below. Field Description (none) One or more of the following symbols could be displayed: • * means synchronized to this peer. • # means almost synchronized to this peer.
192.200.0.2 0.0.0.0 16 - 256 0 0.00 0.000 16000.0 * master (synced), # master (unsynced), + selected, - candidate FTOS# Related Commands show ntp status – displays the current NTP status. show ntp status Display the current NTP status. S5000 Syntax Command Modes Command History Usage Information Example show ntp status • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes the show ntp status command shown in the Example below. Field Description Clock is...
Related Commands 1268 show ntp associations – displays information on the NTP master and peer configurations.
Uplink Failure Detection (UFD) 56 Uplink failure detection (UFD) provides detection of the loss of upstream connectivity and, if used with NIC teaming, automatic recovery from a failed link. UFD is supported on the S5000 switch. clear ufd-disable Re-enable one or more downstream interfaces on the switch/router that are in a UFD-Disabled Error state so that an interface can send and receive traffic.
• uplink-state-group – creates an uplink-state group and enables the tracking of upstream links. debug uplink-state-group Enable debug messages for events related to a specified uplink-state group or all groups. S5000 Syntax debug uplink-state-group [group-id] To turn off debugging event messages, enter the no debug uplink-state-group [group-id] command. Parameters group-id Defaults none Command Modes EXEC Privilege Command History Related Commands Version 9.0(1.
Related Commands uplink-state-group – creates an uplink-state group and enables the tracking of upstream links. downstream Assign a port or port-channel to the uplink-state group as a downstream interface. S5000 Syntax downstream interface-type slot/port To delete an uplink-state group, enter the no downstream interface command. Parameters interface-type slot/port Enter the interface type and slot/port or number information. Valid slot numbers are 0-11.
• uplink-state-group – creates an uplink-state group and enables the tracking of upstream links. downstream auto-recover Enable auto-recovery so that UFD-disabled downstream ports in an uplink-state group automatically come up when a disabled upstream port in the group comes back up. S5000 Syntax downstream auto-recover To disable auto-recovery on downstream links, use the no downstream auto-recover command. Defaults The auto-recovery of UFD-disabled downstream ports is enabled.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. A user-configurable number of downstream interfaces in an uplink-state group are put into a link-down state with an UFD-Disabled error message when one upstream interface in an uplink-state group goes down. If all upstream interfaces in an uplink-state group go down, all downstream interfaces in the same uplink-state group are put into a link-down state.
Parameters Defaults Command Modes Command History Example Related Commands group-id Displays the current configuration of all uplink-state groups or a specified group. The valid group-id values are 1 to 16. none • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Command History Example Version 9.0(1.3) Introduced on the S5000.
uplink-state-group Create an uplink-state group and enable the tracking of upstream links on a switch/ router. S5000 Syntax uplink-state-group group-id To delete an uplink-state group, enter the no uplink-state-group group-id command. Parameters group-id Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Enter the ID number of an uplink-state group. The range is 1 to 16. Introduced on the S5000.
Parameters interface-type slot/port Enter the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below. • For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by slot/port numbers. The port range is 0 to 63. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by slot/port numbers. The ports are 48, 52, 56, and 60.
VLAN Stacking 57 With the virtual local area network (VLAN)-stacking feature (also called stackable VLANs and QinQ), you can “stack” VLANs into one tunnel and switch them through the network transparently. This feature is supported by the Dell Networking operating software (FTOS) on the S5000. For more information about basic VLAN commands, refer to the Virtual LAN (VLAN) Commands section in the Layer 2 chapter.
Command History Version 9.0(1.3) Introduced on the S5000. dei honor Honor the incoming DEI value by mapping it to an FTOS drop precedence. You may enter the command once for 0 and once for 1. S5000 Syntax Parameters dei honor {0 | 1} {green | red | yellow} 0|1 Enter the bit value you want to map to a color. green | red | yellow Choose a color: • Green: High priority packets that are the least preferred to be dropped. • Yellow: Lower priority packets that are treated as besteffort.
green | red | yellow Choose a color: • Green: High priority packets that are the least preferred to be dropped. • Yellow: Lower priority packets that are treated as besteffort. Defaults All the packets on egress are marked with DEI 0. Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000. Usage Information You must first enable DEI for this configuration to take effect. Related Commands dei enable – enables DEI.
Command History Version 9.0(1.3) Introduced on the S5000. Usage Information You must enable the stackable VLAN (using the vlan-stack compatible command) on the VLAN prior to adding a member to the VLAN. Related Commands vlan-stack compatible – enables stackable VLAN on a VLAN. show interfaces dei-honor Display the dei honor configuration.
Related Commands dei honor show interfaces dei-mark Display the dei mark configuration. S5000 Syntax Parameters show interfaces dei-mark [interfacetype slot/port | stack—unit unit-number port-set number] interface-type slot/port stack-unit unitnumber port-set number Command Modes Command History Example Enter the interface keyword followed by the interface type and slot/port or number information. Valid slot numbers are 0-11. The valid port numbers for each interface type are listed below.
stack-unit stack-group Configure stacking group specified by ID. S5000 Syntax Parameters Command Modes Command History Usage Information [no] stack-unit unit-number stack-group stack-group-number unit-number Enter the stack unit number. The range is 0 to 11.. stack-group-id Enter the stack group number. The range is 0 to 15. [no] Use no stack-unit unit-id stack-group stack-id to remove the current stack group configuration. CONFIGURATION Version 9.0(1.3) Introduced on the S5000.
vlan-stack compatible Enable the stackable VLAN feature on a VLAN. S5000 Syntax vlan-stack compatible To disable the Stackable VLAN feature on a VLAN, use the no vlan-stack compatible command. Defaults Not configured. Command Modes CONF-IF-VLAN Command History Version 9.0(1.3) Introduced on the S5000. Usage Information You must remove the members prior to disabling the stackable VLAN feature. Example FTOS#show vlan To view the stackable VLANs, use the show vlan command in EXEC Privilege mode.
Parameters c-tag-dot1p value Enter the keyword c-tag-dot1p followed by the customer dot1p value that will be mapped to a service provider do1p value. The range is 0 to 7. sp-tag-dot1p Enter the keyword sp-tag-dot1p followed by the service provider dot1p value. The range is 0 to 7. value Defaults none Command Modes INTERFACE Command History Version 9.0(1.3) Introduced on the S5000.
vlan-stack trunk – specifies a Layer 2 port or port channel as a trunk port to the Stackable VLAN network. vlan-stack trunk Specify a Layer 2 port or port channel as a trunk port to the Stackable VLAN network. S5000 Syntax vlan-stack trunk To remove a trunk port designation from the selected interface, use the no vlan-stack trunk command. Defaults Not configured. Command Modes INTERFACE Command History Usage Information Version 9.0(1.3) Introduced on the S5000.
no ip address vlan-stack compatible member GigabitEthernet 0/42 shutdown FTOS(conf-if-vl-100-stack)#interface vlan 20 FTOS(conf-if-vl-20)#tagged gigabitethernet 0/42 FTOS(conf-if-vl-20)#show config ! interface Vlan 20 no ip address tagged GigabitEthernet 0/42 shutdown FTOS(conf-if-vl-20)#do show vlan Codes: * - Default VLAN, G - GVRP VLANs Q: U - Untagged, T - Tagged x - Dot1x untagged, X - Dot1x tagged G - GVRP tagged, M - Vlan-stack NUM Status Description * 1 Inactive 20 Active 100 Active FTOS(conf-if-vl-
Virtual Link Trunking (VLT) 58 Virtual link trunking (VLT) is supported on the Dell Networking S5000 switch. Virtual link trunking allows physical links between two chassis to appear as a single virtual link to the network core or other switches such as Edge, Access, or top-of-rack (ToR). VLT reduces the role of the spanning tree protocols by allowing link aggregation group (LAG) terminations on two separate distribution or core switches, and by supporting a loop-free topology.
clear vlt statistics Clear the statistics on VLT operations. S5000 Syntax clear vlt statistics Command Modes EXEC Command History Related Commands Version 9.0(1.3) Introduced on the S5000. show vlt statistics – displays statistics on VLT operations. delay-restore Configure the delay in bringing up VLT ports after reload or peer-link restoration between the VLT peer switches. S5000 Syntax Parameters delay-restore delay-restore Defaults Not configured.
lacp ungroup member-independent Enable BMP boot for the device connected to the LACP LAG or by a VLT peer device. S5000 Syntax lacp ungroup member-independent {vlt | port-channel portchannel-id} Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.3) Introduced on the S5000. LACP on the VLT ports (on a VLT switch or access device), which are members of the virtual link trunk, is not brought up until the VLT domain is recognized on the access device.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. Use the peer-down-vlan parameter to configure the VLAN from where the VLT peer forwards packets received over the VLTi from an adjacent VLT peer that is down. When a VLT peer with bare metal provisioning (BMP) is booting up, it sends untagged DHCP discover packets to its peer over the VLTi. Use this configuration to ensure that the DHCP discover packets are forwarded to the VLAN on the DHCP server.
Usage Information The version shown in the show vlt brief output command displays the VLT version number which is different from the FTOS version number. VLT version numbers are begin with odd numbers such as 3 or 5.
show vlt counter Displays the counter information. S5000 Syntax Parameters show vlt counter [arp| igmp-snoop | interface | mac] arp Enter the keyword arp to display the ARP counter information for the VLT. igmp-snoop Enter the keywords igmp-snoop to display the igmp-snooping counter information for the VLT interface Enter the keyword interface to display the interface counter information for the VLT. mac Enter the keyword mac to display the MAC address counter information for the VLT.
show vlt role Displays the VLT peer status, role of the local VLT switch, VLT system MAC address and system priority, and the MAC address and priority of the local VLT device. S5000 Syntax show vlt role Default Not configured. Command Modes EXEC Command History Example Version 9.0(1.3) Introduced on the S5000.
Example FTOS_VLTpeer1#show vlt statistics VLT Statistics ---------------HeartBeat Messages Sent: 930 HeartBeat Messages Received: 909 ICL Hello's Sent: 927 ICL Hello's Received: 910 Domain Mismatch Errors: 0 Version Mismatch Errors: 0 Config Mismatch Errors: 0 VLT MAC Statistics ---------------L2 Info Pkts sent:6, L2 Mac-sync Pkts Sent:0 L2 Info Pkts Rcvd:3, L2 Mac-sync Pkts Rcvd:2 L2 Reg Request sent:1 L2 Reg Request rcvd:2 L2 Reg Response sent:1 L2 Reg Response rcvd:1 VLT Igmp-Snooping Statistics -------
Command History Example Version 9.0(1.3) Introduced on the S5000. FTOS_VLTpeer1#show vlt statistics igmp-snoop VLT Igmp-Snooping Statistics ------------------------------IGMP Info Pkts sent: 4 IGMP Info Pkts Rcvd: 1 IGMP Reg Request sent: 1 IGMP Reg Request rcvd: 2 IGMP Reg Response sent: 1 IGMP Reg Response rcvd: 1 IGMP PDU Tunnel Pkt sent:5 IGMP PDU Tunnel Pkt rcvd:10 IGMP Tunnel PDUs sent: 10 IGMP Tunnel PDUs rcvd: 19 system-mac Configure the MAC address for the VLT domain on a VLT peer switch.
unit-id Explicitly configure the default unit ID of a VLT peer switch. S5000 Syntax Parameters unit-id [0 | 1] 0|1 Configure the default unit ID of a VLT peer switch. Enter 0 for a unit with a lower MAC address or enter 1 for a unit with a higher MAC address. Default Automatically assigned based on the MAC address of each VLT peer. The peer with the lower MAC address is assigned unit 0; the peer with the higher MAC address is assigned unit 1.
Usage Information The VLT domain ID must be the same between the two VLT devices. If the domain ID is not the same, a syslog message is generated and VLT does not launch. Related Commands show vlt – uses the show vlt brief command to display the delay-restore value. vlt-peer-lag port-channel Associate the port channel to the corresponding port channel in the VLT peer for the VLT connection to an attached device.
Virtual Router Redundancy Protocol (VRRP) 59 The virtual router redundancy protocol (VRRP) is supported by the Dell Networking operating software (FTOS) on the S5000 switch. This chapter has the following sections: • IPv4 VRRP Commands • IPv6 VRRP Commands IPv4 VRRP Commands The following are IPv4 VRRP commands. advertise-interval Set the time interval between VRRP advertisements. S5000 Syntax advertise-interval seconds To return to the default settings, use the no advertise-interval command.
authentication-type Enable authentication of VRRP data exchanges. S5000 Syntax authentication-type simple [encryption-type] password To delete an authentication type and password, use the no authentication-type command. Parameters simple Enter the keyword simple to specify simple authentication. encryption-type (OPTIONAL) Enter one of the following numbers: password Defaults Not configured. Command Modes VRRP Command History Usage Information Version 9.0(1.
debug vrrp Allows you to enable debugging of VRRP. S5000 Syntax debug vrrp [vrrp-id] | [interface-type slot/port] | [interface] | {all | packets | state | timer} To disable debugging, use the no debug vrrp [interface-type slot/port] | [interface][vrrp-id] {all | packets | state | timer} command. Parameters Command Modes Command History Usage Information interface-type slot/port Enter the interface type followed by slot/port or number information to turn on debugging for specific interfaces.
description Configure a short text string describing the VRRP group. S5000 Syntax description text To delete a VRRP group description, use the no description command. Parameters text Defaults Not enabled. Command Modes VRRP Command History Version 9.0(1.3) Enter a text string up to 80 characters long. Introduced on the S5000. disable Disable a VRRP group. S5000 Syntax disable To re-enable a disabled VRRP group, use the no disable command. Defaults Enabled.
hold-time Specify a delay (in seconds) before a switch becomes the MASTER virtual router. By delaying the initialization of the VRRP MASTER, the new switch can stabilize its routing tables. S5000 Syntax hold-time seconds To return to the default value, use the no hold-time command. Parameters seconds Defaults zero (0) seconds Command Modes VRRP Command History Version 9.0(1.3) Enter a number of seconds. The range is 0 to 65535. The default is zero (0) seconds. Introduced on the S5000.
priority Specify a VRRP priority value for the VRRP group. This value is used by the VRRP protocol during the MASTER election process. S5000 Syntax priority priority To return to the default value, use the no priority command. Parameters priority Defaults 100 Command Modes VRRP Command History Usage Information Version 9.0(1.3) Enter a number as the priority. Enter 255 only if the router’s virtual address is the same as the interface’s primary IP address (that is, the router is the OWNER).
show vrrp View the VRRP groups that are active. If no VRRP groups are active, the FTOS returns No Active VRRP group. S5000 Syntax Parameters show vrrp [vrrp-id] [interface-type slot/port] [brief] | [ipv6] vrrp-id (OPTIONAL) Enter the Virtual Router Identifier for the VRRP group to view only that group. The range is 1 to 255. interface-type slot/port (OPTIONAL) Enter the interface type followed by slot/port or number information. Valid slot numbers are 0-11.
State Example (Brief) • Y = Preempt is enabled. • N = Preempt is not enabled. Displays the operational state of the interface by using one of the following: • NA/IF (the interface is not available). • MASTER (the interface associated with the MASTER router). • BACKUP (the interface associated with the BACKUP router). Master addr Displays the IP address of the MASTER router. Virtual addr(s) Displays the virtual IP addresses of the VRRP routers associated with the interface.
• Adv rcvd:... Example AdvInt displays the Advertise Interval in seconds. This line displays counters for the following: • Adv rcvd displays the number of VRRP advertisements received on the interface. • Adv sent displays the number of VRRP advertisements sent on the interface. • Gratuitous ARP sent displays the number of gratuitous ARPs sent. Virtual MAC address Displays the virtual MAC address of the VRRP group.
track Monitor an interface and lower the priority value of the VRRP group on that interface if it is disabled. S5000 Syntax track interface-type slot/port [priority-cost cost] To disable monitoring, use the no track interface command. Parameters interface-type slot/port cost Defaults cost = 10 Command Modes VRRP Command History Usage Information Version 9.0(1.3) (OPTIONAL) Enter the interface type and slot/port or number information. Valid slot numbers are 0-11.
To delete one or more virtual IP addresses, use the no virtual-address ipaddress1 [... ip-address12] command. Parameters ip-address1 Enter an IP address of the virtual router in dotted decimal format. The IP address must be on the same subnet as the interface’s primary IP address. ... ip-address12 (OPTIONAL) Enter up to 11 additional IP addresses of virtual routers in dotted decimal format. Separate the IP addresses with a space.
Related Command • When the system reloads, VRRP waits 600 seconds (10 minutes) to bring up VRRP on all interfaces that are up and configured for VRRP. • When an interface comes up, whether as part of a system reload or an interface reload, the system waits 300 seconds (5 minutes) to bring up VRRP on that interface. vrrp delay reload – sets the delay time for VRRP initialization after a system reboot. vrrp delay reload Set the delay time for VRRP initialization after a system reboot.
vrrp-group Assign a VRRP ID to an interface. You can configure up to 12 VRRP groups per interface. S5000 vrrp-group vrrp-id Syntax Parameters vrrp-id Defaults Not configured. Command Modes INTERFACE Command History Version 9.0(1.3) Enter a number as the group ID. The range is 1 to 255. Introduced on the S5000. Usage Information The VRRP group only becomes active and sends VRRP packets when a virtual IP address is configured.
clear counters vrrp ipv6 Clear the counters recorded for IPv6 VRRP groups. S5000 Syntax Parameters Command Modes Command History clear counters vrrp ipv6 [vrid ] vrid (OPTIONAL) Enter the number of an IPv6 VRRP group. The range is 1 to 255. EXEC Privilege Version 9.0(1.3) Introduced on the S5000. debug vrrp ipv6 Allows you to enable debugging of VRRP.
Command Modes Command History Usage Information database Enter the keyword database to display changes related to group, prefix, and interface entries in the VRRP table. packets Enter the keyword packets to enable debugging of VRRP control packets. state Enter the keyword state to enable debugging of VRRP state changes timer Enter the keyword timer to enable debugging of the VRRP timer. EXEC Privilege Version 9.0(1.3) Introduced on the S5000.
Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.0(1.3) Introduced on the S5000. The following describes output from the show vrrp ipv6 command shown in the Example below. Line beginning with Description TenGigabitEthern et... Displays the Interface, the VRRP group ID, and the network address. If the interface is no sending VRRP packets, 0.0.0.0 appears as the network address.
Example • Interface type and slot/port or object number, description, and time since the last change in the state of the tracked object. • Cost to be subtracted from the VRRP group priority if the state of the tracked interface/object goes DOWN.
Debugging and Diagnostics 60 The basic debugging and diagnostic commands are supported by the Dell Networking operating software (FTOS) on the S5000 switch. This chapter contains the following sections: • Offline Diagnostic Commands • Buffer Tuning Commands • Hardware Commands Offline Diagnostic Commands The offline diagnostics test suite is useful for isolating faults and debugging hardware. While tests are running, FTOS results are saved as a text file (TestReport-SU-X.txt) in the flash directory.
perform essential path verifications. In addition, they verify the identification registers of the components on the board. level1 Enter the keyword Level1 to run Level 1 diagnostics. Level 1 diagnostics is a smaller set of diagnostic tests with support for automatic partitioning. They perform status/self test for all the components on the board and test their registers for appropriate values.
Command History Usage Information Version 9.0(1.3) Introduced on the S5000. You cannot enter this command on a Master or Standby unit. The system reboots when the off-line diagnostics complete. This is an automatic process. A warning message appears when the offline stack-unit command is implemented. Warning - Diagnostic execution will cause stack-unit to reboot after completion of diags.
Buffer Tuning Commands The following sections detail the buffer tuning commands. WARNING: Altering the buffer allocations is a sensitive operation. Do not use any buffer tuning commands without first contacting the Dell Networking Technical Assistance Center (TAC). buffer-profile (Configuration) Create a buffer profile that can be applied to an interface. S5000 Syntax Parameters buffer-profile global {1Q|4Q} global Apply one of two pre-defined buffer profiles to all of the port-pipes in the system.
show buffer-profile stack-unit Display the buffer profile that is applied to a stack-unit. S5000 Syntax Parameters show buffer-profile stack—unit unit-number stack-unit unit- number Defaults none Command Modes EXEC Privilege Command History Example (single unit) Version 9.0(1.3) Enter the keyword stack-unit followed by the unit number. The range is 0 to 11. If you do not type a unit number, FTOS displays buffer-profiles for all units. Introduced on the S5000.
counters Enter the keyword counters to clear the counters on the selected stack member. unit port-pipe counters Enter the keyword unit along with a port-pipe number, from 0 to 1, followed by the keyword counters to clear the counters on the selected port-pipe. NOTE: S25 models (S25N, S25P, S25V, etc.) have only port-pipe 0. cpu data-plane statistics Enter the keywords cpu data-plane statistics to clear the data plane statistics.
Command Modes Command History Related Commands EXEC Privilege Version 9.0(1.3) Introduced on the S5000. show hardware stack-unit – displays the data plane or management plane input and output statistics of the designated component of the designated stack member. hardware watchdog Set the watchdog timer to trigger a reboot and restart the system. S5000 Syntax hardware watchdog Defaults Enabled. Command Modes CONFIGURATION Command History Usage Information Version 9.0(1.
Command History Version 9.0(1.3) Introduced on the S5000. show hardware layer3 Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe. S5000 Syntax Parameters show hardware layer3 {acl | qos} stack-unit unit-number portset port-pipe acl | qos Enter either the keyword acl or the keyword qos to select between ACL or QoS data. stack-unit unit- Enter the keyword stack-unit followed by the unit number. The range is 0 to 11.
Parameters stack-unit unitnumber {commandoption} Enter the keywords stack-unit followed by the unit number. The range is 0 to 11. Then enter one of the following command options to display a collection of data based on the option entered. buffer Enter the keyword buffer, optionally followed by the keywords total-buffer to show the total buffer statistics per stack-unit. Enter the keywords buffer unit then total-buffer to display the buffer details per unit and mode of allocation.
Command History Example (DataPlane) Version 9.0(1.3) Introduced on the S5000.
Example (Drops Unit) FTOS#show hard stack-unit 0 drops unit 0 Example (PortStats) FTOS#show hardware stack-unit 0 unit 0 port-stats ena/ speed/ link auto STP lrn inter max loop port link duplex scan neg? state pause discrd ops face back xe0 up 10G FD SW No Forward RX Tag F 1550 xe1 !ena 10G FD SW No Forward RX None F 1550 xe2 !ena 10G FD SW No Forward RX Tag F 1550 xe3 !ena 10G FD SW No Forward RX Tag F 1550 xe4 !ena 10G FD SW No Forward RX Tag F 1550 xe5 !ena 10G FD SW No Forward RX Tag F 1550 xe6 up 10
xe24 !ena 10G FD SW No Forward RX Tag F XGMII 1550 xe25 !ena 10G FD SW No Forward RX Tag F XGMII 1550 xe26 up 10G FD SW No Forward RX Tag F XGMII 1550 xe27 up 10G FD SW No Forward RX Tag F XGMII 1550 xe28 up 10G FD SW No Forward RX Tag F XGMII 1550 xe29 up 10G FD SW No Forward RX Tag F XGMII 1550 xe30 !ena 10G FD SW No Forward RX Tag F XGMII 1550 xe31 !ena 10G FD SW No Forward RX Tag F XGMII 1550 xe32 !ena 10G FD SW No Forward RX Tag F XGMII 1550 xe33 !ena 10G FD SW No Forward RX Tag F XGMII 1550 xe34 !ena
FTOS# Example (BufferInfo) FTOS#show hardware stack-unit 0 buffer unit 0 port 1 bufferinfo ----- Buffer Stats for Unit 0 Port 1 ----Maximum Shared Limit for the Port: 38336 Default Packet Buffer allocate for the Port: 120 Used Packet Buffer for the Port: 0 FTOS# Related Commands clear hardware system-flow – clears the statistics from selected hardware components. show interfaces stack-unit – displays information on all interfaces on a specific S5000 stack member.
EntryId Description #HITS ----------------------------------------------------------2048 STP BPDU Redirects 0 2047 LLDP BPDU Redirects 0 2045 LACP traffic Redirects 0 2044 GVRP traffic Redirects 0 2043 ARP Reply Redirects 0 2042 802.1x frames Redirects 0 2041 VRRP frames Redirects 0 2040 GRAT ARP 0 2039 DROP Cases 0 2038 OSPF1 STUB 0 2037 OSPF2 STUB 0 2036 VRRP STUB 0 2035 L2_DST_HIT+BC MAC+VLAN 4095 0 2034 L2_DST_HIT+BC MAC 0 2033 Catch all 0 384 OSPF[224.0.0.5] Packets 0 383 OSPF[224.0.0.
00000000 , 0x00 action={act=Drop, param0=0(0x00), param1=0(0x00)}, action={act=CosQCpuNew, param0=7(0x07), param1=0(0x00)}, action={act=CopyToCpu, param0=0(0x00), param1=0(0x00)}, action={act=UpdateCounter, param0=1(0x01), param1=0(0x00)}, meter=NULL, counter={idx=3, mode=0x01, entries=1} ################# FP Entry for redirecting ARP Replies to RSM ############# EID 2043: gid=1, slice=15, slice_idx=0x04, prio=0x7fb, flags=0x82, Installed tcam: color_indep=0, higig=0, higig_mask=0, KEY=0x00000000 00000000 0
61 ICMP Message Types This chapter lists and describes the possible ICMP message type resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. ICMP Messages and Their Definitions.\ Symbol Type Code . Query Error Timeout (no reply) ! 0 U 3 C Description 4 3 echo reply . destination unreachable: 0 network unreachable . 1 host unreachable . 2 protocol unreachable .
Symbol & Type Code Description 1 redirect for host . 2 redirect for type-of-service and network . 3 redirect for type-of-service and host . 8 0 echo request . 9 0 router advertisement . 10 0 router solicitation . 11 Error time exceeded: 0 time-to-live equals 0 during transit . 1 time-to-live equals 0 during reassembly . 12 1336 Query parameter problem: 1 IP header bad (catchall error) . 2 required option missing . 13 0 timestamp request .
62 SNMP Traps This chapter lists the traps sent by the Dell Networking operating software (FTOS). Each trap is listed by the fields Message ID, Trap Type, and Trap Option. Message ID Trap Type Trap Option COLD_START SNMP COLDSTART WARM_START SNMP WARMSTART COPY_CONFIG_COMPLETE SNMP NONE SNMP LINKDOWN SNMP LINKUP SNMP AUTH EGP_NEIGHBOR_LOSS SNMP NONE OSTATE_DOWN SNMP LINKDOWN SNMP LINKUP SNMP NONE SNMP NONE SNMP NONE %SNMP-5-SNMP_COLD_START: SNMP COLD_START trap sent.
Message ID Trap Type Trap Option SNMP NONE NONE NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON SUPPLY ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON FAN %STKUNIT1-M:CP %SNMP-4-RMON_HC_RISING_THRESHOLD: RMON high-capacity rising threshold alarm from SNMP OID RMON_HC_FALLING_THRESHOLD %STKUNIT0-M:CP %SNMP-4-RMON_HC_FALLING_THRESHOLD: RMON high-capacity falling threshold alarm from SNMP OID RESV N/A CHM_STACK-UNIT_UP %RAM-5-STACK_STATE: Stack unit 0 is in Active St
Message ID Trap Type Trap Option ENVMON FAN ENVMON FAN ENVMON FAN ENVMON FAN ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE PROTO NONE PROTO NONE %STKUNIT4-M:CP %CHMGR-1-PSU_FAN_STATUS: Fan 0 in PSU 1 of Unit 4 is up FANTRAY_OR_PSU_DOWN %STKUNIT4-M:CP %CHMGR-2-FANTRAY_OR_PSU_DOWN: Major alarm: fan tray 3 or power supply 1 of unit 4 is missing or down FAN_TRAY_BAD %STKUNIT4-M:CP %CHMGR-2-FAN_TRAY_BAD: Major alarm: fan tray 2 in unit 4 is missi
Message ID Trap Type Trap Option VRRP_PROTOCOL_ERROR PROTO NONE PROTO NONE PROTO NONE ETS NONE ETS NONE ETS NONE ETS NONE PFC NONE PFC NONE PFC NONE VRRP_PROTOERR: VRRP protocol error on %S BGP4_ESTABLISHED %TRAP-5-PEER_ESTABLISHED: Neighbor %a, state %s BGP4_BACKW_XSITION %TRAP-5-BACKWARD_STATE_TRANS: Neighbor %a, state %s ETS_TRAP_TYPE_MODULE_STATUS_CHANGE %DIFFSERV-5-ETS_TRAP_TYPE_MODULE_STATUS_CHANGE: ETS Module status changed to enabled %DIFFSERV-5-ETS_TRAP_TYPE_MODULE_STATUS_CH
Message ID Trap Type Trap Option PFC NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE ENTITY NONE %DIFFSERV-5-PFC_TRAP_TYPE_OPER_STATE_CHANGE: PFC Oper state changed to rxConfigSrc for port %s PFC_TRAP_TYPE_PEER_STATE_CHANGE %DIFFSERV-5-PFC_TRAP_TYPE_PEER_STATE_CHANGE: PFC Peer state changed to enabled for port %s %DIFFSERV-5-PFC_TRAP_TYPE_PEER_STATE_CHANGE: PFC Peer state changed to disabled for port %s FIPS_MAX_FCF_LIMIT_RCH %FCOE-5-MAX_FCF_LIMIT_RCH: Number
