Dell PowerEdge FN I/O Module Command Line Reference Guide 9.14.1.5 May 2019 Rev.
Notes, cautions, and warnings NOTE: A NOTE indicates important information that helps you make better use of your product. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. © 2018 - 2019 Dell Inc. or its subsidiaries. All rights reserved. Dell, EMC, and other trademarks are trademarks of Dell Inc. or its subsidiaries.
Contents Chapter 1: About this Guide.........................................................................................................43 Objectives........................................................................................................................................................................... 43 Audience..............................................................................................................................................................................
HTTP Copy via CLI........................................................................................................................................................... 63 logging coredump stack-unit..........................................................................................................................................63 logging coredump server.................................................................................................................................................
line.........................................................................................................................................................................................92 login concurrent-session................................................................................................................................................. 93 login statistics...................................................................................................................................
dot1x max-eap-req...........................................................................................................................................................132 dot1x max-supplicants.................................................................................................................................................... 132 dot1x port-control................................................................................................................................................
seq....................................................................................................................................................................................... 174 Extended MAC ACL Commands.................................................................................................................................. 175 mac access-list standard.........................................................................................................................................
seq arp............................................................................................................................................................................... 220 seq ether-type................................................................................................................................................................. 222 seq..............................................................................................................................................
bgp bestpath as-path multipath-relax....................................................................................................................... 266 bgp bestpath med confed.............................................................................................................................................266 bgp bestpath med missing-as-best............................................................................................................................
neighbor peer-group (creating group)....................................................................................................................... 291 neighbor peer-group passive........................................................................................................................................292 neighbor remote-as........................................................................................................................................................
set extcommunity soo....................................................................................................................................................332 show ip bgp paths extcommunity............................................................................................................................... 332 show ip bgp extcommunity-list....................................................................................................................................
show boot selection....................................................................................................................................................... 354 show bootflash................................................................................................................................................................ 354 show bootvar..................................................................................................................................................
dcb-buffer-threshold .................................................................................................................................................... 393 dcb enable pfc-queues.................................................................................................................................................. 393 dcb {ets | pfc} enable................................................................................................................................................
ip dhcp snooping database renew......................................................................................................................... 414 ip dhcp snooping trust.............................................................................................................................................. 414 ipv6 dhcp snooping trust.........................................................................................................................................
feature fip-snooping................................................................................................................................................. 443 fip-snooping enable.................................................................................................................................................. 443 fip-snooping fc-map.................................................................................................................................................
ip igmp query-max-resp-time.......................................................................................................................................473 ip igmp snooping enable................................................................................................................................................ 473 ip igmp snooping fast-leave..........................................................................................................................................
show interfaces transceiver....................................................................................................................................510 show range.................................................................................................................................................................. 514 shutdown....................................................................................................................................................................
debug arp.......................................................................................................................................................................... 543 debug ip dhcp.................................................................................................................................................................. 543 debug ip icmp.......................................................................................................................................
Chapter 27: IPv6 Access Control Lists (IPv6 ACLs)................................................................... 579 IPv6 ACL Commands..................................................................................................................................................... 579 cam-acl........................................................................................................................................................................ 579 cam-acl-egress..........................
bgp confederation identifier................................................................................................................................... 607 bgp confederation peers......................................................................................................................................... 607 bgp dampening..........................................................................................................................................................
neighbor remove-private-as................................................................................................................................... 633 neighbor route-map.................................................................................................................................................. 633 neighbor route-reflector-client..............................................................................................................................
neighbor advertisement-interval........................................................................................................................... 659 neighbor default-originate...................................................................................................................................... 660 neighbor distribute-list.............................................................................................................................................
debug isis update-packets............................................................................................................................................ 687 default-information originate....................................................................................................................................... 687 description..................................................................................................................................................................
show isis interface........................................................................................................................................................... 715 show isis neighbors..........................................................................................................................................................716 show isis protocol..........................................................................................................................................
track ip......................................................................................................................................................................... 746 untagged......................................................................................................................................................................747 Chapter 35: Link Layer Discovery Protocol (LLDP).................................................................... 748 advertise dot1-tlv.............
ip msdp sa-limit................................................................................................................................................................ 772 ip msdp shutdown........................................................................................................................................................... 772 ip multicast-msdp..........................................................................................................................................
fabric-id vlan.................................................................................................................................................................... 799 fcf-priority........................................................................................................................................................................ 800 fc-map..........................................................................................................................................
mib-binding.......................................................................................................................................................................830 network area.................................................................................................................................................................... 830 passive-interface....................................................................................................................................
ipv6 ospf encryption.......................................................................................................................................................872 ipv6 ospf graceful-restart helper-reject....................................................................................................................873 ipv6 ospf hello-interval..................................................................................................................................................
show ip pim rp.................................................................................................................................................................. 901 show ip pim snooping interface...................................................................................................................................902 show ip pim snooping neighbor...................................................................................................................................
extend system-id............................................................................................................................................................. 931 protocol spanning-tree pvst.........................................................................................................................................932 show spanning-tree pvst..............................................................................................................................................
show qos policy-map................................................................................................................................................960 show qos policy-map-input..................................................................................................................................... 961 show qos qos-policy-output...................................................................................................................................
Chapter 50: Remote Monitoring (RMON).................................................................................. 989 rmon alarm........................................................................................................................................................................989 rmon collection history.................................................................................................................................................. 990 rmon collection statistics.......
privilege level (CONFIGURATION mode)........................................................................................................... 1017 privilege level (LINE mode)....................................................................................................................................1018 banner exec............................................................................................................................................................... 1018 banner login...........
tacacs-server host.................................................................................................................................................. 1044 tacacs-server key....................................................................................................................................................1045 timeout login response...........................................................................................................................................
Chapter 53: sFlow.................................................................................................................... 1071 sflow collector.................................................................................................................................................................1071 sflow enable (Global)....................................................................................................................................................
default logging buffered...............................................................................................................................................1100 default logging console.................................................................................................................................................1100 logging extended.......................................................................................................................................................
storm-control unknown-unicast (Interface)............................................................................................................1127 Chapter 58: SupportAssist....................................................................................................... 1129 eula-consent....................................................................................................................................................................1129 support-assist.............................
Chapter 60: System Time......................................................................................................... 1156 clock set........................................................................................................................................................................... 1156 clock summer-time date...............................................................................................................................................
show bootflash................................................................................................................................................................1179 show bootvar.................................................................................................................................................................. 1180 show default-gateway.....................................................................................................................................
show vlt detail................................................................................................................................................................ 1207 show vlt inconsistency.................................................................................................................................................1208 show vlt mismatch..............................................................................................................................................
interface vlan (NPIV proxy gateway)................................................................................................................. 1238 keepalive.................................................................................................................................................................... 1239 show fcoe-map........................................................................................................................................................
1 About this Guide This book provides information about the Dell Networking OS command line interface (CLI) on the Dell PowerEdge FN I/O Module. This book also includes information about the protocols and features found in the Dell Networking OS and on the Dell Networking systems supported by the Dell Networking OS.
Information Icons This book uses the following information symbols: NOTE: The Note icon signals important operational information. CAUTION: The Caution icon signals information about situations that could result in equipment damage or loss of data. NOTE: The Warning icon signals information about hardware handling that could result in injury.
2 Before You Start By following the instructions in the Dell PowerEdge FN I/O Module Getting Started Guide that is shipped with the product, you install the FN I/O Module in a Dell PowerEdge FX2 server chassis. The Aggregator installs with zero-touch configuration. After you power it on, an Aggregator boots up with default settings and auto-configures with software features enabled. This chapter describes the default settings and software features that are automatically configured at startup.
● Broadcast storm control (enabled) ● Unregistered Multicast Packets flooding (enabled) ● IGMP snooping in all VLANs except the default VLAN (enabled) ● VLAN configuration (all ports belong to all VLANs) You can change any of these default settings using the CLI. Refer to the appropriate chapter for details. NOTE: You can also change many of the default settings using the chassis management controller (CMC) interface.
The Aggregator also detects iSCSI storage devices on all interfaces and auto-configures to optimize performance. Performance optimization operations, such as Jumbo frame size support, and disabling storm control on interfaces connected to an iSCSI equallogic (EQL) storage device, are applied automatically. CLI configuration is necessary only when the configuration includes iSCSI storage devices that cannot be automatically detected and when non-default QoS handling is required.
If you had manually configured an Aggregator port to belong to one or more VLANs (non-default) in standalone mode, the VLAN configuration is retained in stacking mode only on the master switch. When you reconfigure an Aggregator from stacking to standalone mode: Aggregator ports that you manually configured for VLAN membership in stacking mode retain their VLAN configuration in standalone mode.
3 CLI Basics This chapter describes the command line interface (CLI) structure and command modes. The Dell operating system commands are in a text-based interface that allows you to use the launch commands, change command modes, and configure interfaces and protocols.
User "admin" on line vty1 ( 123.12.1.123 ) User "Irene" on line vty3 ( 123.12.1.321 ) Dell#conf When another user enters CONFIGURATION mode, the Dell Networking OS sends a message similar to the following: % Warning: User "admin" on line vty2 "172.16.1.210" is in configuration In this case, the user is “admin” on vty2. Navigating the CLI The Dell Networking OS displays a CLI prompt comprised of the host name and CLI mode. ● Host name is the initial part of the prompt and is “Dell” by default.
Example The following is an example of typing ip ? at the prompt: Dell(conf)#ip ? igmp Internet Group Management Protocol route Establish static routes telnet Specify telnet options When entering commands, you can take advantage of the following timesaving features: ● The commands are not case-sensitive. ● You can enter partial (truncated) command keywords. For example, you can enter int tengig int for the interface tengigabitethernet interface command. ● To complete keywords in commands, use the TAB key.
Command Modes CONFIGURATION Supported Modes All Modes Command History Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Filtering show Commands To find specific information, display certain information only or begin the command output at the first instance of a regular expression or phrase, you can filter the display output of a show command.
Command Modes To navigate and launch various CLI modes, use specific commands. Navigation to these modes is described in the following sections. EXEC Mode When you initially log in to the switch, by default, you are logged in to EXEC mode. This mode allows you to view settings and enter EXEC Privilege mode, which is used to configure the device. When you are in EXEC mode, the > prompt is displayed following the host name prompt, which is “Dell” by default.
LINE Mode To configure the console or virtual terminal parameters, use LINE mode. To enter LINE mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the line command. Include the keywords console or vty and their line number available on the switch. The prompt changes to include (config-line-console) or (config-line-vty). You can exit this mode by using the exit command.
After enabling login statistics, the system stores the login activity details for the last 30 days. 2. (Optional) Configure the number of days for which the system stores the user login statistics. The range is from 1 to 30. CONFIGURATION mode login statistics time-period days The following example enables login activity tracking. The system stores the login activity details for the last 30 days.
Unsuccessful login attempt(s) since the last successful login: 0 Unsuccessful login attempt(s) in last 11 day(s): 3 ------------------------------------------------------------------ Limit Concurrent Login Sessions Dell Networking OS enables you to limit the number of concurrent login sessions of users on VTY, Aux, and console lines. You can also clear any of your existing sessions when you reach the maximum permitted number of concurrent sessions.
3 vty 1 10.14.1.97 Clear existing session? [line number/Enter to cancel]: When you try to create more than the permitted number of sessions, the following message appears, prompting you to close one of the existing sessions. If you close any of the existing sessions, you are allowed to login. : $ telnet 10.11.178.17 Trying 10.11.178.17... Connected to 10.11.178.17. Escape character is '^]'. Login: admin Password: Maximum concurrent sessions for the user reached.
4 File Management This chapter contains commands needed to manage the configuration files and includes other file management commands.
boot system stack-unit Specify the location of the Dell Networking OS image to be used to boot the system. Syntax Parameters boot system stack-unit <0-5 | all> {default | primary | secondary} 0-5 Enter the stack member unit identifier of the stack member. all Enter the keyword all to set the primary, secondary, and default images for the system. default Enter the keyword default to set the default image path for the system.
● ● ● ● To To To To copy copy copy copy a file from the internal FLASH, enter flash:// then the filename. the running configuration, enter the keywords running-config. the startup configuration, enter the keywords startup-config. a file on the external FLASH, enter usbflash:// then the filename. Command Modes EXEC Privilege Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.
Example (copy scp:) Related Commands Dell#copy scp: flash: Address or name of remote host []: 10.11.199.134 Port number of the server [22]: 99 Source file name []: test.cfg User name to login remote host: admin Password to login remote host: Destination file name [test.cfg]: test1.cfg cd — Changes the working directory. copy running-config startup-config Copy running configuration to the startup configuration.
dir Displays the files in a file system. The default is the current directory. Syntax dir [filename | directory name:] Parameters filename | directory name: (OPTIONAL) Enter one of the following: ● For a file or directory on the internal Flash, enter flash:// then the filename or directory name. ● For a file or directory on an external USB drive, enter usbflash:// then the filename or directory name.
Usage Information You must include the colon (:) when entering this command. CAUTION: This command deletes all files, including the startup configuration file. So, after executing this command, consider saving the running config as the startup config (use the write memory command or copy run start command). Related Commands copy – copies the current configuration to either the startup-configuration file or the terminal. show file – displays the contents of a text file in the local filesystem.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. The Kernel core dump can be large and may take up to five to 30 minutes to upload. The Dell Networking OS does not overwrite application core dumps so delete them as necessary to conserve space on the flash; if the flash is out of memory, the coredump is aborted.
Example Related Commands Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Dell#pwd flash: Dell# cd – changes the directory. rename Rename a file in the local file system. Syntax Parameters rename url url url Enter the following keywords and a filename: ● For a file on the internal Flash, enter flash:// then the filename. ● For a file on an external USB drive, enter usbflash:// then the filename.
Usage Information Restoring factory defaults deletes the existing startup configuration and all persistent settings (stacking, fanout, and so forth). When restoring all units in a stack, all the units in the stack are placed into stand-alone mode. When restoring a single unit in a stack, that unit placed in stand-alone mode. No other units in the stack are affected. When restoring units in stand-alone mode, the units remin in stand-alone mode after the restoration.
show boot system Displays information about boot images currently configured on the system. Syntax Parameters Defaults show boot system stack-unit {0-5 | all} 0–5 Enter this information to display the boot image information of only the entered stack-unit. all Enter the keyword all to display the boot image information of all the stack-units in the stack. none Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Example Version Description 9.9(0.
boot system stack-unit 1 primary tftp://10.11.9.21/dv-m1000e-2-b2 boot system stack-unit 1 default system: A: boot system gateway 10.11.209.62 ! hostname FTOS --More-Dell# Related Commands format flash — erases all the existing files and reformats the filesystem in the internal flash memory. show file-systems — displays information about the file systems on the system. show file-systems Displays information about the file systems on the system.
show os-version Displays the release and software image version information of the image file specified. Syntax Parameters Defaults show os-version [file-url] file-url (OPTIONAL) Enter the following location keywords and information: ● For a file on the internal Flash, enter flash:// then the filename. ● For a file on an FTP server, enter ftp://user:password@hostip/ filepath. ● For a file on a TFTP server, enter tftp://hostip/filepath.
ftp for the current FTP configuration igmp for the current IGMP configuration interface for the current interface configuration line for the current line configuration lldp for the current lldp configuration logging for the current logging configuration managementroute for the current Management port forwarding configuration monitor for the current Monitor configuration snmp for the current SNMP configuration uplink-stategroup for the uplink state group configuration users for the curre
show startup-config Display the startup configuration. Syntax show startup-config Command Modes EXEC Privilege Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
256M bytes of boot flash memory. 1 34-port GE/TE (XL) 56 Ten GigabitEthernet/IEEE 802.3 interface(s) Command Fields Lines Beginning With Description Dell Force10 Network... Name of the operating system Dell Force10 Operating... OS version number Dell Force10 Application... Software version Copyright (c)... Copyright information Build Time... Software build’s date stamp Build Path... Location of the software build files loaded on the system Dell Force10 uptime is...
Defaults flash: After entering the keyword flash:, you can either follow it with the location of the source file in this form: //filepath or press Enter to launch a prompt sequence. usbflash: After entering the keyword usbflash:, you can either follow it with the location of the source file in this form: //filepath or press Enter to launch a prompt sequence. A: Enter this keyword to upgrade the bootflash partition A. B: Enter this keyword to upgrade the bootflash partition B.
B: Defaults Enter this keyword to upgrade the bootflash partition B. none Command Modes EXEC Privilege Supported Modes All Modes Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. You must reload Dell Networking OS after executing this command.
● verify sha256 flash://img-file Example Without Entering the Hash Value for Verification using SHA256 Dell# verify sha256 flash://FTOS-SE-9.5.0.0.bin SHA256 hash for FTOS-SE-9.5.0.0.bin: e6328c06faf814e6899ceead219afbf9360e986d692988023b749e6b2093e933 Entering the Hash Value for Verification using SHA256 Dell# verify sha256 flash://FTOS-SE-9.5.0.0.bin e6328c06faf814e6899ceead219afbf9360e986d692988023b749e6b2093e933 SHA256 hash VERIFIED for FTOS-SE-9.5.0.0.
5 Control and Monitoring This chapter describes control and monitoring for the I/O Aggregator.
• • • • • • • • • • • • • • • • • • • • • • • • • show diag show environment show inventory show memory show processes cpu show processes ipc flow-control show processes memory show reset-reason show revision show server-interfaces show system show tech-support show uplink brief show util-threshold cpu show util-threshold memory ssh-peer-stack-unit telnet telnet-peer-stack-unit terminal length terminal monitor terminal xml trace route undebug all virtual-ip write asf-mode Enable alternate store and forwar
To remove the asset tag, use the no stack-unit unit-id Asset-tag ID command. Parameters stack-unit unit-id Enter the keywords stack-unit then the unit-id to assign a tag to the specific member. The range is from 0 to 5. Asset-tag ID Defaults Enter a unique asset-tag ID to assign to the stack member. This option accepts a maximum of 10 characters, including all special characters except double quotes. To include a space in the asset-tag, enter a space within double quotes. No asset-tag is assigned.
This is the banner Dell Force10 con0 now available Press RETURN to get started. This is the banner Related Commands banner login — sets a banner for login connections to the system. banner motd — sets a Message of the Day banner. exec-banner — Enables the display of a text string when you enter EXEC mode. line — enables and configures the console and virtual terminal lines to the system. banner login Set a banner to display when logging on to the system.
If you configure the acknowledgement keyword, the system requires a positive acknowledgement from the user while logging in to the system. $ telnet 10.11.178.16 Trying 10.11.178.16... Connected to 10.11.178.16. Escape character is '^]'. THIS IS A LOGIN BANNER. PRESS ‘Y’ TO ACKNOWLEDGE. ACKNOWLEDGE? [y/n]: y Login: admin Password: Related Commands banner motd — sets a Message of the Day banner. exec-banner — enables the display of a text string when you enter EXEC mode.
Usage Information This command clears alarms that are no longer active. If an alarm situation is still active, it is seen in the system output. clear command history Clear the command history log. Syntax clear command history Command Modes EXEC Privilege Supported Modes All Modes Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
Command History Example Version Description 9.9(0.0) Introduced on the IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Dell#configure Dell(conf)# debug cpu-traffic-stats Enable the collection of computer processor unit (CPU) traffic statistics. Syntax debug cpu-traffic-stats Defaults Disabled Command Modes EXEC Privilege Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. NOTE: Use this command only when you are working directly with a technical support representative to troubleshoot a problem. Do not use this command unless a technical support representative instructs you to do so. debug ftpserver View transactions during an FTP session when a user is logged into the FTP server.
Command Modes ● CONFIGURATION ● INTERFACE Supported Modes All Modes Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
exec-banner Enable the display of a text string when the user enters EXEC mode. Syntax exec-banner Defaults Enabled on all lines (if configured, the banner appears). Command Modes LINE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Optionally, use the banner exec command to create a text string that is displayed when you access EXEC mode.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL. end Return to EXEC Privilege mode from other command modes (for example, CONFIGURATION mode). Syntax end Command Modes ● ● ● ● ● CONFIGURATION LINE INTERFACE MONITOR SESSION PROTOCOL LLDP Supported Modes All Modes Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.
Example Dell con0 is now available Press RETURN to get started. Dell> exit Return to the lower command mode. Syntax exit Command Modes ● ● ● ● ● EXEC Privilege CONFIGURATION LINE INTERFACE PROTOCOL LLDP Supported Modes All Modes Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. end — returns to EXEC Privilege mode.
Related Commands hostname ftp-server enable Enable FTP server functions on the system. Syntax ftp-server enable Defaults Disabled Command Modes CONFIGURATION Supported Modes All Modes Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. morpheus% ftp 10.31.1.111 Connected to 10.31.1.111. 220 FTOS (1.0) FTP server ready Name (10.31.1.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Usage Information After you enable FTP server functions with the ftp-server enable command, Dell Networking recommends specifying a top-level directory path. Without a top-level directory path specified, the Dell Networking OS directs users to the flash directory when logging in to the FTP server.
Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Usage Information The host name is used in the prompt. Related Commands feature unique-name http-server Disable / Enable the Blade I/O Manager Software. Syntax http-server blademgr Parameters Defaults blademgr Enter the keyword blademgr and specify the port for HTTP. ENABLED Command Modes CONFIGURATION Command History Usage Information This guide is platform-specific.
Usage Information The password is listed in the configuration file; you can view the password by entering the show running-config ftp command in EXEC mode. Use the ip ftp password command when you use the ftp: parameter in the copy command. Related Commands copy — copy files. ftp-server username — sets the user name for the FTP sessions. ip ftp source-interface Specify an interface’s IP address as the source IP address for FTP connections.
ip telnet source-interface Set an interface’s IP address as the source address in outgoing packets for Telnet sessions. Syntax ip telnet source-interface interface Parameters interface Enter the following keyword and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. ● For VLAN interface, enter the keyword vlan then a number from 1 to 4094.
The console option is <0-0>. vty number Enter the keyword vty followed by a number from 0 to 9 to configure a virtual terminal line for Telnet sessions. The system supports 10 Telnet sessions. end-number (OPTIONAL) Enter a number from 1 to 9 as the last virtual terminal line to configure. You can configure multiple lines at one time. Defaults Not configured Command Modes CONFIGURATION Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
When you reach the maximum concurrent session limit, you can still login by clearing any of your existing sessions. Example The following example shows how to limit the number of concurrent sessions that any user can have to four: Dell(conf)#login concurrent-session limit 4 Dell(conf)# The following example shows how to use the login concurrent-session clear-line enable command.
time-period days Defaults Sets the number of days for which the system stores the user login statistics. The range is from 1 to 30. Not configured Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Only the system and security administrators can configure login activity tracking and view the login activity details of other users.
motd-banner Enable a message of the day (MOTD) banner to appear when you log in to the system. Syntax motd-banner Defaults Enabled on all lines. Command Modes LINE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show login statistics Displays login statistics of users who have used the console or virtual terminal lines to log in to the system.
To view the successful and failed login details of a specific user in the last 30 days or the custom defined time period, use the show login statistics user user-id command. If you have system or security administrator rights, you can view the login statistics of other users. If you do not have system or security administrator rights, you can view your login statistics but not the login statistics of others. NOTE: By default, these commands display the details for the last 30 days.
Unsuccessful login attempt(s) since the last successful login: 0 Unsuccessful login attempt(s) in last 30 day(s): 0 Successful login attempt(s) in last 30 day(s): 1 -----------------------------------------------------------------The following is sample output of the show login statistics unsuccessful-attempts command. Dell#show login statistics unsuccessful-attempts There were 3 unsuccessful login attempt(s) for user admin in last 30 day(s).
Defaults none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example (IPv4) Dell#ping 172.31.1.255 Type Ctrl-C to abort. Sending 5, 100-byte ICMP Echos to 172.31.1.255, timeout is 2 seconds: Reply to request 1 from 172.31.1.208 0 ms Reply to request 1 from 172.31.1.216 0 ms Reply to request 1 from 172.31.1.205 16 ms :: Reply to request 5 from 172.31.1.209 0 ms Reply to request 5 from 172.31.1.66 0 ms Reply to request 5 from 172.31.1.87 0 ms Dell# reload Reboot the Dell Networking OS.
utc Defaults (OPTIONAL) Enter the keyword utc to include the UTC time format (ignoring local time zone) in the timestamp. Not configured. Command Modes CONFIGURATION Supported Modes All Modes Command History Usage Information Version Description 9.14(1.5) Added support for UTC time format. 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
show command-history Display a buffered log of all commands all users enter along with a time stamp. Syntax show command-history Defaults None Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Usage Information One trace log message is generated for each command. No password information is saved to this file.
DellEMC(conf)#service timestamps log uptime DellEMC# show command-history [1d0h24m]: CMD-(CLI):[service timestamps log uptime]by default from console [1d0h24m]: CMD-(CLI):[interface tengigabitethernet 0/1]by default from console [1d0h24m]: CMD-(CLI):[shutdown]by default from console [1d0h24m]: CMD-(CLI):[no shutdown]by default from console [1d0h25m]: CMD-(CLI):[end]by default from console [1d0h25m]: CMD-(CLI):[write memory]by default from console Example 4: no service timestamps log DellEMC#show clock 15:55
State Ip address Dell# : LOCKED : 10.11.9.97 show cpu-traffic-stats Display the CPU traffic statistics. Syntax show cpu-traffic-stats [port number | all] Parameters Defaults port number (OPTIONAL) Enter the port number to display traffic statistics on that port only. The range is from 1 to 1568. all (OPTIONAL) Enter the keyword all to display traffic statistics on all the interfaces receiving traffic, sorted based on the traffic.
Example Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Dell#show debug Generic IP: (Access List: test) IP packet debugging is on for (Access List: test) TenGigabitEthernet 0/16 ICMP packet debugging is on for TenGigabitEthernet 0/16 OSPF:1 OSPF packet debugging is on DHCP: DHCP debugging is on Dell# show diag Display the diagnostics information.
thermal sensor Enter the keywords thermal-sensor to view all components. Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Example (all) Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. If there are no fiber ports in the unit, just the header under show inventory media displays. If there are fiber ports but no optics inserted, the output displays "Media not present or accessible". Dell#show inventory System Type : PE-FN-410S-IOA System Mode : 1.
=========================== Total(b) Used(b) Free(b) Lowest(b) Largest(b) 268435456 4010354 264425102 264375410 264425102 show processes cpu Displays CPU usage information based on processes running. Syntax show processes cpu [management-unit 1-99 [details] | stack-unit 0–5 | summary ] Parameters management-unit (OPTIONAL) Display processes running in the control processor.
0x762d9000 0x762f8000 0x76319000 0x76344000 0x76363000 0x76381000 0x76299000 0x763c3000 --More-Related Commands 0 214590 7890 155770 583230 658850 80110 0 0 21459 789 15577 58323 65885 8011 0 0 0.00% 10000 0.00% 10000 0.00% 10000 0.00% 10000 0.00% 10000 0.00% 10000 0.00% 0 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.17% 0.00% 0.00% 0.00% 0.00% 0.00% 0.02% 0.02% 0.08% 0.00% 0.
Field Description Total/ Max Retra Number of retries allowed Important Points: ● The SWP provides flow control-based reliable communication between the sending and receiving software tasks. ● A sending task enqueues messages into the SWP queue3 for a receiving task and waits for an acknowledgement. ● If no response is received within a defined period of time, the SWP timeout mechanism resubmits the message at the head of the FIFO queue.
Usage Information Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
--More-Example (managementunit) Dell#show processes memory management-unit Total:2147483648, MaxUsed:499093504 [07/23/2012 17:42:16] CurrentUsed:499093504, CurrentFree:1648390144 SharedUsed:18470440, SharedFree:2501104 PID Process 633 fcoecntrl 289 iscsiOpt 476 dhclient 521 ndpm 160 vrrp 318 frrp 218 xstp 277 pim --More-- ResSize 9277440 7380992 1626112 7389184 7712768 7192576 9445376 7585792 Size 270336 114688 552960 618496 335872 180224 2740224 1007616 Allocs 1380528 23262 0 4848 880 71086 21858 62168
Example — The example shows the reason for the last reboot as N/A for warm reset. System reboot due to power loss DellEMC#show reset-reason or pressing the Cause : N/A Reset Time : N/A. power button off and on. Example — System reboot due to watchdog timeout Example — System reboot due to thermal shutdown DellEMC#show reset-reason Cause: N/A. Reset Time: N/A The example shows the reason for the last reboot as N/A for thermal shutdown.
Example (Command) Dell#show revision -- Stack unit 1 -IOM SYSTEM CPLD : 1 Dell# show server-interfaces Displays server port information. Syntax show server-interfaces{brief|detail} Command Modes ● EXEC Privilege Supported Modes All Modes Command History Example (brief Command) Example (detail Command) 114 Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
0 Multicasts, 0 Broadcasts 0 runts, 0 giants, 0 throttles 0 CRC, 0 overrun, 0 discarded Output Statistics: 0 packets, 0 bytes, 0 underruns 0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 0 Multicasts, 0 Broadcasts, 0 Unicasts 0 throttles, 0 discarded, 0 collisions, 0 wreddrops Rate info (interval 299 seconds): Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Output 00.00 Mbits/sec, 0 packets/sec, 0.
Example (stackunit command) Dell#show system stack-unit 0 -- Unit 0 -Unit Type : Management Unit Status : online Next Boot : online Required Type : PE-FN-410S-IOM - 12-port GE/TE (FN) Current Type : PE-FN-410S-IOM - 12-port GE/TE (FN) Master priority : 14 Hardware Rev : A01 Num Ports : 12 Up Time : 22 min, 43 sec Dell Networking OS Version : 9.11(0.0) Jumbo Capable : yes POE Capable : no FIPS Mode : disabled Boot Flash : A: 4.1.1.1 [booted] B: 4.1.1.1 Boot Selector : 4.1.0.
Parameters stack-unit (OPTIONAL) Enter the keyword stack-unit to view CPU memory usage for the stack member designated by unit-id. The range is 0 to 5. page (OPTIONAL) Enter the keyword page to view 24 lines of text at a time. Press the SPACE BAR to view the next 24 lines. Press the ENTER key to view the next line of text. When using the pipe command ( | ), enter one of these keywords to filter command output. Refer to CLI Basics for details on filtering commands.
grep Show only text that matches a pattern no-more Don't paginate output save Save output to a file Dell#show tech-support stack-unit 1 | save ? flash: Save to local file system (flash://filename (max 20 chars) ) usbflash: Save to local file system (usbflash://filename (max 20 chars) ) Dell#show tech-support stack-unit 1 | save flash://LauraSave Start saving show command report ....... Dell# Dell#dir Directory of flash: Directory of flash: 1 drwx 4096 Jan 01 1980 01:00:00 +01:00 .
Type boot selector Version 4.1.0.1 Target Control Processor checksum passed CPLD IMAGE INFORMATION : --------------------------------------------------------------------Card CPLD Name Version Stack-unit 0 IOM SYSTEM CPLD 9 ----------------------------------- show revision -------------------------------- Stack unit 1 IOM SYSTEM CPLD -- : 9 ------------------------------------ show clock ------------------------------10:59:34.
show uplink brief Displays the uplink port information. Syntax show uplink {brief|detail} Parameters brief Enter the keyword brief to display a brief summary of the uplink port information. detail Enter the keyword detail to display uplink port information with description. Command Modes ● EXEC Privilege Supported Modes All Modes Command History Example (brief) Example (detail) 120 Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.
0 Multicasts, 0 Broadcasts --More-- show util-threshold cpu Displays the set CPU utilization threshold values. Syntax show util-threshold cpu Command Modes ● EXEC Privilege Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. This command displays all CPU utilization thresholds of the management, standby, and stack-units.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. telnet Connect through Telnet to a server. The Telnet client and server in Dell Networking OS support IPv4 connections. You can establish a Telnet session directly to the router or a connection can be initiated from the router. Syntax telnet {host | ip-address [/source-interface] Parameters Defaults host Enter the name of a server.
terminal length Configure the number of lines displayed on the terminal screen. Syntax terminal length screen-length To return to the default values, use the no terminal length command. Parameters screen-length Enter a number of lines. Entering zero will cause the terminal to display without pausing. The range is from 0 to 512. Default: 24 lines Defaults 24 lines Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM.
Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. This command enables XML input mode where you can either cut and paste XML requests or enter the XML requests line-by-line. trace route View the packet path to a specific device. Syntax traceroute {host | ip-address} Parameters Defaults host Enter the name of device.
Defaults none Command Modes ● EXEC Privilege Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. virtual-ip Configure a virtual IP address for the active management interface. You can configure virtual addresses both for IPv4 independently.
Command History Usage Information 126 Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. The write memory command saves the running-configuration to the file labeled startup-configuration.
6 802.1X An authentication server must authenticate a client connected to an 802.1X switch port. Until the authentication, only extensible authentication protocol over LAN (EAPOL) traffic is allowed through the port to which a client is connected. After authentication is successful, normal traffic passes through the port. The Dell Networking operating software supports remote authentication dial-in service (RADIUS) and active directory environments using 802.1X Port Authentication.
debug dot1x Display 802.1X debugging information. Syntax debug dot1x [all | auth-pae-fsm | backend-fsm | eapol-pdu] [interface interface] Parameters all Enable all 802.1X debug messages. auth-pae-fsm Enable authentication PAE FSM debug messages. backend-fsm Enable backend FSM debug messages. eapol-pdu Enable the EAPOL frame trace and related debug messages. interface Restricts the debugging information to an interface.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x authentication (Configuration) — Enable dot1x globally. dot1x auth-fail-vlan Configure an authentication failure VLAN for users and devices that fail 802.1X authentication. Syntax dot1x auth-fail-vlan vlan-id [max-attempts number] To delete the authentication failure VLAN, use the no dot1x auth-fail-vlan vlan-id [maxattempts number] command.
dot1x auth-type mab-only To authenticate a device with MAC authentication bypass (MAB), only use the host MAC address. Syntax dot1x auth-type mab-only Defaults Disabled Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The prerequisites for enabling MAB-only authentication on a port are: ● Enable 802.
has an IP address), routing through the guest VLAN is the same as any other traffic. However, the interface may join/leave a VLAN dynamically. Related Commands ● dot1x auth-fail-vlan — Configures an authentication failure VLAN. ● dot1x reauthentication — Enables periodic re-authentication of the client. ● dot1x reauth-max — Configure the maximum number of times to re-authenticate a port before it becomes unauthorized. dot1x host-mode Enable single-host or multi-host authentication.
dot1x max-eap-req Configure the maximum number of times an extensive authentication protocol (EAP) request is transmitted before the session times out. Syntax dot1x max-eap-req number To return to the default, use the no dot1x max-eap-req command. Parameters Defaults number Enter the number of times an EAP request is transmitted before a session time-out. The range is from 1 to 10. The default is 2. 2 Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.
Command Modes Auto Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The authenticator completes authentication only when port-control is set to auto. dot1x quiet-period Set the number of seconds that the authenticator remains quiet after a failed authentication with a client. Syntax dot1x quiet-period seconds To disable quiet time, use the no dot1x quiet-time command.
dot1x reauth-max Configure the maximum number of times a port can reauthenticate before the port becomes unauthorized. Syntax dot1x reauth-max number To return to the default, use the no dot1x reauth-max command. Parameters Defaults number Enter the permitted number of reauthentications. The range is from 1 to 10. The default is 2. 2 Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
dot1x supplicant-timeout Configure the amount of time after which exchanges with the supplicant time-out. Syntax dot1x supplicant-timeout seconds To return to the default, use the no dot1x supplicant-timeout command. Parameters Defaults seconds Enter a time-out value in seconds. The range is from 1 to 300, where 300 is implementation dependant. The default is 30. 30 seconds Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM.
● EXEC privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To display CoS mapping information only for the specified supplicant, enter a supplicant’s MAC address using the mac-address option. You can display the CoS mapping information applied to traffic from authenticated supplicants on 802.
Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you enable 802.1X multi-supplicant authentication on a port, additional 802.1X configuration details (Port Authentication status, Untagged VLAN ID, Authentication PAE state, and Backend state) are displayed for each supplicant, as shown in the following example. Dell#show dot1x interface tengigabitethernet 0/1 802.
Auth PAE State: Backend State: Dell# 138 802.
7 Access Control Lists (ACL) Access control lists (ACLs) are supported by the Dell Networking Operating System (OS).
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • 140 deny deny mac access-list extended permit seq Extended MAC ACL Commands mac access-list standard permit seq IP Prefix List Commands clear ip prefix-list deny ip prefix-list permit seq show config show ip prefix-list detail show ip prefix-list summary Route Map Commands continue description match interface match ip address match ip next-hop match ip route-source match metric match route-type
• • • • • • • • • • seq seq permit udp permit tcp permit icmp permit deny udp (for IPv6 ACLs) deny tcp (for IPv6 ACLs) deny icmp (for Extended IPv6 ACLs) deny (for IPv6 ACLs) Commands Common to all ACL Types The following commands are available within each ACL mode and do not have mode-specific options. Some commands in this chapter may use similar names, but require different options to support the different ACL types (for example, the deny command).
Supported Modes Full–Switch Command History Usage Information Version Description 9.14.0.0 Made the remark number as an optional value. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The remark command is available in each ACL mode. You can configure up to 4294967290 remarks in a given ACL. The following example shows the use of the remark command twice within CONFIGURATIONSTANDARD-ACCESS-LIST mode.
Parameters ipv4 | mac Enter the keyword ipv4 or mac to identify the access list type to resequence. access-list-name Enter the name of a configured IP access list. Defaults StartingSeqNum Enter the starting sequence number to resequence. The range is from 0 to 4294967290. Step-toIncrement Enter the step to increment the sequence number. The range is from 1 to 4294967290. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.
show config Display the current ACL configuration. Syntax show config Command Modes ● ● ● ● CONFIGURATION-IP ACCESS-LIST-STANDARD CONFIGURATION-IP ACCESS-LIST-EXTENDED CONFIGURATION-MAC ACCESS LIST-STANDARD CONFIGURATION-MAC ACCESS LIST-EXTENDED Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information When you use the access-class access-list-name command without specifying the ipv4 or ipv6 attribute, both IPv4 as well as IPv6 rules that are defined in that ACL are applied to the terminal. This is a generic way of configuring access restrictions. To be able to filter access exclusively using either IPv4 or IPv6 rules, you must use either the ipv4 or ipv6 attribute along with the access-class access-list-name command.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module platform. You can assign one ACL (standard or extended ACL) to an interface.. NOTE: This command is not supported on the FN IOMSwitch Loopback interfaces. NOTE: If outbound(egress) IP ACL is applied on switch port, filter will be applied only for routed traffic egressing out of that port.
cam_count List the count of the CAM rules for this ACL. interface Enter the keyword interface then the one of the following keywords and slot/ port or number information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The Dell operating system supports one ingress and one egress IP ACL per interface. The number of entries allowed per ACL is hardware-dependent. For detailed specifications on entries allowed per ACL, refer to your line card documentation.
monitor Defaults (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
Defaults mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values.
specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny — configures a filter to drop packets. permit — configures a filter to forward packets. seq — assigns a sequence number to a deny or permit filter in an IP access list while creating the filter.
which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The time interval range is from 1 to 10 minutes.
Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent.
deny tcp Configure a filter that drops transmission control protocol (TCP) packets meeting the filter criteria. Syntax deny tcp {source mask | any | host ip-address} [bit] [operator port [port]] {destination mask | any | host ip-address} [dscp] [bit] [operator port [port]] [count [byte] [order] [fragments] [threshold-in-msgs [count]] To remove this filter, you have two choices: ● Use the no seq sequence-number command if you know the filter’s sequence number.
threshold-inmsgs count Defaults (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
Total Ports: 4001 Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM. Dell# Data Mask From To 1 0000000000000000 1111110000000000 0 #Covered 1023 1024 Total Ports: 1024 Related Commands deny — assigns a filter to deny IP traffic. deny udp — assigns a filter to deny UDP traffic. deny udp To drop user datagram protocol (UDP) packets meeting the filter criteria, configure a filter.
Defaults fragments Enter the keyword fragments to use ACLs to control packet fragments. threshold-inmsgs count (OPTIONAL) Enter the threshold-in-msgs keyword then a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs are terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. By default 10 ACL logs are generated if you do not specify the threshold explicitly.
Related Commands deny — assigns a filter to deny IP traffic. deny tcp — assigns a filter to deny TCP traffic. ip access-list extended Name (or select) an extended IP access list (IP ACL) based on IP addresses or protocols. Syntax ip access-list extended access-list-name To delete an access list, use the no ip access-list extended access-list-name command. Parameters Defaults access-list-name Enter a string up to 140 characters long as the access list name.
Defaults dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
permit icmp Configure a filter to allow all or specific ICMP messages. Syntax permit icmp {source mask | any | host ip-address} {destination mask | any | host ip-address} [dscp] [message-type] [count [byte]] [order] [fragments] [threshold-in-msgs [count]] To remove this filter, you have two choices: ● Use the no seq sequence-number command if you know the filter’s sequence number. ● Use the no permit icmp {source mask | any | host ip-address} {destination mask | any | host ip-address} command.
Usage Information The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the Quality of Service chapter of the Dell Networking OS Configuration Guide. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
● range = inclusive range of ports (you must specify two ports for the port parameter) port port Enter the application layer port number. Enter two port numbers if you are using the range logical operand. The range is from 0 to 65535. The following list includes some common TCP port numbers: ● 23 = Telnet ● 20 and 21 = FTP ● 25 = SMTP ● 169 = SNMP Defaults destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.
based on bit mask boundaries; the space required depends on exactly what ports are included in the range. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
Parameters Defaults source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces.
icmp Enter the keyword icmp to configure an ICMP access list filter. ip Enter the keyword ip to configure a generic IP access list. The keyword ip specifies that the access list permits all IP protocols. tcp Enter the keyword tcp to configure a TCP access list filter. udp Enter the keyword udp to configure a UDP access list filter. source Enter an IP address in dotted decimal format of the network from which the packet was received.
Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for the flow-based monitoring on the MXL 10/40GbE Switch IO Module. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only.
clear counters mac access-group Clear counters for all or a specific MAC ACL. Syntax clear counters mac access-group [mac-list-name] Parameters mac-list-name (OPTIONAL) Enter the name of a configured MAC access list. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mac access-group Apply a MAC ACL to traffic entering or exiting an interface.
Related Commands mac access-list standard — configures a standard MAC ACL. mac access-list extended — configures an extended MAC ACL. show mac access-lists Display all of the Layer 2 ACLs configured in the system, whether or not they are applied to an interface, and the count of matches/mismatches against each ACL entry displayed. Syntax Parameters show mac access-lists [access-list-name] [interface interface] [in | out] access-list-name Enter the name of a configured MAC ACL, up to 140 characters.
Usage Information Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The ACL hit counters in this command increment the counters for each matching rule, not just the first matching rule.
Defaults ethertype operator (OPTIONAL) To filter based on protocol type, enter one of the following Ethertypes: ● ev2 - is the Ethernet II frame format ● llc - is the IEEE 802.3 frame format ● snap - is the IEEE 802.3 SNAP frame format count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. Not configured.
Command Modes CONFIGURATION-MAC ACCESS LIST-STANDARD Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module platform.
Example Related Commands Dell(conf)#mac-access-list access-list extended TestMATExt Dell(config-ext-macl)#remark 5 IPv4 Dell(config-ext-macl)#seq 10 permit any any ev2 eq 800 count bytes Dell(config-ext-macl)#remark 15 ARP Dell(config-ext-macl)#seq 20 permit any any ev2 eq 806 count bytes Dell(config-ext-macl)#remark 25 IPv6 Dell(config-ext-macl)#seq 30 permit any any ev2 eq 86dd count bytes Dell(config-ext-macl)#seq 40 permit any any count bytes Dell(config-ext-macl)#exit Dell(conf)#do show mac accountin
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When the configured maximum threshold is exceeded, generation of logs are stopped.
Defaults byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100.
mac access-list standard To configure a standard MAC ACL, name a new or existing MAC access control list (MAC ACL) and enter MAC ACCESS LIST mode. Syntax mac access-list standard mac-list-name Parameters Defaults mac-list-name Enter a text string as the name of the standard MAC access list (140 character maximum). Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
mac-destination- Specify which bits in the MAC address must be matched. address-mask The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly. Defaults ethertype operator (OPTIONAL) To filter based on protocol type, enter one of the following Ethertypes: ● ev2 - is the Ethernet II frame format ● llc - is the IEEE 802.3 frame format ● snap - is the IEEE 802.
The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly. Defaults ethertype operator (OPTIONAL) To filter based on protocol type, enter one of the following Ethertypes: ● ev2 - is the Ethernet II frame format. ● llc - is the IEEE 802.3 frame format. ● snap - is the IEEE 802.3 SNAP frame format. count (OPTIONAL) Enter the keyword count to count packets the filter processes.
deny To drop packets meeting the criteria specified, configure a filter. Syntax Parameters deny ip-prefix [ge min-prefix-length] [le max-prefix-length] ip-prefix Specify an IP prefix in the network/length format. For example, 35.0.0.0/ 8 means match the first 8 bits of address 35.0.0.0. ge min-prefix- (OPTIONAL) Enter the keyword ge and then enter the minimum prefix length, which is a number from zero (0) to 32.
permit Configure a filter that passes packets meeting the criteria specified. Syntax permit ip-prefix [ge min-prefix-length] [le max-prefix-length] Parameters ip-prefix Specify an IP prefix in the network/length format. For example, 35.0.0.0/8 means match the first 8 bits of address 35.0.0.0. ge min-prefix- (OPTIONAL) Enter the keyword ge and then enter the minimum prefix length, which is a number from zero (0) to 32.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you do not use the ge or le options, only packets with an exact match to the prefix are filtered. Related Commands deny — configures a filter to drop packets. permit — configures a filter to pass packets. show config Display the current PREFIX-LIST configurations.
show ip prefix-list summary Display a summary of the configured prefix lists. Syntax show ip prefix-list summary [prefix-name] Parameters prefix-name (OPTIONAL) Enter a text string as the name of the prefix list, up to 140 characters. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
With a match clause and a continue clause, the match clause executes first and the continue clause next in a specified route map entry. The continue clause launches only after a successful match. The behavior is: ● A successful match with a continue clause, the route map executes the set clauses and then goes to the specified route map entry upon execution of the continue clause.
● For a Ten Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. Defaults Not configured. Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. match ip address — redistributes routes that match an IP address. match ip next-hop — redistributes routes that match the next-hop IP address.
prefix-list prefix- Enter the keywords prefix-list and then enter the name of configured prefix list-name list, up 10 140 characters. Defaults Not configured. Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. match interface — redistributes routes that match the next-hop interface. match ip address — redistributes routes that match an IP address.
Parameters Defaults metric-value Enter a value to match. The range is from zero (0) to 4294967295. Not configured. Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. match interface — redistributes routes that match the next-hop interface. match ip address — redistributes routes that match an IP address.
match tag To redistribute only routes that match a specified tag value, configure a filter. Syntax Parameters Defaults match tag tag-value tag-value Enter a value as the tag on which to match. The range is from zero (0) to 4294967295. Not configured. Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Related Commands Dell(conf)#route-map dempsey Dell(config-route-map)# show config2 — displays the current configuration. set automatic-tag To automatically compute the tag value of the route, configure a filter. Syntax set automatic-tag To return to the default, use the no set automatic-tag command. Defaults Not configured. Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
set metric-type To assign a new route type for routes redistributed to OSPF, configure a filter. Syntax Parameters Defaults set metric-type {internal | external | type-1 | type-2} internal Enter the keyword internal to assign the Interior Gateway Protocol metric of the next hop as the route’s BGP MULTI_EXIT_DES (MED) value. external Enter the keyword external to assign the IS-IS external metric. type-1 Enter the keyword type-1 to assign the OSPF Type 1 metric.
Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Dell(config-route-map)#show config ! route-map hopper permit 10 Dell(config-route-map)# show route-map Display the current route map configurations. Syntax show route-map [map-name] Parameters map-name (OPTIONAL) Enter the name of a configured route map, up to 140 characters.
Defaults count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. dscp Enter this keyword dscp to deny a packet based on the DSCP value. The range is from 0 to 63. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
deny To drop packets with a certain IP address, configure a filter. Syntax deny {any | host mac-address | mac-source-address mac-source-address-mask} {any | host mac-address | mac-destination-address mac-destination-addressmask}[ethertype-operator] [count [byte]][log [interval minutes] [thresholdin-msgs [count]] [monitor] To remove this filter, you have two choices: ● Use the no seq sequence-number command if you know the filter’s sequence number.
Usage Information The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the Quality of Service chapter of the Dell Networking OS Configuration Guide. You can configure either count (packets) or count (bytes). However, for an ACL with multiple rules, you can configure some ACLs with count (packets) and others as count (bytes) at any given time. When the configured maximum threshold is exceeded, generation of logs is stopped.
Defaults fragments Enter the keyword fragments to use ACLs to control packet fragments. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
deny tcp Configure a filter that drops transmission control protocol (TCP) packets meeting the filter criteria. Syntax deny tcp {source mask | any | host ip-address} [bit] [operator port [port]] {destination mask | any | host ip-address} [dscp] [bit] [operator port [port]] [count [byte] [order] [fragments] [threshold-in-msgs [count]] To remove this filter, you have two choices: ● Use the no seq sequence-number command if you know the filter’s sequence number.
threshold-inmsgs count Defaults (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
Total Ports: 4001 Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM. Dell# Data Mask From To 1 0000000000000000 1111110000000000 0 #Covered 1023 1024 Total Ports: 1024 Related Commands deny — assigns a filter to deny IP traffic. deny udp — assigns a filter to deny UDP traffic. deny udp To drop user datagram protocol (UDP) packets meeting the filter criteria, configure a filter.
Defaults fragments Enter the keyword fragments to use ACLs to control packet fragments. threshold-inmsgs count (OPTIONAL) Enter the threshold-in-msgs keyword then a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs are terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. By default 10 ACL logs are generated if you do not specify the threshold explicitly.
Related Commands deny — assigns a filter to deny IP traffic. deny tcp — assigns a filter to deny TCP traffic. deny arp (for Extended MAC ACLs) Configure an egress filter that drops ARP packets on egress ACL supported line cards. (For more information, refer to your line card documentation).
Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.
To remove this filter, you have two choices: ● Use the no seq sequence-number command, if you know the filter’s sequence number. ● Use the no deny icmp {source mask | any | host ip-address} {destination mask | any | host ip-address} command. Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous.
monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG).
Defaults interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The time interval range is from of 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
Defaults count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keywordlog to enable the triggering of ACL log messages. threshold-inmsgs count (OPTIONAL) Enter thethreshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated.
mask}[ethertype-operator] [count [byte]][log [interval minutes] [thresholdin-msgs [count]] [monitor] To remove this filter, you have two choices: ● Use the no seq sequence-number command if you know the filter’s sequence number. ● Use the no deny {any | host mac-address | mac-source-address mac-sourceaddress-mask}{any | host mac-address | mac-destination-address macdestination-address-mask}command. command.
and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval. If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and s MAC ACLs.
which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface.
Defaults mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter.
permit ether-type (for Extended MAC ACLs) Configure a filter that allows traffic with specified types of Ethernet packets. This command is supported only on 12-port GE line cards with SFP optics. For specifications, refer to your line card documentation.
Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.
To remove this filter, you have two choices: ● Use the no seq sequence-number command if you know the filter’s sequence number. ● Use the no permit icmp {source mask | any | host ip-address} {destination mask | any | host ip-address} command. Parameters Defaults source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or noncontiguous.
MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces. You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode.
which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.
Total Ports: 1024 Related Commands ip access-list extended — creates an extended ACL. permit — assigns a permit filter for IP packets. permit tcp — assigns a permit filter for TCP packets. permit (for Extended IP ACLs) To pass IP packets meeting the filter criteria, configure a filter.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped.
which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes.
Defaults deny Enter the keyword deny to configure a filter to drop packets meeting this condition. permit Enter the keyword permit to configure a filter to forward packets meeting this criteria. any Enter the keyword any to filter all packets. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match.
packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny — configures a filter to drop packets. permit — configures a filter to forward packets. permit tcp To pass TCP packets meeting the filter criteria, configure a filter.
Defaults count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255).
looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Example An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
Defaults vlan vlan-id Enter the keyword vlan followed by the VLAN ID to filter traffic associated with a specific VLAN. The range is 1 to 4094 and 1 to 2094 for ExaScale (you can use IDs 1 to 4094). To filter all VLAN traffic specify VLAN 1. ip-address Enter an IP address in dotted decimal format (A.B.C.D) as the target IP address of the ARP. opcode code- number Enter the keyword opcode and then enter the number of the ARP opcode. The range is 1 to 16.
● If sequence-number is not configured, the rules with the same order value are ordered according to their configuration order. ● If sequence-number is configured, the sequence-number is used as a tie breaker for rules with the same order. When you use the log option, the CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details.
vlan vlan-id Enter the keyword vlan and then enter the VLAN ID to filter traffic associated with a specific VLAN. The range is 1 to 4094 and 1 to 2094 for ExaScale (you can use IDs 1 to 4094). To filter all VLAN traffic specify VLAN 1. source-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
● The order option works across ACL groups that have been applied on an interface via the QoS policy framework. ● The order option takes precedence over seq sequence-number. ● If sequence-number is not configured, the rules with the same order value are ordered according to their configuration order. ● If sequence-number is configured, the sequence-number is used as a tie breaker for rules with the same order. When you use the log option, the CP processor logs details about the packets that match.
Defaults dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter. Syntax seq sequence-number {deny | permit} {ipv6-protocol-number | icmp | ip | tcp | udp} {source mask | any | host ipv6-address} {destination mask | any | host ipv6-address} [operator port [port]] [count [byte]] [dscp value] [order] [fragments] [log [interval minutes] [threshold-in-msgs [count]] [monitor] Parameters sequencenumber Enter a number from 0 to 4294967290.
lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). Defaults fragments Enter the keyword fragments to use ACLs to control packet fragments. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny — Configures a filter to drop packets. permit — Configures a filter to forward packets. permit udp To pass UDP packets meeting the filter criteria, configure a filter.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the “Quality of Service” chapter of the Dell Operating System Configuration Guide. You can configure either count (packets) or count (bytes).
permit tcp To pass TCP packets meeting the filter criteria, configure a filter. Syntax permit tcp {source mask | any | host ip-address} [bit] [operator port [port]] {destination mask | any | host ip-address} [bit] [dscp] [operator port [port]] [count [byte]] [order] [fragments][log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: ● Use the no seq sequence-number command if you know the filter’s sequence number.
Defaults log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100.
2 3 4 5 6 7 8 0000111111000000 0001000000000000 0001100000000000 0001110000000000 0001111000000000 0001111100000000 0001111101000000 1111111111000000 1111100000000000 1111110000000000 1111111000000000 1111111100000000 1111111111000000 1111111111111111 4032 4096 6144 7168 7680 7936 8000 4095 6143 7167 7679 7935 7999 8000 64 2048 1024 512 256 64 1 Total Ports: 4001 Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM.
threshold-in msgs count Defaults (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
tcp Enter the keyword tcp to filter the Transmission Control protocol. udp Enter the keyword udp to filter the User Datagram Protocol. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
host ipv6– address operator Enter the keyword host then the IPv6 address to specify a host IP address. (OPTIONAL) Enter one of the following logical operand. ● eq = equal to ● neq = not equal to ● gt = greater than ● lt = less than ● range = inclusive range of ports (you must specify two ports for the port command) port Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces.
● 169 = SNMP Defaults destination Enter the IP address of the network or host to which the packets are sent. bit (OPTIONAL) Enter the keyword bit to count the bits that filter the processes. count (OPTIONAL) Enter the keyword count to count the packets that filter the processes. byte (OPTIONAL) Enter the keyword byte to count the bytes that filter the processes. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
deny icmp (for Extended IPv6 ACLs) Configure a filter to drop all or specific ICMP messages.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces.
Usage Information Version Description 9.4(0.0) Added the support for flow-based monitoring on theMXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
8 Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM) This section describes the access control list (ACL) virtual local area network (VLAN) group, and content addressable memory (CAM) enhancements. Topics: • • • • • • • • • • member vlan ip access-group show acl-vlan-group show cam-acl-vlan cam-acl-vlan show cam-usage show running config acl-vlan-group acl-vlan-group show acl-vlan-group detail description (ACL VLAN Group) member vlan Add VLAN members to an ACL VLAN group.
ip access-group Apply an egress IP ACL to the ACL VLAN group. Syntax ip access-group {group name} out implicit-permit Parameters Default group-name Enter the name of the ACL VLAN group where you want the egress IP ACLs applied, up to 140 characters. out Enter the keyword out to apply the ACL to outgoing traffic.
acl-vlan-group Test member vlan 1-100 ip access-group test in Dell#show acl-vlan-group Group Name Ingress V6 Acl Test - Egress IP Acl Vlan Members 1-100 Ingress IP Acl test The following sample output is displayed when using the show acl-vlan-group group-name option. NOTE: The access list name is truncated.
Field Description Stack Unit Details about the CAM blocks allocated for ACLs for various VLAN operations for a particular stack unit. Current Information about the number of FP blocks that are currently in use or allocated. Settings(in block sizes) Example VlanOpenFlow Number of FP blocks for VLAN open flow operations. VlanIscsi Number of FP blocks for VLAN internet small computer system interface (iSCSI) counters. VlanHp Number of FP blocks for VLAN high performance processes.
one, or two flow processor (FP) blocks to iSCSI Counters, OpenFlow and ACL Optimization. You can configure only two of these features at a point in time. show cam-usage View the amount of CAM space available, used, and remaining in each partition (including IPv4Flow and Layer 2 ACL subpartitions). Syntax Parameters show cam-usage [acl | router | switch] acl (OPTIONAL) Enter the keyword acl to display Layer 2 and Layer 3 ACL CAM usage.
| | | | | | IN-L2 ACL | | IN-NLB ACL | | IPMAC ACL | | OUT-L3 ACL | | OUT-V6 ACL | Codes: * - cam usage is above 90%.
acl-vlan-group Create an ACL VLAN group. Syntax acl-vlan-group {group name} To remove an ACL VLAN group, use the no acl-vlan-group {group name} command. Parameters Default group-name Specify the name of the ACL VLAN group. The name can contain a maximum 140 characters. No default behavior or values Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.
Usage Information The output for this command displays in a line-by-line format. This allows the ACL-VLAN-Group names (or the Access List Group Names) to display in their entirety. Examples The following sample output shows the line-by-line style display when using the show acl-vlangroup detail option.
9 Bidirectional Forwarding Detection (BFD) Bidirectional forwarding detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The Dell Networking Operating System (OS) implementation is based on the standards specified in the IETF Draft draft-ietfbfd-base-03 and supports BFD on all Layer 3 physical interfaces including virtual local area network (VLAN) interfaces and port-channels.
Command Modes ROUTER OSPF ROUTER OSPFv3 ROUTER BGP ROUTER ISIS Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.13(0.0) Introduced support for enabling BFD on non-default VRFs for IPv4 BGP, default, and non-default VRFs for IPv6 BGP on the S3100 series, S3048–ON, S4048–ON, S4048T-ON, S5000, S6000, S6000–ON, S6010–ON, S6100–ON, C9010, Z9500, and Z9100–ON. 9.11(2.
disable values configured with the bfd neighbor command or configured for the peer group to which a neighbor belongs. The neighbors inherit only the global timer values (configured with the bfd neighbor command). You can only enable BFD for VRRP in INTERFACE command mode (vrrp bfd all-neighbors). You can enable BFD on both default and nondefault VRFs for OSPF and BGP protocols for both IPv4 and IPv6 neighbors. NOTE: The bfd all-neighbors command is applicable for both IPv4 and IPv6 BGP sessions.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bfd interval Specify non-default BFD session parameters beginning with the transmission interval. Syntax bfd interval interval min_rx min_rx multiplier value role {active | passive} Parameters interval milliseconds min_rx milliseconds Enter the keywords interval to specify non-default BFD session parameters beginning with the transmission interval.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Protocol Liveness is a feature that notifies the BFD Manager when a client protocol (for example, OSPF and ISIS) is disabled. When a client is disabled, all BFD sessions for that protocol are torn down. Neighbors on the remote system receive an Admin Down control packet and are placed in the Down state.
ip ospf bfd all-neighbors Establish BFD sessions with all OSPF neighbors on a single interface or use non-default BFD session parameters. Syntax ip ospf bfd all-neighbors [disable | [interval interval min_rx min_rx multiplier value role {active | passive}]] To disable all BFD sessions on an OSPF interface implicitly, use the no ip ospf bfd allneighbors disable command in interface mode.. Parameters disable (OPTIONAL) Enter the keyword disable to disable BFD on this interface.
ipv6 ospf bfd all-neighbors Establish BFD sessions with all OSPFv3 neighbors on a single interface or use non-default BFD session parameters. Syntax ipv6 ospf bfd all-neighbors [disable | [interval interval min_rx min_rx multiplier value role {active | passive}]] To disable all BFD sessions on an OSPFv3 interface implicitly, use the no ipv6 ospf bfd allneighbors [disable | [interval interval min_rx min_rx multiplier value role {active | passive}]]command in interface mode..
multiplier value Enter the keywords multiplier to specify the number of packets that must be missed in order to declare a session down. The range is from 3 to 50. The default is 3. role [active | passive] Enter the role that the local system assumes: ● Active — The active system initiates the BFD session. Both systems can be active for the same session. ● Passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system.
● The neighbor only inherits the global timer values configured with the bfd neighbor command: interval, min_rx, and multiplier. Related Commands neighbor bfd disable — explicitly disables a BFD session with a BGP neighbor or a BGP peer group. show bfd neighbors — displays the BFD neighbor information on all interfaces or a specified interface. neighbor bfd disable Explicitly disable a BFD session with a BGP neighbor or a BGP peer group.
● For a VLAN interface, enter the keyword vlan then a number from 1 to 4094. detail Defaults (OPTIONAL) Enter the keyword detail to view detailed information about BFD neighbors. None Command Modes ● EXEC ● EXEC Privilege Command History Example This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(2.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
10 Border Gateway Protocol IPv4 (BGPv4) For detailed information about configuring BGP, refer to the BGP chapter in the Dell Networking OS Configuration Guide.
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • debug ip bgp soft-reconfiguration debug ip bgp updates default-metric description max-paths neighbor activate neighbor add-path neighbor advertisement-interval neighbor advertisement-start neighbor allowas-in neighbor default-originate neighbor description neighbor distribute-list neighbor ebgp-multihop neighbor fall-over neighbor local-as neighbor maximum-prefix neighbor password neighbor peer-g
• • • • • • • • • • • • • • • • • • • • • show ip bgp paths community show ip bgp peer-group show ip bgp regexp show ip bgp summary show running-config bgp timers bgp timers bgp extended MBGP Commands BGP Extended Communities (RFC 4360) set extcommunity rt set extcommunity soo show ip bgp paths extcommunity show ip bgp extcommunity-list IPv6 BGP Commands bgp soft-reconfig-backup clear ip bgp ipv6 unicast soft debug ip bgp ipv6 unicast soft-reconfiguration ipv6 prefix-list show ipv6 prefix-list IPv6 MBGP Co
aggregate-address To minimize the number of entries in the routing table, summarize a range of prefixes. Syntax Parameters aggregate-address ip-address mask [advertise-map map-name] [as-set] [attribute-map map-name] [summary-only] [suppress-map map-name] ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.D) and mask in /prefix format (/x).
Parameters Defaults send Enter the keyword send to indicate that the system sends multiple paths to peers. receive Enter the keyword receive to indicate that the system accepts multiple paths from peers. both Enter the keyword both to indicate that the system sends and accepts multiple paths from peers. path-count Enter the number paths supported. The range is from 2 to 64.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Before enabling this feature, enable the enable bgp four-octet-as-supportcommand. If you disable the four-octect-support command after using dot or dot+ format, the AS numbers revert to asplain text. When you apply an asnotation, it is reflected in the running-configuration.
bgp bestpath as-path multipath-relax Include prefixes received from different AS paths during multipath calculation. Syntax bgp bestpath as-path multipath-relax To return to the default BGP routing process, use the no bgp bestpath as-path multipathrelax command. Defaults Disabled Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The MED is a 4-byte unsigned integer value and the default behavior is to assume a missing MED as 4294967295. This command causes a missing MED to be treated as 0. During path selection, paths with a lower MED are preferred over paths with a higher MED.
bgp cluster-id Assign a cluster ID to a BGP cluster with more than one route reflector. Syntax bgp cluster-id {ip-address | number} To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command. Parameters Defaults ip-address Enter an IP address as the route reflector cluster ID. number Enter a route reflector cluster ID as a number from 1 to 4294967295. Not configured.
The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. The next hop, MED, and local preference information is preserved throughout the confederation. The system accepts confederation EBGP peers without a LOCAL_PREF attribute. The software sends AS_CONFED_SET and accepts AS_CONFED_SET and AS_CONF_SEQ.
reuse (OPTIONAL) Enter a number as the reuse value, which is compared to the flapping route’s Penalty value. If the Penalty value is less than the reuse value, the flapping route is once again advertised (or no longer suppressed). The range is from 1 to 20000. The default is 750. suppress (OPTIONAL) Enter a number as the suppress value, which is compared to the flapping route’s Penalty value.
Usage Information All routers apply the bgp default local-preference command setting within the AS. To set the local preference for a specific route, use the set local-preference command in ROUTE-MAP mode. Related Commands set metric — assigns a local preference value for a specific route. bgp enforce-first-as Disable (or enable) enforce-first-as check for updates received from EBGP peers. Syntax bgp enforce-first-as To turn off the default, use the no bgp enforce-first-as command.
bgp four-octet-as-support Enable 4-byte support for the BGP process. Syntax bgp four-octet-as-support To disable fast external failover, use the no bgp four-octet-as-support command. Defaults Disabled (supports 2–byte format) Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
BGP graceful restart is active only when the neighbor becomes established. Otherwise it is disabled. Graceful-restart applies to all neighbors with established adjacency. bgp non-deterministic-med Compare MEDs of paths from different autonomous systems. Syntax bgp non-deterministic-med To return to the default, use the no bgp non-deterministic-med command. Defaults Disabled (that is, paths/routes for the same destination but from different ASs do not have their MEDs compared).
bgp recursive-bgp-next-hop Enable next-hop resolution through other routes learned by BGP. Syntax bgp recursive-bgp-next-hop To disable next-hop resolution, use the no bgp recursive-bgp-next-hop command. Defaults Enabled Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Area 51 Routing for Networks 10.10.10.0/00 Routing Protocol is "bgp 1" Cluster Id is set to 10.10.10.0 Router Id is set to 10.10.10.0 Fast-external-fallover enabled Regular expression evaluation optimization enabled Capable of ROUTE_REFRESH For Address Family IPv4 Unicast BGP table version is 0, main routing table version 0 Distance: external 20 internal 200 local 200 Dell(conf-router_bgp)# Related Commands show ip protocols — views information on all routing protocols enabled and active.
Usage Information When you enable soft-reconfiguration for a neighbor and you execute the clear ip bgp soft in command, the update database stored in the router is replayed and updates are re-evaluated. With this command, the replay and update process is triggered only if route-refresh request is not negotiated with the peer. If the request is indeed negotiated (after executing the clear ip bgp soft in command), BGP sends a route-refresh request to the neighbor and receives all of the peer’s updates.
clear ip bgp Reset BGP sessions. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection. Syntax Parameters clear ip bgp * | as-number | ip-address [flap-statistics | soft [in | out]] * Enter an asterisk ( * ) to reset all BGP sessions. as-number Enter the AS number to reset all neighbors belonging to that AS. The range is from 0 to 65535 (2 byte), from 1 to 4294967295 (4 byte), or from 0.1 to 65535.65535 (dotted format).
clear ip bgp flap-statistics Clear BGP flap statistics, which includes number of flaps and the time of the last flap. Syntax clear ip bgp flap-statistics [ip-address mask | filter-list as-path-name | regexp regular-expression] Parameters ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and the prefix mask in slash format (/x) to reset only that prefix. filter-list as- (OPTIONAL) Enter the keywords filter-list then the name of a configured AS-PATH list.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug ip bgp Display all information on BGP, including BGP events, keepalives, notifications, and updates. Syntax debug ip bgp [ip-address | peer-group peer-group-name] [in | out] To disable all BGP debugging, use the no debug ip bgp command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show debugging — view enabled debugging operations. show ip bgp dampened-paths — view BGP dampened routes. debug ip bgp events Display information on local BGP state changes and other BGP events.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To remove all configured debug commands for BGP, enter the no debug ip bgp command. debug ip bgp notifications Allows you to view information about BGP notifications received from neighbors.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command turns on BGP soft-reconfiguration inbound debugging. If no neighbor is specified, debug turns on for all neighbors. debug ip bgp updates Allows you to view information about BGP updates.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The default-metric command in BGP sets the value of the BGP MULTI_EXIT_DISC (MED) attribute for redistributed routes only. Related Commands bgp always-compare-med — enables comparison of all BGP MED attributes. redistribute — redistributes routes from other routing protocols into BGP.
Usage Information If you enable this command, use the clear ip bgp * command to recompute the best path. neighbor activate This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI (Address Family Identifier/ Subsequent Address Family Identifier). Syntax neighbor [ip-address | peer-group-name] activate To disable, use the no neighbor [ip-address | peer-group-name] activate command.
Related Commands Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bgp add-path — allows the advertisement of multiple paths for the same address prefix without the new paths implicitly replacing any previous ones. neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group.
neighbor allowas-in Set the number of times an AS number can occur in the AS path. Syntax neighbor {ip-address | peer-group-name} allowas-in number To return to the default value, use the no neighbor {ip-address | peer-group-name} allowas-in command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group.
neighbor description Assign a character string describing the neighbor or group of neighbors (peer group). Syntax neighbor {ip-address | peer-group-name} description text To delete a description, use the no neighbor {ip-address | peer-group-name} description command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. text Defaults Enter a continuous text string up to 80 characters. Not configured.
neighbor ebgp-multihop Attempt and accept BGP connections to external peers on networks that are not directly connected. Syntax neighbor {ip-address | peer-group-name} ebgp-multihop [ttl] To disallow and disconnect connections, use the no neighbor {ip-address | peer-groupname} ebgp-multihop command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group.
neighbor local-as To accept external routes from neighbors with a local AS number in the AS number path, configure Internal BGP (IBGP) routers. Syntax neighbor {ip-address | peer-group-name} local-as as-number [no-prepend] To return to the default value, use the no neighbor {ip-address | peer-group-name} local-as command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you configure the neighbor maximum-prefix command and the neighbor receives more prefixes than the neighbor maximum-prefix command configuration allows, the neighbor goes down and the show ip bgp summary command displays (prfxd) in the State/PfxRcd column for that neighbor.
Also, if you configure different passwords on the two routers, the following message appears on the console: %RPM0-P:RP1 %KERN-6-INT: BGP MD5 password mismatch from [peer's IP address] : 11502 to [local router's IP address] :179 neighbor peer-group (assigning peers) Allows you to assign one peer to an existing peer group. Syntax neighbor ip-address peer-group peer-group-name To delete a peer from a peer group, use the no neighbor ip-address peer-group peergroup-name command.
Parameters Defaults peer-group-name Enter a text string up to 16 characters long as the name of the peer group. Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you create a peer group, it is disabled (Shut mode). Related Commands neighbor peer-group (assigning peers) — assigns routers to a peer group.
To delete a remote AS entry, use the no neighbor {ip-address | peer-group-name} remote-as number command. Parameters ip-address Enter the IP address of the neighbor to enter the remote AS in its routing table. peer-group-name Enter the name of the peer group to enter the remote AS into routing tables of all routers within the peer group. number Defaults Enter a number of the AS. The range is from 0 to 65535 (2 byte) or from 1 to 4294967295 (4 byte). Not configured.
Private AS numbers are from 64512 to 65535 (2 byte). neighbor route-map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group. Syntax neighbor {ip-address | peer-group-name} route-map map-name {in | out} To remove the route map, use the no neighbor {ip-address | peer-group-name} routemap map-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. A route reflector reflects routes to the neighbors assigned to the cluster. Neighbors in the cluster do not need not to be fully meshed. By default, when you use no route reflector, the internal BGP (IBGP) speakers in the network must be fully meshed.
To disable, use the no neighbor {ip-address | peer-group-name} softreconfiguration inbound command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to disable or enable all routers within the peer group. Defaults Disabled Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Usage Information Timer values configured with the neighbor timers command override the timer values configured with any other command. When two neighbors, configured with different keepalive and holdtime values, negotiate for new values, the resulting values are as follows: ● the lower of the holdtime value is the new holdtime value, and ● whichever is the lower value; one-third of the new holdtime value, or the configured keepalive value, is the new keepalive value.
interface Defaults Enter the keyword loopback then a number of the Loopback interface. The range is from 0 to 16383. Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Loopback interfaces are up constantly and the BGP session may need one interface constantly up to stabilize the session.
mask Enter the mask of the IP address in the slash prefix length format (for example, / 24). The mask appears in command outputs in dotted decimal format (A.B.C.D). route-map mapname (OPTIONAL) Enter the keyword route-map then the name of an established route map. Only the following ROUTE-MAP mode commands are supported: ● match ip address ● set metric ● set tag If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured.
redistribute Redistribute routes into BGP. Syntax redistribute {connected | static} [route-map map-name] To disable redistribution, use the no redistribution {connected | static} command. Parameters connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static to redistribute manually configured routes. These routes are treated as incomplete routes.
match internal (OPTIONAL) Enter the keywords match internal to redistribute OSPF internal routes only. route-map map- (OPTIONAL) Enter the keywords route-map then the name of a configured route map. name Defaults Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. With the Dell Networking OS version 8.3.1.
shutdown all Disables all the BGP neighbors. Syntax shutdown all Use the no shutdown all command to enable all the configured BGP neighbors. Command Modes ROUTER BGP Command History Usage Information Version Description 9.11.0.0 Introduced on the S-Series, Z-Series, MXL, and IOM. You can use this command to disable all the configured BGP neighbors. This command is global for all VRFs.
shutdown address-family-ipv6–unicast Disables all the BGP neighbors corresponding to the unicast IPv6 address families. Syntax shutdown address-family-ipv6–unicast Use the no shutdown address-family-ipv6–unicast command to enable all the configured BGP neighbors corresponding to the unicast IPv6 address families. Command Modes ROUTER BGP CONFIGURATION Command History Usage Information Version Description 9.11.0.0 Introduced on the S-Series, Z-Series, MXL, and IOM.
PDU[3] : len 19, captured 00:34:50 ago ffffffff ffffffff ffffffff ffffffff 00130400 [. . .] Dell# Related Commands capture bgp-pdu max-buffer-size — specifies a size for the capture buffer. show config View the current ROUTER BGP configuration. Syntax show config Command Modes ROUTER BGP Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
network-mask (OPTIONAL) Enter the network mask (in slash prefix format) of the BGP network address. longer-prefixes (OPTIONAL) Enter the keywords longer-prefixes to view all routes with a common prefix. cluster-list (OPTIONAL) Enter the keyword cluster-list then the cluster-ID to display the routes matching the cluster.
Example Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network.
Following is the example for displaying all the received routes from all IPv6 neighbors: DellEMC# show ip bgp ipv6 unicast neighbors all received-routes BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0 BGP local router ID is 11.1.1.
Example Field Description Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network. Dell#show ip bgp cluster-list BGP table version is 64444683, local router ID is 120.1.1.
All routes with the NO_ADVERTISE (0xFFFFFF02) community attribute must not be advertised to other BGP peers. no-export Enter the keywords no-export to view all routes containing the well-known community attribute of NO_EXPORT. All routes with the NO_EXPORT (0xFFFFFF01) community attribute must not be advertised outside a BGP confederation boundary. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM.
*>i 6.151.0.0/1 --More-- 205.171.0.16 100 0 209 7170 1455 i show ip bgp community-list View routes that a specific community list affects. Syntax show ip bgp [ipv4 unicast] community-list community-list-name [exact-match] Parameters ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. community-listname Enter the name of a configured IP community list (maximum 140 characters).
show ip bgp dampened-paths View BGP routes that are dampened (non-active). Syntax show ip bgp [ipv4 unicast] dampened-paths Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp damp command shown in the following example.
-1 : NdIgnrIllId 0 : NdRRC2C 1 : NdClstId 33686273 : NdPaTblP 0x41a19088 NdASPTblP 0x41a19090 : NdCommTblP 0x41a19098 : NhOptTransTblP 0x41a190a0 : NdRRClsTblP 0x41a190a8 NdPktPA 0 : NdLocCBP 0x41a6f000 : NdTmpPAP 0x419efc80 : NdTmpASPAP 0x41a25000 : NdTmpCommP 0x41a25800 NdTmpRRClP 0x41a4b000 : NdTmpOptP 0x41a4b800 : NdTmpNHP : NdOrigPAP 0 NdOrgNHP 0 : NdModPathP 0x419efcc0 : NdModASPAP 0x41a4c000 : NdModCommP 0x41a4c800 NdModOptP 0x41a4d000 : NdModNHP : NdComSortBufP 0x41a19110 : NdComSortHdP 0x41a19d04 :
AfNetBKDRCnt 0 : AfDampHLife 0 AfDampReuse 0 : AfDampSupp 0 : AfDampMaxHld 0 : AfDampCeiling 0 : AfDampRmapP show ip bgp extcommunity-list View information on all routes with Extended Community attributes. Syntax Parameters show ip bgp [ipv4 unicast] extcommunity-list [list name] ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. list name Enter the extended community list name you wish to view. The range is 140 characters.
Field Description ● ● ● ● ● Example i = internal route entry a = aggregate route entry c = external confederation route entry n = network route entry r = redistributed route entry Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight.
regexp regular- expression Enter a regular expression then use one or a combination of the following characters to match. The range is 256 characters. ● . = (period) any single character (including a white space). ● * = (asterisk) the sequences in a pattern (zero or more sequences). ● + = (plus) the sequences in a pattern (one or more sequences). ● ? = (question mark) sequences in a pattern (either zero or one sequences). NOTE: Enter an escape sequence (CTRL+v) prior to entering the ? regular expression.
● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp inconsistent-as command shown in the following example. Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.
ip-address (OPTIONAL) Enter the IP address of the neighbor to view only BGP information exchanged with that neighbor. advertisedroutes (OPTIONAL) Enter the keywords advertised-routes to view only the routes the neighbor sent. dampened-routes (OPTIONAL) Enter the keywords dampened-routes to view information on dampened routes from the BGP neighbor. detail (OPTIONAL) Enter the keyword detail to view neighbor-specific internal information for the IPv4 Unicast address family.
The Lines Beginning with: Description Sent messages The line displays the number of BGP messages sent, the number of notifications (error messages), and the number of messages waiting in a queue for processing. Received updates This line displays the number of BGP updates received and sent. Soft reconfiguration This line indicates that soft reconfiguration inbound is configured. Minimum time Displays the minimum time, in seconds, between advertisements.
MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) Capabilities advertised to neighbor for IPv4 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) ROUTE_REFRESH(2) GRACEFUL_RESTART(64) CISCO_ROUTE_REFRESH(128) Route map for incoming advertisements is test Maximum prefix set to 4 with threshold 75 For address family: IPv4 Unicast BGP table version 34, neighbor version 34 5 accepted prefixes consume 20 bytes Prefix advertised 0, denied 4, withdrawn 0 Prefixes accepted 1 (consume 4 bytes), withdrawn 0 by pe
redistributed n - network, D - denied, S - stale Origin codes: i - IGP, e - EGP, ? - incomplete Network D 70.70.21.0/24 D 70.70.22.0/24 D 70.70.23.0/24 D 70.70.24.0/24 Dell# Related Commands Next Hop 100.10.10.2 100.10.10.2 100.10.10.2 100.10.10.2 Metric LocPrf Weight Path 0 0 100 200 0 0 100 200 0 0 100 200 0 0 100 200 ? ? ? ? show ip bgp — views the current BGP routing table. show ip bgp next-hop View all next hops (using learned routes only) with current reachability and flap status.
Parameters regexp regular- expression Enter a regular expression then use one or a combination of the following characters to match: ● . = (period) any single character (including a white space). ● * = (asterisk) the sequences in a pattern (zero or more sequences). ● + = (plus) the sequences in a pattern (one or more sequences). ● ? = (question mark) sequences in a pattern (either zero or one sequences). NOTE: Enter an escape sequence (CTRL+v) prior to entering the ? regular expression.
show ip bgp paths as-path View all unique AS-PATHs in the BGP database. Syntax show ip bgp paths as-path Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp paths as-path command shown in the following example.
Usage Information Example The following describes the show ip bgp paths community command shown in the following example. Field Description Address Displays the internal address where the path attribute is stored. Hash Displays the hash bucket where the path attribute is stored. Refcount Displays the number of BGP routes using these communities. Community Displays the community attributes in this BGP path.
summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group. The output is the same as that found in the show ip bgp summary command. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp peer-group command shown in the following example.
12.1.1.3* 12.1.1.4* 12.1.1.5* 12.1.1.6* 12.2.1.2* 12.2.1.3* 12.2.1.4* 12.2.1.5* 12.2.1.6* 12.3.1.2* 12.3.1.3* 12.3.1.4* 12.3.1.5* 12.3.1.6* 12.4.1.2* 12.4.1.3* 12.4.1.4* 12.4.1.5* 12.4.1.6* Related Commands neighbor peer-group (assigning peers) — assigns a peer to a peer-group. neighbor peer-group (creating group) — creates a peer group. show ip bgp regexp Display the subset of the BGP routing table matching the regular expressions specified.
Example (S4810) Field Description Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then non-BGP routes exist in the router’s routing table. Metric Displays the BGP router’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight Path Lists all the AS paths the route passed through to reach the destination network.
Field Description BGP router identifier Displays the local router ID and the AS number. BGP table version Displays the BGP table version and the main routing table version. network entries Displays the number of network entries, route paths, and the amount of memory used to process those entries. paths Displays the number of paths and the amount of memory used. denied paths Displays the number of denied paths and the amount of memory used.
BGP table version is 34, main routing table version 34 9 network entrie(s) using 1372 bytes of memory 5 paths using 380 bytes of memory 4 denied paths using 164 bytes of memory BGP-RIB over all using 385 bytes of memory 2 BGP path attribute entrie(s) using 168 bytes of memory 1 BGP AS-PATH entrie(s) using 39 bytes of memory 1 BGP community entrie(s) using 43 bytes of memory 2 neighbor(s) using 7232 bytes of memory Neighbor AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/Pfx 100.10.10.
timers bgp extended Adjust the BGP idle holdtime for all the BGP neighbors. Syntax timers bgp extended idle-holdtime To return to the default, use the no timers bgp extended command. Parameters extended idle- holdtime Defaults Enter a number for the time interval, in seconds, for the peer to be idle state. The range is from 1 to 32767. The default is 15 seconds. The default idle-holdtime is 15 seconds.
distance bgp Define an administrative distance for routes. Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command. Parameters external-distance Enter a number to assign to routes learned from a neighbor external to the AS. The range is from 1 to 255. The default is 20. internal-distance Enter a number to assign to routes learned from a router within the AS. The range is from 1 to 255. The default is 200.
Example Field Description Path Lists all the ASs the dampened route passed through to reach the destination network. Dell>show ip bgp dampened-paths BGP table version is 210708, local router ID is 63.114.8.
● If the rt option comes after soo, without the additive option, rt overrides the communities soo sets. ● If the rt with the additive option comes after soo, rt adds the communities soo sets. Related Commands set extcommunity soo — sets the extended community site-of-origin in the route-map. set extcommunity soo To set extended community site-of-origin in Route Map, use this feature.
Usage Information Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp paths extcommunity command shown in the following example. Field Description Address Displays the internal address where the path attribute is stored. Hash Displays the hash bucket where the path attribute is stored. Refcount Displays the number of BGP routes using these extended communities.
bgp soft-reconfig-backup To avoid the peer from resending messages, use this command only when route-refresh is not negotiated. Syntax bgp soft-reconfig-backup To return to the default setting, use the no bgp soft-reconfig-backup command. Defaults Disabled Command Modes ROUTER BGP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug ip bgp ipv6 unicast soft-reconfiguration Enable soft-reconfiguration debugging for IPv6 unicast routes. Syntax debug ip bgp [ipv4-address | ipv6-address | peer-group-name] ipv6 unicast soft-reconfiguration To disable debugging, use the no debug ip bgp [ipv4-address | ipv6-address | peergroup-name] ipv6 unicast soft-reconfiguration command.
show ipv6 prefix-list Displays the specified IPv6 prefix list. Syntax show ipv6 prefix-list detail {prefix-list name} | summary Parameters detail Display a detailed description of the selected IPv6 prefix list. prefix-list name Enter the name of the prefix list. NOTE: There is a 140-character limit for prefix list names. summary Display a summary of RPF routes. Command Modes EXEC Supported Modes Full–Switch Command History Command History Related Commands Version Description 9.9(0.
11 Configuration Cloning Configuration Cloning enables you to clone the configuration from one aggregator to the other. It identifies a source aggregator where running configuration is check-pointed, extracted and downloaded to the target aggregator for further use. The target aggregator checks the compatibility of the cloning file regarding the mode, port types and optional modules.
Command History Version Description 9.10(0.0) Introduced on the FN IOM and M I/O Aggregator. clone-config create Create the cloning configuration. Syntax clone-config create [file-name filename][output xml] Parameters create Enter the keyword create to create the cloning configuration file. file-name Enter the keywords file-name to save the cloning configuration in user-defined filename. By default, it gets stored in flash under the filename cloning-config.
12 Content Addressable Memory (CAM) Content addressable memory (CAM) commands are supported on the Dell Networking operating software on the platform. NOTE: If you are using these features for the first time, contact Dell Networking Technical Assistance Center (TAC) for guidance. Topics: • CAM Profile Commands CAM Profile Commands The CAM profiling feature allows you to partition the CAM to best suit your application.
● ● ● ● EcfmAcl: 0 nlbclusteracl: 0 FcoeAcl: 4 iscsiOptAcl: 2 l2acl number Enter the keyword l2acl and then the number of l2acl blocks. The range is from 1 to 8. ipv4acl number Enter the keyword ipv4acl and then the number of FP blocks for IPv4. The range is from 0 to 8. ipv6acl number Enter the keyword ipv6acl and then the number of FP blocks for IPv6. The range is from 0 to 4. ipv4qos number Enter the keyword ipv4qos and then the number of FP blocks for IPv4. The range is from 0 to 8.
[vman-qos | vman--qos-dual number | vmanqos-dual-fp number ] ipv4pbr The ipv6acl range must be a factor of 2. The vman-qos-dual-fp number must be entered as a multiple of 4. number Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Added the keyword nlbcluster ACL. 9.4.(0.0) Added support for PBR. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
cam-threshold Configure CAM threshold value for sending the syslog message on CAM usage. Configure silence period for stop receiving syslog message on CAM usage. Syntax cam-threshold threshold {default | threshold-percent} silence-period {default | silence-period-value} NOTE: This command is applicable only in Full-Switch mode. Defaults Parameters Enabled threshold default Enter the keyword default for CAM usage threshold for notification of the CAM usage through syslog message.
Command History Usage Information Example (Default) Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The display reflects the settings implemented with the cam-acl command.
fedgovacl : nlbclusteracl: 0 0 show cam-acl-egress Display the details of the FP groups allocated for the egress ACL. Syntax show cam-acl-egress Defaults none Command Modes Configuration Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The display reflects the settings implemented with the cam-acl-egress command.
13 Control Plane Policing (CoPP) The Dell Networking OS supports the following CoPP commands. Topics: • • • • • • • control-plane-cpuqos service-policy rate-limit-cpu-queues service-policy rate-limit-protocols show cpu-queue rate cp show ip protocol-queue-mapping show ipv6 protocol-queue-mapping show mac protocol-queue-mapping control-plane-cpuqos To manage control-plane traffic, enter control-plane mode and configure the switch. Syntax control-plane-cpuqos Defaults Not configured.
Related Commands qos-policy-input — creates a QoS input policy map. policy-map-input — creates an input policy map. service-policy rate-limit-protocols Apply a policy for the system to rate limit control protocols on a per-protocol basis. Syntax service-policy rate-limit-protocols policy-name Parameters Defaults policy-name Enter the service-policy name, using a string up to 32 characters. Not configured.
Q1 Q2 Q3 Q4 Q5 Q6 Q7 Q8 Q9 Q10 Q11 300 300 400 2000 300 400 400 400 600 300 300 50 50 50 50 50 50 50 50 50 50 50 show ip protocol-queue-mapping Display the queue mapping for each configured protocol. Syntax show ip protocol-queue-mapping Defaults Not configured. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
14 u-Boot All commands in this chapter are in u-Boot mode. These commands are supported on the Dell Networking Aggregator only. To access this mode, hit any key when the following line appears on the console during a system boot: Hit any key to stop autoboot: You enter u-Boot immediately, as indicated by the BOOT_USER# prompt. NOTE: Only the most frequently used commands available in uBoot mode are described in this chapter. In uBoot mode, you cannot use the Tab key for command completion.
boot show net config retries Show the number of retries for network boot configuration failure. Syntax boot show net config retries Command Modes uBoot Supported Modes All Modes Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
default gateway Set the default gateway IP address. Syntax default-gateway Command Modes uBoot Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. enable Change the access privilege level. Syntax enable [user| admin] Command Modes uBoot Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
show number of retries for network boot config failure boot write net config retries write number of retries for network boot config failure boot zero [primary|secondary|default] zero operating system boot parameters default-gateway default-gateway - set the default gateway ip address enable [user|admin] change access privilege level help display help menu -(36%)-Use to continue, q to stop: BOOT_USER # ignore enable password Ignore the enabled password.
Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. no default gateway Clear the default gateway IP address. Syntax no default-gateway Command Modes uBoot Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. no interface management ethernet ip address Clear the management port IP address and mask.
show boot blc Show the boot loop counter value. Syntax show boot blc Command Modes uBoot Supported Modes All Modes Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. BOOT_USER # show boot blc ? Total 1 possible command found.
Supported Modes All Modes Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. BOOT_USER # show bootflash GENERAL BOOTFLASH INFO ====================== Bootflash Partition A: Dell Force10 Networks System Boot Official IOM_LP_IMG_BOOT_LOADER, BSP Release 4.0.1.
file name Management Etherenet IP address Server IP address Default Gateway IP address Management Etherenet MAC address : : : : : FTOS-XL-8-3-16-99.bin 10.16.130.134/16 10.16.127.53 15.0.0.1 00:01:E8:43:DE:DF BOOT_USER # show default gateway Displays the default gateway IP address. Syntax show default-gateway Command Modes uBoot Supported Modes All Modes Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. BOOT_USER # show interface management port config Management ethernet Port Configuration: no Auto Negotiate Management ethernet Port Configuration: 100M Management ethernet Port Configuration: full duplex BOOT_USER # syntax help Show the syntax information.
15 Data Center Bridging (DCB) Data center bridging (DCB) refers to a set of IEEE Ethernet enhancements that provide data centers with a single, robust, converged network to support multiple traffic types, including local area network (LAN), server, and storage traffic. DCB features are auto-configured in standalone mode. The Dell Networking OS commands for DCB features include 802.1Qbb priority-based flow control (PFC), 802.
• • • • • • • • • • • • • • • • • • • • • • priority priority-group bandwidth pfc priority-pgid qos-policy-output ets qos-policy-buffer priority-list scheduler show dcb show interface dcbx detail show interface ets show interface pfc show interface pfc statistics show qos priority-groups show qos dcb-map show stack-unit stack-ports ets details dcb pfc-shared-buffer-size dcb pfc-total-buffer-size dcb-buffer-threshold dcb enable pfc-queues dcb {ets | pfc} enable service-class buffer shared-threshold-weight s
advertise dcbx-tlv On a DCBX port with a manual role, configure the PFC and ETS TLVs advertised to DCBX peers. Syntax advertise dcbx-tlv {ets-conf | ets-reco | pfc} [ets-conf | ets-reco | pfc] [ets-conf | ets-reco | pfc] To remove the advertised ETS TLVs, use the no advertise dcbx-tlv command. Parameters Defaults {ets-conf | etsreco | pfc} Enter the PFC and ETS TLVs advertised, where: ● ets-conf: enables the advertisement of ETS configuration TLVs.
Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The unit of bandwidth percentage is 1%. A bandwidth percentage of 0 is allowed and disables the scheduling of that class. If the sum of the bandwidth percentages given to all eight classes exceeds 100%, the bandwidth percentage automatically scales down to 100%.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform. Usage Information You can configure up to a maximum of four lossless (PFC) queues. By configuring four lossless queues, you can configure four different priorities and assign a particular priority to each application that your network is used to process.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. clear ets counters Clear ETS TLV counters. Syntax Parameters clear ets counters [tengigabitethernet slot/port] slot/port Enter the slot/port number. Command Modes ● EXEC Privilege Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.
dcb enable pfc-queues Configure the number of PFC queues. Syntax dcb enable pfc-queues value Parameters Default value Enter the number of PFC queues. The range is from 1 to 4. The number of ports supported based on lossless queues configured will depend on the buffer. 2 Command Modes CONFIGURATION mode Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Supported on the FN 2210S Aggregator. 9.3(0.
Example (Disable) Version Description 8.3.17.0 Supported on the M I/O Aggregator.
Dell(conf)#end Dell#Mar 18 00:35:19: %STKUNIT0-M:CP %SYS-5-CONFIG_I : Configured from console Dell#write memory ! Mar 18 00:35:24: %STKUNIT0-M:CP %FILEMGR-5-FILESAVED: Copied running-config to startup-config in flash by default Dell# Dell#reload Proceed with reload [confirm yes/no]: y syncing disks... done unmounting file systems... unmounting /f10/flash (/dev/ld0e)... unmounting /usr (mfs:35)... unmounting /lib (mfs:24)... unmounting /f10 (mfs:21)... unmounting /tmp (mfs:15)... unmounting /kern (kernfs)...
● auto-upstream: configures the port to receive a peer configuration. The configuration source is elected from auto-upstream ports. ● auto-downstream: configures the port to accept the internally propagated DCB configuration from a configuration source. ● manual: configures the port to operate only on administer-configured DCB parameters. The port does not accept a DCB configuration received form a peer or a local configuration source.
debug dcbx Enable DCBX debugging. Syntax debug dcbx {all | auto-detect-timer | config-exchng | fail | mgmt | resource | sem | tlv} To disable DCBX debugging, use the no debug dcbx command. Parameters Defaults {all | autodetect-timer | config-exchng | fail | mgmt | resource | sem | tlv} Enter the type of debugging, where: ● all: enables all DCBX debugging operations. ● auto-detect-timer: enables traces for DCBX auto-detect timers. ● config-exchng: enables traces for DCBX configuration exchanges.
fc-map In an FCoE map, configure the FCoE mapped address prefix (FC-MAP) value which is used to identify FCoE traffic transmitted on the FCoE VLAN for the specified fabric. Syntax Parameters fc—map fc-map-value fc-map-value Enter the unique MAC address prefix used by a SAN fabric. The range of FC-MAP values is from 0EFC00 to 0EFCFF. Defaults None Command Modes FCoE MAP Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.
● Vlan priority: 3 Command Modes CONFIGURATION INTERFACE Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Supported on the FN2210S Aggregator. 9.3(0.0) Introduced on the M I/O Aggregator. An FCoE map is a template used to map FCoE and FC parameters in a converged fabric.
iscsi priority-bits Configure the iSCSI priority advertised for the iSCSI protocol in application priority TLVs. Syntax iscsi priority-bits priority-bitmap To remove the configured iSCSI priority, use the no iscsi priority-bits command. Parameters Defaults priority-bitmap Enter the priority-bitmap range. The range is from 1 to FF. 0x10 Command Modes PROTOCOL LLDP Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.
interface vlan (NPIV proxy gateway) Create a dedicated VLAN to be used to send and receive Fibre Channel traffic over FCoE links between servers and a fabric over an Aggregator with the PMUX module of NPIV proxy gateway. Syntax interface vlan vlan-id Parameters Defaults vlan-id Enter a number as the VLAN Identifier. The range is 1 to 4094. Not configured. Command Modes CONFIGURATION Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.
Usage Information By applying a DCB input policy with PFC enabled, you enable PFC operation on ingress port traffic. To achieve complete lossless handling of traffic, also enable PFC on all DCB egress ports or configure the dot1p priority-queue assignment of PFC priorities to lossless queues (refer to pfc no-drop queues). To disable PFC operation on an interface, enter the no pfc mode on command in DCB Input Policy Configuration mode.
priority Configure the priority for the PFC threshold to be allocated to the buffer space parameters.
priority-group bandwidth pfc Configure the ETS bandwidth allocation and PFC mode used to manage port traffic in an 802.1p priority group. Syntax Parameters priority-group group-num {bandwidth percentage| strict-priority} pfc {on | off} priority-group group-num bandwidth percentage Defaults Enter the keyword priority-group followed by the number of an 802.1p priority group. Use the priority-pgid command to create the priority groups in a DCB map.
priority-pgid Assign 802.1p priority traffic to a priority group in a DCB map. Syntax priority-pgid dot1p0_group-num dot1p1_group-num dot1p2_group-num dot1p3_group-num dot1p4_group-num dot1p5_group-num dot1p6_group-num dot1p7_group-num Parameters dot1p0_groupnum Enter the priority group number for each 802.1p class of traffic in a DCB map.
qos-policy-output ets To configure the ETS bandwidth allocation and scheduling for priority traffic, create a QoS output policy. Syntax qos-policy-output policy-name ets To remove the QoS output policy, use the no qos-policy-output ets command. Parameters policy-name Enter the policy name. The maximum is 32 characters. Command Modes CONFIGURATION Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
size Size of the ingress buffer in KB. Enter a number in the range of 0 to 7787. The default is 45 KB. pause-threshold Buffer limit for pause frames to be sent threshold-value Buffer limit at which the port sends the pause to peer in KB. Enter a number in the range of 0 to 7787. The default is 10 KB. resume-offset Buffer offset limit for resuming in KB threshold-value Buffer offset limit at which the port resumes the peer in KB. Enter a number in the range of 1 to 7787. The default is 10 KB.
Defaults none Command Modes PRIORITY-GROUP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default: ● All 802.1p priorities are grouped in priority group 0. ● 100% of the port bandwidth is assigned to priority group 0. The complete bandwidth is equally assigned to each priority class so that each class has 12 to 13%.
show dcb Displays the data center bridging status, the number of PFC-enabled ports, and the number of PFC-enabled queues. Syntax show dcb [stack-unit unit-number] Parameters unit number Enter the DCB unit number. The range is from 0 to 5. Command Modes EXEC Privilege Supported Modes All Modes Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.
Usage Information To clear DCBX frame counters, use the clear dcbx counters interface stack-unit/port command. The following describes the show interface dcbx detail command shown in the following example. Field Description Interface Interface type with chassis slot and port number. Port-Role Configured the DCBX port role: auto-upstream, auto-downstream, config-source, or manual.
Field Description Peer DCBX Acknowledgement number transmitted in Control TLVs received from the peer Status: device. Acknowledgment Number Example Total DCBX Frames transmitted Number of DCBX frames sent from the local port. Total DCBX Frames received Number of DCBX frames received from the remote peer port. Total DCBX Frame errors Number of DCBX frames with errors received. Total DCBX Frames unrecognized Number of unrecognizable DCBX frames received.
show interface ets Displays the ETS configuration applied to egress traffic on an interface, including priority groups with priorities and bandwidth allocation. Syntax Parameters show interface port-type slot/port ets {summary | detail} port-type slot/ port ets Enter the port-type slot and port ETS information. {summary | detail} Enter the keyword summary for a summary list of results or enter the keyword detail for a full list of results.
Field Description ● Internally propagated: ETS configuration parameters were received from the configuration source. Example (Summary) 384 ETS DCBX Oper status Operational status of the ETS configuration on the local port: match or mismatch. Reason Reason displayed when the DCBx operational status for ETS on a port is down. State Machine Type Type of state machine used for DCBX exchanges of ETS parameters: Feature — for legacy DCBX versions; Asymmetric — for an IEEE version.
1 13% ETS 2 13% ETS 3 13% ETS 4 12% ETS 5 12% ETS 6 12% ETS 7 12% ETS Oper status is init Conf TLV Tx Status is disabled Traffic Class TLV Tx Status is disabled Example (Detail) Dell(conf)# show interfaces tengigabitethernet 0/1 ets detail Interface TenGigabitEthernet 0/1 Max Supported TC Groups is 4 Number of Traffic Classes is 8 Admin mode is on Admin Parameters : -----------------Admin is enabled TC-grp Priority# Bandwidth TSA 0 0,1,2,3,4,5,6,7 100% ETS 1 0% ETS 2 0% ETS 3 0% ETS 4 0% ETS 5 0% ETS 6 0%
0 Input Conf TLV Pkts, 0 Output Conf TLV Pkts, 0 Error Conf TLV Pkts 0 Input Traffic Class TLV Pkts, 0 Output Traffic Class TLV Pkts, 0 Error Traffic Class TLV Pkts show interface pfc Displays the PFC configuration applied to ingress traffic on an interface, including priorities and link delay. Syntax show interface port-type slot/port pfc {summary | detail} Parameters port-type slot/ port pfc Enter the port-type slot and port PFC information.
Field Description ● Internally propagated: PFC configuration parameters were received from the configuration source. Example (Summary) PFC DCBX Oper status Operational status for the exchange of the PFC configuration on the local port: match (up) or mismatch (down). Reason Reason displayed when the DCBx operational status for PFC on a port is down.
Admin is enabled Remote is enabled, Priority list is 4 Remote Willing Status is enabled Local is enabled Oper status is Recommended PFC DCBX Oper status is Up State Machine Type is Feature TLV Tx Status is enabled PFC Link Delay 45556 pause quantams Application Priority TLV Parameters : -------------------------------------FCOE TLV Tx Status is disabled ISCSI TLV Tx Status is disabled Local FCOE PriorityMap is 0x8 Local ISCSI PriorityMap is 0x10 Remote FCOE PriorityMap is 0x8 Remote ISCSI PriorityMap is 0x8
Example (Summary) Version Description 9.4(0.0) Supported on the FN I/O aggregator. This command is supported in Programmable-Mux (PMUX) mode only. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. Use the show qos dcb-map command to display the enhanced transmission selection (ETS) and priority-based flow control (PFC) parameters used to configure server-facing Ethernet ports. The following table describes the show qos dcb-map output shown in the example below.
Example Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Configure the maximum shared buffer available for PFC traffic. You can choose to increase or decrease the shared buffer that is allocated in the system by default. Configure the shared buffer size less than the total PFC buffer size.
dcb-buffer-threshold Configure the profile name for the DCB buffer threshold. Syntax Parameters Default dcb buffer—threshold profile-name profile-name Enter the name of the profile, which can be a string of up to 32 characters in length. None Command Modes CONFIGURATION mode Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform.
network is used to process. For example, you can assign a higher priority for time-sensitive applications and a lower priority for other services, such as file transfers. You can configure the amount of buffer space to be allocated for each priority and the pause or resume thresholds for the buffer. This method of configuration enables you to effectively manage and administer the behavior of lossless queues.
Default The default threshold weight on the shared buffer for each queue is 9. Therefore, each queue can consume up to 66.67 percent of available shared buffer by default. Command Modes INTERFACE mode Supported Modes Full–Switch Usage Information Command History Example You can configure all the data queues. You can configure queues 0-7. The following table describes the mapping between the threshold weight of the shared buffer on the queue.
Example Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
16 Dynamic Host Configuration Protocol Dynamic host configuration protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on configuration policies determined by network administrators. An Aggregator can operate as a DHCP client. As a DHCP client, the Aggregator requests an IP address from a DHCP server.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Entering after the clear ip dhcp binding command clears all the IPs from the binding table. debug ip dhcp server Display the Dell Networking OS debugging messages for DHCP. Syntax debug ip dhcp server [events | packets] Parameters Defaults events Enter the keyword events to display the DHCP state changes.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable Disable the DHCP server. Syntax disable DHCP Server is disabled by default. To enable the system to be a DHCP server, use the no disable command. Defaults Disabled Command Modes DHCP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. excluded-address Prevent the server from leasing an address or range of addresses in the pool. Syntax excluded-address [address | low-address high-address] Parameters Defaults address Enter a single address to be excluded from the pool. low-address Enter the lowest address in a range of addresses to be excluded from the pool.
Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.14.1.3 This command replaces host command. Introduced on S3048–ON, S4048–ON, S4048T-ON, S6000–ON, S6010–ON, S6100–ON, Z9100–ON, S3100, S6000, S4810, S4820T, S5048F-ON, MXL, FN-IOM, and C9010. When you upgrade the Dell EMC Networking OS from an earlier version to 9.14.1.
Parameters Defaults days Enter the number of days of the lease. The range is from 0 to 31. hours Enter the number of hours of the lease. The range is from 0 to 23. minutes Enter the number of minutes of the lease. The range is from 0 to 59. infinite Specify that the lease never expires. 24 hours Command Modes DHCP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. network Specify the range of addresses in an address pool. Syntax Parameters Defaults network network /prefix-length network/ prefixlength Specify a range of addresses. Prefix-length range is from 17 to 31. none Command Modes DHCP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp conflict Display the address conflict log. Syntax show ip dhcp conflict address Parameters Defaults address Display a particular conflict log entry. none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp server Display the DHCP server statistics.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. In the I/O Aggregator, the DHCP client is enabled only on the default VLAN and management interface 0/0. Use the ip address command to assign a static IP address that overwrites the dynamically assigned IP address. Other Commands Supported by the DHCP Client The following commands are supported by the DHCP client.
Command Modes EXEC Privilege Supported Modes All Modes Default Command History None Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. debug ip dhcp client packets Enable the display of log messages for all DHCP packets sent and received on DHCP client interfaces.
Usage Information Version Description 9.2(0.0) Supported on the M I/O Aggregator. When you enter the release dhcp command, although the IP address that was dynamically-acquired from a DHCP server is released from an interface, the ability to acquire a new DHCP server-assigned address remains in the running configuration for the interface. To acquire a new IP address, enter either the renew dhcp command at the EXEC privilege level or the ip address dhcp command at the interface configuration level.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. show ip dhcp lease Displays lease information about the dynamic IP address currently assigned to a DHCP client-enabled interface. Syntax show ip dhcp lease[interface type slot/port] Parameters interface type slot/port Display DHCP client statistics on the specified interface.
arp inspection-limit Configure dynamic ARP inspection rate-limit to verify the rate of ARP packet received in a port on a specific interval. Syntax arp inspection-limit {rate pps [interval seconds]} Defaults None Command Modes INTERFACE CONFIGURATION Supported Modes Full-Switch Parameters Command History rate pps Enter the keyword rate then the packet per second (pps) value. The range is from 1 to 2048. The default is 15.
Related Commands show ip dhcp snooping — displays the contents of the DHCP binding table. clear ipv6 dhcp snooping binding Clear all the DHCPv6 snooping binding database entries. Syntax clear ipv6 dhcp snooping binding Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.
Related Commands Version Description 9.14(1.0) Introduced on the C9010, MXL, FN IOM, S3100 series, S4810, S4820T, S3048–ON, S4048–ON, S4048T-ON, S5048F-ON, S6000, S6000–ON, S6010–ON, S6100–ON, and Z9100–ON. ● ipv6 dhcp relay source-interface— Configure DHCP relay source IPv6 interface. ipv6 dhcp relay source-interface Configure DHCP relay source IPv6 interface.
ip dhcp snooping Enable DHCP snooping globally. Syntax [no] ip dhcp snooping Defaults Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When enabled, no learning takes place until you enable snooping on a VLAN.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ipv6 dhcp snooping database write-delay To set time interval for storing the snooping binding entries in a file. Syntax [no] ipv6 dhcp snooping database write-delay value To disable the storing of snooping binding entries in a file, use the no ipv6 dhcp snooping writedelay command. Parameters Defaults value The range is from 5 to 21600. The value of the minutes range is from 5 min. to 15 days.
Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Instructions You can map multiple IP addresses to the same MAC address. Related Commands show ip dhcp snooping — displays the contents of the DHCP binding table. ip dhcp snooping database renew Renew the binding table. Syntax ip dhcp snooping database renew Defaults none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL. ip dhcp source-address-validation Enable the IP Source Guard. Syntax Parameters Defaults [no] ip dhcp source-address-validation [ipmac] ipmac Enable IP+MAC Source Address Validation. Disabled Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ipv6 dhcp snooping vlan Enable ipv6 DHCP Snooping on VLAN or range of VLANs. Syntax [no] ip dhcp snooping vlan vlan-id To disable the ipv6 dhcp snooping on VLAN basis or range of VLAN, use the no ipv6 dhcp snooping vlan command. Parameters Defaults vlan-id Enter the name of a VLAN id or list of the VLANs to enable DHCP Snooping. Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip dhcp snooping — clears the contents of the DHCP binding table. show ipv6 DHCP snooping Display the DHCPv6 snooping database. Syntax show ipv6 dhcp snooping Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL.
ipv6 DHCP snooping verify mac-address Configure to enable verify source mac-address against ipv6 DHCP packet mac address. Syntax [no] ipv6 dhcp snooping verify mac-address To disable verify source mac-address against ipv6 DHCP packet mac address, use the no ipv6 dhcp snooping verify mac-address command. Defaults Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History 418 Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL.
17 Equal Cost Multi-Path (ECMP) Equal cost multi-path (ECMP) is supported on the Dell Networking OS. Topics: • • • • • • • • • ecmp-group hash-algorithm hash-algorithm ecmp hash-algorithm seed ip ecmp-group link-bundle-distribution trigger-threshold link-bundle-monitor enable show config show link-bundle distribution ecmp-group Provides a mechanism to monitor traffic distribution on an ECMP link bundle.
[number] lag {checksum | crc | xor} [number] nh-ecmp {checksum | crc | xor}[number] linecard number ip-sa-mask value ip-da-mask value | seed seedvalue }hash-algorithm {ecmp {crc16 | crc16cc | crc32MSB | crc32LSB | crcupper | dest-ip | flow-based-hashing {crc16|crc16cc|crc32MSB|crc32LSB|xor1| xor2|xor4|xor8|xor16}|lsb | xor1 | xor2 | xor4 | xor8 | xor16}[[hg {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16}]| [lag {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 |
| xor16 }| lsb | xor1 | xor2 | xor4 | xor8 | xor16 crc16 |crc16cc |crc32MSB |crc32LSB |xor1 |xor2 |xor4 |xor8 | xor16 ● lsb: Returns the LSB of the key as the hash ● xor1: Use CRC16_BISYNC_AND_XOR1 — Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor1 ● xor2: Use CRC16_BISYNC_AND_XOR2 — Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor2 ● xor4: Use CRC16_BISYNC_AND_XOR4 — Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor4 ● xor8: Use CRC16_BISYNC_AND_XOR8 — Upper 8 bits of CRC16-BISYNC and lower 8
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. Added flow-based-hashing support for hashing on ECMP. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To ensure that CRC is not used for LAG, set the default hash-algorithm method on ExaScale systems. For example,hash-algorithm ecmp xor lag checksum nh-ecmp checksum. To achieve the functionality of hash-align on the ExaScale platform, do not use CRC as a hash-algorithm method.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The hash value calculated with the hash-algorithm command is unique to the entire chassis. The default ECMP hash configuration is crc-lower. This command takes the lower 32 bits of the hash key to compute the egress port and is the “fall-back” configuration if you have not configured anything else.
ip ecmp-group Enable and specify the maximum number of ecmp that the L3 CAM hold for a route, By default, when maximum paths are not configured, the CAM can hold a maximum of 16 ecmp per route. Syntax ip ecmp-group {maximum-paths | {number} {path-fallback} To negate a command, use the no ip ecmp-group maximum-paths command. Parameters Defaults maximum-paths Specify the maximum number of ECMP for a route. The range is 2 to 64. path-fallback Use the keywords path-fallback to enable this feature.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show config Display the ECMP configuration. Syntax show config Command Modes CONFIGURATION-ECMP-GROUP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
18 FC FLEXIO FPORT The switch is a blade switch which is plugged into the Dell M1000 Blade server chassis.The blade module contains two slots for pluggable flexible module. With single FC Flex IO module, 4 ports are supported, whereas 8 ports are supported with both FC Flex IO modules. Each port can operate in 2G, 4G or 8G Fiber Channel speed. The topology-wise, FC Flex IOM is directly connected to a FC Storage.
• • • • • • show show show show show show fc switch fc zoneset fc zone fc alias fcoe-map system stack-unit port-group portmode feature fc Enable feature fc with FPort functionality. Syntax Parameters feature fc fport domain-id range Range Enter the range from 1 to 239. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Alias name(word) Dell(conf-fc-zone-test)#member Related Commands show fc zone — displays the configured zone. show fcoe-map — displays the fabric parameters. fc alias Create a zone alias name. Syntax fc alias ZoneAliasNamemember name To delete a zone alias name, use the no fc zone ZoneAliasName command. Parameters ZoneAliasNamem Enter the zone alias name. ember name Enter the WWPN, port ID, or domain/port.
Version Description 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000. Example Related Commands Dell(conf)#fc zoneset test1 Dell(conf-fc-zoneset-test1)#member ? WORD Zone Name Dell(conf-fc-zoneset-test1)#member show fc zoneset — displays the configured and active zoneset. show fcoe-map — displays the fabric parameters. fcoe-map Create an FCoE map which contains the parameters used to configure the links between server CNAs and a SAN fabric.
fabric Apply an FCoE map on a fabric-facing Fibre Channel (FC) port. Syntax fabric map-name Parameters Defaults map-name Maximum: 32 alphanumeric characters. None Command Modes INTERFACE FIBRE_CHANNEL Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.0(1.3) Introduced on the S5000. An FCoE map is a template used to map FCoE and FC parameters in a converged fabric.
Example Related Commands Dell(conf)# fcoe-map default_full_fabric Dell(conf-fcoe-default_full_fabric)# fc-fabric Dell(conf-fmap-default_full_fabric-fcfabric)# active-zoneset zs1 show fc zoneset — displays the configured and active zoneset. stack-unit port-group port portmode Convert the external ports to Fibre Channel or Ethernet mode.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000. Dell#show fc ns switch Total number of devices = 1 Switch Name 10:00:5c:f9:dd:ef:0a:00 Domain Id 1 Switch Port 53 Port Id 01:35:00 Port Name 10:00:8c:7c:ff:17:f8:01 Node Name 20:00:8c:7c:ff:17:f8:01 Class of Service 8 IP Address Symbolic Port Name Brocade-1860 | 3.0.3.
Class of Service IP Address Symbolic Port Name | Symbolic Node Name Port Type Registered with NameServer Registered for SCN Dell# Dell#show fc ns fabric brief Total number of devices = 2 Intf# Domain FC-ID Enode-WWNN 9 2 02:09:00 22:11:0e:fc:00:00:00:88 11 2 02:0b:00 21:11:0e:fc:00:00:00:77 Dell# 8 Brocade-1860 | 3.0.3.0 | DV-SP-SERVER2 | (NULL) Node port Yes Yes Enode-WWPN 32:11:0e:fc:00:00:00:88 31:11:0e:fc:00:00:00:77 show fc switch Display the switch configuration for Fibre Channel capability.
active Enter the keyword active to display the active zonesets. merged Enter the keyword merged to display the merge active zones. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000.
● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000. Dell#show fc zone ZoneName ZoneMember ======================================================= brcd_sanb brcd_cna1_wwpn1 sanb_p2tgt1_wwpn Dell# Related Commands fc zone — creates a zone. show fc alias Display the configured alias.
Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1.1.0 Introduced on the S5000. Use the show fcoe-map command to display the FC and FCoE parameters used to configure serverfacing Ethernet (FCoE) and fabric-facing FC ports in all FCoE maps on the switch.
Example Related Commands Version Description 9.6(0.0) Supported on the FN2210S Aggregator. Dell#show system stack-unit 0 port-group portmode PortGroupId Ports Mode(Curr Boot) Mode(Next Boot) 0 9 FC FC 0 10 FC FC 1 11 ETH ETH 1 12 FC FC Dell# stack-unit port-group port portmode — converts the external ports to Fibre Channel or Ethernet mode.
19 FIPS Cryptography To configure federal information processing standards (FIPS) cryptography, use the following commands on the switch. Topics: • • • • fips mode enable show fips status show ip ssh ssh fips mode enable Enable the FIPS cryptography mode on the platform. Syntax fips mode enable To disable the FIPS cryptography mode, use the no fips mode enable command.
Example Dell#show fips status FIPS Mode : Disabled Dell# Dell#show fips status FIPS Mode : Enabled Dell# show ip ssh Display information about established SSH sessions Syntax show ip ssh Defaults none Command Modes EXEC EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip ssh SSH server : enabled. SSH server version : v1 and v2.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. -c encryption cipher Enter the following encryption cipher to use. (For v2 clients only.) Without the FIPS mode enabled: ● 3des-cbc: Force ssh to use 3des-cbc encryption cipher. With the FIPS mode enabled: ● aes128–cbc: Force ssh to use the aes128–cbc encryption cipher. ● aes256–cbc: Force ssh to use the aes256–cbc encryption cipher. -l username (OPTIONAL) Enter the keyword —l then the user name used in this SSH session.
With FIPS mode enabled: Dell#ssh 10.11.8.12 ? -c Encryption cipher to use (for v2 client -l User name option -m HMAC algorithm to use (for v2 clients only) -p SSH server port option (default 22) Dell#ssh 10.11.8.12 -c ? aes128-cbc Force ssh to use aes128-cbc encryption cipher aes256-cbc Force ssh to use aes256-cbc encryption cipher Dell#ssh 10.11.8.
20 FIP Snooping In a converged Ethernet network, an Aggregator can operate as an intermediate Ethernet bridge to snoop on Fibre Channel over Ethernet Initialization Protocol (FIP) packets during the login process on Fibre Channel over Ethernet (FCoE) forwarders (FCFs). Acting as a transit FIP snooping bridge, the switch uses dynamically-created ACLs to permit only authorized FCoE traffic to be transmitted between an FCoE end-device and an FCF. This chapter describes the FIP snooping commands.
clear fip-snooping statistics Clear the statistics on the FIP packets snooped on all VLANs, a specified VLAN, or a specified port interface. Syntax Parameters clear fip-snooping statistics [interface vlanVlan-id| interfaceport-type port/slot|interface port-channel port-channel-number] vlan-id Enter the VLAN ID of the FIP packet statistics to be cleared. port type port/ slot Enter the port-type and slot number of the FIP packet statistics to be cleared.
● VLAN INTERFACE Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The maximum number of FCFs supported per FIP snooping-enabled VLAN is four. The maximum number of FIP snooping sessions supported per ENode server is 16.
Usage Information Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The maximum number of FCFs supported per FIP snooping-enabled VLAN is four. show fip-snooping statistics Displays statistics on the FIP packets snooped on all interfaces, including VLANs, physical ports, and port channels..
Field Description Number of VN Port Keep Alives Number of FIP-snooped VN port keep-alive frames received on the interface Number of Multicast Discovery Advertisements Number of FIP-snooped multicast discovery advertisements received on the interface Number of Unicast Discovery Advertisements Number of FIP-snooped unicast discovery advertisements received on the interface Number of FLOGI Number of FIP FLOGI accept frames received on the interface Accepts Number of FLOGI Number of FIP FLOGI reject fra
Dell# show fip-snooping statistics int tengigabitethernet 0/11 Number of Vlan Requests :1 Number of Vlan Notifications :0 Number of Multicast Discovery Solicits :1 Number of Unicast Discovery Solicits :0 Number of FLOGI :1 Number of FDISC :16 Number of FLOGO :0 Number of Enode Keep Alive :4416 Number of VN Port Keep Alive :3136 Number of Multicast Discovery Advertisement :0 Number of Unicast Discovery Advertisement :0 Number of FLOGI Accepts :0 Number of FLOGI Rejects :0 Number of FDISC Accepts :0 Number of
packet-type Specify the packet type. Options are: ● all ● discovery ● virtual-link-instantiation ● virtual-link-maintenance ● vlan-discovery all Enable for all the packet types. discovery Enable for FIP discovery solicits (enodes) and adverts (fcf). virtual-linkinstantiation Enable for flogi, fdisc and flogo packets. virtual-linkmaintenance Enable for clear virtual link and keepalive packets. vlan-discovery Enable for FIP VLAN requests and notifications. port-channel Port-channel interface.
Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. The following table describes the show fip-snooping enode command. Field Description ENode MAC MAC address of the ENode ENode Interface Slot/ port number of the interface connected to the ENode.
Field Description FKA_ADV_PERIO Period of time (in milliseconds) during which FIP keep-alive advertisements are D transmitted. No of ENodes Example Number of ENodes connected to the FCF Dell# show fip-snooping fcf FCF MAC FCF Interface No.
9a:01:18 20:01:00:0e:1e:06:01:5 Port WWNN 20:00:00:0e:1e:0c:54:a6 20:00:00:0e:1e:0c:54:a6 show fip-snooping statistics Displays statistics on the FIP packets snooped on all interfaces, including VLANs, physical ports, and port channels.. Syntax Parameters show fip-snooping statistics [interface vlan vlan-id | interface port-type port/slot | interface port-channel port-channel-number] vlan-id Enter the VLAN ID of the FIP packet statistics to be displayed.
Field Description Number of Multicast Discovery Advertisements Number of FIP-snooped multicast discovery advertisements received on the interface Number of Unicast Discovery Advertisements Number of FIP-snooped unicast discovery advertisements received on the interface Number of FLOGI Number of FIP FLOGI accept frames received on the interface Accepts Number of FLOGI Number of FIP FLOGI reject frames received on the interface Rejects Number of FDISC Number of FIP FDISC accept frames received on the in
Number Number Number Number Number Number Number Number Number Number Number Number Number Number Number Number Number Number Number Example (port channel) of of of of of of of of of of of of of of of of of of of Multicast Discovery Solicits Unicast Discovery Solicits FLOGI FDISC FLOGO Enode Keep Alive VN Port Keep Alive Multicast Discovery Advertisement Unicast Discovery Advertisement FLOGI Accepts FLOGI Rejects FDISC Accepts FDISC Rejects FLOGO Accepts FLOGO Rejects CVL FCF Discovery Timeouts VN Port S
FCOE VLAN List (Operational) : 1, 100 FCFs : 1 Enodes : 2 Sessions : 17 show fip-snooping vlan Display information on the FIP snooping operational VLANs. Syntax show fip-snooping vlan Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Introduced on the M I/O Aggregator.
21 Force10 Resilient Ring Protocol (FRRP) FRRP is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the spanning tree protocol (STP). The resilient ring protocol is an efficient protocol that transmits a high-speed token across a ring to verify the link status. All the intelligence is contained in the master node with practically no intelligence required of the transit mode. Important Points to Remember ● ● ● ● FRRP is media- and speed-independent.
● Topology change Rx and Tx counters ● The number of state change counters Example Dell#clear frrp Clear frrp statistics counter on all ring [confirm] yes Dell#clear frrp 4 Clear frrp statistics counter for ring 4 [confirm] yes Dell# Related Commands show frrp — displays the resilient ring protocol configuration. debug frrp Clear the FRRP statistics counters.
Defaults none Command Modes CONFIGURATION (conf-frrp) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. disable Disable the resilient ring protocol. Syntax disable To enable the Resilient Ring Protocol, use the no disable command. Defaults Disabled Command Modes CONFIGURATION (conf-frrp) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM.
Command Modes CONFIGURATION (conf-frrp) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command causes the Ring Manager to take ownership of the two ports after IFM validates the configuration. Ownership is relinquished for a port only when the interface does not play a part in any control VLAN, that is, the interface does not belong to any ring.
protocol frrp Enter the Resilient Ring Protocol and designate a ring identification. Syntax protocol frrp {ring-id} To exit the ring protocol, use the no protocol frrp {ring-id} command. Parameters Defaults ring-id Enter the ring identification number. The range is from 1 to 255. none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example (1) Example (2 Summary) Related Commands Dell#show frrp 1 Ring protocol 1 is in Master mode Ring Protocol Interface: Primary : TenGigabitEthernet 0/6 State: Forwarding Secondary: Port-channel 100 State: Blocking Control Vlan: 1 Ring protocol Timers: Hello-Interval 50 msec Dead-Interval 150 msec Ring Master's MAC Address is 00:01:e8:13:a3:19 Topology Change Statistics: Tx:110 Rx:45 Hello Statistics: Tx:13028 Rx:12348 Number of state Changes: 34 Member Vlans: 1000-1009 Dell# Dell#show frrp 2 summar
22 GARP VLAN Registration (GVRP) The Dell Networking Operating System (OS) supports the basic GVRP commands. The generic attribute registration protocol (GARP) mechanism allows the configuration of a GARP participant to propagate through a network quickly. A GARP participant registers or de-registers its attributes with other participants by making or withdrawing declarations of attributes. At the same time, based on received declarations or withdrawals, GARP handles attributes of other participants.
• • • • • show config show garp timers show gvrp clear gvrp statistics show vlan clear gvrp statistics Clear GVRP statistics on an interface. Syntax clear gvrp statistics interface interface Parameters interface interface Defaults Enter the following keywords and slot/port or number information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
disable Globally disable GVRP. Syntax disable To re-enable GVRP, use the no disable command. Defaults Enabled. Command Modes CONFIGURATION-GVRP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. gvrp enable — enables GVRP on physical interfaces and LAGs. protocol gvrp — access GVRP protocol. garp timers Set the intervals (in milliseconds) for sending GARP messages.
● Leave Timer — Leave announces the willingness to de-register with other participants. Together with Join, Leave messages help GARP participants complete attribute reregistration and deregistration. The leave timer starts after receipt of a leave message sent for de-registering some attribute information. If a Join message is not received before the Leave time expires, the GARP application entity removes the attribute information as requested.
Usage Information Fixed registration prevents an interface, configured using the command line, to belong to a VLAN (static configuration) from being unconfigured when it receives a Leave message. Therefore, Registration mode on that interface is fixed. Normal registration is the default registration. The port’s membership in the VLAN depends on GVRP. The interface becomes a member of a VLAN after learning about the VLAN through GVRP.
Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show garp timers GARP Timers Value (milliseconds) ---------------------------------------Join Timer 200 Leave Timer 600 LeaveAll Timer 10000 Dell# garp timers — sets the intervals (in milliseconds) for sending GARP messages. show gvrp Display the GVRP configuration.
Te 3/7 Te 3/8 Related Commands Disabled Disabled No No show gvrp statistics — displays the GVRP statistics. clear gvrp statistics Clear GVRP statistics on an interface. Syntax Parameters clear gvrp statistics {interface interface | summary} interface interface summary Defaults Enter the following keywords and slot/port or number information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Failed Registrations: 0 Dell# Related Commands show gvrp — displays the GVRP configuration. show vlan Display the global VLAN configuration. Syntax show vlan Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
23 Internet Group Management Protocol (IGMP) The Dell Networking OS supports IGMP snooping version 2 and 3 on all Dell Networking systems.
Important Points to Remember ● Dell Networking OS supports version 1, version 2, and version 3 hosts. ● Dell Networking OS IGMP snooping implementation is based on IP multicast address (not based on Layer 2 multicast mac-address) and the IGMP snooping entries are in Layer 3 flow table not in Layer 2 forwarding information base (FIB). ● Dell Networking OS IGMP snooping implementation is based on draft-ietf-magma-snoop-10. ● IGMP snooping is enabled by default on the switch.
debug ip igmp Enable debugging of IGMP packets. Syntax debug ip igmp [group address | interface] To disable IGMP debugging, enter the no ip igmp command. To disable all debugging, enter the undebug all command. Defaults Parameters Disabled group-address (OPTIONAL) Enter the IP multicast group address in dotted decimal format. interface (OPTIONAL) Enter the interface type and slot/port information: For a VLAN interface enter the keyword vlan followed by a number from 1 to 4094.
Defaults none Command Modes CONFIGURATION (conf-if-interface-slot/port) Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. ip igmp querier-timeout Change the interval that must pass before a multicast router decides that there is no longer another multicast router that should be the querier.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. ip igmp query-max-resp-time Set the maximum query response time advertised in general queries. Syntax ip igmp query-max-resp-time seconds To return to the default values, use the no ip igmp query-max-resp-time command. Parameters Defaults seconds Enter the number of seconds for the maximum response time. The range is from 1 to 25.
ip igmp snooping fast-leave Enable IGMP snooping fast-leave for this VLAN. Syntax ip igmp snooping fast-leave To disable IGMP snooping fast leave, use the no igmp snooping fast-leave command. Defaults Not configured. Command Modes INTERFACE VLAN — (conf-if-vl-n) Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator.
Parameters Defaults milliseconds Enter the interval in milliseconds. The range is from 100 to 65535. The default is 1000 milliseconds. 1000 milliseconds Command Modes INTERFACE VLAN Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator.
Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. This command enables the IGMP switch to send General Queries periodically. This behavior is useful when there is no multicast router present in the VLAN because the multicast traffic is not routed.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Dell#show ip igmp groups Total Number of Groups: 5 IGMP Connected Group Membership Group Address Interface Mode Uptime Expires Last Reporter 225.0.0.0 Vlan 100 IGMPv2 00:00:05 00:02:04 3.0.0.51 Member Ports: Po 2 225.0.0.2 Vlan 100 IGMPv2 00:00:05 00:02:04 3.0.0.51 Member Ports: Po 2 225.0.0.3 Vlan 100 IGMPv2 00:00:05 00:02:04 3.0.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
24 Interfaces This chapter defines the interface commands on the Aggregator switch. Topics: • • • • • • Basic Interface Commands Port Channel Commands Time Domain Reflectometer (TDR) Commands UDP Broadcast Port Interface Commands Virtual LAN (VLAN) Commands Basic Interface Commands The following commands are for Physical, Loopback, and Null interfaces. clear counters Clear the counters used in the show interfaces commands for VLANs, and physical interfaces, or selected ones.
Example Dell#clear counters Clear counters on all interfaces [confirm] clear dampening Clear the dampening counters on all the interfaces or just the specified interface. Syntax clear dampening [interface] Parameters Defaults interface (OPTIONAL) Enter any of the following keywords and slot/port or number to clear counters from a specified interface: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Usage Information Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command only works on ports that the system recognizes as CX4 ports. The figures below shows an attempt to configure an XFP port with the command after inserting a CX4 converter into the port. For details about using XFP ports with CX4 cables, refer to your FN IOM switch hardware guide.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. With each flap, the Dell Networking OS penalizes the interface by assigning a penalty (1024) that decays exponentially depending on the configured half-life. After the accumulated penalty exceeds the suppress threshold value, the interface moves to the Error-Disabled state.
errdisable recovery cause Enable automatic recovery of an interface from the Err-disabled state. Syntax errdisable recovery cause {bpduguard | fefd | maclearnlimit | arpinspection} To disable the automatic recovery, use the no errdisable recovery cause {bpduguard | fefd | maclearnlimit | arp-inspection} command. Parameters Defaults bpduguard Enter the keyword bpduguard to enable the timer to recover the interface from BPDU Guard error.
Usage Information Version Description 9.14(0.0) Introduced on the platforms S4048–ON, S6100–ON, Z9100–ON, S4048T-ON, S3048–ON, S6000, S6010–ON, S5048F-ON, FN-IOM, and MXL. 9.13(0.2P2) Introduced on the S3100. Whenever the Err-disable recovery timer is reconfigured, it will get effective only after the current timer expires.
● Starts when either the packet pointer or the buffer threshold is met (whichever is met first). When the discard threshold is met, packets are dropped. ● Ends when both the packet pointer and the buffer threshold fall below 50% of the threshold settings. The discard threshold defines when the interface starts dropping the packet on the interface. This may be necessary when a connected device does not honor the flow control frame sent by the switch.
Related Commands off off off off off off on off off off on off off off off off off on on on off off on on off off on on off on on on off off on on off off on on off off on on off off on on show running-config — displays the flow configuration parameters (non-default values only). interface Configure a physical interface on the switch.
interface loopback Configure a Loopback interface. Syntax interface loopback number To remove a loopback interface, use the no interface loopback number command. Parameters Defaults number Enter a number as the interface number. The range is from 0 to 16383. Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.
interface null Configure a Null interface on the switch. Syntax interface null number Parameters Defaults number Enter zero (0) as the Null interface number. Not configured; number = 0 Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You cannot delete the Null interface.
Command History Usage Information Version Description 9.14(0.0) Updated the error message when no ports are configured within the specified interface range. 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. When creating an interface range, interfaces appear in the order they are entered; they are not sorted. The command verifies that interfaces are present (physical) or configured (logical).
Dell(conf-if-range-te-0/1-5,vl-2-10,po-1-25)# no shutdown Dell(conf-if-range-te-0/1-5,vl-2-10,po-1-25)# Related commands show config (from INTERFACE RANGE mode) — Shows the bulk configuration interfaces. show interfaces status — Displays a summary of interface information. interface range macro (define) Defines a macro for an interface range and then saves the macro in the running configuration. Syntax define interface range macro name interface , interface , ...
interface range macro name Run the interface-range macro to automatically configure the pre-defined range of interfaces. Syntax Parameters Defaults interface range macro name name Enter the name of an existing macro. none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Example (Single Range) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Examples Dell(conf)#int vlan 1 Dell(conf-if-vl-1)# Dell(conf)#int vlan 3 Dell(conf-if-vl-3)# Related commands show vlan — Displays the current VLAN configuration on the switch. vlan tagged — Adds a Layer 2 interface to a VLAN as a tagged interface. vlan untagged — Adds a Layer 2 interface to a VLAN as an untagged interface. intf-type cr4 autoneg Set the interface type as CR4 with auto-negotiation enabled.
Usage Information Version Description 9.2(0.0) Supported on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When you configure keepalive, the system sends a self-addressed packet out of the configured interface to verify that the far end of a WAN link is up. When you configure no keepalive, the system does not send keepalive packets and so the local end of a WAN link remains up even if the remote end is down.
● IP source address ● IP destination address ● TCP/UDP source port ● TCP/UDP destination port load-balance hg Choose the traffic flow parameters the hash calculation uses while distributing the traffic across internal higig links.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. monitor interface Monitor counters on a single interface or all interfaces on a line card. The screen is refreshed every five seconds and the CLI prompt disappears. Syntax monitor interface [interface] To disable monitoring and return to the CLI prompt, press the q key.
Example (Single Interface) systest-3 Monitor time: 00:00:06 Refresh Intvl.
● All members must have the same link MTU value and the same IP MTU value. ● The port channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members. For example, if the members have a link MTU of 2100 and an IP MTU 2000, the port channel’s MTU values cannot be higher than 2100 for link MTU or 2000 bytes for IP MTU. VLANs: ● All members of a VLAN must have same IP MTU value. ● Members can have different Link MTU values.
MTU 12000 bytes, IP MTU 11982 bytes LineSpeed 10000 Mbit Flowcontrol rx on tx off ARP type: ARPA, ARP Timeout 04:00:00 Last clearing of "show interface" counters 03:56:48 Queueing strategy: fifo Input Statistics: User Information Both sides of the link must have auto-negotiation enabled or disabled for the link to come up. The following details the possible speed and auto-negotiation combinations for a line between two 10/100/1000 Base-T Ethernet interfaces.
Usage Information The following describes the interface command shown in the following example. This example sets a port as hybrid, makes the port a tagged member of VLAN 20, and an untagged member of VLAN 10, which becomes the native VLAN of the port. The port now accepts: ● untagged frames and classify them as VLAN 10 frames ● VLAN 20 tagged frames The following describes the do show interfaces command shown in the following example.
Related Commands show interfaces switchport — displays the configuration of switchport (Layer 2) interfaces on the switch. vlan-stack trunk— specifies an interface as a trunk port to the Stackable VLAN network. rate-interval Configure the traffic sampling interval on the selected interface. Syntax rate-interval seconds Parameters Defaults seconds Enter the number of seconds for which to collect traffic data. The range is from 5 to 299 seconds. NOTE: For 0 to 5 seconds, polling occurs every 5 seconds.
Usage Information Version Description 9.11.0.0 Introduced on all Dell Networking OS platforms. The output of the show interfaces command displays the configured rate interval, along with the collected traffic data. When rate-interval is not configured in the global configuration mode or interface mode, the default value of 299 seconds is applied.
Example Dell(conf-if)#show conf ! interface TenGigabitEthernet 1/7 no ip address switchport no shutdown Dell(conf-if)# show config (from INTERFACE RANGE mode) Display the bulk configured interfaces (group). Syntax show config Command Modes CONFIGURATION INTERFACE (conf-if-range) Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
NOTE: In the CLI output, the power value will be rounded to a 3-digit value. For receive/transmit power that is less than 0.000, an snmp query will return the corresponding dbm value even though the CLI displays as 0.000. NOTE: After the counters are cleared, the line-rate continues to increase until it reaches the maximum line rate. When the maximum line rate is reached, there will be no change in the line-rate.
Usage Information Example (ManagementEth ernet) Related Commands Line Description Rate information... Estimate of the input and output traffic rate over a designated interval (30 to 299 seconds). Traffic rate is displayed in bits, packets per second, and percent of line rate. Time since... Elapsed time since the last interface status change (hh:mm:ss format). The interface counter “over 1023-byte pkts” does not increment for packets in the range 9216 > x <1023.
Example (ManagementEth ernet) show interfaces dampening Display interface dampening information. Syntax Parameters show interfaces dampening [[interface] [summary] [detail]] interface (Optional) Enter one of the following keywords and slot/port or number information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
show interfaces configured — displays any interface with a non-default configuration. show interfaces description Display the descriptions configured on the interface. Syntax show interfaces [interface] description Parameters interface Enter one of the following keywords and slot/port or number information: ● For the management interface on the stack unit enter the keyword ManagementEthernet followed by the slot/port information. The slot range is 0-0 and the port range is 0.
show interfaces stack-unit Display information on all interfaces on a specific Aggregator stack member. Syntax Parameters show interfaces stack-unit unit-number unit-number Enter the stack member number (0 to 5). Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
Parameters interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. unit-number Enter the stack unit’s ID number. The range is from 0 to 5. NOTE: This command also enables you to view information corresponding to a range of ports. ● You can specify multiple ports as slot/port-range.
all ports between 1 and 4, specify the port range as show interfaces interface-type 1/1 - 4. ● For port–channel interfaces, you can specify multiple ports as portrange. For example, if you want to display information corresponding to all ports between 1 and 4, specify the port range as show interfaces port—channel 1 - 4. stack-unit unit-id (OPTIONAL) Enter the keywords stack-unit followed by the stack member number. The range is from 0 to 5.
show interfaces transceiver Display the physical status and operational status of an installed transceiver. The output also displays the transceiver’s serial number. Syntax show interfaces tengigabitethernet slot/port transceiver Parameters tengigabitethern et For a 10G interface, enter the keyword tengigabitethernet then the slot/port information. NOTE: This command also enables you to view information corresponding to a range of ports.
Line Description Bias Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. TX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. RX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. Temp High Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Voltage High Warning threshold Factory-defined setting. Value can differ between SFP and SFP+.
Line Description Data Ready state This field indicates that the transceiver has achieved power up and data is ready. Bar This is set to true if data is ready to be sent and set to false if data is being transmitted. Rx LOS state This is the digital state of the Rx_LOS output pin. This is set to true if the operating status is down. Tx Fault state This is the digital state of the Tx Fault output pin. Rate Select state This is the digital state of the SFP rate_select input pin.
Example Line Description Tx Power Low Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Rx Power Low Warning Flag This can be either true or false, depending on the Current Rx power value displayed above. Dell#show interfaces tengigabitethernet 1/1 transceiver SFP is present.
SFP 1 RS state = False SFP 1 Tx Disable state = False =================================== SFP 1 Temperature High Alarm Flag = False SFP 1 Voltage High Alarm Flag = False SFP 1 Tx Bias High Alarm Flag = False SFP 1 Tx Power High Alarm Flag = False SFP 1 Rx Power High Alarm Flag = False SFP 1 Temperature Low Alarm Flag = False SFP 1 Voltage Low Alarm Flag = False SFP 1 Tx Bias Low Alarm Flag = False SFP 1 Tx Power Low Alarm Flag = False SFP 1 Rx Power Low Alarm Flag = True ===================================
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. The shutdown command marks a physical interface as unavailable for traffic. To discover if an interface is disabled, use the show ip interface command. Disabled interfaces are listed as down. Disabling a VLAN or a port channel causes different behavior.
If you use an active optical cable (AOC), you can convert the QSFP+ port to a 10 Gigabit SFP+ port or 1 Gigabit SFP port. You can use the speed command to enable the required speed. Related Commands ● negotiation auto — enables or disables auto-negotiation on an interface. stack-unit portmode Split a single 40G port into 4-10G ports on the switch.
Usage Information Version Description 9.10(0.0) Introduced on the S6000, S6000–ON, S5000, S4810, S4820T, S3048–ON, S4048–ON, M I/O Aggregator, FN I/O Module, MXL, C9010, S3100 series, and Z9100-ON. The wavelength can be configured only on a tunable 10–Gigabit SFP+ optic. The wavelength range is from 1528.3 nm to 1568.77nm. If you configure the wavelength on a non-tunable optic, there is no change to the existing wavelength.
Link MTU and IP MTU considerations for Port Channels are: ● All members must have the same link MTU value and the same IP MTU value. ● The Port Channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members. For example, if the members have a link MTU of 2100 and an IP MTU 2000, the Port Channel’s MTU values cannot be higher than 2100 for link MTU or 2000 bytes for IP MTU.
interface port-channel Create a Port Channel interface, which is a link aggregation group (LAG) containing physical interfaces on the Aggregator. Syntax interface port-channel channel-number To delete a Port Channel, use the no interface port-channel channel-number command. Parameters Defaults channel-number For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. Not configured.
Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If you use this command to configure the minimum number of links in a LAG that must be in “oper up” status, the LAG must have at least that number of “oper up” links before it can be declared as up.
Example Dell(conf-if-po-1)#show config ! interface Port-channel 1 no ip address shutdown Dell(conf-if-po-1)# show interfaces port-channel Display information on configured Port Channel groups. Syntax Parameters show interfaces port-channel [channel-number] [brief| description] channel-number For a Port Channel interface, enter the keyword port-channel followed by a number. The range is from 1 to 128.
Example (EtherScale) User Information 522 Interfaces Field Description Last clearing... Displays the time when the show interfaces counters were cleared. Queueing strategy. States the packet queuing strategy. FIFO means first in first out. packets input... Displays the number of packets and bytes into the interface. Input 0 IP packets... Displays the number of packets with IP headers, VLAN tagged headers, and MPLS headers.
Example Field Description Uptime Displays the age of the port channel in hours:minutes:seconds. Ports Lists the interfaces assigned to this port channel. (untitled) Displays the status of the physical interfaces (up or down). ● In Layer 2 port channels, an * (asterisk) indicates which interface is the primary port of the port channel. The primary port sends out interface PDU. ● In Layer 3 port channels, the primary port is not indicated.
Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Usage Information The interface must be enabled to run the test or an error message is generated: Related Commands show tdr — Displays the results of the TDR test. show tdr Displays the TDR test results. Syntax show tdr interface Parameters Defaults interface Enter the keyword TenGigabitEthernet followed by the slot/port information for the 100/1000/10 GbaseT Ethernet interface.
2/0-1,te 10/0,fa 0/0, this configuration is considered valid. The comma-separated list is not required to be separated by spaces in between the ranges. You can associate multicast MAC or hardware addresses to an interface range and VLANs by using the mac-address-table static multicast-mac-address vlan vlan-id output-range interface command.
Parameters Defaults address Enter an IP broadcast address in dotted decimal format (A.B.C.D). Not configured. Command Modes INTERFACE (config-if) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Enter an IP broadcast address in dotted decimal format (A.B.C.D).
show ip udp-helper Display the configured UDP helpers on all interfaces. Syntax show ip udp-helper Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Occasionally, while sending broadcast traffic over multiple VLANs, state of a VLAN interface may continually switch between Master and Backup. ● auto vlan ● default vlan-id ● name ● show config (from INTERFACE VLAN mode) ● show vlan ● vlan tagged ● vlan untagged auto vlan Change the port to auto or admin vlan mode (enable or disable all auto VLANs). Syntax auto vlan To remove membership from 4K VLAN, use the no auto vlan command.
default vlan-id Set the default VLAN ID. Syntax default vlan-id To reset the default VLAN ID, use the no default vlan-id command. Defaults none Command Modes CONFIGURATION Supported Modes All Modes Command History Related commands Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. show vlan — Displays VLAN configuration. feature fc Enables the Fibre channel communication via the NPG functionality.
Usage Information Example (Single Interface) The delta column displays changes since the last screen refresh. The following are the monitor command menu options. Key Description systest-3 Displays the host name assigned to the system. monitor time Displays the amount of time since the monitor interface command was entered. time Displays the amount of time the chassis is up (since last reboot). m Change the view from a single interface to all interfaces on the stack unit or visa-versa.
Gi 0/3 Up 63086 20 9405888 24 Gi 0/4 Up 14697471418 2661481 13392989657 2661385 Gi 0/5 Up 3759 3 161959604 832816 Gi 0/6 Up 4070 3 8680346 5 Gi 0/7 Up 61934 34 138734357 72 Gi 0/8 Up 61427 1 59960 1 Gi 0/9 Up 62039 53 104239232 3 Gi 0/10 Up 17740044091 372 7373849244 79 Gi 0/11 Up 18182889225 44 7184747584 138 Gi 0/12 Up 18182682056 0 3682 1 Gi 0/13 Up 18182681434 43 6592378911 144 Gi 0/14 Up 61349 55 86281941 15 Gi 0/15 Up 59808 58 62060 27 Gi 0/16 Up 59889 1 61616 1 Gi 0/17 Up 0 0 14950126 81293 Gi 0/18 U
Command Modes INTERFACE Supported Modes All Modes Command History Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Example show config (from INTERFACE VLAN mode) Displays the current configuration of the Default VLAN. Syntax show config Command Modes INTERFACE VLAN Supported Modes All Modes Command History Example Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
show vlan Displays the current VLAN configurations on the switch. Syntax Parameters show vlan [brief |id vlan-id | name vlan-name] brief (OPTIONAL) Enter the keyword brief to display the following information: ● VLAN ID ● VLAN name (left blank if none is configured.) ● Spanning Tree Group ID ● MAC address aging time ● IP address id vlan-id (OPTIONAL) Enter the keyword id followed by a number from 1 to 4094.
Example (Brief) Example (Using a VLAN Name) Related Commands Dell#show vlan brief VLAN Name STG MAC Aging IP Address ---- -------------------------------- ---- --------- -----------------1 0 0 unassigned 2 0 0 unassigned 20 0 0 unassigned 1002 0 0 unassigned Dell# Dellconf)#interface vlan 222 Dell(conf-if-vl-222)#name test Dell(conf-if-vl-222)#do show vlan name test Codes: * - Default VLAN, G - GVRP VLANs Q: U - Untagged, T - Tagged x - Dot1x untagged, X - Dot1x tagged G - GVRP tagged, M - Vlan-stack NUM
If you use an active optical cable (AOC), you can convert the QSFP+ port to a 10 Gigabit SFP+ port or 1 Gigabit SFP port. You can use the speed command to enable the required speed. Related Commands stack-unit port-group port mode ethernet Converts the interfaces 9 and 10 from Fibre Channel mode to Ethernet. Syntax stack-unit unit number port-group 0 portmode ethernet To convert the interfaces 9 and 10 from Ethernet to Fibre Channel mode, use the no stack-unit unit number port-group 0 portmode ethernet.
For example, if port 0/1-32 is an untagged member of VLAN 2 and port 0/41 is an untagged member of VLAN 3, the resulting LAG consisting of the two ports is an untagged member of VLAN 2 and a tagged member of VLAN3.
Example Related Commands Dell(conf-if-te-0/2)#vlan untagged ? <1-4094> Untagged VLAN id Dell(conf-if-te-0/2)# Dell(conf-if-te-0/2)#vlan untagged 4094 Dell(conf-if-te-0/2)#show config ! interface TenGigabitEthernet 0/2 mtu 12000 vlan untagged 4094 ! port-channel-protocol LACP port-channel 1 mode active ! protocol lldp advertise management-tlv system-name dcbx port-role auto-downstream no shutdown Dell(conf-if-te-0/2)# interface vlan — Configures a VLAN.
25 IPv4 Routing The aggregator supports both IPv4 and IPv6 routing and these are used only for the management purpose. This chapter describes the IPv4 related commands.
• • • • • • • • • • show show show show show show show show show show ip fib stack-unit ip interface ip management-route ip multicast-cam stack-unit ip protocols ip route ip route list ip route summary ip traffic tcp statistics arp To associate an IP address with a multicast MAC address in the switch when you configure multicast mode of the network load balancing (NLB), use the address resolution protocol (ARP).
Related Commands clear arp-cache — clears dynamic ARP entries from the ARP table. show arp — displays the ARP table. arp learn-enable Enable ARP learning using gratuitous ARP. Syntax arp learn-enable Defaults Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show interfaces — displays the ARP timeout value for all available interfaces. clear arp-cache Clear the dynamic ARP entries from a specific interface or optionally delete (no-refresh) ARP entries from the content addressable memory (CAM).
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip fib stack-unit Clear all forwarding information base (FIB) entries in the specified stack unit (use this command with caution, refer to Usage Information.) Syntax clear ip fib stack-unit unit-number Parameters unit-number Enter the number of the stack unit. The range is from 0 to 5.
clear tcp statistics Clear the TCP counters. Syntax clear tcp statistics Command Modes EXEC Privilege Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. debug arp View information on ARP transactions. Syntax debug arp [interface] [count value] To stop debugging ARP transactions, use the no debug arp command.
Defaults Debug disabled Command Mode EXEC Privilege Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Example FTOS#debug ip dhcp 00:12:21 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP Request, hops = 0, XID = 0xbf05140f, secs = 0, hwaddr = 00:60:CF:20:7B:8C, giaddr = 0.0.0.
● For VLAN, enter the keyword vlan then by a number from 1 to 4094. count value (OPTIONAL) Enter the keywords count then the count value. The ranges from 1 to 65534. The default is Infinity. Command Modes EXEC Privilege Supported Modes All Modes Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
Usage Information The following describes the debug ip packet command in the following example. Field Description s= Lists the source address of the packet and the name of the interface (in parentheses) that received the packet. d= Lists the destination address of the packet and the name of the interface (in parentheses) through which the packet is being sent out on the network. len Displays the packet’s length.
● User Datagram Protocol (udp) In the case of ambiguous access control list rules, the debug ip packet access-control command is disabled. A message appears identifying the error (refer to the Example below).
Usage Information You must be in INTERFACE mode before you add an IP address to an interface. Assign an IP address to an interface prior to entering ROUTER OSPF mode. ip directed-broadcast Enables the interface to receive directed broadcast packets. Syntax ip directed-broadcast To disable the interface from receiving directed broadcast packets, use the no ip directedbroadcast command.
ip domain-lookup To address resolution (that is, DNS), enable dynamic host-name. Syntax ip domain-lookup To disable DNS lookup, use the no ip domain-lookup command. Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To fully enable DNS, also specify one or more domain name servers with the ip name-server command.
ip helper-address Specify the address of a DHCP server so that DHCP broadcast messages can be forwarded when the DHCP server is not on the same subnet as the client. Syntax ip helper-address ip-address To remove a DHCP server address, use the no ip helper-address command. Parameters Defaults ip-address Enter an IP address in dotted decimal format (A.B.C.D). Not configured. Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.
ip host Assign a name and IP address to be used by the host-to-IP address mapping table. Syntax ip host name ip-address To remove an IP host, use the no ip host name [ip-address] command. Parameters Defaults name Enter a text string to associate with one IP address. ip-address Enter an IP address, in dotted decimal format, to be mapped to the name. Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.
Usage Information Version Description 9.3(0.0) Introduced on the MXL platform. You can enable the mechanism to configure the source or the originating interface from which the packet (the device that generates the ICMP error messages) is received by the switch to send the loopback address instead of its source IP address to be used in the ICMP unreachable messages and in the traceroute command output. The loopback address must be unique in a particular domain.
Usage Information Version Description 9.3(0.0) Introduced on the MXL platform. You can enable the mechanism to configure the source or the originating interface from which the packet (the device that generates the ICMP error messages) is received by the switch to send the loopback address instead of its source IP address to be used in the ICMP unreachable messages and in the traceroute command output. The loopback address must be unique in a particular domain.
Defaults No name servers are configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The system does not support sending DNS queries over a VLAN. DNS queries are sent out on all other interfaces, including the Management port. ip proxy-arp Enable proxy ARP on an interface.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. Usage Information Using the following example of a static route: ip route 33.33.33.0 /24 tengigabitethernet 0/0 172.31.5.43 ● The software installs a next hop that is not on the directly connected subnet but which recursively resolves to a next hop on the interface’s configured subnet. In the example, if gig 0/0 has an ip address on subnet 2.2.2.0 and if 172.31.5.
as SSH or BGP) with a SYN ACK, the router waits for a period of time for the ACK packet to be sent from the requesting host that will establish the TCP connection. show ip tcp initial-time Displays the interval that you configured for the device to wait before the TCP connection is attempted to be established. Syntax show ip tcp initial-time Command Modes EXEC EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. When a static route (or a protocol route) overlaps with Management static route, the static route (or a protocol route) is preferred over the Management Static route. Also, Management static routes and the Management Connected prefix are not reflected in the hardware routing tables. Separate routing tables are maintained for IPv4 management routes.
Example (Private VLAN) NOTE: In this example, Line 1 shows community VLAN 200 (in primary VLAN 10) in a PVLAN. Line 2 shows primary VLAN 10. Dell#show arp Protocol Address Age(min) Hardware Address Interface VLAN CPU ----------------------------------------------------------------Internet 5.5.5.1 - 00:01:e8:43:96:5e Vl 10 pv 200 CP Internet 5.5.5.10 - 00:01:e8:44:99:55 Vl 10 CP Internet 10.1.2.4 1 00:01:e8:d5:9e:e2 Ma 0/0 CP Internet 10.10.10.4 1 00:01:e8:d5:9e:e2 Ma 0/0 CP Internet 10.16.127.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show hosts command in the following example. Field Description Default domain... Displays the domain name (if configured). Name/address lookup... States if DNS is enabled on the system. ● If DNS is enabled, the Name/Address lookup is domain service.
ip-address mask (OPTIONAL) Enter the IP address and mask of a route to CAM entries for that [longer-prefixes] route only. Enter the keywords longer-prefixes to view routes with a common prefix. detail Enter the keyword detail to display the group index ID used by the ecmp routes in the CAM. member-info Enter the keywords member-info to display the group index used by the ecmp, the number of egress ports (members) for the ecmp, and the port details of each member.
Example (ECMPGroup) Field Description Current Use Displays the number of routes currently configured for the corresponding prefix or mask on the linecard 0 port pipe 0. Initial Size Displays the CAM size the system allocates for the corresponding mask. The system adjusts the CAM size if the number of routes for the mask exceeds the initial allocation. Dell#show ip cam stack-unit 0 po 0 ecmp-group detail Destination EC CG ----------------1.1.1.2 0 0 2.1.1.2 0 0 1.1.1.1 0 0 2.1.1.1 0 0 1.1.1.0 0 0 2.1.
Field Description Destination Lists the destination IP address. Gateway Displays either the word “direct” and an interface for a directly connected route or the remote IP address used to forward the traffic. First-Hop Displays the first hop IP address. Mac-Addr Displays the MAC address. Port Displays the egress-port information. VId Displays the VLAN ID. If no VLAN is assigned, zero (0) is listed. EC Displays the number of ECMP paths.
Lines Description TenGigabitEther net 0/0... Displays the interface’s type, slot/port and physical and line protocol Internet address... States whether an IP address is assigned to the interface. If one is, that address is displayed. IP MTU is... Displays IP MTU value. Inbound access... Displays the name of the any configured incoming access list. If none is configured, the phrase “not set” is displayed. Proxy ARP... States whether proxy ARP is enabled on the interface. Split horizon...
show ip management-route View the IP addresses assigned to the Management interface. Syntax show ip management-route [all | connected | summary | static] Parameters all (OPTIONAL) Enter the keyword all to view all IP addresses assigned to all Management interfaces on the switch. connected (OPTIONAL) Enter the keyword connected to view only routes directly connected to the Management interface.
Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. The following describes the show ip fib stack-unit command shown in the following example. Field Description Destination Displays the destination route of the index. CG Displays 0. V Displays a 1 if the entry is valid and a 0 otherwise.
Fast-external-fallover enabled Regular expression evaluation optimization enabled Capable of ROUTE_REFRESH For Address Family IPv4 Unicast BGP table version is 0, main routing table version 0 Distance: external 20 internal 200 local 200 Neighbor(s): Address : 20.20.20.2 Filter-list in : foo Route-map in : foo Weight : 0 Address : 5::6 Weight : 0 Dell# show ip route View information, including how they were learned, about the IP routes on the switch.
Field Description ● ● ● ● ● ● ● ● ● ● ● ● ● ● ● ● IN = internal BGP EX = external BGP LO = Locally Originated O = OSPF IA = OSPF inter area N1 = OSPF NSSA external type 1 N2 = OSPF NSSA external type 2 E1 = OSPF external type 1 E2 = OSPF external type 2 i = IS-IS L1 = IS-IS level-1 L2 = IS-IS level-2 IA = IS-IS inter-area * = candidate default > = non-active route + = summary routes Destination Identifies the route’s destination IP address.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Dell>show ip route summary Route Source Active Routes Non-active Routes connected 17 0 static 3 0 ospf 100 1368 2 Intra-area: 762 Inter-area: 1 External-1: 600 External-2: 5 Total 1388 2 Total 1388 active route(s) using 222440 bytes Total 2 non-active route(s) using 128 bytes Dell> Related Commands show ip route — displays information about the routes found in the switch. show ip traffic View IP, ICMP, UDP, TCP and ARP traffic statistics.
Keyword Definition ...bad length The length of the packet was not correct. ...no port broadcasts The incoming broadcast/multicast packet did not have any listener. ...socket full The applications buffer is full and the incoming packet are dropped. The F10 Monitoring MIB provides access to the following statistics. ● IP Statistics: Bcast: Received: Object = f10BcastPktRecv, OIDs = 1.3.6.1.4.1.6027.3.3.5.1.1 ● IP Statistics: Bcast: Sent: Object = f10BcastPktSent, OIDs = 1.3.6.1.4.1.6027.3.3.5.1.
Usage Information Example The following describes the show tcp statistics cp command shown in the following example. Field Description Rcvd: Displays the number and types of TCP packets received by the switch. ● Total = total packets received ● no port = number of packets received with no designated port 0 checksum error... Displays the number of packets received with the following: ● checksum errors ● bad offset to data ● too short 329 packets...
0 partially dup packets (0 bytes) 1 out-of-order packets (0 bytes) 0 packets ( 0 bytes) with data after window 0 packets after close 0 window probe packets, 0 window update packets 0 dup ack packets, 0 ack packets with unsend data 6671 ack packets (152813 bytes) Sent: 6778 Total, 0 urgent packets 7 control packets 6674 data packets (152822 bytes) 12 data packets (1222 bytes) retransmitted 85 ack only packets (5677 delayed) 0 window probe packets, 0 window update packets 0 Connections initiated, 7 connection
26 Internet Protocol Security (IPSec) Internet protocol security (IPSec) is an end-to-end security scheme for securing IP communications by authenticating and encrypting all packets in a session. Use IPSec between hosts, gateways, or hosts and gateways. IPSec uses a series of protocol functions to achieve information security: ● Authentication Headers (AH) — Connectionless integrity and origin authentication for IP packets.
● null — Causes an encryption policy configured for the area to not be inherited on the interface. Defaults espauthentication Enter the keywords esp-authentication then the transform type of operation to apply to traffic. The transform type represents the encryption or authentication applied to traffic. ● md5 — Use Message Digest 5 (MD5) authentication. ● sha1 — Use Secure Hash Algorithm 1 (SHA-1) authentication.
Usage Information Example This command creates a crypto policy entry and enters the crypto policy configuration mode for configuring the flow parameters. Dell(conf)#crypto ipsec policy West 10 ipsec-manual Dell(conf-crypto-policy)# management crypto-policy Apply the crypto policy to management traffic. Syntax management crypto-policy name To remove the management traffic crypto policy, use the no management crypto-policy name command. Parameters Defaults name Enter the name for the crypto policy.
Usage Information Example UDP is not supported. Only TCP 23 telnet and 21 FTP are supported. Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match 0 1 2 3 4 5 6 7 tcp tcp tcp tcp tcp tcp tcp tcp a::1 /128 0 a::2 /128 23 a::1 /128 23 a::2 /128 0 a::1 /128 0 a::2 /128 21 a::1 /128 21 a::2 /128 0 1.1.1.1 /32 0 1.1.
Command Modes EXEC Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.2) Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf)#do show crypto ipsec transform-set Transform-Set Name : ts1 Transform-Set refCnt : 0 AH Transform : md5 ESP Auth Transform : ESP Encry Transform : Dell(conf)# show crypto ipsec policy Display the crypto policy configuration.
source-interface name : source-interface num : Dell(conf-crypto-policy)# transform-set Specify the transform set the crypto policy uses. Syntax transform-set transform-set-name To delete a transform set from the crypto policy, use the no transform-set transform-setname command. Parameters Defaults transform-setname Enter the name for the crypto policy transform set. none Command Modes CONFIG-CRYPTO-POLICY Supported Modes Full–Switch Command History 578 Version Description 9.9(0.
27 IPv6 Access Control Lists (IPv6 ACLs) IPv6 ACLs and IPv6 Route Map commands are supported on Dell Networking switch. NOTE: For IPv4 ACL commands, refer to the Access Control Lists (ACL) chapter. Important Points to Remember ● Certain platforms require manual CAM usage space allotment. For more information, refer to the cam-acl (Configuration) command. ● Egress IPv6 ACL and IPv6 ACL on the Loopback interface is not supported. ● Reference to an empty ACL permits any traffic.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. For the new settings to take effect, save the new CAM settings to the startup-config (write-mem or copy run start), then reload the system. The total amount of space allowed is 16 FP blocks. System flow requires three blocks and these blocks cannot be reallocated. When configuring space for IPv6 ACLs, the total number of Blocks must equal 13.
<0-4> Number of FP blocks for IPV6 (multiples of 2) Dell(conf)#cam-acl-egress l2acl 1 ipv4acl 1 ipv6acl 2 ipv6 access-list Configure an access list based on IPv6 addresses or protocols. Syntax ipv6 access-list access-list-name cpu-qos {permit | deny} ospfv3 To delete an access list, use the no ipv6 access-list access-list-name command. Parameters Defaults access-list-name Enter the access list name as a string, up to 140 characters.
permit To configure a filter that matches the filter criteria, select an IPv6 protocol number, ICMP, IPv6, TCP, or UDP.
permit icmp To allow all or specific internet control message protocol (ICMP) messages, configure a filter. Syntax permit icmp {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} [message-type] [count [byte]] | [log] [interval minutes] [threshold-in-msgs [count]][monitor] To remove this filter, you have two choices: ● Use the no seq sequence-number command if you know the filter’s sequence number.
Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
Ipv6Acl Ipv4Qos L2Qos L2PT IpMacAcl VmanQos VmanDualQos EcfmAcl FcoeAcl iscsiOptAcl ipv4pbr vrfv4Acl Openflow fedgovacl : : : : : : : : : : : : : : 4 2 1 0+F394 0 0 0 0 0 0 0 0 0 0 Dell# Related Commands cam-acl — configures CAM profiles to support IPv6 ACLs. show cam-acl-egress Show information on FP groups allocated for egress ACLs. Syntax show cam-acl-egress Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.
28 IPv6 Basics This chapter describes IPv6 basic commands.
clear ipv6 route Clear (refresh) all or a specific route from the IPv6 routing table. Syntax Parameters clear ipv6 route {* | ipv6-address prefix-length} * Enter the * to clear (refresh) all routes from the IPv6 routing table. ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
address from the current unused prefix is used to create a new address. If there are no remaining prefixes, the software waits to receive a new prefix from the RA. ● If auto-configuration is enabled, all IPv6 addresses on that management interface are auto-configured. Manual and auto-configurations are not supported on a single management interface. ● Removing auto-configuration removes all auto-configured IPv6 addresses and the link-local IPv6 address from that management interface.
Dell(conf-if-te-x/x)#ipv6 address 2002:1:2::3 /96 Dell(conf-if-te-x/x)#show config ipv6 address eui64 Configure IPv6 EUI64 address configuration on the interface. Syntax ipv6 address {ipv6-address prefix-length} eui64 To disable IPv6 EUI64 address autoconfiguration, use the no ipv6 address {ipv6-address prefix-length} eui64 command. Parameters ipv6-address prefix-length Enter the IPv6 prefix in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128.
ipv6 flowlabel-zero Configure system to set the flow label field in the packets to zero. Syntax ipv6 flowlabel-zero To disable the 0 from being set in the field and allow the rotocol operations to fill the field, use the no ipv6 flowlabel-zero command. Default Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Defaults none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. You can separately configure both IPv4 and IPv6 domain name servers. ipv6 nd dad attempts To perform duplicate address detection (DAD) on the management interface, configure the number of neighbor solicitation messages that are sent.
ipv6 nd dns-server Configures Recursive DNS Server (RDNSS) addresses to be distributed via IPv6 router advertisements to an IPv6 device. Syntax ipv6 nd dns-server {ipv6-RDNSS-address} {lifetime | infinite} To remove the IPv6 RDSS configuration, use no ipv6 nd dns-server {ipv6-RDNSS-address} {lifetime | infinite} Parameters Defaults ipv6-RDNSSaddress Enter the IPv6 Recursive DNS Server’s (RDNSS) address. You can specify up to 4 IPv6 RDNSS server addresses. lifetime Enter the lifetime in seconds.
2592000. The maximum value means that the preferred lifetime does not expire for the valid-life time parameter. preferredlifetime | infinite Enter the amount of time that the prefix is preferred, or enter infinite for an unlimited amount of time. The range is from 0 to 4294967295. The default is 2592000. The maximum value means that the preferred lifetime and does not expire. Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.
interface (OPTIONAL) Enter the following keywords and slot/port or number information: ● For a loopback interface, enter the keyword loopback then a number from zero (0) to 16383. ● For the null interface, enter the keyword null then zero (0). ● For a port channel interface, enter the keyword port-channel then the port channel number. The range is from 1 to 128. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Dell(conf)#ipv6 route 44::0 /64 33::1 ? <1-255> Distance metric for this route permanent Permanent route tag Set tag for this route Dell(conf)#ipv6 route 44::0 /64 33::1 Dell(conf)#ipv6 route 44::0 /64 tengigabitethernet 0/1 ? X:X:X:X::X Forwarding router's address Dell(conf)#ipv6 route 44::0 /64 tengigabitethernet 0/1 66::1 Dell(conf)# Related Commands show ipv6 route — views the IPv6 configured routes. ipv6 unicast-routing Enable IPv6 Unicast routing.
index (OPTIONAL) Enter the index in the IPv6 CAM. ipv6-address Enter the IPv6 address in the x:x:x:x::x/n format to display networks that have more specific prefixes. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Host tables are not stored in CAM tables. Entries for camIndex displays as zero (0) on the show ipv6 fib stack-unit output for neighbor entries, such as address resolution protocol (ARP) entries.
gigabitethernet (OPTIONAL) View information for an IPv6 gigabitethernet interface. linecard slot/ (OPTIONAL) View information for a specific IPv6 linecard or stack-unit. The range is 0 to 11. port managementethe (OPTIONAL) View information on an IPv6 Management port. Enter the slot number rnet slot/ port (0-1) and port number zero (0). Defaults loopback (OPTIONAL) View information for IPv6 Loopback interfaces. port-channel (OPTIONAL) View information for IPv6 port channels.
Actual address is 300::1, subnet is 300::/64 (MANUAL) Remaining lifetime: infinite Virtual-IP IPv6 address is not set Global Anycast address(es): Joined Group address(es): ff02::1 ff02::1:ff00:1 ff02::1:ffa7:497e ND MTU is 0 ICMP redirects are not sent DAD is enabled, number of DAD attempts: 3 ND reachable time is 20410 milliseconds ND base reachable time is 30000 milliseconds ND retransmit interval is 1000 milliseconds ND hop limit is 64 Dell# Example (Brief) Example (tunnel) Dell#show ipv6 interface bri
Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ipv6 mld-host command shown in the following example. Field Description Valid MLD Packets The total number of packets received and sent from the last time the elapsed time was cleared.
Defaults none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ipv6 route command shown in the following examples.
S L Dell# Example (Summary) 800::/64 [1/0] via 100::1, Te 0/8, 00:00:50 fe80::/10 [0/0] Direct, Nu 0, 20:00:18 Dell#show ipv6 route summary Route Source Active Routes connected 3 static 1 Total 4 Total 4 active route(s) using 928 bytes Dell# Non-active Routes 0 0 0 trust ipv6-diffserv Allows the dynamic classification of IPv6 DSCP. Syntax trust ipv6-diffserv To remove the definition, use the no trust ipv6-diffserv command.
29 IPv6 Border Gateway Protocol (IPv6 BGP) IPv6 Border Gateway Protocol (IPv6 BGP) is supported on Dell Networking platforms. This chapter includes the following sections: ● IPv6 BGP Commands ● IPv6 MBGP Commands Topics: • • IPv6 BGP Commands IPv6 MBGP Commands IPv6 BGP Commands BGP is an external gateway protocol that transmits interdomain routing information within and between autonomous systems (AS).
aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table. Syntax aggregate-address ipv6-address prefix-mength [advertise-map map-name] [asset] [attribute-map map-name] [summary-only] [suppress-map map-name] Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the / x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Defaults Disabled (that is, the software only compares MEDs from neighbors within the same AS). Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Any update without a MED attribute is the least preferred route. If you enable this command, use the capture bgp-pdu max-buffer-size * command to recompute the best path.
bgp bestpath med missing-as-best During path selection, indicate a preference to paths with missing MED (MULTI_EXIT_DISC) over those paths with an advertised MED attribute. Syntax bgp bestpath med missing-as-best To return to the default selection, use the no bgp bestpath med missing-as-best command. Defaults Disabled. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When a BGP cluster contains only one route reflector, the cluster ID is the route reflector’s router ID. For redundancy, a BGP cluster may contain two or more route reflectors and you assign a cluster ID with the bgp cluster-id command.
Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The Autonomous Systems configured in this command are visible to the EBGP neighbors. Each Autonomous System is fully meshed and contains a few connections to other Autonomous Systems. After specifying autonomous systems numbers for the BGP confederation, recycle the peers to update their configuration.
bgp default local-preference Change the default local preference value for routes exchanged between internal BGP peers. Syntax bgp default local-preference value To return to the default value, use the no bgp default local-preference command. Parameters Defaults value Enter a number to assign to routes as the degree of preference for those routes. When routes are compared, the higher the degree of preference or local preference value, the more the route is preferred. The range is from 0 to 4294967295.
Defaults Enabled. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The bgp fast-external-fallover command appears in the show config command output. bgp four-octet-as-support Enable 4-byte support for the BGP process. Syntax bgp four-octet-as-support To disable fast external fallover, use the no bgp four-octet-as-support command.
role receiver-only Enter the keywords role receiver-only to designate the local router to support graceful restart as a receiver only. Defaults As above Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This feature is advertised to BGP neighbors through a capability advertisement.
Usage Information In Non-Deterministic mode, paths are compared in the order in which they arrive. This method can lead to the system choosing different best paths from a set of paths, depending on the order in which they are received from the neighbors because MED may or may not get compared between adjacent paths. In Deterministic mode (no bgp non-deterministic-med), the system compares MED between adjacent paths within an AS group because all paths in the AS group are from the same AS.
BGP policies, containing regular expressions to match as-path and communities, tend to use a lot of CPU processing time, which in turn affects the BGP routing convergence. Additionally, the show bgp commands, which are filtered through regular expressions, use up CPU cycles particularly with large databases. The Regex Engine Performance Enhancement feature optimizes the CPU usage by caching and reusing regular expression evaluation results.
capture bgp-pdu neighbor (ipv6) Enable capture of an IPv6 BGP neighbor packet. Syntax capture bgp-pdu neighbor ipv6-address direction {both | rx | tx} To disable capture of the IPv6 BGP neighbor packet, use the no capture bgp-pdu neighbor ipv6-address command. Parameters Defaults ipv6-address Enter the IPv6 address of the target BGP neighbor. direction {both | rx | tx} Enter the keyword direction and a direction — either rx for inbound, tx for outbound, or both. Not configured.
Parameters * Enter an asterisk ( * ) to reset all BGP sessions. ipv4 multicast soft [in | out] (OPTIONAL) Enter the keywords ipv4 multicast soft [in | out] to set options within the specified IPv4 address family. ipv6 unicast soft [in | out] (OPTIONAL) Enter the keywords ipv6 multicast soft [in | out] to set options within the specified IPv6 address family.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. clear ip bgp ipv6-address Reset BGP sessions specific to an IPv6 address. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. clear ip bgp ipv6 dampening Clear information on route dampening and return suppressed route to active state. Syntax Parameters clear ip bgp ipv6 unicast dampening [ipv6-address] ipv6-address Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you enter the clear ip bgp ipv6 flap-statistics command without parameters, all the statistics clear. Related Commands show ip bgp ipv6 unicast flap-statistics — views BGP flap statistics. clear ip bgp ipv6 unicast soft Clear and reapply policies for IPv6 unicast routes without resetting the TCP connection; that is, perform BGP soft reconfiguration.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group peer- Enter the keywords peer-group then the name of the peer group. group-name in (OPTIONAL) Enter the keyword in to view only information on inbound BGP routes. out (OPTIONAL) Enter the keyword out to view only information on outbound BGP routes. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Entering a no debug ip bgp command removes all configured debug commands for BGP. debug ip bgp ipv6 dampening View information on dampened (non-active) IPv6 routes. Syntax debug ip bgp ipv6 unicast dampening [in | out] To disable debugging, use the no debug ip bgp ipv6 unicast dampening command. Parameters in (OPTIONAL) Enter the keyword in to view only inbound dampened routes.
Usage Information This command turns on BGP soft-reconfiguration inbound debugging for IPv6 unicast routes. If no neighbor is specified, debug is turned on for all neighbors. Related Commands show ip bgp ipv6 unicast dampened-paths — views BGP dampened routes. debug ip bgp keepalives Allows you to view information about BGP keepalive messages.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Entering a no debug ip bgp command removes all configured debug commands for BGP. debug ip bgp updates Allows you to view information about BGP updates.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The default-metric command in BGP sets the value of the BGP MULTI_EXIT_DISC (MED) attribute for redistributed routes only. Related Commands bgp always-compare-med — enables comparison of all BGP MED attributes. redistribute — redistributes routes from other routing protocols into BGP.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information CAUTION: Dell Networking recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. The higher the administrative distance assigned to a route means that your confidence in that route is low.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. By default, when you create a neighbor/peer group configuration in the Router BGP context, it is enabled for the IPv6/Unicast AFI/SAFI. By using activate in the new context, the neighbor/peer group is enabled for AFI/SAFI.
Command Modes ROUTER BGP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bgp four-octet-as-support — enables 4-Byte support for the BGP process. neighbor default-originate Inject the default route to a BGP peer or neighbor.
Defaults Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor distribute-list Distribute BGP information using an established prefix list.
ttl Defaults (OPTIONAL) Enter the number of hops as the time to live (ttl) value. The range is from 1 to 255. The default is 255. Disabled. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To prevent loops, the neighbor ebgp-multihop command does not install default routes of the multihop peer.
peer-group-name Enter the name of the peer group to apply the filter to all routers in the peer group. Defaults in Enter the keyword in to filter inbound BGP routes. out Enter the keyword out to filter outbound BGP routes. Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
neighbor X:X:X::X password Enable TCP MD5 Authentication for an IPv6 BGP peer session. Syntax neighbor x:x:x::x password {7 |
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group peer- Enter the keywords peer-group then the name of a configured peer group group-name (maximum 16 characters). Defaults Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information When a peer group is created, it is disabled (shut mode). Related Commands neighbor peer-group (assigning peers) — assigns routers to a peer group. neighbor remote-as — assigns a indirectly connected AS to a neighbor or peer group. neighbor shutdown — disables a peer or peer group. neighbor peer-group passive Enable passive peering on a BGP peer group; that is, the peer group does not send an OPEN message, but does respond to one.
Usage Information If the number parameter is the same as the AS number used in the router bgp command, the remote AS entry in the neighbor is considered an internal BGP peer entry. This command creates a peer and the newly created peer is disabled (shutdown). Related Commands router bgp — enters the ROUTER BGP mode and configure routes in an AS. neighbor remove-private-as Remove private AS numbers from the AS-PATH of outgoing updates.
Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. All routers in the peer group receive routes from a route reflector. Defaults Not configured and COMMUNITY attributes are not sent to neighbors. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Parameters ipv4-address | ipv6-address Enter the IP address of the neighbor for which you want to start storing inbound routing updates. peer-group-name Enter the name of the peer group for which you want to start storing inbound routing updates. Defaults Disabled. Command Modes ROUTER BGPv6 ADDRESS FAMILY (conf-router_bgpv6_af) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to set the timers for all routers within the peer group. Defaults keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. the range is from 1 to 65535. the default is 60 seconds. holdtime Enter a number for the time interval, in seconds, between the last keepalive message and declaring the router dead.
Usage Information Loopback interfaces are up constantly and the BGP session may need one interface constantly up to stabilize the session. The neighbor update-source command is not necessary for directly connected internal BGP sessions. neighbor weight Assign a weight to the neighbor connection, which is used to determine the best path. Syntax neighbor {ipv6-address | peer-group-name} weight weight To remove a weight value, use the no neighbor {ipv6-address | peer-group-name} weight weight command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The software resolves the network address configured by the network command with the routes in the main routing table to ensure that the networks are reachable using non-BGP routes and non-default routes. Related Commands redistribute — redistributes routes into BGP. network backdoor Specify this IGP route as the preferred route.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you do not configure the default-metric command, in addition to the redistribute command, or there is no route map to set the metric, the metric for redistributed static and connected is “0”. To redistribute the default route (0::0/0), configure the neighbor default-originate command.
match internal (OPTIONAL) Enter the keywords match internal to redistribute OSPFv3 internal routes only. route-map map- (OPTIONAL) Enter the keywords route-map then the name of an established route map. name If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Related Command capture bgp-pdu neighbor (ipv6) — enables capture of an IPv6 BGP neighbor packet. capture bgp-pdu max-buffer-size — specifies a size for the capture buffer. show config View the current ROUTER BGP configuration. Syntax show config Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When you enable the bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason. show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster.
Usage Information To view the total number of COMMUNITY attributes found, use the show ip bgp ipv6 unicast summary command. The text line above the route table states the number of COMMUNITY attributes found. show ip bgp ipv6 unicast community-list View routes that are affected by a specific community list. Syntax show ip bgp ipv6 unicast community-list community-list-name [exact-match] Paramters community-listname Enter the name of a configured IP community list.
show ip bgp ipv6 unicast extcommunity-list View information on all routes with Extended Community attributes. Syntax Parameters show ip bgp ipv6 unicast extcommunity-list [list name] list name Enter the extended community list name you wish to view. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
regexp regular- expression Enter a regular expression then use one or a combination of the following characters to match: ● . = (period) any single character (including a white space). ● * = (asterisk) the sequences in a pattern (0 or more sequences). ● + = (plus) the sequences in a pattern (1 or more sequences). ● ? = (question mark) sequences in a pattern (either 0 or 1 sequences). NOTE: You must enter an escape sequence (CTRL+v) prior to entering the ? regular expression.
dampened-routes (OPTIONAL) Enter the keywords dampened-routes to view information on dampened routes from the BGP neighbor. detail (OPTIONAL) Enter the keyword detail to view neighbor-specific internal information for the IPv4 Unicast address family. flap-statistics (OPTIONAL) Enter the keywords flap-statistics to view flap statistics on the neighbor’s routes. routes (OPTIONAL) Enter the keyword routes to view only the neighbor’s feasible routes.
Example Lines Beginning With Description Soft reconfiguration This line indicates that soft reconfiguration inbound is configured. Minimum time Displays the minimum time, in seconds, between advertisements. (List of inbound and outbound policies) Displays the policy commands configured and the names of the Route map, ASPATH ACL, or Prefix list configured for the policy. For address family: Displays IPv6 Unicast as the address family.
Notification History 'OPEN error/Bad AS' Sent : 0 Recv: 1 Local host: 5ffe:10::4, Local port: 179 Foreign host: 5ffe:10::3, Foreign port: 35470 Notification History 'Connection Reset' Sent : 1 Recv: 0 BGP neighbor is 5ffe:11::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show ip bgp next-hop View all next hops (using learned routes only) with current reachability and flap status. This command only displays one path, even if the next hop is reachable by multiple paths. Syntax Parameters show ip bgp next-hop [local-routes] local-routes (OPTIONAL) Show next-hop information for local routes. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
show ip bgp paths as-path View all unique AS-PATHs in the BGP database. Syntax show ip bgp paths as-path Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp paths community View all unique COMMUNITY numbers in the BGP database.
● + = (plus) the sequences in a pattern (1 or more sequences). ● ? = (question mark) sequences in a pattern (either 0 or 1 sequences). NOTE: You must enter an escape sequence (CTRL+v) prior to entering the ? regular expression. ● [ ] = (brackets) a range of single-character patterns. ● ^ = (caret) the beginning of the input string. If the caret is used at the beginning of a sequence or range, it matches on everything BUT the characters specified. ● $ = (dollar sign) the end of the output string.
IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). The Dell Networking MBGP is implemented as per IETF RFC 1858. address family This command changes the context to subsequent address family identifier (SAFI). Syntax address family ipv6 unicast To remove SAFI context, use the no address family ipv6 unicast command.
Command Modes ROUTER-BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. At least one of the routes included in the aggregate address must be in the BGP routing table for the configured aggregate to become active. Do not add the as-set parameter to the aggregate.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. dampening (OPTIONAL) Enter the keyword dampening to clear route flap dampening information. flap-statistics (OPTIONAL) Enter the keywords flap-statistics to reset the flap statistics on all prefixes from that neighbor. peer-group (OPTIONAL) Enter the keywords peer-group to clear all members of a peergroup. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.
● ^ (caret) matches the beginning of the input string. (If the caret is used at the beginning of a sequence or range, it matches on everything BUT the characters specified.) ● $ (dollar sign) matches the end of the output string. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug ip bgp ipv6 unicast dampening View information on routes being dampened.
debug ip bgp ipv6 unicast updates View information about BGP updates. Syntax debug ip bgp ipv6 unicast ipv6-address prefix-length updates [in | out] Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults updates Enter the keyword updates to view BGP update information.
Routes from confederations are treated as internal BGP routes. neighbor activate Allows you to enable a specified neighbor/peer group for the current address and subsequent address family identifier (AFI/ SAFI). Syntax neighbor [ipv6-address | peer-group-name] activate To disable, use the no neighbor [ipv6-address | peer-group-name] activate command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor default-originate Inject the default route to a BGP peer or neighbor. Syntax neighbor {ipv6-address | peer-group-name} default-originate [route-map mapname] To remove a default route, use the no neighbor {ipv6-address | peer-group-name} default-originate command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor filter-list — assigns a AS-PATH list to a neighbor or peer group. neighbor route-map — assigns a route map to a neighbor or peer group. neighbor filter-list Configure a BGP filter based on the AS-PATH attribute.
Defaults threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the software sends a message. The range is from 1 to 100 percent. The default is 75. warning-only (OPTIONAL) Enter the keyword warning-only to set the router to send a log message when the maximum value is reached. If this parameter is not set, the router stops peering when the maximum number of prefixes is reached.
Defaults Disabled (that is, the private AS number are not removed). Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor route-map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group.
peer-group-name Enter the name of the peer group. All routers in the peer group receive routes from a route reflector. Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The first time you enter this command it configures the neighbor as a route reflector and members of the route-reflector cluster.
Parameters connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static to redistribute manually configured routes. These routes are treated as incomplete routes. route-map map- (OPTIONAL) Enter the keywords route-map then the name of an established route map. name If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured.
Paramters cluster-id (OPTIONAL) Enter the cluster id in dotted decimal format. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast community View information on all routes with community attributes or view specific BGP community groups.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast dampened-paths View BGP routes that are dampened (non-active). Syntax show ip bgp ipv6 unicast dampened-paths Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show ip bgp ipv6 unicast filter-list View the routes that match the filter lists. Syntax show ip bgp ipv6 unicast filter-list as-path-name Parameters as-path-name Enter the name of an AS-PATH. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes.
best Path source: I - internal, a - aggregate, c - confed-external, r redistributed, n network Origin codes: i - IGP, e - EGP, ? - incomplete h h h h Network dead:1::/100 dead:1::/100 dead:4::/100 dead:4::/100 From 5ffe:10::3 5ffe:11::3 5ffe:10::3 5ffe:11::3 Flaps 1 1 1 1 Duration Reuse Path 00:03:20 1 i 00:03:20 1 i 00:04:39 1 i 00:04:39 1 i Dell# show ip bgp ipv6 unicast inconsistent-as View routes with inconsistent originating autonomous system (AS) numbers; that is, prefixes that are announced fro
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp ipv6 unicast neighbors command shown in the Example below. Lines Beginning With Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one.
BGP neighbor is 5ffe:10::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
'OPEN error/Bad AS' Sent : 0 Recv: 1 Local host: 5ffe:11::4, Local port: 179 show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. Syntax show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] Parameters peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group.
Field Description BGP AS-PATH entries Displays the number of BGP AS_PATH attributes processed and the amount of memory used to process them. BGP community entries Displays the number of BGP COMMUNITY attributes processed and the amount of memory used to process them. The show ip bgp ipv6 unicast community command provides more details on the COMMUNITY attributes. Dampening enabled Displayed only when dampening is enabled. Displays the number of paths designated as history, dampened, or penalized.
30 iSCSI Optimization Internet small computer system interface (iSCSI) optimization enables quality-of-service (QoS) treatment for iSCSI storage traffic on an Aggregator. NOTE: When iSCSI storage devices are detected on the server-ports, storm-control is disabled on those ports. When the iSCSI devices are off the ports, storm-control is enabled again.
To remove the iSCSI session aging time, use the no iscsi aging time command. Parameters Defaults time Enter the aging time for the iSCSI session. The range is from 5 to 43,200 minutes. 10 minutes Command Modes CONFIGURATION Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. iscsi enable Globally enable iSCSI optimization. Syntax iscsi enable To disable iSCSI optimization, use the no iscsi enable command. Parameters Defaults enable Enter the keyword enable to enable the iSCSI optimization feature. Disabled. Command Modes CONFIGURATION Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
iscsi profile-compellent Configure the auto-detection of Dell Compellent arrays on a port. Syntax iscsi profile-compellent Defaults Dell Compellent disk arrays are not detected. Command Modes INTERFACE Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show iscsi Display the currently configured iSCSI settings. Syntax show iscsi Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator.
Target: iqn.2001-05.com.equallogic:0-8a0906-0f60c2002-0360018428d48c94iom011 Initiator: iqn.1991-05.com.microsoft:win-x9l8v27yajg ISID: 400001370000. Related Commands ● show iscsi — displays the currently configured iSCSI settings. ● show iscsi sessions detailed — displays detailed information on active iSCSI sessions on the switch. show iscsi sessions detailed Displays detailed information on active iSCSI sessions on the switch.
Command Modes EXEC Privilege Supported Modes Full–Switch Command History Related Commands 680 Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ● show iscsi — displays the currently configured iSCSI settings. ● show iscsi sessions — show iscsi session — displays detailed information about active iSCSI sessions on the switch. ● show iscsi sessions detailed — displays detailed information on active iSCSI sessions on the switch.
31 Intermediate System to Intermediate System (IS-IS) The Dell Networking OS supports the intermediate system to intermediate system (IS-IS) protocol for IPv4 and IPv6. IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic. A router is considered an intermediate system. Networks are partitioned into manageable routing domains, called areas.
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • isis hello padding isis ipv6 metric isis metric isis network point-to-point isis password isis priority is-type log-adjacency-changes lsp-gen-interval lsp-mtu lsp-refresh-interval max-area-addresses max-lsp-lifetime maximum-paths metric-style multi-topology net passive-interface redistribute redistribute bgp redistribute ospf router isis set-overload-bit show config show isis database show isis graceful-restart detail show isis hostname show i
advertise Leak routes between levels (distribute IP prefixes between Level 1 and Level 2 and vice versa). Syntax advertise {level1-into-level2 | level2-into-level1} prefix-list-name To return to the default, use the no advertise {level1-into-level2 | level2-intolevel1}[prefix-list-name] command. Parameters level1-into-level2 Enter the keywords level1-into-level2 to advertise Level 1 routes into Level 2 LSPs. This setting is the default.
The configured password injects into Level 1 LSPs, CSNPs, and PSNPs. Related Commands ● domain-password — allows you to set the authentication password for a routing domain. ● isis password — allows you to configure an authentication password for an interface. clear config Clear IS-IS configurations that display under the router isis heading of the show running-config command output. Syntax clear config Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Version Description 9.9(0.
Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To configure a shortcut name that you can use instead of entering a long string of numbers associated with an NSAP address, use this command.
debug isis local-updates To debug IS-IS local update packets, enable debugging on a specific interface and provides diagnostic information. Syntax debug isis local-updates [interface] To turn off debugging, use the no debug isis local-updates [interface] command. Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug isis update-packets Enable debugging on link state PDUs (LSPs) that a router detects. Syntax debug isis update-packets [interface] To turn off debugging, use the no debug isis update-packets [interface] command.
Usage Information When you use this command to redistribute routes into a routing domain, the router becomes an autonomous system (AS) boundary router. An AS boundary router does not always generate a default route into a routing domain. The router still requires its own default route before it can generate one. How a metric value assigned to a default route advertises depends on the metric-style command configuration.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The administrative distance indicates the trust value of incoming packets. A low administrative distance indicates a high trust rate. A high value indicates a lower trust rate. For example, a weight of 255 is interpreted that the routing information source is not trustworthy and should be ignored.
Defaults rip (OPTIONAL) Enter the keyword rip for RIP routes. static (OPTIONAL) Enter the keyword static for user-configured routing process. Not configured. Command Modes ● ROUTER ISIS (for IPv4) ● CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The domain password is inserted in Level 2 link state PDUs (LSPs), complete sequence number PDUs (CSNPs), and partial sequence number PDUs (PSNPs). Related Commands ● area-password — configures an IS-IS area authentication password.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. graceful-restart t1 Set the graceful restart wait time before unacknowledged restart requests are generated. This wait time is the interval before the system sends a restart request (an IIH with RR bit set in Restart TLV) until the CSNP is received from the helping router.
graceful-restart t3 Configure the overall wait time before graceful restart completes. Syntax graceful-restart t3 {adjacency | manual} seconds To return to the default, use the no graceful-restart t3 command. Parameters Defaults adjacency Enter the keyword adjacency so that the restarting router receives the remaining time value from its peer and adjusts its T3 value so if you have configured this option. manual Enter the keyword manual to specify a time value that the restarting router uses.
Related Commands graceful-restart t3 — configures the overall wait time before graceful restart completes. hello padding Use to turn ON or OFF padding for LAN and point-to-point hello PDUs or to selectively turn padding ON or OFF for LAN or point-to-point hello PDUs. Syntax hello padding [multi-point | point-to-point] To return to the default, use the no hello padding [multi-point | point-to-point] command.
ignore-lsp-errors Ignore LSPs with bad checksums instead of purging those LSPs. Syntax ignore-lsp-errors To return to the default values, use the no ignore-lsp-errors command. Defaults In IS-IS, the default deletes LSPs with internal checksum errors (no ignore-lsp-errors). Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Parameters Defaults tag (OPTIONAL) This parameter is a unique name for a routing process. A null tag is assumed if the tag option is not specified. The tag name must be unique for all IP router processes for a given router. Not configured. Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
isis csnp-interval Configure the IS-IS complete sequence number PDU (CSNP) interval on an interface. Syntax isis csnp-interval seconds [level-1 | level-2] To return to the default values, use the no isis csnp-interval [seconds] [level-1 | level-2] command. Parameters Defaults seconds Interval of transmission time between CSNPs on multi-access networks for the designated intermediate system. The range is from 0 to 65535. The default is 10.
Usage Information The default values of this command are typically satisfactory transmission times for a specific interface on a designated intermediate system. To maintain database synchronization, the designated routers send CSNPs. You can configure Level 1 and Level 2 CSNP intervals independently. isis hello-multiplier Specify the number of IS-IS hello packets a neighbor must miss before the router declares the adjacency down.
isis ipv6 metric Assign metric to an interface for use with IPv6 information. Syntax isis ipv6 metric default-metric [level-1 | level-2] To return to the default values, use the no ipv6 isis metric [default-metric] [level-1 | level-2] command. Parameters Defaults default-metric Metric assigned to the link and used to calculate the cost from each other router via the links in the network to other destinations. You can configure this metric for Level 1 or Level 2 routing. The range is from 0 to 16777215.
Usage Information Dell Networking recommends configuring metrics on all interfaces. Without configuring this command, the IS-IS metrics are similar to hop-count metrics. isis network point-to-point Enable the software to treat a broadcast interface as a point-to-point interface. Syntax isis network point-to-point To disable the feature, use the no isis network point-to-point command. Defaults Not enabled. Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.
isis priority Set the priority of the designated router you select. Syntax isis priority value [level-1 | level-2] To return to the default values, use the no isis priority [value] [level-1 | level-2] command. Parameters Defaults value This value sets the router priority. The higher the value, the higher the priority. The range is from 0 to 127. The default is 64. level-1 (OPTIONAL) Specify the priority for Level 1. This setting is the default. level-2 (OPTIONAL) Specify the priority for Level 2.
Usage Information The IS-IS protocol automatically determines area boundaries and are able to keep Level 1 and Level 2 routing separate. Poorly planned use of this feature may cause configuration errors, such as accidental area partitioning. If you are configuring only one area in your network, you do not need to run both Level 1 and Level 2 routing algorithms. You can configure the IS type as Level 1. log-adjacency-changes Generate a log messages for adjacency state changes.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. LSP throttling slows down the frequency at which LSPs are generated during network instability. Even though throttling LSP generations slows down network convergence, no throttling can result in a network not functioning as expected. If network topology is unstable, throttling slows down the scheduling of LSP generations until the topology regains its stability.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The refresh interval determines the rate at which route topology information is transmitted preventing the information from becoming obsolete. The refresh interval must be less than the LSP lifetime specified with the max-lsp-lifetime command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Change the maximum LSP lifetime with this command. The maximum LSP lifetime must always be greater than the LSP refresh interval. The seconds parameter enables the router to keep LSPs for the specified length of time. If the value is higher, the overhead is reduced on slower-speed links.
Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you enter the metric-style wide command, the system generates and accepts only new-style TLVs. The router uses less memory and other resources rather than generating both old-style and newstyle TLVs. The new-style TLVs have wider metric fields than old-style TLVs.
passive-interface Suppress routing updates on an interface. This command stops the router from sending updates on that interface. Syntax passive-interface interface To delete a passive interface configuration, use the no passive-interface interface command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet then the slot/port information.
level-1 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 1 routes. level-1-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level-1-2 routes. level-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 2 routes. This setting is the default. route-map map- (OPTIONAL) If you do not enter the route-map argument, all routes are redistributed. If a map-name value is not specified, no routers are imported.
metric metric- value (OPTIONAL) The value used for the redistributed route. Use a metric value that is consistent with the destination protocol. The range is from 0 to 16777215. The default is 0. metric-type {external| internal} (OPTIONAL) The external link type associated with the default route advertised into a routing domain. The two options are: ● external ● internal route-map map- map-name is an identifier for a configured route map.
level-1 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 1 routes. level-1-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level-1-2 routes. level-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 2 routes. This setting is the default. match {external | (OPTIONAL) The command used for OSPF to route and redistribute into other internal} routing domains.
You can configure only one IS-IS routing process to perform Level 2 routing. A level-1-2 designation performs Level 1 and Level 2 routing at the same time. Related Commands ● ip router isis — configures IS-IS routing processes for IP on interfaces and attaches an area designator to the routing process. ● net — configures an IS-IS network entity title (NET) for a routing process. ● is-type — assigns a type for a given area.
set-overload-bit spf-interval level-1 100 15 20 spf-interval level-2 120 20 25 exit-address-family Example (AddressFamily_IPv6) The bold section identifies that Multi-Topology IS-IS is enabled in Transition mode. Dell(conf-router_isis-af_ipv6)#show conf ! address-family ipv6 unicast maximum-paths 16 multi-topology transition set-overload-bit spf-interval level-1 100 15 20 spf-interval level-2 120 20 25 exit-address-family show isis database Display the IS-IS link state database.
Field Description The last octet is the LSP number. An LSP is divided into multiple LSP fragments if there is more data than cannot fit in a single LSP. Each fragment has a unique LSP number. An * after the LSPID indicates that the system originates an LSP where this command was issued. Example LSP Seq Num This value is the sequence number for the LSP that allows other systems to determine if they have received the latest information from the source.
Topology: IPv4 (0x00) IPv6 (0x8002) Metric: 10 IS OSPF.00 Metric: 10 IS (MT-IPv6) OSPF.00 Metric: 10 IP 10.1.1.0 255.255.255.0 Metric: 10 IP 15.1.1.0 255.255.255.0 Metric: 20 IP 10.3.3.0 255.255.255.0 Metric: 10 IPv6 (MT-IPv6) 1011::/64 Metric: 10 IPv6 (MT-IPv6) 1511::/64 Metric: 10 IPv6 (MT-IPv6) 2511::/64 Metric: 20 IPv6 (MT-IPv6) 1033::/64 Metric: 10 IPv6 2511::/64 Metric: 20 IPv6 1033::/64 Hostname: ISIS Dell# show isis graceful-restart detail Display detailed IS-IS graceful restart related settings.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show isis hostname System Id Dynamic Name Static Name *F100.E120.0013 Force10 ISIS Dell# show isis interface Display detailed IS-IS interface status and configuration information.
show isis neighbors Display information about neighboring (adjacent) routers. Syntax show isis neighbors [level-1 | level-2] [detail] [interface] Parameters level-1 (OPTIONAL) Displays information about Level 1 IS-IS neighbors. level-2 (OPTIONAL) Displays information about Level 2 IS-IS neighbors. detail (OPTIONAL) Displays detailed information about neighbors.
Adjacency being used for MTs: IPv4 IPv6 Dell# show isis protocol Display IS-IS routing information. Syntax show isis protocol Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The bold section identifies that Multi-Topology IS-IS is enabled. Dell#show isis protocol IS-IS Router: System Id: F100.E120.
Command History Usage Information Example 718 Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show isis traffic command shown in the following example. Item Description Level-1/Level-2 Hellos (sent/ rcvd) Displays the number of Hello packets sent and received. PTP Hellos (sent/rcvd) Displays the number of point-to-point Hellos sent and received.
spf-interval Specify the minimum interval between shortest path first (SPF) calculations. Syntax spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] To restore default values, use the no spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] command. Parameters level-l (OPTIONAL) Enter the keyword level-1 to apply the configuration to Level-1 SPF calculations.
32 Isolated Networks This chapter describes the isolated networks commands in the Dell Networking OS. Topics: • • io-aggregator isolated-network vlan show io-aggregator isolated-networks io-aggregator isolated-network vlan Enable the isolated-network functionality for a particular VLAN or a set of VLANs.
Defaults None Command Modes EXEC Privilege Usage Information This command is used to show the isolated-network feature status and the VLANs configured for this feature. Show running-config will save this command under io-aggregator. Supported Modes All Modes Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Supported on the FN I/O Aggregator. 9.5(0.0) Supported on the M I/O Aggregator.
33 Link Aggregation Control Protocol (LACP) This chapter contains commands for Dell Networking’s implementation of the link aggregation control protocol (LACP) for the creation of dynamic link aggregation groups (LAGs — called port-channels in Dell Networking OS parlance).
Parameters port-channelnumber Enter a port-channel number: The range is from 1 to 128. Command Modes EXEC EXEC Privilege Supported Modes All Modes Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. show lacp — displays the LACP configuration. debug lacp Debug LACP (events).
Command Modes CONFIGURATION Supported Modes Standalone, Stacking, VLT Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Supported on the FN I/O Aggregator. 9.6(0.0) Supported on the M I/O Aggregator. show io-aggregator auto-lag status—displays global information on the auto-lag status. lacp link-fallback Enable the LACP link–fallback feature.
Usage Information Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command applies to dynamic port-channel interfaces only. When applied on a static port-channel, this command has no effect.
Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. LACP Modes Mode Function active An interface is in an active negotiating state in this mode.
show interfaces port-channel Display information on configured Port Channel groups. Syntax Parameters show interfaces port-channel [channel-number] [brief| description] channel-number For a Port Channel interface, enter the keyword port-channel followed by a number. The range is from 1 to 128. brief (OPTIONAL) Enter the keyword brief to display only the port channel number, the state of the port channel, and the number of interfaces in the port channel.
Example (EtherScale) User Information 728 Field Description 0 64-byte... Displays the size of packets and the number of those packets entering that interface. This information is displayed over two lines. Received 0... Displays the type and number of errors or other specific packets received. This information is displayed over three lines. Output 0... Displays the type and number of packets sent out the interface. This information is displayed over three lines. Rate information...
Example Dell#show int po bri Codes: L - LACP Port-channel O - OpenFlow Controller Port-channel A - Auto Port-channel I - Internally Lagged LAG Mode Status Uptime Ports L 128 L3 down 00:00:00 Dell# To indicate the LACP fallback, Internally lagged is added to the list. When the LAG autoconfigures itself, the LAG status describes as ‘I’. Related Commands show lacp — displays the LACP matrix. show io-aggregator auto-lag status Displays global information on the auto-lag status.
Example (Port-ChannelNumber) Version Description 8.3.17.0 Supported on the M I/O Aggregator. Dell#show lacp Port-channel 1 Actor System Partner System 128 admin up, oper up, mode lacp ID:Priority 32768, Address 0001.e800.a12b ID:Priority 32768, Address 0001.e801.
Field Description Link-bundle Threshold value that is the checkpoint, exceeding which the link bundle is marked trigger threshold as being overutilized and alarm is generated Example LAG bundle number Number of the LAG bundle Utilization (In Percent) Traffic usage in percentage of the packets processed by the port channel Alarm State Indicates whether an alarm is generated if overutilization of the port channel occurred.
Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. Because this command calculates based on a Layer 2 hash algorithm, use this command to display flows for switched Layer 2 packets, not for routed packets (use the show ip flow command to display routed packets).
34 Layer 2 This chapter describes commands to configure Layer 2 features.
mac-address-table aging-time Specify an aging time for MAC addresses to remove from the MAC address table. Syntax mac-address-table aging-time seconds To delete the configured aging time, use the no mac-address-table aging-time seconds command. Parameters Defaults seconds Enter either zero (0) or a number as the number of seconds before MAC addresses are relearned. To disable aging of the MAC address table, enter 0. The range is from 10 to 1000000. The default is 1800 seconds.
mac-address-table station-move refresh-arp Ensure that address resolution protocol (ARP) refreshes the egress interface when a station move occurs due to a topology change. Syntax [no] mac-address-table station-move refresh-arp Defaults Enabled Command Modes CONFIGURATION Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.0) Modified the default option from none to Enabled. Introduced on the FN IOM. 9.4(0.
If you do not specify the vlan option, the MAC address counters are not VLAN-based. That is, the sum of the addresses learned on all VLANs (not having any learning limit configuration) is counted against the MAC learning limit. MAC Learning Limit violation logs and actions are not available on a per-VLAN basis. With the keyword no-station-move option, MAC addresses learned through this feature on the selected interface persist on a per-VLAN basis, even if received on another interface.
Parameters Defaults log Enter the keyword log to generate a syslog message on a station move violation. shutdown-both Enter the keyword shutdown to shut down both the original and offending interface and generate a syslog message. shutdownoffending Enter the keywords shutdown-offending to shut down the offending interface and generate a syslog message. shutdownoriginal Enter the keywords shutdown-original to shut down the original interface and generate a syslog message.
Usage Information Version Description 9.14(1.0) Introduced on the C9010, MXL, FN IOM, S3100 series, S4810, S4820T, S3048–ON, S4048–ON, S4048T-ON, S5048F-ON, S6000, S6000–ON, S6010–ON, S6100–ON, Z9100–ON, and Z9500. Only if you enable the port security, you will be able to configure MAC address learning limit configurations on the interface level. When you disable the port security, all the interface level configurations are reset.
Parameters dynamic (OPTIONAL) Enter the keyword dynamic to display only those MAC addresses the switch dynamically learns. Optionally, you can also add one of these combinations: address/mac-address, interface/interface, or vlan vlan-id. static (OPTIONAL) Enter the keyword static to display only those MAC addresses specifically configured on the switch. Optionally, you can also add one of these combinations: address/mac-address, interface/interface, or vlan vlan-id.
Example Usage Information Dell#show mac-address-table VlanId Mac Address Type 20 00:00:c9:ad:f6:12 Dynamic Dell# Interface Te 0/3 State Active The following describes the show mac-address-table command shown in the following example. Column Heading Description VlanId Displays the VLAN ID number. Mac Address Displays the MAC address in nn:nn:nn:nn:nn:nn format. Type Lists whether the MAC address was manually configured (Static), learned (Dynamic), or associated with a specific port (Sticky).
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show mac-address-table aging-time Mac-address-table aging time : 1800 Dell# Related Commands show mac-address-table — displays the current MAC address configuration. show mac learning-limit Display MAC address learning limits set for various interfaces.
description Add a description about the selected VLAN. Syntax description description To remove the description from the VLAN, use the no description command. Parameters Defaults description Enter a text string description to identify the VLAN (80 characters maximum). none Command Modes INTERFACE VLAN Supported Modes All Modes Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The no default vlan disable command is not listed in the running-configuration, but when the default VLAN is disabled, default-vlan disable is listed in the running-configuration. name Assign a name to the VLAN. Syntax name vlan-name To remove the name from the VLAN, use the no name command.
shutdown Dell(conf-if-vl-100)# show vlan Display the current VLAN configurations on the switch. Syntax show vlan [brief | id vlan-id | name vlan-name] Parameters brief (OPTIONAL) Enter the keyword brief to display the following information: ● VLAN ID ● VLAN name (left blank if none is configured) ● Spanning Tree Group ID ● MAC address aging time ● IP address id vlan-id (OPTIONAL) Enter the keyword id then a number from 1 to 4094. Only information on the VLAN specified is displayed.
Column Heading Description ● v (not capitalized v) for VLT untagged ● V (capitalized V) for VLT tagged Ports Example Displays the type, slot, and port information.
interface vlan — configures a VLAN. tagged Add a Layer 2 interface to a VLAN as a tagged interface. Syntax tagged interface To remove a tagged interface from a VLAN, use the no tagged interface command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When this command is configured, the VLAN is operationally UP if any of the interfaces specified in the track ip command are operationally UP, and the VLAN is operationally DOWN if none of the tracking interfaces are operationally UP. If the track ip command is not configured, the VLAN's Layer 3 operational state depends on all the members of the VLAN.
35 Link Layer Discovery Protocol (LLDP) The link layer discovery protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management. The Dell Networking OS implementation of LLDP is based on IEEE standard 801.1ab. This chapter describes the LLDP commands.
Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) — enables LLDP globally. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors.
Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(2.0P1) Introduced the description and port-id options. If you do not specify the option, by default the port-id takes higher precedence and sends the port-id in the LLDP packets. advertise management-tlv Advertise management TLVs (Type, Length, Value).
Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. clear lldp neighbors Clear LLDP neighbor information for all interfaces or a specific interface. Syntax Parameters Defaults clear lldp neighbors {interface} interface Enter the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
both Defaults (OPTIONAL) Enter the keyword both to display both receive and transmit packet information. none Command Modes EXEC Privilege Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. disable Enable or disable LLDP. Syntax disable To enable LLDP, use the no disable command. Defaults Enabled, that is no disable.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mode To receive or transmit, set LLDP. Syntax mode {tx | rx} To return to the default, use the no mode {tx | rx} command. Parameters Defaults tx Enter the keyword tx to set the mode to transmit. rx Enter the keyword rx to set the mode to receive. Both transmit and receive.
Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) Enable LLDP globally on the switch. Syntax protocol lldp To disable LLDP globally on the chassis, use the no protocol lldp command. Defaults Enabled. Command Modes CONFIGURATION (conf-lldp) Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.
show lldp neighbors Display LLDP neighbor information for all interfaces or a specified interface. Syntax Parameters Defaults show lldp neighbors [interface] [detail] interface (OPTIONAL) Enter the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword tenGigabitEthernet then the slot/port information. detail (OPTIONAL) Enter the keyword detail to display all the TLV information, timers, and LLDP tx and rx counters.
show running-config lldp Display the current global LLDP configuration. Syntax show running-config lldp Defaults none Command Modes EXEC Privilege Supported Modes Full-Switch Command History Example 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
DSCP_value Enter the DSCP value. The range is from 0 to 63. priority-tagged Enter the keywords priority-tagged followed the Layer 2 priority. The range is from 0 to 7. number Defaults Unconfigured. Command Modes CONFIGURATION (conf-lldp) Supported Modes Full-Switch Command History Related Commands 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) — enables LLDP globally. debug lldp interface — debugs LLDP.
To return to the default, use the no advertise med location-identification {coordinate-based value | civic-based value | ecs-elin value} command. Parameters coordinate-based Enter the keywords coordinate-based then the coordinated based location in value hexadecimal value of 16 bytes. civic-based value Enter the keywords civic-based then the civic based location in hexadecimal format. The range is from 6 to 255 bytes.
advertise med softphone-voice To advertise softphone to enable IP telephony on a computer so that the computer can be used as a phone, configure the system. Syntax advertise med softphone-voice {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med softphone-voice {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094. priority-tagged Enter the keywords priority-tagged then the Layer 2 priority.
advertise med video-conferencing To advertise dedicated video conferencing and other similar appliances that support real-time interactive video, configure the system. Syntax advertise med video-conferencing {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med video-conferencing {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094. priority-tagged Enter the keywords priority-tagged then the Layer 2 priority.
To return to the default, use the no advertise med voice {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094. priority-tagged Enter the keywords priority-tagged then the Layer 2 priority. The range is from 0 to 7. number Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Supported Modes Full-Switch Command History Related Commands 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.
36 Microsoft Network Load Balancing Network Load Balancing (NLB) is a clustering functionality that is implemented by Microsoft on Windows 2000 Server and Windows Server 2003 operating systems. NLB uses a distributed methodology or pattern to equally split and balance the network traffic load across a set of servers that are part of the cluster or group.
Limitations With Enabling NLB on Switches The following limitations apply to switches on which you configure NLB: ● The NLB unicast mode uses switch flooding to transmit all packets to all the servers that are part of the VLAN. When a large volume of traffic is processed, the clustering performance might be impacted in a small way. This limitation is applicable to switches that perform unicast flooding in the software. ● The ip vlan-flooding command applies globally across the system and for all VLANs.
the VLAN. To delete a configured static multicast MAC address from the MAC address table on the router, enter the no mac-address-table static multicast-mac-address command. Syntax mac-address-table static multicast-mac-address multicast vlan vlan-id range-output {single-interface | interface-list | interface-range} To remove a MAC address, use the no mac-address-table static multicast-mac-address output interface vlan vlan-id command.
Usage Information By default this command is disabled. There might be some ARP table entries which are resolved through ARP packets which had Ethernet MAC SA different from MAC information inside the ARP packet. This unicast data traffic flooding occurs only for those packets which use these ARP entries.
37 Multicast Source Discovery Protocol (MSDP) Multicast source discovery protocol (MSDP) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections.
Parameters Defaults group-address Enter the group IP address in dotted decimal format (A.B.C.D.). rejected-sa Enter the keywords rejected-sa to clear the cache source-active entries that are rejected because the RPF check failed, an SA filter or limit is configured, the RP or MSDP peer is unreachable, or because of a format error. local Enter the keyword local to clear out local PIM advertised entries.
Defaults packet peer address Enter the keyword packet then the peer address in a dotted decimal format (A.B.C.D.). pim Enter the keyword pim to debug advertisement from PIM. Not configured. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip msdp cache-rejected-sa Enable an MSDP cache for the rejected source-active entries.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If a list is not specified, all SA messages received from the default peer are accepted. You can enter multiple default peer commands. ip msdp log-adjacency-changes Enable logging of MSDP adjacency changes. Syntax ip msdp log-adjacency-changes To disable logging, use the no ip msdp log-adjacency-changes command.
ip msdp originator-id Configure the MSDP Originator ID. Syntax ip msdp originator-id {interface} To remove the originator-id, use the no ip msdp originator-id {interface} command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The connect-source option is used to supply a source IP address for the TCP connection. When an interface is specified using the connect-source option, the primary configured address on the interface is used.
Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip msdp sa-limit Configure the upper limit of source-active (SA) entries in SA-cache. Syntax ip msdp sa-limit number To return to the default, use the no ip msdp sa-limit number command. Parameters Defaults number Enter the maximum number of SA entries in SA-cache.
Command History Version Version 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip multicast-msdp Enable MSDP. Syntax ip multicast-msdp To exit MSDP, use the no ip multicast-msdp command. Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example (Sacache) Example (Summary) Dell#show ip msdp sa-cache MSDP Source-Active Cache - 1 entries GroupAddr SourceAddr RPAddr 224.1.1.1 172.21.220.10 172.21.3.254 Dell# Dell#show ip msdp summary Peer Addr Local Addr Description 5.5.5.32 6.6.6.32 Peer1 Dell# LearnedFrom Expire UpTime 172.21.3.254 102 00:02:52 State Source Established Lo 32 SA 20 Up/Down 00:07:17 show ip msdp sa-cache rejected-sa Display the rejected SAs in the SA cache.
38 Multiple Spanning Tree Protocol (MSTP) Multiple spanning tree protocol (MSTP), as implemented by the Dell Networking Operating System (OS), conforms to IEEE 802.1s.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#debug spanning-tree mstp bpdu tengigabitethernet 0/16 ? in Receive (in) out Transmit (out) Dell# description Enter a description of the multiple spanning tree. Syntax description {description} To remove the description, use the no description {description} command.
disable Enable bridge protocol data units (BPDU) filter globally to filter transmission of BPDU on port-fast enabled interfaces. Syntax edge-port bpdufilter default To disable global bpdu filter default, use the no edge-port bpdufilter default command. Defaults disabled. Command Modes MULTIPLE SPANNING TREE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. edge-port bpdufilter default — the amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. max-age — changes the wait time before MSTP refreshes protocol configuration information.
Usage Information The max-hops command is a configuration command that applies to both the IST and all MST instances in the MSTP region. The BPDUs sent out by the root switch set the remaining-hops parameter to the configured value of max-hops. When a switch receives the BPDU, it decrements the received value of the remaining hops and uses the resulting value as remaining-hops in the BPDUs.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information For two MSTP switches to be within the same MSTP region, the switches must share the same region name (including matching case). Related Commands msti — maps the VLAN(s) to an MST instance. revision — assigns the revision number to the MST configuration. port-channel path-cost custom Sets the path cost to be constant for port-channel regardless of its operation status.
Usage Information MSTP is not enabled when you enter MULTIPLE SPANNING TREE mode. To enable MSTP globally on the switch, enter the no disable command while in MULTIPLE SPANNING TREE mode. For more information about the multiple spanning tree protocol, refer to the Dell Networking OS Configuration Guide. Example Related Commands Dell(conf)#protocol spanning-tree mstp Dell(config-mstp)#no disable disable — disables multiple spanning tree.
revision 2 MSTI 10 VLAN 101-105 max-hops 5 Dell(conf-mstp)# show spanning-tree mst configuration View the multiple spanning tree configuration. Syntax show spanning-tree mst configuration Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Enable the multiple spanning tree protocol prior to using this command.
Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e800.0204 Root Bridge hello time 2, max age 20, forward delay 15, max hops 20 Bridge ID Priority 32768, Address 0001.e800.0204 We are the root of MSTI 0 (CIST) Configured hello time 2, max age 20, forward delay 15, max hops 20 Bpdu filter disabled globally CIST regional root ID Priority 32768, Address 0001.e800.
Designated port id is 128.257, designated path cost 0 Number of transitions to forwarding state 1 BPDU (MRecords): sent 21, received 9 The port is not in the Edge port mode Usage Information Example (Guard) The following describes the show spanning-tree msti 5 guard command shown in the following example. Field Description Interface Name MSTP interface. Instance MSTP instance.
● ● ● ● priority priority Defaults 10-Gigabit Ethernet interface = 2000 Port Channel interface with one 10 Gigabit Ethernet = 2000 Port Channel with two 10 Gigabit Ethernet = 1800 Port Channel with two 100 Mbps Ethernet = 180000 Enter keyword priority then a value in increments of 16 as the priority. The range is from 0 to 240. The default is 128. ● cost = depends on the interface type ● priority = 128 Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.
When used in an MSTP network, if root guard blocks a boundary port in the CIST, the port is also blocked in all other MST instances. Enabling Portfast BPDU guard and loop guard at the same time on a port results in a port that remains in a blocking state and prevents traffic from flowing through it.
39 Multicast The multicast commands are supported by Dell Networking Operating System (OS). This chapter contains the following sections: ● IPv4 Multicast Commands ● IPv6 Multicast Commands Topics: • • • • • • • • • • • IPv4 Multicast Commands clear ip mroute ip mroute ip multicast-limit ip multicast-routing mtrace show ip mroute show ip rpf IPv6 Multicast Commands debug ipv6 mld_host ip multicast-limit IPv4 Multicast Commands The following section contains the IPv4 multicast commands.
ip mroute Assign a static mroute. Syntax ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] To delete a specific static mroute, use the ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] command. To delete all mroutes matching a certain mroute, use the no ip mroute destination mask command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This feature allows you to limit the number of multicast entries on the system. This number is the total of all the multicast entries on all line cards in the system. On each line card, the multicast module only installs the maximum number of entries, depending on the configured CAM profile. To store multicast routes, use the IN-L3-McastFib CAM partition.
Command Modes EXEC Privilege Command History Usage Information Version Description 9.11.0.0 Re-introduced the mtrace command on the Dell EMC Networking OS. 7.5.1.0 Expanded to support originator. 7.4.1.0 Expanded to support the intermediate (transit) router. Mtrace is an IGMP based protocol that provides a multicast trace route facility and is implemented according to the IETF draft “A trace route facility for IP Multicast” (draft-fenner-traceroute-ipm-01.txt).
Enter the source-address to view routes with that group-address and sourceaddress. count (OPTIONAL) Enter the keyword count to view the number of multicast routes and packets. snooping [vlan vlan-id ] [ groupaddress [ sourceaddress ]] Enter the keyword snooping to display information on the multicast routes PIMSM snooping discovers. Enter a VLAN ID to limit the information displayed to the multicast routes PIM-SM snooping discovers on a specified VLAN. The VLAN ID range is from 1 to 4094.
IP Multicast Routing Table (*, 224.10.10.1), uptime 00:05:12 Incoming interface: TenGigabitEthernet 0/2 Outgoing interface list: TenGigabitEthernet 0/13 (1.13.1.100, 224.10.10.1), uptime 00:04:03 Incoming interface: TenGigabitEthernet 1/4 Outgoing interface list: TenGigabitEthernet 0/6 TenGigabitEthernet 0/7 (*, 224.20.20.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2.(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Network administrators use static mroutes to control the reach-ability of the multicast sources. If a PIM-registered multicast source is reachable using static mroute as well as unicast route, the distance of each route is examined and the route with shorter distance is the one the PIM selects for reach-ability.
ip multicast-limit To limit the number of multicast entries on the system, use this feature. Syntax ip multicast-limit limit Parameters Defaults limit Enter the desired maximum number of multicast entries on the system. The range is from 1 to 50000. 15000 routes. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
40 Neighbor Discovery Protocol (NDP) The Dell Networking Operating System (OS) supports the network discovery protocol for IPv6. The neighbor discovery protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 neighbor Configure a static entry in the IPv6 neighbor discovery. Syntax ipv6 neighbor {ipv6-address} {interface interface} {hardware_address} To remove a static IPv6 entry from the IPv6 neighbor discovery, use the no ipv6 neighbor {ipv6address} {interface interface} command.
interface interface Defaults Enter the keyword interface then the interface type and slot/port or number information: ● For a Fast Ethernet interface, enter the keyword fastEthernet then the slot/port information. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a VLAN, enter the keyword vlan then the VLAN ID. The range is from 1 to 4094.
41 NPIV Proxy Gateway The N-port identifier virtualization (NPIV) Proxy Gateway (NPG) feature provides FCoE-FC bridging capability on the FN IOM with the FC Flex IO module switch, allowing server CNAs to communicate with SAN fabrics over the FN IOMwith the FC Flex IO module.
Use the dcb-map command to create a DCB map to specify PFC and ETS settings and apply it on Ethernet ports. After you apply a DCB map to an interface, the PFC and ETS settings in the map are applied when the Ethernet port is enabled. DCBx is enabled on Ethernet ports by default. The dcb-map command is supported only on physical Ethernet interfaces. To remove a DCB map from an interface, enter the no dcb-map map-name command in Interface configuration mode.
Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Supported on the FN 2210S Aggregator. 9.3(0.0) Supported on the M I/O Aggregator. In the fabric-id vlan command, the fabric and VLAN ID numbers must be the same. In each FCoE map, the fabric ID, FC-MAP value, and FCoE VLAN parameters must be unique. To remove a fabric-VLAN association from an FCoE map, enter the no fabric-id vlan command.
fc-map In an FCoE map, configure the FCoE mapped address prefix (FC-MAP) value which is used to identify FCoE traffic transmitted on the FCoE VLAN for the specified fabric. Syntax Parameters fc—map fc-map-value fc-map-value Enter the unique MAC address prefix used by a SAN fabric. The range of FC-MAP values is from 0EFC00 to 0EFCFF. Defaults None Command Modes FCoE MAP Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.
● Keepalive: enable ● Vlan priority: 3 Command Modes CONFIGURATION INTERFACE Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Supported on the FN2210S Aggregator with the PMUX module. 9.3(0.0) Introduced on the M I/O Aggregator with the PMUX module. An FCoE map is a template used to map FCoE and FC parameters in a converged fabric.
fka-adv-period In an FCoE map, configure the time interval used to transmit FIP keepalive (FKA) advertisements. Syntax fka-adv-period seconds Parameters Defaults seconds Enter the time period (in seconds) used to send FIP keepalive messages to peer devices. The range is from 8 to 90 seconds. 8 seconds Command Modes FCoE MAP Supported Modes All Modes Command History Version Description 9.6(0.0) Supported on the FN 2210S Aggregator. 9.3(0.
show fcoe-map Displays the Fibre Channel and FCoE configuration parameters in FCoE maps. Syntax show fcoe-map [brief | map-name] Parameters brief Displays an overview of currently configured FCoE maps. map-name Displays the FC and FCoE configuration parameters in a specified FCoE map. The FCoE map is applied on Ethernet (FCoE) and FC ports to transmit FC storage traffic to a specified fabric.
Example Field Description VLAN ID The dedicated FCoE VLAN used to transport FCoE storage traffic between servers and a fabric over the NPIV proxy gateway. The configured VLAN ID must be the same as the fabric ID. VLAN priority FCoE traffic uses VLAN priority 3. (This setting is not user-configurable.) FC-MAP FCoE MAC address-prefix value - The unique 24-bit MAC address prefix that identifies a fabric. FKA-ADV-period Time interval (in seconds) used to transmit FIP keepalive advertisements.
Example Version Description 9.6(0.0) Supported on the FN2210S Aggregator. 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. Dell(conf)#do show fc sw Switch Mode : NPG Switch WWN : 10:00:00:1e:c9:f1:00:d7 show interfaces status Displays a summary of interface information or specify a stack unit and interface to display status information for that specific interface only.
show npiv devices Displays the FCoE and FC devices currently logged into an FN I/O Aggregator Switch with the FC Flex IO module NPIV proxy gateway. Syntax Parameters show npiv devices [brief] brief Displays an overview of current server CNA-fabric connections over an FN I/O Aggregator with the FC Flex IO module NPIV proxy gateway. Command Modes ● EXEC ● EXEC Privilege Supported Modes All modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.6.(0.
Example Related Commands 808 Field Description ENode [ number ] A server CNA that has successfully logged in to a fabric over an FN I/O Aggregator with the FC Flex IO module Ethernet port in ENode mode. Enode MAC MAC address of a server CNA port. Enode Intf Port number of a server-facing Ethernet port operating in ENode mode. FCF MAC Fibre Channel forwarder MAC: MAC address of FN I/O Aggregator Switch with the FC Flex IO module FCF interface.
fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show qos dcb-map Display the DCB parameters configured in a specified DCB map. Syntax Parameters show qos dcb-map map-name map-name Displays the PFC and ETS parameters configured in the specified map. Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.
show running-config fcoe-map Displays the current fcoe-map configurations. Syntax show running-config fcoe-map Command Modes EXEC Privilege Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Supported on the FN2210S Aggregator. 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module.
42 Open Shortest Path First (OSPFv2 and OSPFv3) The Switch supports open shortest path first version 2 (OSPFv2) for IPv4 and version 3 (OSPFv3) for IPv6. Up to 16 OSPF instances can be run simultaneously on the Switch. OSPF is an Interior Gateway Protocol (IGP), which means that it distributes routing information between routers in a single Autonomous System (AS). OSPF is also a link-state protocol in which all routers contain forwarding tables derived from information about their links to their neighbors.
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • 812 log-adjacency-changes maximum-paths mib-binding network area passive-interface redistribute redistribute bgp redistribute isis router-id router ospf show config show ip ospf show ip ospf asbr show ip ospf database show ip ospf database asbr-summary show ip ospf database external show ip ospf database network show ip ospf database nssa-external show ip ospf database opaque-area show ip ospf d
• • • • • • • • • • • • ipv6 router ospf maximum-paths passive-interface redistribute router-id show crypto ipsec policy show crypto ipsec sa ipv6 show ipv6 ospf database show ipv6 ospf interface show ipv6 ospf neighbor snmp context timers spf OSPFv2 Commands The Dell Networking implementation of OSPFv2 is based on IETF RFC 2328. area default-cost Set the metric for the summary default route the area border router (ABR) generates into the stub area.
Parameters area-id Specify the OSPF area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535. no-redistribution (OPTIONAL) Specify that the redistribute command does not distribute routes into the NSSA. Only use this command in an NSSA area border router (ABR). Defaults defaultinformationoriginate (OPTIONAL) Allows external routing information to be imported into the NSSA by using Type 7 default.
area stub Configure a stub area, which is an area not connected to other areas. Syntax area area-id stub [no-summary] To delete a stub area, use the no area area-id stub command. Parameters Defaults area-id Specify the OSPF area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535. no-summary (OPTIONAL) Enter the keywords no-summary to prevent the ABR from sending summary Link State Advertisements (LSAs) into the stub area. Disabled.
Parameters process-id Enter the OSPF Process ID to clear a specific process. If no Process ID is entered, all OSPF processes are cleared. process (OPTIONAL) Enter the keyword process to reset the OSPF process. Command Modes EXEC Privilege Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip ospf statistics Clear the packet statistics in interfaces and neighbors.
bfd (OPTIONAL) Enter the keyword bfd to debug only OSPF BFD information. event (OPTIONAL) Enter the keyword event to debug only OSPF event information. packet (OPTIONAL) Enter the keyword packet to debug only OSPF packet information. spf (OPTIONAL) Enter the keyword spf to display the Shortest Path First information. database-timer rate-limit (OPTIONAL) Enter the keywords database-timer rate-limit to display the LSA throttling timer information.
Field Description ● MC+ (bit used by MOSPF is set and router is able to forward IP multicast packets) ● MC- (bit used by MOSPF is not set and router cannot forward IP multicast packets) ● E + (router is able to accept AS External LSAs) ● E - (router cannot accept AS External LSAs) ● T + (router can support TOS) ● T - (router cannot support TOS) Example hi: Displays the amount of time configured for the HELLO interval. di: Displays the amount of time configured for the DEAD interval.
Related Commands redistribute — redistributes routes from other routing protocols into OSPF. default-metric Change the metrics of redistributed routes to a value useful to OSPF. Use this command with the redistribute command. Syntax default-metric number To return to the default values, use the no default-metric [number] command. Parameters Defaults number Enter a number as the metric. The range is from 1 to 16777214. Disabled.
Parameters weight Specify an administrative distance. The range is from 1 to 255. The default is 110. ip-address (OPTIONAL) Enter a router ID in the dotted decimal format. If you enter a router ID, include the mask for that router address. mask (OPTIONAL) Enter a mask in dotted decimal format or /n format. access-list-name (OPTIONAL) Enter the name of an IP standard access list, up to 140 characters.
Parameters Defaults prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: ● For Port Channel groups, enter the keywords port-channel then a number. The range is from 1 to 128. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a VLAN, enter the keyword vlan then a number from 1 to 4094. Not configured.
fast-convergence This command sets the minimum LSA origination and arrival times to zero (0), allowing more rapid route computation so that convergence takes less time. Syntax fast-convergence {number} To cancel fast-convergence, use the no fast convergence command. Parameters Defaults number Enter the convergence level desired. The higher this parameter is set, the faster OSPF converge takes place. The range is from 1 to 4. none.
graceful-restart grace-period Specifies the time duration, in seconds, that the router’s neighbors continue to advertise the router as fully adjacent regardless of the synchronization state during a graceful restart. Syntax graceful-restart grace-period seconds To disable the grace period, use the no graceful-restart grace-period command. Parameters Defaults seconds Time duration, in seconds, that specifies the duration of the restart process before OSPF terminates the process.
Command Modes ROUTER OSPF Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. graceful-restart role Specify the role for your OSPF router during graceful restart. Syntax graceful-restart role [helper-only | restart-only] To disable graceful restart role, use the no graceful-restart role command.
ip ospf authentication-key Enable authentication and set an authentication key on OSPF traffic on an interface. Syntax ip ospf authentication-key [encryption-type] key To delete an authentication key, use the no ip ospf authentication-key command. Parameters Defaults encryption-type (OPTIONAL) Enter 7 to encrypt the key. key Enter an eight-character string. Strings longer than eight characters are truncated. Not configured.
To return to the default values, use the no ip ospf dead-interval command. Parameters Defaults seconds Enter the number of seconds for the interval. The range is from 1 to 65535. The default is 40 seconds. 40 seconds Command Modes INTERFACE Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information By default, the dead interval is four times the default hello-interval.
Defaults No MD5 authentication is configured. Command Modes INTERFACE Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can configure a maximum of six digest keys on an interface. Of the available six digest keys, the switches select the MD5 key that is common. The remaining MD5 keys are unused.
Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip ospf priority To determine the designated router for the OSPF network, set the priority of the interface. Syntax ip ospf priority number To return to the default setting, use the no ip ospf priority command. Parameters Defaults number Enter a number as the priority. The range is from 0 to 255. The default is 1.
ip ospf transmit-delay To send a link state update packet on the interface, set the estimated time elapsed. Syntax ip ospf transmit-delay seconds To return to the default value, use the no ip ospf transmit-delay command. Parameters seconds Enter the number of seconds as the interval between retransmission. The range is from 1 to 3600. The default is 1 second. This value must be greater than the transmission and propagation delays for the interface.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Added support for OSPFv3. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mib-binding Enable this OSPF process ID to manage the SNMP traps and process SNMP queries. Syntax mib-binding To mib-binding on this OSPF process, use the no mib-binding command. Defaults none.
Usage Information To enable OSPF on an interface, the network area command must include, in its range of addresses, the primary IP address of an interface. NOTE: An interface can be attached only to a single OSPF area. If you delete all the network area commands for Area 0, the show ip ospf command output does not list Area 0. passive-interface Suppress both receiving and sending routing updates on an interface.
● Remove the interface from the passive list. ● The ABR status for the router is updated. ● If passive-interface default is specified, then save no passive-interface interface into the running configuration. No ● ● ● passive-interface default Clear everything and revert to the default behavior. All previously marked passive interfaces are removed. May update ABR status. redistribute Redistribute information from another routing protocol throughout the OSPF process.
redistribute bgp Redistribute BGP routing information throughout the OSPF instance. Syntax redistribute bgp as number [metric metric-value] | [metric-type type-value] | [tag tag-value] To disable redistribution, use the no redistribute bgp as number [metric metric-value] | [metric-type type-value] [tag tag-value] command. Parameters as number Enter the autonomous system number. The range is from 1 to 65535. metric metric- (OPTIONAL) Enter the keyword metric then the metric-value number.
tag tag-value Defaults (OPTIONAL) Enter the keyword tag to set the tag for routes redistributed into OSPF. The range is from 0 to 4294967295. Not configured. Command Modes ROUTER OSPF Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. router-id To configure a fixed router ID, use this command. Syntax router-id ip-address To remove the fixed router ID, use the no router-id ip-address command.
Parameters Defaults process-id Enter a number for the OSPF instance. The range is from 1 to 65535. Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You must have an IP address assigned to an interface to enter ROUTER OSPF mode and configure OSPF.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If you delete all the network area commands for Area 0, the show ip ospf command output does not list Area 0. The following describes the show ip ospf command shown in the following example. Line Beginning with Description “Routing Process...” Displays the OSPF process ID and the IP address associated with the process ID. “Supports only...” Displays the number of Type of Service (TOS) rouse supported.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To isolate problems with external routes, use this command. In OSPF, external routes are calculated by adding the LSA cost to the cost of reaching the ASBR router. If an external route does not have the correct cost, use this command to determine if the path to the originating router is correct. The display output is not sorted in any order.
Example Dell>show ip ospf 1 database OSPF Router with ID (11.1.2.1) (Process ID 1) Router (Area 0.0.0.0) Link ID ADV Router Age Seq# Checksum 11.1.2.1 11.1.2.1 673 0x80000005 0x707e 13.1.1.1 13.1.1.1 676 0x80000097 0x1035 192.68.135.2 192.68.135.2 1419 0x80000294 0x9cbd Link ID 10.2.3.2 10.2.4.2 Link ID 0.0.0.0 1.1.1.1 10.1.1.0 10.1.2.0 10.2.2.0 10.2.3.0 10.2.4.0 11.1.1.0 11.1.2.0 12.1.2.0 13.1.1.0 13.1.2.0 172.16.1.0 Dell> Related Commands Link count 2 2 1 Network (Area 0.0.0.
Example Field Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: ● TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service. ● DC or No DC is displayed depending on whether the originating router can support OSPF over demand circuits. ● E or No E is displayed on whether the originating router can accept AS External LSAs.
Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format. The LSA ID value depends on the LSA type, and it can be one of the following: ● the network’s IP address for Type 3 LSAs or Type 5 LSAs ● the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs ● the default destination (0.0.0.
OSPF Router with ID (20.20.20.5) (Process ID 1) Type-5 AS External LS age: 612 Options: (No TOS-capability, No DC, E) LS type: Type-5 AS External Link State ID: 12.12.12.2 Advertising Router: 20.31.3.1 LS Seq Number: 0x80000007 Checksum: 0x4cde Length: 36 Network Mask: /32 Metrics Type: 2 TOS: 0 Metrics: 25 Forward Address: 0.0.0.0 External Route Tag: 43 LS age: 1868 Options: (No TOS-capability, DC) LS type: Type-5 AS External Link State ID: 24.216.12.0 Advertising Router: 20.20.20.
Usage Information Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip ospf process-id database network command shown in the following example. Field Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: ● TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
Related Commands show ip ospf database — displays OSPF database information. show ip ospf database nssa-external Display NSSA-External (type 7) LSA information. Syntax Parameters show ip ospf database nssa-external [link-state-id] [adv-router ip-address] link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Usage Information Example The following describes the show ip ospf process-id database opaque-area command shown in the following example. Item Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: ● TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
Parameters process-id Enter the OSPF process ID to show a specific process. If you do not enter the process ID, the command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format. The LSA ID value depends on the LSA type, and it can be one of the following: ● the network’s IP address for Type 3 LSAs or Type 5 LSAs ● the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs ● the default destination (0.0.0.
show ip ospf database router Display the router (type 1) LSA information. Syntax show ip ospf process-id database router [link-state-id] [adv-router ipaddress] Parameters process-id Enter the OSPF Process ID to show a specific process. If you do not enter a process ID, the command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Example Item Description Number of TOS Metric Lists the number of TOS metrics. TOS 0 Metric Lists the number of TOS 0 metrics. Dell#show ip ospf 100 database router OSPF Router with ID (1.1.1.10) (Process ID 100) Router (Area 0) LS age: 967 Options: (No TOS-capability, No DC, E) LS type: Router Link State ID: 1.1.1.10 Advertising Router: 1.1.1.
show ip ospf database summary Display the network summary (type 3) LSA routing information. Syntax show ip ospf process-id database summary [link-state-id] [adv-router ipaddress] Parameters process-id Enter the OSPF process ID to show a specific process. If you do not enter a process ID, the command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
OSPF Router with ID (1.1.1.10) (Process ID 100) Summary Network (Area 0.0.0.0) LS age: 1551 Options: (No TOS-capability, DC, E) LS type: Summary Network Link State ID: 192.68.16.0 Advertising Router: 192.168.17.1 LS Seq Number: 0x80000054 Checksum: 0xb5a2 Length: 28 Network Mask: /24 TOS: 0 Metric: 1 LS age: 9 Options: (No TOS-capability, No DC, E) LS type: Summary Network Link State ID: 192.68.32.0 Advertising Router: 1.1.1.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip ospf process-id interface command shown in the following example. Item Description TenGigabitEther net... This line identifies the interface type slot/port and the status of the OSPF protocol on that interface. Internet Address... This line displays the IP address, network mask and area assigned to this interface.
show ip ospf neighbor Display the OSPF neighbors connected to the local router. Syntax Parameters show ip ospf process-id neighbor process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is useful in isolating routing problems between the OSPF and the RTM. For example, if a route is missing from the RTM/FIB but is visible from the display output of this command, the problem is with downloading the route to the RTM. This command has the following limitations: ● The display output is sorted by prefixes; intra-area ECMP routes are not displayed together.
Row Heading Description Total Displays the total number of packets the OSPF process receives/transmits. Error Displays the error count while receiving and transmitting packets by the OSPF process. Hello Number of OSPF Hello packets. DDiscr Number of database description packets. LSReq Number of link state request packets. LSUpd Number of link state update packets. LSAck Number of link state acknowledgement packets. TxQ-Len The transmission queue length. RxQ-Len The reception queue length.
OSPF Packet Count Total Error Hello DDiscr LSReq LSUpd LSAck RX 34 0 26 2 1 3 2 TX 34 0 25 3 1 3 2 OSPF Global Queue Length TxQ-Len RxQ-Len Tx-Mark Rx-Mark Hello-Q 0 0 1 1 LSR-Q 0 0 1 1 Other-Q 0 0 2 2 Error packets (Receive statistics) Intf-Down 0 Non-Dr 0 Self-Org 0 Wrong-Len 0 Invld-Nbr 0 Nbr-State 0 Auth-Err 0 MD5-Err 0 Chksum 0 Version 0 AreaMis 0 Conf-Issues 0 No-Buffer 0 Seq-No 0 Socket 0 Q-OverFlow 0 Unknown-Pkt 0 RtidZero 0 Error packets (Transmit statistics) Socket Errors 0 Dell# Usage Information
show ip ospf timers rate-limit Show the LSA currently in the queue waiting for timers to expire. Syntax Parameters Defaults show ip ospf process-id timers rate-limit process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
summary-address To advertise one external route, set the OSPF ASBR. Syntax summary-address ip-address mask [not-advertise] [tag tag-value] To disable summary address, use the no summary-address ip-address mask command. Parameters Defaults ip-address Specify the IP address in dotted decimal format of the address to summarize. mask Specify the mask in dotted decimal format of the address to summarize.
Command History Usage Information Example for IPv4 and IPv6 Version Description 9.11(0.0) Introduced the msec keyword. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Setting the delay and holdtime parameters to a low number enables the switch to an alternate path quickly but requires more CPU usage.
timers throttle lsa arrival Configure the LSA acceptance intervals. Syntax timers throttle lsa arrival arrival-time To return to the default, use the no timers throttle lsa command. Parameters Defaults arrival-time Set the interval between receiving the same LSA repeatedly, to allow sufficient time for the system to accept the LSA. The range is from 0 to 600,000 milliseconds. 1000 msec Command Modes ROUTER OSPF Supported Modes Full–Switch Command History Version Description 9.9(0.
Command Modes ROUTER OSPFv3 Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Before you enable IPsec authentication on an OSPFv3 area, you must first enable OSPFv3 globally on the router. Configure the same authentication policy (same SPI and key) on each interface in an OSPFv3 link.
For MD5 authentication, the key must be 32 hex digits (non-encrypted) or 64 hex digits (encrypted). For SHA-1 authentication, the key must be 40 hex digits (non-encrypted) or 80 hex digits (encrypted). null Defaults Causes an encryption policy configured for the area to not be inherited on the interface. Not configured. Command Modes ROUTER OSPFv3 Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Version Description 9.13(0.0) Introduced on the remaining DNOS platforms. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000-ON. 9.2(1.0) Introduced on the Z9500. 9.0.2.0 Introduced on the S6000. 8.3.19.
Example Dell#show running-config ospf ! ipv6 router ospf 10 log-adjacency-changes auto-cost reference-bandwidth 2000 Dell(conf-ipv6-router_ospf)#auto-cost reference-bandwidth ? <1-4294967> Reference bandwidth in Mbits/second (default = 100) Dell(conf-ipv6-router_ospf)#no auto-cost ? reference-bandwidth Use reference bandwidth method to assign OSPF cost Dell(conf-ipv6-router_ospf)# clear ipv6 ospf process Reset an OSPFv3 router process without removing or re-configuring the process.
debug ipv6 ospf bfd Display debug information and interface types for BFD on OSPF IPv6 packets. Syntax [no] debug ipv6 ospf bfd [interface] To cancel the debug command, use the no debug ipv6 ospf command. Parameters interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a Port Channel interface, enter the keywords port-channel then a number.
Te 0/2 (diag: NBR_DN) Aug 25 11:20:00: %STKUNIT0-M:CP %BFDMGR-1-BFD_STATE_CHANGE: Changed session state to Up for neighbor fe80::201:e8ff:fe8b:7720 on interface Te 0/2 (diag: NO_DIAG) 00:59:45 : OSPFv3INFO: OSPFV3 got BFD msg 00:59:45 : OSPFv3INFO: Bfd Msg Type Up for interface Te 0/2 00:59:45 : OSPFv3INFO: OSPFV3 updating NBR state debug ipv6 ospf events Display debug information and interface types on OSPF IPv6 events.
Command Fields Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces. 05:21:01 Displays the time stamp. Sending Ver:3 Sending OSPF3 version.. type: Displays the type of packet sent: ● 1 - Hello packet ● 2 - database description ● 3 - link state request ● 4 - link state update ● 5 - link state acknowledgement Length: Displays the OSPFv3 packet length. Router ID: Displays the OSPFv3 router ID. Area ID: Displays the OSPFv3 area ID.
Version Description 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.2(1.0) Introduced on the Z9500. 9.1.(0.0) Introduced on the S4810 and Z9000. 8.3.19.0 Introduced on the S4820T. 7.8.1.0 Added support for C-Series. 7.4.1.0 Introduced on E-Series. Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces. 05:21:01 Displays the time stamp.
vrf vrf-name Enter the keyword vrf to view debugging information on OSPF corresponding to that VRF. Command Modes EXEC Privilege Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11.0.0 Introduced the command. The following section describes the command fields. Lines Beginning With or Including Description OSPFv3...
graceful-restart grace-period Enable OSPFv3 graceful restart globally by setting the grace period (in seconds) that an OSPFv3 router’s neighbors continues to advertise the router as adjacent during a graceful restart. Syntax graceful-restart grace-period seconds To disable OSPFv3 graceful restart, enter no graceful-restart grace-period. Parameters Defaults seconds Time duration, in seconds, that specifies the duration of the restart process before OSPFv3 terminates the process.
● A planned restart occurs when you enter the redundancy force-failover rpm command to force the primary RPM to switch to the backup RPM. During a planned restart, OSPF sends out a Type-11 Grace LSA before the system switches over to the backup RPM. ● An unplanned restart occurs when an unplanned event causes the active RPM to switch to the backup RPM, such as when an active process crashes, the active RPM is removed, or a power failure happens.
For MD5 authentication, the key must be 32 hex digits (non-encrypted) or 64 hex digits (encrypted). For SHA-1 authentication, the key must be 40 hex digits (non-encrypted) or 80 hex digits (encrypted). Defaults Not configured. Command Modes INTERFACE Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command provides the flexibility to fine-tune the timer values based on individual interface needs when you configure the ipv6 ospf bfd command in CONFIGURATION mode. Any timer values specified with this command overrides timers set using the bfd all-neighbors command. Using the no form of this command does not disable BFD if you configured BFD in CONFIGURATION mode.
Usage Information By default, the dead interval is four times longer than the default ipv6 ospf hello-interval command. ipv6 ospf encryption Configure an IPsec encryption policy for OSPFv3 packets on an IPv6 interface. Syntax ipv6 ospf encryption {null | ipsec spi number esp encryption-algorithm [key-encryption-type] key athentication-algorithm [key-encryption-type] key}} To remove an IPsec encryption policy from an interface, use the no ipv6 ospf encryption spi number command.
Usage Information Before you enable IPsec encryption on an OSPFv3 interface, first enable IPv6 unicast routing globally, configure an IPv6 address and enable OSPFv3 on the interface, and assign the interface to an area. An SPI value must be unique to one IPsec security policy (authentication or encryption) on the router. Configure the same encryption policy (same SPI and key) on each OSPFv3 interface in a link.
ipv6 ospf priority To determine the Designated Router for the OSPFv3 network, set the priority of the interface. Syntax ipv6 ospf priority number To return to the default time interval, use the no ipv6 ospf priority command. Parameters Defaults number Enter the number as the priority. The range is from 1 to 255. 1 Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Added support for OSPFv3. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. passive-interface Disable (suppress) sending routing updates on an interface. Syntax passive—interface {default | interface} To enable sending routing updates on an interface, use the no passive-interface interface command.
To disable redistribution, use the no redistribute {connected | static} command. Parameters bgp as number Enter the keyword bgp then the autonomous system number. The range is from 1 to 65535. connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static to redistribute manually configured routes. metric metric- Enter the keyword metric then the metric value. value The range is from 0 to 16777214. The default is 20.
Parameters Defaults ip-address Enter the router ID in the dotted decimal format. The router ID is selected automatically from the set of IPv4 addresses configured on a router. Command Modes ROUTER OSPFv3 for OSPFv3 Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Added support for OSPFv3. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can configure an arbitrary value in the IP address for each router.
show crypto ipsec sa ipv6 Display the IPsec security associations (SAs) used on OSPFv3 interfaces. Syntax show crypto ipsec sa ipv6 [interface interface] Parameters interface interface (OPTIONAL) Displays information about the SAs used on a specified OSPFv3 interface, where interface is one of the following values: ● For a Port Channel interface, enter port-channel then the port channel number. ● For a 10-Gigabit Ethernet interface, enter TenGigabitEthernet then the slot/port number.
show ipv6 ospf interface View OSPFv3 interface information. Syntax Parameters show ipv6 ospf [interface] interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet and the slot/port information. ● For a Port Channel interface, enter the keywords port-channel and a number. The range is from 1 to 128. ● For a Tunnel interface, enter the keywords tunnel and a number. The range is from 1 to 16383.
Command Modes EXEC EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. snmp context Configure SNMPv3 context name to map multiple OSPFv3 VRF instances. Syntax snmp context {context-name} To clear snmp context, use the no snmp context {context-name} command. Parameters Defaults context-name Enter the SNMP context name. The maximum length is 32 alphanumeric characters. None.
msec Enter the keyword msec to specify the time interval value in milli seconds. NOTE: If you do not specify the msec option, the timer values are considered as seconds. Defaults ● delay = 5 seconds ● holdtime = 10 seconds Command Modes ROUTER OSPFv3 for OSPFv3 Supported Modes Full–Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide.
43 Policy-based Routing (PBR) Policy-based routing (PBR) allows you to apply routing policies to specific interfaces. To enable PBR, create a redirect list and apply it to the interface. After the redirect list is applied to the interface, all traffic passing through the interface is subject to the rules defined in the redirect list. PBR is supported by the Dell Networking operating software (OS).
Parameters Defaults redirect-listname Enter the name of a configured redirect list. l2–switch Enter the keyword l2–switch to enable PBR on Layer2 (switched) traffic. none Command Modes INTERFACE (conf-if-vl-) Supported Modes Full—Switch Command History Usage Information Version Description 9.11(2.0) Introduced the l2–switch attribute. 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 8.4.2.1 Introduced on the C-Series and S-Series. 8.4.2.
Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 8.4.2.1 Introduced on the C-Series and S-Series. 8.4.2.0 Introduced on the E-Series TeraScale. 6.5.3.0 Introduced on the E-Series ExaScale. permit Configure a permit rule. A permit rule excludes the matching packets from PBR classification and routes them using conventional routing.
● range = inclusive range of ports (you must specify two ports for the portcommand parameter.) Defaults none Command Modes REDIRECT-LIST Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 8.4.2.1 Introduced on the C-Series and S-Series. 8.4.2.0 Introduced on the E-Series TeraScale. 7.5.1.0 Introduced on the E-Series ExaScale. redirect Configure a rule for the redirect list.
Defaults source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all traffic is subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent. operator (OPTIONAL) For TCP and UDP parameters only.
ip-protocolnumber Enter the keyword ip-protocol-number then the number from 0 to 255 for the protocol identified in the IP protocol header. protocol-type Enter one of the following keywords as the protocol type: ● icmp for internet control message protocol ● ip for any internet protocol ● tcp for transmission control protocol ● udp for user datagram protocol source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x).
show cam pbr Displaysthe PBR CAM content. Syntax show cam pbr {[interface interface] | stack—unit slot-number port-set number]} [summary] Parameters interface interface stack–unit number Defaults Enter the keyword interface then the name of the interface. Enter the keyword stack-unit then the slot number. The range is from 0 to 11 . port-set number Enter the keywords port-set then the port-pipe number. The range is from 0 to 0.
● EXEC Privilege Supported Modes Full—Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for removing the Sonet interface on the MXL. 7.4.1.0 Introduced. Dell#show ip redirect-list explicit_tunnel IP redirect-list explicit_tunnel: Defined as: seq 5 redirect tunnel 1 track 1 tcp 155.55.2.0/24 222.22.2.
44 PIM-Sparse Mode (PIM-SM) The protocol-independent multicast (PIM) commands are supported by the Dell Networking Operating System (OS).
• • show ipv6 pim rp show ipv6 pim tib IPv4 PIM-Sparse Mode Commands The following describes the IPv4 PIM-sparse mode (PIM-SM) commands. clear ip pim rp-mapping The bootstrap router (BSR) feature uses this command to remove all or particular rendezvous point (RP) advertisement. Syntax Parameters clear ip pim rp-mapping rp-address rp-address (OPTIONAL) Enter the RP address in dotted decimal format (A.B.C.D).
To disable PIM debugging, use the no debug ip pim command or use the undebug all to disable all the debugging commands. Parameters bsr (OPTIONAL) Enter the keyword bsr to view PIM Candidate RP/BSR activities. events (OPTIONAL) Enter the keyword group to view PIM messages for a specific group. group (OPTIONAL) Enter the keyword group to view PIM messages for a specific group. packet [in | out] (OPTIONAL) Enter the keyword packet to view PIM packets.
ip pim bsr-candidate To join the Bootstrap election process, configure the PIM router. Syntax ip pim bsr-candidate interface [hash-mask-length] [priority] To return to the default value, use the no ip pim bsr-candidate command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. ● For a Port Channel interface, enter the keywords port-channel then a number.
ip pim join-filter Permit or deny PIM Join/Prune messages on an interface using an extended IP access list. This command prevents the PIM-SM router from creating state based on multicast source and/or group. Syntax ip pim join-filter ext-access-list {in | out} To remove the access list, use the no ip pim join-filter ext-access-list {in | out} command. Parameters Defaults ext-access-list Enter the name of an extended access list. in Enter this keyword to apply the access list to inbound traffic.
Dell(config-std-nacl)#exit Dell(conf)#int te 0/1 Dell(config-if-te-0/1)# ip pim ingress-interface-map map1 ip pim neighbor-filter To prevent a router from participating in protocol independent multicast (PIM), configure this feature. Syntax ip pim neighbor-filter {access-list} To remove the restriction, use the no ip pim neighbor-filter {access-list} command. Parameters Defaults access-list Enter the name of a standard access list. Maximum 16 characters.
Parameters Defaults access-list Enter the name of an extended access list. Maximum 16 characters. Not configured. Command Modes CONFIGURATION Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The access name is an extended IP access list that denies PIM register packets to RP at the source DR based on the multicast and group addresses.
● For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a VLAN, enter the keyword vlan then a number from 1 to 4094. Defaults priority (OPTIONAL) Enter the priority used in Bootstrap election process. The range is zero (0) to 255. The default is 192.
Parameters Defaults seconds Enter the number of seconds the S, G entries are retained. The range is from 211 to 86400. access-list name (OPTIONAL) Enter the name of a previously configured Extended ACL to enable the expiry time to specified S,G entries. Disabled. The default expiry timer (with no times configured) is 210 sec. Command Modes CONFIGURATION Supported Modes Full—Swtich Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. By default, when you enable PIM-SM snooping, a switch floods all multicast traffic to the PIM designated router (DR), including unnecessary multicast packets. To minimize the traffic sent over the network to the designated router, you can disable designated-router flooding.
Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip pim interface command shown in the following example. Field Description Address Lists the IP addresses of the interfaces participating in PIM. Interface List the interface type, with either slot/port information or ID (VLAN or Port Channel), of the interfaces participating in PIM.
Example Field Description Uptime/expires Displays the amount of time the neighbor has been up then the amount of time until the neighbor is removed from the multicast routing table (that is, until the neighbor hold time expires). Ver Displays the PIM version number. ● v2 = PIM version 2 DR prio/Mode Displays the Designated Router priority and the mode.
Uptime: 00:03:11, expires: 00:03:03 Dell# Example (Address) Dell#sh ip pim rp 229.1.2.1 Group RP 229.1.2.1 165.87.20.4 Dell# show ip pim snooping interface Display information on VLAN interfaces with PIM-SM snooping enabled. Syntax show ip pim snooping interface [vlan vlan-id] Parameters vlan vlan-id (OPTIONAL) Enter a VLAN ID to display information about a specified VLAN configured for PIM-SM snooping. The valid VLAN IDs range is from 1 to 4094.
Parameters vlan vlan-id (OPTIONAL) Enter a VLAN ID to display information about PIM neighbors that PIM-SM snooping discovered on a specified VLAN. The valid VLAN IDs range is from 1 to 4094. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full—Swtich Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
● EXEC Privilege Supported Modes Full—Swtich Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip pim snooping tib commands shown in the following example. Field Description (S, G) Displays the entry in the PIM multicast snooping database. uptime Displays the amount of time the entry has been in the PIM multicast route table.
(165.87.1.7, 225.1.2.1), uptime 00:00:08, expires 00:02:52, flags: j Incoming interface: Vlan 2, RPF neighbor 0.0.0.0 Outgoing interface list: TenGigabitEthernet 4/7 Upstream Port -/TenGigabitEthernet 4/6 DR Port -/TenGigabitEthernet 4/8 RPF 165.87.32.10 00:00:08/00:02:52 show ip pim summary View information about PIM-SM operation. Syntax show ip pim summary Command Modes ● EXEC ● EXEC Privilege Supported Modes Full—Swtich Command History Example Version Description 9.9(0.
Interface table : 992 bytes Neighbor table : 528 bytes RP Mapping : 0 bytes show ip pim tib View the PIM tree information base (TIB). Syntax show ip pim tib [group-address [source-address]] Parameters group-address (OPTIONAL) Enter the group address in dotted decimal format (A.B.C.D). source-address (OPTIONAL) Enter the source address in dotted decimal format (A.B.C.D).
Flags:D- Dense, S- Sparse, C- Connected, L- Local, P- Pruned, R- RP-bit set, F- Register flag, T- SPT-bit set, J- Join SPT, M- MSDP created entry, A- Candidate for MSDP Advertisement, K- Ack-Pending State Timers: Uptime/Expires Interface state: Interface, next-Hop, State/Mode (*, 226.1.1.1), uptime 01:29:19, expires 00:00:52, RP 10.211.2.1, flags: SCJ Incoming interface: TenGigabitEthernet 0/2, RPF neighbor 10.211.1.2 Outgoing interface list: TenGigabitEthernet 0/8 (*, 226.1.1.
ipv6 pim bsr-border Define the border of PIM domain by filtering inbound and outbound PIM-BSR messages per interface. Syntax ipv6 pim bsr-border Defaults Disabled. Command Modes INTERFACE Supported Modes Full—Swtich Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command is applied to the subsequent PIM-BSR messages. Existing BSR advertisements are cleaned up by time-out.
Parameters Defaults priority-value Enter a number. Preference is given to larger/higher number. The range is from 0 to 4294967294. The default is 1. 1 Command Modes INTERFACE Supported Modes Full—Swtich Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The router with the largest value assigned to an interface becomes the designated router.
Defaults 30 seconds Command Modes INTERFACE Supported Modes Full—Swtich Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 pim neighbor-filter Prevent the system from forming a PIM adjacency with a neighboring system. Syntax ipv6 pim neighbor-filter {access-list} Parameters Defaults access-list Enter the name of a standard access list. Maximum 16 characters.
ipv6 pim rp-address Configure a static PIM rendezvous point (RP) address for a group. First-hop routers use this address to send register packets on behalf of the source multicast host. Syntax ipv6 pim rp-address address group-address group-address mask override To remove an RP address, use the no ipv6 pim re-address address group-address mask override command. Parameters address Enter the IPv6 RP address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zero.
Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 pim sparse-mode Enable IPv6 PIM sparse mode on the interface. Syntax ipv6 pim sparse-mode To disable IPv6 PIM sparse mode, use the no ipv6 pim sparse-mode command. Defaults Disabled. Command Modes INTERFACE Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
show ipv6 pim bsr-router View information on the Bootstrap router (v2). Syntax show ipv6 pim bsr-router Command Modes ● EXEC ● EXEC Privilege Supported Modes Full—Swtich Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show ipv6 pim neighbor Displays IPv6 PIM neighbor information. Syntax show ipv6 pim neighbor [detail] Parameters detail (OPTIONAL) Enter the keyword detail to displayed PIM neighbor detailed information. Supported Modes Full—Swtich Command Modes ● EXEC ● EXEC Privilege Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Info source: 14::1, via bootstrap, priority 192 Uptime: 00:03:37, expires: 00:01:53 Group(s): ff00::/8, Static RP: 14::2, v2 Dell show ipv6 pim tib View the IPv6 PIM multicast-routing database (tree information base — tib). Syntax Parameters show ipv6 pim tib [group-address [source-address]] group-address (OPTIONAL) Enter the multicast group address in the x:x:x:x::x format to view RP mappings for a specific group. NOTE: The :: notation specifies successive hexadecimal fields of zero.
45 Port Monitoring The port monitoring feature allows you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port. Important Points to Remember ● Port monitoring is supported on physical ports only. Port-channel interfaces and virtual local area networks (VLANs), are not supported. ● The monitoring (destination, “MG”) and monitored (source, “MD”) ports must be on the same switch.
To remove the description, use the no description {description} command. Parameters Defaults description Enter a description regarding this session (80 characters maximum). none Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. erpm Configure the source and destination IP address for ERPM traffic.
Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for the RPM/ERPM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. 8.1.1.0 Introduced on the E-Series ExaScale. 7.4.1.0 Introduced on the E-Series. To monitor traffic with particular flows the interface, appropriate ACLs has be applied in ingress direction.
Parameters session-ID Enter a session identification number. The range is from 0 to 65535. type rpm | erpm Specifies one of the following type: ● rpm: to create remote port monitoring session. ● erpm: to create encapsulated remote port monitoring session. ● If no option is specified, by default SPAN will be created. NOTE: The rpm and erpm options are supported only in Full-Switch mode. drop Defaults Monitors only the dropped packets in the Ingress.
show monitor session Display the monitor information of a particular session or all sessions. Syntax show monitor session {session-ID} To display monitoring information for all sessions, use the show monitor session command. Parameters Defaults session-ID (OPTIONAL) Enter a session identification number. The range is from 0 to 65535. none Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM.
monitor session 20 source TenGigabitEthernet 0/3 destination TenGigabitEthernet 0/2 direction both Dell# Dell#show run monitor session 20 ! monitor session 20 source TenGigabitEthernet 0/3 destination TenGigabitEthernet 0/2 direction both Dell# Related Commands monitor session — creates a session for monitoring. show monitor session — displays a monitor session. source (port monitoring) Configure a port monitor source.
46 Private VLAN (PVLAN) Private VLANs extend the Dell Networking OS security suite by providing Layer 2 isolation between ports within the same private VLAN. A private VLAN partitions a traditional VLAN into subdomains identified by a primary and secondary VLAN pair. The Dell Networking OS private VLAN implementation is based on RFC 3069. For more information, refer to the following commands. The command output is augmented in the Dell Networking OS version 7.8.1.
ip local-proxy-arp Enable/disable Layer 3 communication between secondary VLANs in a private VLAN. Syntax [no] ip local-proxy-arp To disable Layer 3 communication between secondary VLANs in a private VLAN, use the no ip localproxy-arp command in INTERFACE VLAN mode for the primary VLAN. To disable Layer 3 communication in a particular secondary VLAN, use the no ip local-proxy-arp command in INTERFACE VLAN mode for the selected secondary VLAN.
● Specified with this command even before they have been created. ● Amended by specifying the new secondary VLAN to be added to the list. Related Commands private-vlan mode — sets the mode of the selected VLAN to community, isolated, or primary. show interfaces private-vlan — displays the type and status of the PVLAN interfaces. show vlan private-vlan — displays the PVLANs and/or interfaces that are part of a PVLAN. show vlan private-vlan mapping — displays the primary-secondary VLAN mapping.
show interfaces private-vlan Display type and status of PVLAN interfaces. Syntax Parameters show interfaces private-vlan [interface interface] interface interface Defaults (OPTIONAL) Enter the keyword interface then the ID of the specific interface for which to display PVLAN status. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
show vlan private-vlan Display PVLANs and/or interfaces that are part of a PVLAN. Syntax show vlan private-vlan [community | interface | isolated | primary | primary_vlan | interface interface] Parameters community (OPTIONAL) Enter the keyword community to display VLANs configured as community VLANs, along with their interfaces. interface (OPTIONAL) Enter the keyword interface to display VLANs configured as community VLANs, along with their interfaces.
Example (Primary) Example (Isolated) Example (Community) Example (Specific) Usage Information Example Example Related Commands Dell# show vlan private-vlan primary Primary Secondary Type Active Ports ------- --------- --------- ------ ------10 primary Yes Gi 2/1,3 20 primary Yes Gi 3/1,3 Dell# show vlan private-vlan isolated Primary Secondary Type Active Ports ------- --------- --------- ------ ---------10 primary Yes Gi 2/1,3 100 isolated Yes Gi 2/2,4-6 200 isolated Yes Gi 3/2,4-6 Dell# show vlan pr
Command Modes ● EXEC ● EXEC Privilege Supported Modes Full—Switch Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced the on MXL 10/40GbE Switch IO Module. The output of this command, shown below, displays the community and isolated VLAN IDs that are associated with each primary VLAN.
Dell(conf)#interface GigabitEthernet 2/2 Dell(conf-if-te-2/2)#switchport mode private-vlan host Dell(conf)#interface GigabitEthernet 2/3 Dell(conf-if-te-2/3)#switchport mode private-vlan trunk Dell(conf)#interface port-channel 10 Dell(conf-if-te-2/3)#switchport mode private-vlan promiscuous Related Commands private-vlan mode — sets the mode of the selected VLAN to community, isolated, or primary.
47 Per-VLAN Spanning Tree Plus (PVST+) The Dell Networking Operating System (OS) implementation of per-VLAN spanning tree plus (PVST+) is based on the IEEE 802.1w standard spanning tree protocol, but it creates a separate spanning tree for each VLAN configured. NOTE: For easier command line entry, the plus (+) sign is not used at the command line.
Defaults Disabled. Command Modes CONFIGURATION (conf-pvst) Supported Modes Full—Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree pvst — enter PVST+ mode. edge-port bpdufilter default Enable BPDU Filter globally to filter transmission of BPDU on port fast enabled interfaces.
Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID ---------- -------- ---- ------ ----------- -------------------------- -------Po 23 128.24 128 1600 FWD 0 32768 001e.c9f1.00f3 128.24 Te 0/10 128.450 128 2000 DIS 0 32768 001e.c9f1.00f3 128.450 Te 0/11 128.459 128 2000 FWD 0 32768 001e.c9f1.00f3 128.459 Interface Name Role PortID Prio Cost Sts Cost Link-type Edge BpduFilter ---------- ------ -------- ---- ---- ------------ ---------Po 23 Desg 128.24 128 1600 FWD 0 P2P No No Te 0/9 Dis 128.
show spanning-tree pvst View the Per-VLAN spanning tree configuration. Syntax Parameters Defaults show spanning-tree pvst [vlan vlan-id] [brief] [guard] vlan vlan-id (OPTIONAL) Enter the keyword vlan then the VLAN ID. The range is 1 to 4094. brief (OPTIONAL) Enter the keyword brief to view a synopsis of the PVST+ configuration information.
Interface Name Role PortID Prio Cost Sts ---------- ------ -------- ---- ------Po 23 Desg 128.24 128 1600 FWD Te 0/11 Dis 128.450 128 2000 DIS Te 0/12 Desg 128.459 128 2000 FWD Dell# Example Bpdu Cost Link-type Edge Filter --- -------- ---- -----0 P2P No No 0 P2P No No 0 P2P No No Dell#show spanning-tree pvst vlan 2 VLAN 2 Root Identifier has priority 32768, Address 001e.c9f1.00f3 Root Bridge hello time 2, max age 20, forward delay 15 Bridge Identifier has priority 32768, Address 001e.c9f1.
Bpdus sent 1, received 0 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID --------------------------------------------------------Te 0/6 128.1223 128 20000 EDS 0 32768 0001.e800.a12b 128.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The BPDU guard option prevents the port from participating in an active STP topology in case a BPDU appears on a port unintentionally, or is misconfigured, or is subject to a DOS attack. This option places the port into the Error Disable state if a BPDU appears, and a message is logged so that the administrator can take corrective action.
tc-flush-standard Enable the MAC address flushing after receiving every topology change notification. Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, the system implements an optimized flush mechanism for PVST+.
To return to the default setting, use the no vlan forward-delay command. Parameters vlan vlan-range Enter the keyword vlan then the VLAN numbers. The range is from 1 to 4094. forward-delay Enter the keywords forward-delay then the time interval, in seconds, that the system waits before transitioning PVST+ to the forwarding state. The range is from 4 to 30 seconds. The default is 15 seconds.
vlan max-age To maintain configuration information before refreshing that information, set the time interval for the PVST+ bridge. Syntax vlan vlan-range max-age seconds To return to the default, use the no vlan max-age command. Parameters vlan vlan-range Enter the keyword vlan then the VLAN numbers. The range is from 1 to 4094. max-age seconds Enter the keywords max-age then the time interval, in seconds, that the system waits before refreshing configuration information.
48 Quality of Service (QoS) The Dell Networking operating software commands for quality of service (QoS) include traffic conditioning and congestion control. QoS commands are not universally supported on all Dell Networking Products. Topics: • • • Global Configuration Commands Per-Port QoS Commands Policy-Based QoS Commands Global Configuration Commands There are only two global configuration QoS commands.
1 0-7 2 0-7 3 0-7 4 0-7 5 0-7 6 0-7 7 0-7 Command Modes CONFIGURATION Supported Modes Programmable-Mux (PMUX) Full-Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. To apply dot1p-queue-mapping, use the service-class dynamic dot1p command. Per-Port QoS Commands Per-port QoS (port-based QoS) allows you to define the QoS configuration on a per-physical-port basis.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The dot1p-priority command changes the priority of incoming traffic on the interface. The system places traffic marked with a priority in the correct queue and processes that traffic according to its queue.
rate-shape Shape the traffic output on the selected interface. Syntax Parameters Defaults rate shape [kbps] rate [burst-KB] kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Make the following value a multiple of 64. The range is from 0 to 40000000. The default granularity is Megabits per second (Mbps). rate Enter the outgoing rate in multiples of 10 Mbps. The range is from 10 to 10000. burst-KB (OPTIONAL) Enter the burst size in KB. The range is from 0 to 10000.
Full-Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To honor all incoming 802.1p markings on incoming switched traffic on the interface, enter this command. By default, this facility is not enabled (that is, the 802.1p markings on incoming traffic are not honored).
strict-priority unicast Configure a unicast queue as a strict-priority (SP) queue. Syntax Parameters Defaults strict-priority unicast queue number unicast number Enter the keyword unicast then the queue number. The range is from 1 to 3. none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The unit of bandwidth percentage is 1%. A bandwidth percentage of 0 is allowed and disables the scheduling of that class. If the sum of the bandwidth percentages given to all eight classes exceeds 100%, the bandwidth percentage automatically scales down to 100%.
service-queue — assigns a class map and QoS policy to different queues. show qos class-map — views the current class map information. clear qos statistics Clears matched packets. Syntax Parameters Defaults clear qos statistics interface-name interface-name Enter one of the following keywords: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
ip ssh rekey Configures the time rekey-interval or volume rekey-limit threshold at which to re-generate the SSH key during an SSH session. Syntax ip ssh rekey [time rekey-interval] [volume rekey-limit] To reset to the default, use no ip ssh rekey [time rekey-interval] [volume rekeylimit] command. Parameters time minutes Enter the keywords time then the amount of time in minutes. The range is from 10 to 1440 minutes.
match ip vlan Uses a VLAN as the match criterion for an L3 class map. Syntax match ip vlan vlan-id To remove VLAN as the match criterion, use the no match ip vlan vlan-id command. Parameters Defaults vlan vlan-id Enter the keyword vlan and then the ID of the VLAN. The range is from 1 to 4094. none Command Modes CONF-CLASS-MAP Supported Modes Full–Switch Command History This guide is platform-specific.
description Add a description to the selected policy map or QoS policy. Syntax description {description} To remove the description, use the no description {description} command. Parameters Defaults description Enter a description to identify the policies (80 characters maximum).
Usage Information To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. The match ip dscp and match ip precedence commands are mutually exclusive. Up to 64 IP DSCP values can be matched in one match statement. For example, to indicate IP DCSP values 0 1 2 3 4 5 6 7, enter either the match ip dscp 0,1,2,3,4,5,6,7 or match ip dscp 0-7 command.
match mac access-group Configure a match criterion for a class map, based on the contents of the designated MAC ACL. Syntax match mac access-group {mac-acl-name} Parameters Defaults mac-acl-name Enter a MAC ACL name. Its contents is used as the match criteria in the class map. none Command Modes CLASS-MAP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To access this command, enter the class-map command. You can match against only one VLAN ID. Related Commands class-map — identifies the class map. policy-aggregate Allow an aggregate method of configuring per-port QoS via policy maps. An aggregate QoS policy is part of the policy map (input/output) applied on an interface.
layer2 Defaults (OPTIONAL) Enter the keyword layer2 to specify a Layer 2 Class Map. The default is Layer 3. Layer 3 Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The input policy map is used to classify incoming traffic to different flows using class-map, QoS policy, or incoming packets DSCP.
qos-policy-input Create a QoS input policy on the router. Syntax qos-policy-input qos-policy-name [layer2] To remove an existing input QoS policy from the router, use the no qos-policy-input qospolicy-name [layer2] command. Parameters Defaults qos-policy-name Enter the name for the policy map in character format (32 characters maximum). layer2 (OPTIONAL) Enter the keyword layer2 to specify a Layer 2 Class Map. The default is Layer 3.
Usage Information To specify the name of the output QoS policy, use this command. After the output policy is specified, rate-limit, bandwidth-percentage, and WRED can be defined. This command enables Qos-Policy-Output Configuration mode — (conf-qos-policy-out). Related Commands bandwidth-percentage — assigns weight to the class/queue percentage. rate police Police the incoming traffic rate on the selected interface.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When you apply rate-shape in QoS policy both on the Queue Level and in Aggregate mode, the queue-based shaping occurs first then aggregate rate shaping. service-policy input Apply an input policy map to the selected interface.
Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information A single policy-map can be attached to one or more interfaces to specify the service-policy for those interfaces. A policy map attached to an interface can be modified.
set Mark outgoing traffic with a differentiated service code point (DSCP) or dot1p value. Syntax Parameters Defaults set {ip-dscp value | mac-dot1p value} ip-dscp value (OPTIONAL) Enter the keywords ip-dscp then the IP DSCP value. The range is from 0 to 63. mac-dot1p value Enter the keywords mac-dot1p then the dot1p value. The range is from 0 to 7. none Command Modes CONFIGURATION (conf-qos-policy-in) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.
Parameters map-name Displays the PFC and ETS parameters configured in the specified map. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O aggregator. Use the show qos dcb-map command to display the enhanced transmission selection (ETS) and priority-based flow control (PFC) parameters used to configure server-facing Ethernet ports.
● For a 10 Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. Defaults none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example (IPv4) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Dell#show qos policy-map-input Policy-map-input PolicyMapInput Aggregate Qos-policy-name AggPolicyIn Queue# Class-map-name Qos-policy-name 0 ClassMap1 qosPolicyInput Dell# show qos qos-policy-output View the output QoS policy details. Syntax show qos qos-policy-output [qos-policy-name] Parameters Defaults qos-policy-name Enter the QoS policy name. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Example Version Description 9.
Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos qos-policy-input Qos-policy-input QosInput Rate-police 100 50 peak 100 50 Dscp 32 Dell# show qos qos-policy-output View the output QoS policy details. Syntax Parameters Defaults show qos qos-policy-output [qos-policy-name] qos-policy-name Enter the QoS policy name. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.
● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.11(0.0) Updated the show qos statistics egress—queue output to reflect per queue per port 9.9(0.0) Introduced on the FN IOM. 9.8(0.0) Added the egress-queue keyword. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
test cam-usage Checks the Input Policy Map configuration for the CAM usage. Syntax Parameters test cam-usage service-policy input policy-map stack-unit {[number | [all]} policy-map Enter the policy map name. stack-unit (OPTIONAL) Enter the keywords stack-unit then the stack-unit number. number stack-unit all Defaults (OPTIONAL) Enter the keywords stack-unit all all to indicate all the stackunits.
Stack-unit|Portpipe|CAM Partition|Available CAM|Estimated CAM|Status | | | |per Port | (Allowed ports) 0 0 L2ACL 500 200 Allowed (2) 1 L2ACL 100 200 Exception 1 0 L2ACL 1000 200 Allowed (5) 1 1 L2ACL 0 200 Exception … … … 13 1 L2ACL 400 200 Allowed (2) Dell# trust Specify dynamic classification (DSCP) or dot1p to trust. Syntax trust {diffserv [fallback]| dot1p [fallback]} Parameters Defaults diffserv Enter the keyword diffserv to specify trust of DSCP markings.
Table 2. Default Mapping (continued) DSCP/CP hex Range (XXX) DSCP Definition Traditional IP Precedence MXL Switch Internal Queue ID DSCP/CP Decimal 001XXX AF1 Priority 0 0–15 000XXX BE (Best Effort) Best Effort 0 0–15 wred Designate the WRED profile to yellow or green traffic. Syntax wred [[{yellow | green} profile-name] ecn] To remove the WRED drop precedence, use the no wred {yellow | green} [profile-name] command. Parameters yellow | green Enter the keyword yellow for yellow traffic.
Command Modes CONFIGURATION (conf-qos-policy-out) Supported Modes Full–Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.0.2.0 Introduced on the S6000. 8.3.19.0 Introduced on the S4820t. 8.3.11.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Use the default pre-defined profiles or configure your own profile. You cannot delete the pre-defined profiles or their default values. This command enables WRED configuration mode — (conf-wred). dscp Sets the number of specific DSCP values for a color map profile to yellow or red.
qos dscp-color-map Configure the DSCP color map. Syntax qos dscp-color-map map-name To remove a color map, use the no qos dscp-color-map map-name command. Parameters Defaults map-name Enter the name of the DSCP color map. The map name can have a maximum of 32 characters. None Command Modes CONFIGURATION Supported Modes Full–Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide.
Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the S6000-ON. Version 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL. Usage Information If the specified color-map does not exist, the Diffserv Manager (DSM) creates a color map and sets all the DSCP values to green (low drop precedence). Example The following example assigns the color map, bat-enclave-map, to interface.
Supported Modes Full–Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the S6000-ON. 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL. Display all DSCP color maps.
Parameters Defaults diffserv Enter the keyword diffserv to specify trust of DSCP markings. dot1p Enter the keyword dot1p to specify trust dot1p configuration. fallback Enter the keyword fallback to classify packets according to their DSCP value as a secondary option in case no match occurs against the configured class maps. none Command Modes CONFIGURATION (conf-policy-map-in) Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Usage Information Version Description 9.9(0.
49 Routing Information Protocol (RIP) Routing information protocol (RIP) is a distance vector routing protocol. The Dell Networking Operating System (OS) supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2). The implementation of RIP is based on IETF RFCs 2453 and RFC 1058. For more information about configuring RIP, refer to the Dell Networking OS Configuration Guide.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip rip Update all the RIP routes in the routing table. Syntax clear ip rip Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command triggers updates of the main RIP routing tables.
default-information originate Generate a default route for the RIP traffic. Syntax default-information originate [always] [metric metric-value] [route-map map-name] To return to the default values, use the no default-information originate command. Parameters always (OPTIONAL) Enter the keyword always to enable the switch software to always advertise the default route. metric metric- (OPTIONAL) Enter the keyword metric then a number as the metric value. The range is from 1 to 16. The default is 1.
description Enter a description of the RIP routing protocol. Syntax description {description} To remove the description, use the no description {description} command. Parameters Defaults description Enter a description to identify the RIP protocol (80 characters maximum). none Command Modes ROUTER RIP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
To delete the filter, use the no distribute-list prefix-list-name in command. Parameters Defaults prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
ip poison-reverse Set the prefix of the RIP routing updates to the RIP infinity value. Syntax ip poison-reverse To disable poison reverse, use the no ip poison-reverse command. Defaults Disabled. Command Modes INTERFACE Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip split-horizon — sets the RIP routing updates to exclude routing prefixes.
Parameters Defaults 1 (OPTIONAL) Enter the number 1 for RIP version 1. The default is RIPv1. 2 (OPTIONAL) Enter the number 2 for RIP version 2. RIPv1 Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To enable the interface to send both version of RIP packets, use the ip rip send version 1 2 command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. RIP supports a maximum of 16 ECMP paths. neighbor Define a neighbor router with which to exchange RIP information. Syntax neighbor ip-address To delete a neighbor setting, use the no neighbor ip-address command. Parameters Defaults ip-address Enter the IP address, in dotted decimal format, of a router with which to exchange information.
Usage Information You can enable an unlimited number of RIP networks. RIP operates over interfaces configured with any address the network command specifies. offset-list Specify a number to add to the incoming or outgoing route metrics learned using RIP. Syntax offset-list prefix-list-name {in | out} offset [interface] To delete an offset list, use the no offset-list prefix-list-name {in | out} offset [interface] command.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is intended for low-speed interfaces. passive-interface Suppress routing updates on a specified interface. Syntax passive-interface interface To delete a passive interface, use the no passive-interface interface command. Parameters Defaults interface Enter the following information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To redistribute the default route (0.0.0.0/0), configure the default-information originate command. Related Commands default-information originate — generates a default route for RIP traffic. redistribute ospf Redistribute routing information from an OSPF process.
Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To enable RIP, assign a network address using the network command. Dell(conf)#router rip Dell(conf-router_rip)# network — enables RIP. show config Display the changes you made to the RIP configuration. The default values are not shown.
Example Field Description Total number of routes in RIP database Displays the number of RIP routes stored in the RIP database. 100.10.10.0/24 directly connected Lists the routes directly connected. 150.100.0.0 redistributed Lists the routes learned through redistribution. 209.9.16.0/24... Lists the routes and the sources advertising those routes. Dell#show ip rip database Total number of routes in RIP database: 1624 204.250.54.0/24 [50/1] via 192.14.1.3, 00:00:12, TenGigabitEthernet 0/1 204.250.
timers basic Manipulate the RIP timers for routing updates, invalid, holddown times, and flush time. Syntax timers basic update invalid holddown flush To return to the default settings, use the no timers basic command. Parameters Defaults update Enter the number of seconds to specify the rate at which RIP routing updates are sent. The range is from zero (0) to 4294967295. The default is 30 seconds.
Related Commands 988 Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip rip receive version — sets the RIP version the interface receives. ip rip send version — sets the RIP version the interface sends.
50 Remote Monitoring (RMON) The Dell Networking Operating System (OS) remote monitoring (RMON) is based on IEEE standards, providing both 32-bit and 64-bit monitoring and long-term statistics collection.
variable Enter the MIB object to monitor. The variable must be in the SNMP OID format; for example, 1.3.6.1.2.1.1.3. The object type must be a 32-bit integer. interval Time, in seconds, the alarm monitors the MIB variables; this is the alarmSampleType in the RMON alarm table. The range is from 5 to 3600 seconds. delta Enter the keyword delta to test the change between MIB variables. This is the alarmSampleType in the RMON alarm table.
Command Modes CONFIGURATION INTERFACE (config-if) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rmon collection statistics Enable RMON MIB statistics collection on an interface. Syntax rmon collection statistics {controlEntry integer} [owner name] To remove RMON MIB statistics collection on an interface, use the no rmon collection statistics {controlEntry integer} command.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rmon hc-alarm Set an alarm on any MIB object. Syntax rmon hc-alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon hc-alarm number command. Parameters Defaults number Enter the alarm integer number from 1 to 65535.
Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell# show rmon RMON status total memory used 218840 bytes.
4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 Dell# 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 show rmon events Display the contents of the RMON event table.
9 10 11 12 13 14 15 16 17 18 19 20 21 22 Dell# 9 10 11 12 13 14 15 16 17 18 19 20 21 22 show rmon hc-alarm Display the contents of RMON High-Capacity alarm table. Syntax Parameters Defaults show rmon hc-alarm [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON High-Capacity alarm table in an easy-to-read format.
show rmon history Display the contents of the RMON Ethernet history table. Syntax show rmon history [index] [brief] Parameters Defaults index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON Ethernet history table in an easy-to-read format none Command Modes EXEC Supported Modes Full–Switch Command History Example (Index) Example (Brief) Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Command History Usage Information Example (Index) Example (Brief) Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The log table has a maximum of 500 entries. If the log exceeds that maximum, the oldest log entry is purged to allow room for the new entry.
1024-1518 bytes packets: 0 owner: 1 status: OK HC packets received overflow: 0 HC packets received: 0 HC bytes received overflow: 0 HC bytes received: 0 HC 64bytes packets overflow: 0 HC 64bytes packets: 0 HC 65-127 bytes packets overflow: 0 HC 65-127 bytes packets: 0 HC 128-255 bytes packets overflow: 0 HC 128-255 bytes packets: 0 HC 256-511 bytes packets overflow: 0 HC 256-511 bytes packets: 0 HC 512-1023 bytes packets overflow: 0 HC 512-1023 bytes packets: 0 HC 1024-1518 bytes packet
51 Rapid Spanning Tree Protocol (RSTP) The Dell Networking Operating System (OS) implementation of rapid spanning tree protocol (RSTP) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged local area network (LAN) that is comprised of LANs interconnected by bridges.
Parameters all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu interface {in | out} (OPTIONAL) Enter the keyword bpdu to debug the bridge protocol data units. (OPTIONAL) Enter the keyword interface along with the type slot/port of the interface you want displayed. Type slot/port options are the following: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
To enable Rapid Spanning Tree Protocol, use the no disable command. Defaults RSTP is disabled. Command Modes CONFIGURATION RSTP (conf-rstp) Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree rstp — enters SPANNING TREE mode on the switch.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The hello time is encoded in BPDUs in increments of 1/256ths of a second. The standard minimum hello time in seconds is 1 second, which is encoded as 256. Millisecond hello times are encoded using values less than 256; the millisecond hello time equals (x/1000)*256.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree rstp To configure RSTP, enter RSTP mode. Syntax protocol spanning-tree rstp To exit RSTP mode, use the exit command. Defaults Not configured Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
spanning-tree rstp Configure an RSTP interface with one of these settings: port cost, edge port with optional bridge port data unit (BPDU) guard, port priority, loop guard, or root guard. Syntax spanning-tree rstp {cost port-cost | edge-port [bpduguard [shutdown-onviolation]] | bpdufilter | priority priority | {rootguard}} Parameters cost port-cost Enter the keyword cost then the port cost value. The range is from 1 to 200000.
● If a BPDU is received from a remote device, BPDU guard places the port in an Err-Disabled Blocking state and no traffic is forwarded on the port. ● If no BPDU is received from a remote device, loop guard places the port in a Loop-Inconsistent Blocking state and no traffic is forwarded on the port.
Usage Information The BPDU guard option prevents the port from participating in an active STP topology in case a BPDU appears on a port unintentionally, or is misconfigured, or is subject to a DOS attack. This option places the port into an Error Disable state if a BPDU appears and a message is logged so that the administrator can take corrective action. NOTE: A port configured as an edge port, on an RSTP switch, immediately transitions to the Forwarding state.
52 Security This chapter describes various types of security commands in the Dell Networking OS, in the following sections: The commands are listed in the following sections: ● AAA Accounting Commands ● Authentication and Password Commands ● RADIUS Commands ● TACACS+ Commands ● SSH Server and SCP Commands NOTE: Starting with the Dell Networking OS version 7.2.1.0, LEAP with MSCHAP v2 supplicant is implemented.
Defaults name | default Enter one of the following: ● For name, enter a user-defined name of a list of accounting methods. ● For default, the default accounting methods used. start-stop Enter the keywords start-stop to send a “start accounting” notice at the beginning of the requested event and a “stop accounting” notice at the end of the event. wait-start Enter the keywords wait-start to ensure that the TACACS+ security server acknowledges the start notice before granting the user’s process request.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator and M I/O Aggregator. Dell Networking OS issues accounting records for all users on the system, including users whose username string, due to protocol translation, is NULL. For example, a user who comes on line with the aaa authentication login method-list none command is applied.
Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following table lists the Dell Networking OS version history for this command. Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.6.(0.0) Supported on the FN I/O Aggregator and M I/O Aggregator.
Defaults none Command Modes LINE Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator and M I/O Aggregator. Related Commands aaa accounting — enables AAA Accounting and creates a record for monitoring the accounting function.
Example Related Commands Dell#show accounting Active accounted actions on tty2, User admin Priv 1 Task ID 1, EXEC Accounting record, 00:00:39 Elapsed, service=shell Active accounted actions on tty3, User admin Priv 1 Task ID 2, EXEC Accounting record, 00:00:26 Elapsed, service=shell Dell# aaa accounting — enables AAA Accounting and creates a record for monitoring the accounting function.
(OS) employs the second method (or third method, if necessary) automatically. For example, if the TACACS+ server is reachable, but the server key is invalid, Dell Networking OS proceeds to the next authentication method. The TACACS+ is incorrect, but the user is still authenticated by the secondary method. Related Commands enable password — changes the password for the enable command. login authentication — enables AAA login authentication on the terminal lines.
applied. The only exception is the local method. If the user’s name is not listed in the local database, the next method is applied. If the correct user name/password combination is not entered, the user is not allowed access to the switch. NOTE: If authentication fails using the primary method, Dell Networking Operating System (OS) employs the second method (or third method, if necessary) automatically.
Undo a configuration with the no aaa authorization commands {level | role rolename}{name | default} {local | tacacs+ | none} command. Parameters Defaults commands level Enter the keyword commands then the command privilege level for command level authorization. role role-name Enter the keyword role then the role name. role method is supported only on Full-Switch mode. name Define a name for the list of authorization methods. default Define the default list of authorization methods.
2. Configure login authentication on the console. This ensures that all users are properly identified through authentication no matter the access point 3. Specify an authentication method (RADIUS, TACACS+, or Local). 4. Specify authorization method (RADIUS, TACACS+ or Local). 5. Verify the configuration has been applied to the console or VTY line.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. aaa reauthenticate enable Enable re-authentication of user whenever there is a change in the authenticators. Syntax aaa reauthenticate enable To disable the re-authentication option, use the no aaa reauthenticate enable command. Defaults Disabled Command Modes CONFIGURATION Command History Usage Information This guide is platform-specific.
● route-map for ROUTE-MAP mode ● router for ROUTER OSPF, ROUTER RIP, ROUTER ISIS and ROUTER BGP modes level level Enter the keyword level then a number for the access level. The range is from 0 to 15. Level 1 is EXEC mode and Level 15 allows access to all CLI modes and commands. Defaults reset Enter the keyword reset to return the security level to the default setting. command Enter the command’s keywords to assign the command to a certain access level. You can enter one or all of the keywords.
line Defaults Enter a text string for your banner message ending the message with your delineator. In the following example, the delineator is a percent character (%); the banner message is “testing, testing”. No banner is displayed. Command Modes CONFIGURATION Supported Modes All Modes Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.3(0.0) Supported on the M I/O Aggregator.
Defaults No banner is configured and the CR is required when creating a banner. Command Modes CONFIGURATION Supported Modes All Modes Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.3(0.0) Supported on the M I/O Aggregator. After entering the banner login command, type one or more spaces and a delineator character. Enter the banner text then the second delineator character.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.3(0.0) Supported on the M I/O Aggregator. Usage Information After entering the banner login command, type one or more spaces and a delineator character. Enter the banner text then the second delineator character. When the user is connected to the router, if a message of the day banner is configured, it displays first.
exec-banner Enable the display of a text string when the user enters EXEC mode. Syntax exec-banner To disable the banner on terminal lines, use the no exec-banner command. Defaults Enabled on all lines (if configured, the banner appears). Command Modes LINE Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.3(0.0) Supported on the M I/O Aggregator.
Parameters level level (OPTIONAL) Enter the keyword level then a number as the level of access. The range is from 1 to 15. encryption-type (OPTIONAL) Enter the number 7 or 0 as the encryption type. Enter a 7 then a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Networking router. Use this parameter only with a password that you copied from the show running-config file of another Dell Networking router.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Only Dell Networking Technical Support staff use this command. enable secret Change the password for the enable command. Syntax enable secret [level level] [encryption-type] password To delete a password, use the no enable secret [encryption-type] password [level level] command. Parameters level level (OPTIONAL) Enter the keyword level then a number as the level of access. The range is from 1 to 15.
To delete a password, use the no enable sha256-password [encryption-type] password [level level] command. Parameters sha256-password Enter the keyword sha256-password then the encryption-type or the password. level level (OPTIONAL) Enter the keyword level then a number as the level of access. The range is from 1 to 15. encryption-type (OPTIONAL) Enter the number 8 or 0 as the encryption type. Enter 8 to enter the sha256–based hashed password.
password Specify a password for users on terminal lines. Syntax password [encryption-type] password To delete a password, use the no password password command. Parameters Defaults encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the password entered. The options are ● 0 is the default and means the password is not encrypted and stored as clear text. ● 7 means that the password is encrypted and hidden. password Enter a text string up to 32 characters long.
locking out sessions on the Telnet or SSH sessions for which there has been a consecutive failed login attempts. The console is not locked out. characterrestriction (OPTIONAL) Enter the keywords character-restriction to indicate a character restriction for the password. upper number (OPTIONAL) Enter the keyword upper then the upper number. The range is from 0 to 31. lower number (OPTIONAL) Enter the keyword lower then the lower number. The range is from 0 to 31.
name passwords, authentication key passwords, the privileged command password, and console and virtual terminal line access passwords. To view passwords, use the show running-config command. show privilege View your access level. Syntax show privilege Command Modes ● EXEC ● EXEC Privilege Supported Modes All Modes Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Related Commands Field Description User Displays the user name of all users logged in. Host(s) Displays the terminal line status. Location Displays the IP address of the user. Dell# show users Authorization Mode: Line User * 0 console 0 2 vty 0 admin 3 vty 1 ad 4 vty 2 ad1 5 vty 3 ad1 6 vty 4 admin 7 vty 5 ad Dell# role or privilege Role Priv Host(s) unassigned 1 idle unassigned 1 idle unassigned 15 idle sysadmin 1 idle sysadmin 1 idle unassigned 1 idle unassigned 15 idle Location 10.16.
Command Modes LINE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The software measures the period of inactivity defined in this command as the period between consecutive keystrokes. For example, if your password is “password” you can enter “p” and wait 29 seconds to enter the next letter. username Establish an authentication system based on user names.
Command History Version Description 9.10(0.0) Added support for the sha256-password option. 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced the support for roles on the MXL 10/40GbE Switch. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To view the defined user names, use the show running-config user command. Related Commands password — specifies a password for users on terminal lines. show running-config — views the current configuration.
Version Description 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010–ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FM-IOM, and MXL. client-key Configures global shared key for the trusted DAC clients. Syntax client—key [encryption-type] key To remove the shared key configuration, enter the no client-key command. Defaults Parameters None. encryption-type: (OPTIONAL) Enter either 0 or 7 as the encryption type for the key entered.
Version Description 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010–ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL. coa-disable-port Configure NAS to reject disable-port requests from DAC. Syntax coa-disable-port To undo this configuration, enter the no coa-disable-port command. Defaults Enabled. Command Modes ● CONF-DYNAMIC-AUTH Usage Information ● Configure no coa-disable-port DAS to drop radius CoA disable-port requests from DAC.
To disable debugging of RADIUS, use the no debug radius command. Defaults Disabled. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. da-rsp-timeout Configure timeout value for the back end task to respond to DAC requests. Syntax da-rsp-timeout minutes To undo the configuration, enter the no da-rsp-timeout command. Defaults Parameters 10 Minutes.
Version Description 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010–ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL. dynamic-auth-enable Configure NAS to receive and process dynamic authorization messages. Syntax dynamic-auth-enable To stop NAS from receiving and processing dynamic authorization messages, use the no dynamicauth-enable command. Defaults Disabled. Command Modes ● CONF-DYNAMIC-AUTH Command History This guide is platform-specific.
port Configures NAS port number to accept CoA or DM requests. Syntax port port-number To remove the NAS port configuration, enter the no port command. Defaults Parameters 3799 port-number Enter the NAS port number to accept CoA and DM requests. The range is from 1 to 65535. Command Modes ● CONF-DYNAMIC-AUTH Usage Information ● Optionally specify dynamic authorization port number. Default port is 3799. Command History This guide is platform-specific.
To disable this function or return to the default value, use the no radius-server deadtime command. Parameters Defaults seconds Enter a number of seconds during which non-responsive RADIUS servers are skipped. The range is from 0 to 2147483647 seconds. The default is 0 seconds. 0 seconds Command Modes CONFIGURATION Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.3(0.
Usage Information Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 9.3(0.0) Supported on the M I/O Aggregator. To configure any number of RADIUS server hosts for each server host that is configured, use this command. Dell Networking Operating System (OS) searches for the RADIUS hosts in the order they are configured in the software.
To configure zero retransmit attempts, use the no radius-server retransmit command. To return to the default setting, use the radius-server retransmit 3 command. Parameters Defaults retries Enter a number of attempts that Dell Networking Operating System (OS) tries to locate a RADIUS server. The range is from zero (0) to 100. The default is 3 retries. 3 retries Command Modes CONFIGURATION Supported Modes All Modes Command History Related Commands Version Description 9.9(0.
exec for EXEC mode interface for INTERFACE modes line for LINE mode route-map for Route-map mode router for Router mode Defaults addrole Enter the keyword addrole to add permission to the command. You cannot add or delete rights for the sysadmin role. deleterole Enter the keyword deleterole to remove access to the command. You cannot add or delete rights for the sysadmin role. role-name Enter a text string for the name of the user role up to 63 characters.
replay-protection-window Configure replay protection window period to drop the duplicate packets. Syntax replay-protection-window minutes To undo the configuration, enter the no replay-protection-window command. Defaults Parameters 5 Minutes. minutes Enter the number of minutes to drop the packets. The range is from 1 to 10 minutes.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.3(0.0) Supported on the M I/O Aggregator. Dell#show privilege Current privilege level is 15 Dell# Suppressing AAA Accounting for Null Username Sessions When you activate AAA accounting, the Dell Networking OS software issues accounting records for all users on the system, including users whose username string, because of protocol translation, is NULL.
stop-only Enter the keywords stop-only to instruct the TACACS+ security server to send a “stop record accounting” notice at the end of the requested user process. tacacs+ Enter the keyword tacacs+ to use TACACS+ data for accounting. Dell Networking OS currently only supports TACACS+ accounting. Defaults None Command Modes CONFIGURATION Usage Information In the example above, TACACS+ accounting is used to track all usage of EXEC command and commands on privilege level 15.
Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. ● For a ten-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For VLAN interface, enter the keyword vlan then a number from 1 to 4094. Not configured. Command Modes CONFIGURATION Supported Modes All Modes Command History Version Description 9.9(0.
tacacs-server key Configure a key for communication between a TACACS+ server and a client. Syntax tacacs-server key [encryption-type] key To delete a key, use the no tacacs-server key key command. Parameters Defaults encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the key entered. The options are: ● 0 is the default and means the key is not encrypted and stored as clear text. ● 7 means that the key is encrypted and hidden.
SSH Server and SCP Commands The Dell Networking OS supports secure shell (SSH) protocol versions 1.5 and 2.0. SSH is a protocol for secure remote login over an insecure network. SSH sessions are encrypted and use authentication. crypto key generate Generates keys for the SSH server. Syntax crypto key generate {rsa | rsa1} Parameters Defaults Command History Usage Information rsa Enter the keyword rsa then the key size to generate a SSHv2 RSA host keys.
Defaults Disabled on both client and server. Command Modes EXEC Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Debug information includes details for key-exchange, authentication, and established session for each connection. ip scp topdir Identify a location for files used in secure copy transfer.
Usage Information This command specifies the maximum number of attempts to authenticate a user on an SSH connection with the remote host for password authentication. SSH disconnects when the number of password failures exceeds authentication-retries. ip ssh cipher Configure the list of ciphers supported on both SSH client and SCP. Syntax ip ssh cipher cipher-list Parameters Defaults cipher cipher-list Enter the keyword cipher and then a space-delimited list of ciphers that the SSH client supports.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip ssh hostbased-authentication Enable hostbased-authentication for the SSHv2 server. Syntax ip ssh hostbased-authentication enable To disable hostbased-authentication for SSHv2 server, use the no ip ssh hostbasedauthentication enable command.
Usage Information The server-generated key is used for SSHv1 key-exchange. ip ssh mac Configure the list of MAC algorithms supported on both SSH client and SCP. Syntax ip ssh mac mac-list Parameters mac mac-list Enter the keyword mac then a space-delimited list of message authentication code (MAC) algorithms supported by the SSH client. The following MAC algorithms are available.
ip ssh password-authentication Enable password authentication for the SSH server. Syntax ip ssh password-authentication enable To disable password-authentication, use the no ip ssh password-authentication enable command. Parameters Defaults enable Enter the keyword enable to enable password-authentication for the SSH server. Enabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
ip ssh rekey Configures the time rekey-interval or volume rekey-limit threshold at which to re-generate the SSH key during an SSH session. Syntax ip ssh rekey [time rekey-interval] [volume rekey-limit] To reset to the default, use no ip ssh rekey [time rekey-interval] [volume rekeylimit] command. Parameters time minutes Enter the keywords time then the amount of time in minutes. The range is from 10 to 1440 minutes.
ip ssh rsa-authentication (EXEC) Add keys for the RSA authentication. Syntax ip ssh rsa-authentication {my-authorized-keys WORD} To delete the authorized keys, use the no ip ssh rsa-authentication {my-authorizedkeys} command. Parameters Defaults my-authorizedkeys WORD Enter the keywords my-authorized-keys then the filename of the RSA authorized-keys. none Command Modes EXEC Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.
● 3des-cbc ● aes128-cbc ● aes192-cbc ● aes256-cbc ● aes128-ctr ● aes192-ctr ● aes256-ctr mac hmac- algorithm Enter the keyword mac then a space-delimited list of hash message authentication code (HMAC) algorithms supported by the SSH server for keying hashing for the message authentication. The following HMAC algorithms are available: ● hmac-sha1 ● hmac-sha1-96 ● hmac-sha2-256 When FIPS is enabled, the default HMAC algorithm is hmac-sha1-96.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced the cipher, kex and mac options on the MXL 10/40GbE Switch. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command enables the SSH server and begins listening on a port. If a port is not specified, listening is on SSH default port 22. NOTE: Starting with Dell Networking OS Release 9.2(0.0), SSH server is enabled by default.
Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is useful if the remote SSH client implements Strict Host Key Checking. You can copy the host key to your list of known hosts.
hmac-md5, hmac-md5-96. SSH server kex algorithms : diffie-hellman-group-exchange-sha1,diffiehellman-group1-sha1,diffie-hellman-group14-sha1. Password Authentication : enabled. Hostbased Authentication : disabled. RSA Authentication : disabled. Vty Encryption HMAC Remote IP 2 aes128-cbc hmac-md5 10.16.127.141 4 aes128-cbc hmac-md5 10.16.127.141 * 5 aes128-cbc hmac-md5 10.16.127.141 Dell# Related Commands show ip ssh client-pub-keys — displays the client-public keys.
Usage Information Example Version Description 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. This command displays the contents of the flash:/ADMIN_DIR/ssh/authorizedkeys.username file.
show userroles Display information on all defined user roles.
Example Dell#ssh 123.12.1.123 -l ashwani -p 5005 -v 2 ip ssh pub-key-file Specify the file used for host-based authentication. Syntax ip ssh pub-key-file {WORD} Parameters Defaults WORD Enter the file name for the host-based authentication. none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp snooping — displays the contents of the DHCP binding table. ip dhcp relay Enable Option 82. Syntax Parameters Defaults ip dhcp relay information-option [trust-downstream] trustdownstream Configure the system to trust Option 82 when it is received from the previous-hop router. Disabled.
Defaults none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping binding Create a static entry in the DHCP binding table.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.19.0 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping trust Configure an interface as trusted. Syntax [no] ip dhcp snooping trust Defaults Untrusted Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp source-address-validation Enable IP source guard.
NOTE: Learning only happens if there is a trusted port in the VLAN. Related Commands ip dhcp snooping trust — configures an interface as trusted. show ip dhcp snooping Display the contents of the DHCP binding table. Syntax show ip dhcp snooping binding Defaults none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes CONFIGURATION Supported Modes All Modes Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. Usage Information To view the defined user names, use the show running-config user command. Related Commands service password-encryption — specifies a password for users on terminal lines. show running-config — views the current configuration. userrole Create user roles for the role-based security model.
NOTE: If you inherit a user role, you cannot modify or delete the inheritance. If you want to change or remove the inheritance, delete the user role and create it again. If the user role is in use, you cannot delete the user role. Related Commands role mode { { { addrole | deleterole } role-name } | reset } command – Modifies (adds or deletes) command permissions for newly created user roles and system defined roles.
Table 5.
generate hash Generate a hash checksum for the given file or the startup configuration using the MD5, SHA1, or SHA256 algorithm. Syntax generate hash {md5 | sha1 | sha256} {flash://filename | startup-config} Parameters Defaults md5 | sha1 | sha256 Enter the keyword md5, sha1, or sha256 to generate . flash:// filename Enter the keyword flash: and enter the filename to generate the hash checksum for any file in the flash drive using the MD5, SHA1, or SHA256 algorithm.
Usage Information Version Description 9.13(0.0) Introduced on the S3100 series, S3048–ON, S4048–ON, S4048T-ON, S5000, S6000, S6000–ON, S6010–ON, S6100–ON, Z9100–ON, Z9500, C9010, MXL, and FN-IOM. If you configure the secure-cli command on the system, the Dell EMC Networking OS resets any previously-configured root access password to the default root password without displaying any warning message.
Parameters Defaults system-image {A: Enter the keyword system-image and A: or B:, depending on where the image | B:} is stored and then the hash value that is present on the iSupport page for your image. startup-config Enter the keyword startup-config and then the hash value for the startup configuration. You can get the hash value for the startup configuration using the generate hash command. hash value Enter the MD5, SHA1, or SHA256 hash.
53 sFlow sFlow monitoring system includes an sFlow Agent and an sFlow Collector. ● The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector. ● The sFlow Collector analyses the sFlow Datagrams received from the different devices and produces a network-wide view of traffic flows.
To delete a configured collector, use the no sflow collector {ip-address} agent-addr {ipv4-address} [number [max-datagram-size number]] | [max-datagram-size number] command. Parameters sflow collector Enter the IPv4 (A.B.C.D) of the sFlow collector device. ip-address agent-addr ip- Enter the IPv4 (A.B.C.D) of the sFlow agent in the router. address Defaults number (OPTIONAL) Enter the user datagram protocol (UDP) port number. The range is from 0 to 65535. The default is 6343.
Related Commands sflow enable (Global) — enables sFlow on interfaces. sflow ingress-enable Enable sFlow ingress on interfaces. Syntax sflow ingress-enable To disable sFlow, use the no sflow ingress enable command. Defaults Disabled. Command Modes INTERFACE Supported Modes Full–Switch Mode Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide.
sflow max-header-size extended Set the maximum header size of a packet to 256 bytes. Syntax sflow max-header-size extended To reset the maximum header size of a packet, use the[no] sflow max-header-size extended command. Parameters Defaults extended Enter the keyword extended to copy 256 bytes from the sample packets to sFlow datagram. 128 bytes Command Modes CONFIGURATION INTERFACE Supported Modes Full–Switch Mode Command History This guide is platform-specific.
sflow polling-interval (Interface) Set the sFlow polling interval at an interface (overrides the global-level setting). Syntax sflow polling-interval interval value To return to the default, use the no sflow polling-interval interval command. Parameters Defaults interval value Enter the interval value in seconds. The range is from 15 to 86400 seconds. The default is the global counter polling interval. The same value as the current global default counter polling interval.
sflow sample-rate (Interface) Change the interface default sampling rate. Syntax sflow sample-rate value To return to the default sampling rate, use the no sflow sample-rate command. Parameters Defaults value Enter the sampling rate value. The range is from 256 to 8388608 packets. Enter values in powers of 2 only; for example, 4096, 8192, and 16384. The default is the Global default sampling. The Global default sampling.
0 0 0 0 collectors configured UDP packets exported UDP packets dropped sFlow samples collected stack-unit 0 Port set 0 Te 0/1: configured rate 256, actual rate 256 Dell# Dell#show running-config sflow ! sflow enable sflow sample-rate 2048 Dell#show running-config interface tengigabitethernet 0/1 ! interface TenGigabitEthernet 0/1 no ip address sflow enable sflow sample-rate 256 no shutdown show sflow stack-unit Display the sFlow information on a stack unit.
54 Service Provider Bridging Service provider bridging is composed of virtual local area network (VLAN) Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the Dell Networking OS Configuration Guide. This chapter includes commands for the Dell Networking operating software Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel. For more information, see VLAN Stacking, Spanning Tree Protocol (STP), and GARP VLAN Registration (GVRP).
Defaults Debug disabled. Command Modes EXEC Privilege Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. protocol-tunnel Enable protocol tunneling on a stacked (Q-in-Q) VLAN for specified protocol packets. Syntax protocol-tunnel {rate-limit rate| stp} To disable protocol tunneling for a Layer 2 protocol, use the no protocol-tunnel command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enable VLAN-Stacking, no protocol packets are tunneled. Related Command show protocol-tunnel — displays tunneling information for all VLANs. protocol-tunnel enable Enable protocol tunneling globally on the system. Syntax protocol-tunnel enable To disable protocol tunneling, use the no protocol-tunnel enable command. Defaults Disabled.
Related Commands show protocol-tunnel — displays tunneling information for all VLANs. show running-config — displays the current configuration. show protocol-tunnel Display protocol tunnel information for all or a specified VLAN-Stack VLAN. Syntax Parameters Defaults show protocol-tunnel [vlan vlan-id] vlan vlan-id (OPTIONAL) Enter the keyword vlan then the VLAN ID to display information for the one VLAN. The range is from 1 to 4094.
55 Simple Network Management Protocol (SNMP) and Syslog This chapter contains commands to configure and monitor the simple network management protocol (SNMP) v1/v2/v3 and Syslog.
• • • • • • • logging synchronous logging trap logging version show logging show logging driverlog stack-unit show logging auditlog terminal monitor SNMP Commands The following SNMP commands are available in the Dell Networking OS. The simple network management protocol (SNMP) is used to communicate management information between the network management stations and the agents in the network elements. The system supports SNMP versions 1, 2c, and 3, supporting both read-only and read-write modes.
show snmp Display the status of SNMP network elements. Syntax show snmp Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Mode Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands snmp-server engineID — configures local and remote SNMP engines on the router. show snmp group Display the group name, security model, status, and storage type of each group. Syntax show snmp group Command Modes ● EXEC ● EXEC Privilege Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following Example displays a group named ngroup.
IANA-ADDRESS-FAMILY-NUMBERS-MIB IANA-RTPROTO-MIB IPV6-FLOW-LABEL-MIB SNMPv2-MIB IF-MIB IP-MIB TCP-MIB UDP-MIB RFC1213-MIB EtherLike-MIB SNMP-FRAMEWORK-MIB RADIUS-AUTH-CLIENT-MIB SNMP-MPD-MIB RMON-MIB --More— 1.3.6.1.2.1 1.3.6.1.2.1.31 1.3.6.1.2.1.48 1.3.6.1.2.1.49 1.3.6.1.2.1.50 1.3.6.1.2.1.35 1.3.6.1.6.3.10 1.3.6.1.2.1.67.1.2 1.3.6.1.6.3.11 1.3.6.1.2.1.16 show snmp supported-traps Display the list of SNMP traps supported by the platform.
show snmp user Display the information configured on each SNMP user name. Syntax show snmp user Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Mode Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Defaults None. Command Modes IPv6 ROUTER OSPF Command History Usage Information Example This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.14(1.0) Introduced on the S3100 series, S3048–ON, S4048–ON, S4048T-ON, S5048F-ON, S6000, S6010–ON, S6100–ON, Z9100–ON, Z9500, S6000–ON, C9010, MXL, and FN IOM.
snmp-server community Configure a new community string access for SNMPv1 v2 and v3. Syntax snmp-server community community-name {ro | rw} [security-name name][accesslist-name] To remove access to a community, use the no snmp-server community community-string {ro | rw} [security-name name [access-list-name] command. Parameters community-name Enter a text string (up to 20 characters long) to act as a password for SNMP. ro Enter the keyword ro to specify read-only permission.
Dell(conf)#snmp-server community guest ro snmp-ro-acl Dell(conf)# Related Commands ip access-list standard — names (or selects) a standard access list to filter based on IP address. show running-config — displays the current SNMP configuration and defaults. snmp-server contact Configure contact information for troubleshooting this SNMP node. Syntax snmp-server contact text To delete the SNMP server contact information, use the no snmp-server contact command.
● ● ● ● ● ● Defaults authentication coldstart linkdown linkup syslog-reachable syslog-unreachable Not enabled. Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Usage Information Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.0) Added the following two SNMP notification options: syslog-reachable and syslog-unreachable. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The system supports up to 16 SNMP trap receivers.
Usage Information Changing the value of the SNMP Engine ID has important side effects. A user’s password (entered on the command line) is converted to a message digest algorithm (MD5) or secure hash algorithm (SHA) security digest. This digest is based on both the password and the local Engine ID. The command line password is then destroyed, as required by RFC 2274.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following Example specifies the group named harig as a version 3 user requiring both authentication and encryption and read access limited to the read named rview. NOTE: The number of configurable groups is limited to 16 groups.
the snmp-server community command before executing this command. For version 3 security model, this string is the USM user security name. udp-port port- number (OPTIONAL) Enter the keywords udp-port then the port number of the remote host to use. The range is from 0 to 65535. The default is 162. notification-type (OPTIONAL) Enter one of the following keywords for the type of trap to send to the host: ● ecfm — Notification of ECFM state changes. ● entity — Notification of entity changes.
4. Enable traps. 5. Configure a host to receive informs. Related Commands snmp-server enable traps — enables SNMP traps. snmp-server community — configures a new community SNMPv1 or SNMPv2c. snmp-server location Configure the location of the SNMP server. Syntax snmp-server location text To delete the SNMP location, use the no snmp-server location command. Parameters Defaults text Enter an alpha-numeric text string, up to 55 characters long. Not configured.
● For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. Defaults The IP address assigned to the management interface is the default. Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
md5 | sha (OPTIONAL) Enter the keyword md5 or sha to designate the authentication level. ● md5 — Message Digest Algorithm ● sha — Secure Hash Algorithm auth-password (OPTIONAL) Enter a text string (up to 20 characters long) password that enables the agent to receive packets from the host and to send packets to the host. Minimum: eight characters long.
5009 3 auth md5 authpasswd Related Commands show snmp user — displays the information configured on each SNMP user name. snmp-server user (for AES128-CFB Encryption) Specify that AES128-CFB encryption algorithm needs to be used for transmission of SNMP information. The Advanced Encryption Standard (AES) Cipher Feedback (CFB) 128-bit encryption algorithm is in compliance with RFC 3826. RFCs for SNMPv3 define two authentication hash algorithms, namely, HMAC-MD5-96 and HMAC-SHA1-96.
Example Related Commands Dell# snmp-server user privuser v3group v3 encrypted auth md5 9fc53d9d908118b2804fe80e3ba8763d priv aes128 d0452401a8c3ce42804fe80e3ba8763d show snmp user — Displays the information configured on each SNMP user name. snmp-server view Configure an SNMPv3 view. Syntax snmp-server view view-name oid-tree {included | excluded} To remove an SNMPv3 view, use the no snmp-server view view-name oid-tree {included | excluded} command.
Usage Information If the interface is expected to flap during normal usage, you could disable this command. Syslog Commands The following commands allow you to configure logging functions on all Dell Networking switches. clear logging Clear the messages in the logging buffer. Syntax clear logging Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Mode Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging console — sets the logging console parameters. logging extended Logs security and audit events to a system log server. Syntax logging extended Defaults none Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History This guide is platform-specific.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging monitor — sets the logging monitor parameters. terminal monitor — sends system messages to the terminal/monitor. default logging trap Return to the default settings for logging messages to the Syslog servers.
8.3.16.1 Related Commands Introduced on the MXL 10/40GbE Switch IO Module. logging on — enables the logging asynchronously to logging buffer, console, Syslog server, and terminal lines. logging trap — enables logging to the Syslog server based on severity. logging buffered Enable logging and specify which messages are logged to an internal buffer. By default, all messages are logged to the internal buffer.
Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear logging — clears the logging buffer. default logging console — returns the logging console parameters to the default setting. show logging — displays the logging setting and system messages in the internal buffer.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging — enables logging to a Syslog server. logging on — enables logging. logging history Specify which messages are logged to the history table of the switch and the SNMP network management station (if configured). Syntax logging history level To return to the default values, use the no logging history command.
Usage Information When the number of messages reach the limit you set with the logging history size command, older messages are deleted as newer ones are added to the table. Related Commands show logging — displays information logged to the history buffer. logging monitor Specify which messages are logged to Telnet applications. Syntax logging monitor [level] To disable logging to terminal connections, use the no logging monitor command.
logging source-interface Specify that the IP address of an interface is the source IP address of Syslog packets sent to the Syslog server. Syntax logging source-interface interface To disable this command and return to the default setting, use the no logging source-interface command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For Loopback interfaces, enter the keyword loopback then a number from zero (0) to 16383.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When you enable logging synchronous, unsolicited messages appear between software prompts and outputs. Only the messages with a severity at or below the set level are sent to the console. If the message queue limit is reached on a terminal line and messages are discarded, a system message appears on that terminal line.
Usage Information Version Description 9.5(0.0) Introduced on the MXL. To display syslog messages in a RFC 3164 or RFC 5424 format, use the log version command in configuration mode. By default, the system log version is set to 0.
10.11.68.22 )by admin May 22 09:03:56: %STKUNIT0-M:CP %SYS-5-CONFIG_I: Configured from vty0 ( 10.11.68.22 )by admin May 22 09:01:51: %STKUNIT0-M:CP %SYS-5-CONFIG_I: Configured from vty0 ( 10.11.68.22 )by admin May 22 08:53:09: %STKUNIT0-M:CP %SEC-3-AUTHENTICATION_ENABLE_SUCCESS: Enable password authentication suc cess on vty0 ( 10.11.68.22 ) May 22 08:53:04: %STKUNIT0-M:CP %SEC-5-LOGIN_SUCCESS: Login successful for user admin on vty0 (10.11.68.
Command Modes EXEC Supported Modes Full–Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced on the MXL. Dell(conf)#show logging audit clear logging auditlog — clears audit log.
56 Stacking Commands Stacking is supported on the FN410S and FN410T cards with ports 9 and 10 as the stack ports. Stacking is limited to six Aggregators in the same or different chassis in a single stack. Stacking provides a single point of management and NIC teaming for high availability and higher throughput. To configure an Aggregator stack, you must use the CLI. The stacking commands are always available and operational.
Usage Information Version Description 9.6.(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. This command is supported on the M I/O, FN410S, and FN410T Aggregators. This command is used to reset the stack-unit. The master unit can also be power cycled using this command. redundancy disable-auto-reboot Prevent the switch stack management unit from rebooting if it fail.
reset stack-unit Reset any designated stack member except the management unit (master unit). Syntax reset stack-unit 0–5 hard Parameters Defaults 0–5 Enter the stack member unit identifier of the stack member to reset. hard Reset the stack unit if the unit is in a problem state. none Command Modes EXEC Privilege Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.6.(0.0) Supported on the FN I/O Aggregator. 8.3.17.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.6.(0.0) Supported on the FN I/O Aggregator. This command is supported on the M I/O, FN410S, and FN410T Aggregators. The following describes the show interfaces command shown in the following example. Field Description Topology Lists the topology of stack ports connected: Ring, Daisy chain, or Standalone. Interface The unit/port ID of the connected stack port on this unit.
show system stack-unit iom-mode Displays the current iom-mode (stack/standalone) and the mode configured after next reboot. Syntax Parameters show system stack-unit unit-number iom-mode unit number <0– 5> Enter the number of the member stack unit. The range is from 0 to 5. Command Modes EXEC Privilege Supported Modes All Modes Command History Usage information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.6.(0.0) Supported on the FN I/O Aggregator. 8.3.17.
| Pipe through a command Dell#show system stack-unit 0 stack-group configured Configured stack groups in stack-unit 0 Dell#show system stack-unit 0 stack-group Stack group Ports -----------------------------------0 0/9 1 0/10 2 0/11 3 0/12 Dell# Related Commands reload— reboots the system. show system— displays the current status of all stack members or a specific member. stack-unit iom-mode Toggle the operating mode between programmable multiplex, standalone, stack, full–switch,and VLT modes.
stack-unit priority Configure the ability of a switch to become the management unit of a stack. Syntax Parameters Defaults stack-unit stack-number priority 1-14 stack-number Enter the stack member unit identifier. 1–14 This preference parameter allows you to specify the management priority of one backup switch over another, with 0 the lowest priority and 14 the highest.
Parameters Defaults 0-5 The first instance of this value is the stack member unit identifier, from 0 to 5, of the switch that you want add to the stack. The range is from 0 to 5. The second instance of this value is the desired new unit identifier number. none Command Modes EXEC Privilege Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.6.(0.0) Supported on the FN I/O Aggregator. 9.3(0.0) Supported on the M I/O Aggregator.
Warning: Enabling stack-port tracking shuts down all the operationally UP interfaces, when both/all the stack ports of the unit are down. This Action is not modified when enabled along with UFD feature.
57 Storm Control The Dell Networking operating software storm control feature allows you to limit or suppress traffic during a traffic storm. Important Points to Remember ● Interface commands can only be applied on physical interfaces (virtual local area networks [VLANs] and link aggregation group [LAG] interfaces are not supported). ● An INTERFACE-level command only supports storm control configuration on ingress.
To disable storm control, use the no io-aggregator broadcast storm-control command. Defaults Enabled Command Modes ● CONFIGURATION Supported Modes Standalone-Mux (SMUX) Full–Switch Mode Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. This command is not available in PMUX mode.
Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. show storm-control broadcast Display the storm control broadcast configuration.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show storm-control multicast gigabitethernet 1/1 Multicast storm control configuration Interface Direction Packets/Second ----------------------------------------Te 2/2 Ingress 5 Dell# storm-control multicast (Interface) Configure the percentage of multicast traffic allowed on the interface.
8.3.16.1 Usage Information Introduced on the MXL 10/40GbE Switch IO Module. Broadcast storm control is valid on Layer 2/Layer 3 interfaces only. Layer 2 broadcast traffic is treated as unknown-unicast traffic. storm-control broadcast (Interface) Configure the percentage of broadcast traffic allowed on an interface. Syntax storm-control broadcast [packets_per_second in] To disable broadcast storm control on the interface, use the no storm-control broadcast [packets_per_second in] command.
storm-control PFC/LLFC Shut down the port if it receives the PFC/LLFC frames more than the configured rate. Syntax Parameters Defaults storm-control pfc-llfc [pps]in shutdown pfc-llfc in Enter the keyword pfc-llfc to get the flow control traffic. The range is from 0 to 33554368 packets per second. shutdown Enter the keyword shutdown to shut down the port when the rate exceeds. none Command Modes INTERFACE (conf-if-interface-slot/port) Command History This guide is platform-specific.
Parameters packets_per_sec ond Enter the packets per second of broadcast traffic allowed into the network. The range is from 0 to 33554431. Command Modes INTERFACE (conf-if-interface-slot/port) Supported Modes Programmable-Mux (PMUX) Full–Switch Mode Command History 1128 Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator.
58 SupportAssist SupportAssist sends troubleshooting data securely to Dell. SupportAssist in this Dell EMC Networking OS release does not support automated email notification at the time of hardware fault alert, automatic case creation, automatic part dispatch, or reports. SupportAssist requires Dell EMC Networking OS 9.9(0.0) and SmartScripts 9.7 or later to be installed on the Dell EMC Networking device. For more information on SmartScripts, see Dell EMC Networking Open Automation guide.
Usage Information ● When you run the command, the system displays a message with the information directing to the URL for further information. ● Even before you accept or reject the EULA, the configuration data is sent to the default centrally deployed SupportAssist Server. If you reject the EULA, the configuration data is not transmitted to the SupportAssist server. ● If there is an existing SupportAssist configuration, the configuration is not removed and the feature is disabled.
Related Commands ● support-assist — moves to the SupportAssist Configuration mode. support-assist Move to the SupportAssist configuration mode. Syntax support-assist To remove all the configuration of the SupportAssist service, use the no support-assist command. Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.
support-assist activity Trigger an activity event immediately. Syntax support-assist activity {full-transfer | core-transfer} start now Parameters full-transfer Enter the keyword full-transfer to specify transfer of configuration, inventory, logs, and other information. core-transfer Enter the keyword core-transfer to specify transfer of core files. Command Modes EXEC Privilege Command History Usage Information This guide is platform-specific.
Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. Introduced the core-transfer and event-transfer parameters. Usage Information 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. By default, each activity follows a set of default actions using a default schedule.
Parameters first-name (Optional) Enter the first name for the contact person. This is optional provided each contact person name is unique. To include a space, enter a space within double quotes. last-name Enter the last name for the contact person. To include a space, enter a space within double quotes. Command Modes SUPPORTASSIST Command History Usage Information This guide is platform-specific.
server Configure the name of the remote SupportAssist Server and move to SupportAssist Server mode. Syntax server {default | server-name} To delete a server, use the no server server-name command. Parameters Defaults default Enter the keyword default for the default server. server-name Enter the name of the custom server to which the logs would be transferred. To include a space, enter a space within double quotes. Default server has URL stor.g3.ph.dell.
Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
Related Commands ● action-manifest get — copy an action-manifest file for an activity to the system. ● action-manifest show — view the list of action-manifest for a specific activity. ● action-manifest remove — remove the action-manifest file for an activity. action-manifest remove Remove the action-manifest file from Dell EMC Networking OS. Syntax Parameters action-manifest remove } local-file-name Enter the name of the local action-manifest file.
Related Commands Version Description 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. ● action-manifest get — copy an action-manifest file for an activity to the system. ● action-manifest install — configure the action-manifest to use for a specific activity. ● action-manifest remove — remove the action-manifest file for an activity. enable Enable a specific SupportAssist activity.
To remove the complete company contact information, use the no address command. Parameters city company- city province | region | state name (OPTIONAL) Enter the keyword city then the city or town for the company site. To include a space, enter a space within double quotes. (OPTIONAL) Enter the keyword province, region or state then the name of province, region or state for the company site. To include a space, enter a space within double quotes.
Usage Information Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. This command is optional for SupportAssist service configuration. territory Configure the territory and set the coverage for the company site.
Parameters primary email- address alternate emailaddress Enter the keyword primary then the primary email address for the person. Enter the keyword alternate then the alternate email address for the person. Command Modes SUPPORTASSIST PERSON Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM.
Related Commands ● preferred-method — configure the preferred method for contacting the person. preferred-method Configure the preferred method for contacting the person. Syntax preferred-method {email | no-contact | phone] Parameters Defaults email Enter the keyword email to specify email as preferred method. no-contact Enter the keywords no-contact to specify that there is no preferred method. phone Enter the keyword phone to specify phone as preferred method.
Usage Information Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. This command is optional for SupportAssist service configuration. SupportAssist Server Commands Dell EMC Networking OS supports the following SupportAssist Server mode commands. proxy-ip-address Configure a proxy for reaching the SupportAssist remote server.
Usage Information The passwords are stored encrypted in the running configuration. enable Enable communication with the SupportAssist server. Syntax enable To disable communication to a specific SupportAssist server, use the no enable command. Defaults Enabled Command Modes SUPPORTASSIST SERVER Command History Related Commands This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.
Usage Information The URL should be formatted to follow the ISO format. show eula-consent Display the EULA for the feature. Syntax Parameters show eula-consent {support-assist | other feature} support-assist | other feature Enter the keywords support-assist or the text corresponding to other feature. Command Modes EXEC Privilege Command History Example This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide.
allow Dell to transmit and store the Collected Data from SupportAssist in accordance with these terms. You agree that the provision of SupportAssist may involve international transfers of data from you to Dell and/or to Dells affiliates, subcontractors or business partners. When making such transfers, Dell shall ensure appropriate protection is in place to safeguard the Collected Data being transferred in connection with SupportAssist.
preferred-method email time-zone zone +05:30 start-time 12:23 end-time 15:23 ! server Dell enable url http://1.1.1.1:1332 DellEMC# show support-assist status Display information on SupportAssist feature status including any activities, status of communication, last time communication sent, and so on. Syntax show support-assist status Command Modes EXEC Privilege Command History Example This guide is platform-specific.
59 Spanning Tree Protocol (STP) The commands in this chapter configure and monitor the IEEE 802.1d spanning tree protocol (STP). Topics: • • • • • • • • • • • • bridge-priority debug spanning-tree description disable forward-delay hello-time max-age portfast bpdufilter default protocol spanning-tree show config show spanning-tree 0 spanning-tree 0 bridge-priority Set the bridge priority of the switch in an IEEE 802.1D spanning tree.
protocol Enter the keyword for the type of STP to debug, either mstp, pvst, or rstp. all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu (OPTIONAL) Enter the keyword bpdu to debug bridge protocol data units. events (OPTIONAL) Enter the keyword events to debug STP events. Command Modes EXEC Privilege Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. portfast bpdufilter default — enters SPANNING TREE mode. forward-delay The amount of time the interface waits in the Listening state and the Learning state before transitioning to the Forwarding state. Syntax forward-delay seconds To return to the default setting, use the no forward-delay command.
max-age To maintain configuration information before refreshing that information, set the time interval for the spanning tree bridge. Syntax max-age seconds To return to the default values, use the no max-age command. Parameters Defaults seconds Enter a number of seconds the system waits before refreshing configuration information. The range is from 6 to 40. The default is 20 seconds.
8.3.16.1 Usage Information Example Related Commands Introduced on the MXL 10/40GbE Switch IO Module. STP is not enabled when you enter SPANNING TREE mode. To enable STP globally on the switch, use the no disable command from SPANNING TREE mode. Dell(conf)#protocol spanning-tree 0 Dell(config-stp)# disable — disables spanning tree group 0. To enable spanning tree group 0, use the no disable command. show config Display the current configuration for the mode. Only non-default values display.
summary (OPTIONAL) Enter the keyword summary to only the number of ports in the spanning tree group and their state. Command Modes EXEC Privilege Supported Modes Full–Switch Mode Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Enable spanning tree group 0 prior to using this command. The following describes the show spanning-tree 0 command shown in the example.
Designated root has priority 32768, address 0001.e800.0a56 Designated bridge has priority 32768, address 0001.e800.0a56 Designated port id is 8.26, designated path cost 0 Timers: message age 0, forward_delay 0, hold 0 Number of transitions to forwarding state 1 BPDU: sent:18, received 0 The port is not in the portfast mode Port 3 (TenGigabitEthernet 1/2) is Forwarding Port path cost 4, Port priority 8, Port Identifier 8.27 Designated root has priority 32768, address 0001.e800.
Parameters stp-id Enter the STP instance ID. The range is 0. cost cost Enter the keyword cost then a number as the cost. The range is 1 to 65535. The defaults are: ● 10-Gigabit Ethernet interface = 2. ● Port Channel interface with 10-Gigabit Ethernet = 1. rootguard Enter the keyword rootguard to enable STP root guard on a port or port-channel interface.
60 System Time The commands in this chapter configure time values on the system, either using the Dell Networking OS, the hardware, or using the network time protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For more information, refer to the Network Time Protocol section of the Management chapter in the Dell Networking OS Configuration Guide.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. You can change the order of the month and day parameters to enter the time and date as time day month year . You cannot delete the software clock. The software clock runs only when the software is up. The clock restarts, based on the hardware clock, when the switch reboots.
Related Commands clock summer-time recurring — sets a date (and time zone) on which to convert the switch to daylight saving time each year. show clock — displays the current clock settings. clock summer-time recurring Set the software clock to convert to daylight saving time on a specific day each year.
Related Commands Version Description 8.3.17.0 Supported on the M I/O Aggregator. clock summer-time date — sets a date (and time zone) on which to convert the switch to daylight saving time on a one-time basis. show clock — displays the current clock settings. debug ntp Display network time protocol (NTP) transactions and protocol messages for troubleshooting. Syntax debug ntp {level level-number} To disable debugging of NTP transactions, use the no debug ntp {level level-number} command.
Example DellEMC(config)# ntp offset-threshold 4 ntp server Configure an NTP time-serving host. Syntax ntp server {ipv4-address} Parameters Defaults ipv4-address Enter an IPv4 address (A.B.C.D). Not configured. Command Modes CONFIGURATION Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. You can configure multiple time-serving hosts (up to 250).
Parameters number Specify a number for the authentication key. The range is from 1 to 65534. This number must be the same as the number parameter configured in the ntp trusted-key command. Defaults md5 Specify that the authentication key is encrypted using MD5 encryption algorithm. 0 Specify that authentication key is entered in an unencrypted format (default). 7 Specify that the authentication key is entered in DES encrypted format.
Version Description 9.14(0.0) Introduced on the C9010, FN–IOM, MIOA, MXL, S3048–ON, S4048–ON, S4048T– ON, S5048F–ON, S6000, S6000–ON, S6010–ON, S6100–ON, and Z9100–ON. Usage Information NTP control key is not configured by default. If the encryption–type (0 or 7) is not specified, then 0 is selected by default. Related Commands ● ntp authentication-key—sets an authentication key for NTP. ● ntp authenticate—enables the NTP authentication parameters that you set.
maxpoll polling- interval Defaults (OPTIONAL) Enter the keyword maxpollthen the polling-interval. The polling interval range is from 4 to 16. Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.14(0.0) The trusted-key range value is increased from 1 to 65534. Also, introduced the minpoll and maxpoll polling interval options. 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Added support for VRF. 8.3.11.
ntp trusted-key Set a key to authenticate the system to which NTP synchronizes. Syntax ntp trusted-key number To delete the key, use the no ntp trusted-key number command. Parameters Defaults number Enter a number as the trusted key ID. The range is from 1 to 65534. Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.14(0.0) The trusted-key range value is increased from 1 to 65534. 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Related Commands clock summer-time recurring — sets the software clock to convert to daylight saving time on a specific day each year. show ntp associations Display the NTP master and peers. Syntax show ntp associations Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example (without ntp master configuration) Example (with ntp master configuration) Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
10.16.127.86 0 10.16.127.26 0.002 10.16.127.144 0 10.16.127.26 0.002 10.16.127.44 0 10.16.127.26 0.002 * master (synced), # backup, + selected, Dell EMC# Related Commands 5 9 16 1 65.292 13829.9 5 6 16 1 0.829 13795.2 5 - 16 1 0.799 13791.5 - outlier, x falseticker show ntp status — displays the current NTP status. show ntp vrf associations Displays the NTP servers configured for the VRF instance . Syntax show ntp [vrf] associations.
Field Description “clock offset is...” Displays the system offset to the synchronized peer and the time delay on the path to the NTP root clock. “root dispersion is...” Displays the root and path dispersion. “peer mode is...” State what NTP mode the switch is. This should be Client mode. Example Related Commands DellEMC# show ntp status Clock is synchronized, stratum 4, reference is 10.16.151.117, vrf-id is 0 frequency is 0.000 ppm, stability is 0.000 ppm, precision is -18 reference time dec0e68a.
61 Tunneling Tunneling is supported on the Dell Networking OS. Topics: • • • • • • • • • • tunnel-mode tunnel source tunnel keepalive tunnel allow-remote tunnel dscp tunnel destination tunnel flow-label tunnel hop-limit ip unnumbered ipv6 unnumbered tunnel-mode Enable a tunnel interface. Syntax tunnel mode {ipip | ipv6 | ipv6ip}[decapsulate-any] To disable an active tunnel interface, use the no tunnel mode command.
tunnel source Set a source address for the tunnel. Syntax tunnel source {ip-address | ipv6–address | interface-type-number} To delete the current tunnel source address, use the no tunnel source command. Parameters Defaults ip-address Enter the source IPv4 address in A.B.C.D format. ipv6–address Enter the source IPv6 address in X:X:X:X::X format. interface-typenumber ● For a Port Channel interface, enter the keywords port-channel then a number from 1 to 128.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL. When configured, the system will send ICMP echo probe packets at the configured interval and expect a response within the configured number of attempts, else the tunnel interface will be declared operational down. tunnel allow-remote Configure an IPv4 or IPv6 address or prefix whose tunneled packets will be accepted for decapsulation.
Class (IPv6) to the tunnel header DSCP (IPv4)/Traffic Class (IPv6) depending on the mode of tunnel. Defaults 0 (Mapped) Command Modes INTERFACE TUNNEL (conf-if-tu) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Defaults 0 (Mapped original packet flow-label value to tunnel header flow-label value) Command Modes INTERFACE TUNNEL (conf-if-tu) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command is only valid for tunnel interfaces with an IPv6 outer header.
9.4(0.0) Usage Information Introduced on the MXL. The ip unnumbered command will fail in two condition: ● If the logical ip address is configured. ● If the tunnel mode is ipv6ip (where ip address over tunnel interface is not possible). To ping the unnumbered tunnels the logical address route information should be present in both the ends. NOTE: The ip unnumbered command can specify an interface name that does not yet exist, or does not yet have a configured IPv6 address.
62 u-Boot All commands in this chapter are in u-Boot mode. These commands are supported on the Dell Networking Operating System (OS) FN IOM platform. To access this mode, press any key when the following line appears on the console during a system boot. Hit any key to stop autoboot: Enter u-Boot immediately, as the BOOT_USER# prompt. NOTE: This chapter describes only a few commands available in u-Boot mode. NOTE: You cannot use the Tab key to complete commands in this mode.
boot selection Change the ROM bootstrap bootflash partition. Syntax boot selection [a | b] Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. boot show net config retries Show the number of retries for network boot configuration failure. Syntax boot show net config retries Command Modes uBoot Supported Modes Full–Switch Command History Example Version Description 9.
boot zero Clears the primary, secondary, or default boot parameters. Syntax boot zero [primary | secondary | default] Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. default gateway Set the default gateway IP address. Syntax default-gateway Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.
Example BOOT_USER # help ***** Dell Force10 Boot Interface Help Information ***** Current access level: USER LEVEL Use "syntax help" for more information on syntax.
Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. no default-gateway Clear the default gateway IP address. Syntax no default-gateway Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show boot blc Show the boot loop counter value. Syntax show boot blc Command Modes uBoot Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show boot blc ? Total 1 possible command found.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show bootflash GENERAL BOOTFLASH INFO ====================== Bootflash Partition A: Dell Force10 Networks System Boot Official IOM_LP_IMG_BOOT_LOADER, BSP Release 4.0.1.0bt1 Created Tue May 1 10:56:16 2012 by build on login-sjc-01 Bootflash Partition B: Dell Force10 Networks System Boot Official IOM_LP_IMG_BOOT_LOADER, BSP Release 4.0.1.
BOOT_USER # show default-gateway Display the default gateway IP address. Syntax show default-gateway Command Modes uBoot Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show default-gateway Gateway IP address: 15.0.0.1 BOOT_USER # show interface management Ethernet Show the management port IP address and mask.
8.3.16.1 Example Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show interface management port config Management ethernet Port Configuration: no Auto Negotiate Management ethernet Port Configuration: 100M Management ethernet Port Configuration: full duplex BOOT_USER # syntax help Show the syntax information. Syntax help Command Modes uBoot Supported Modes Full–Switch Command History Example 1182 u-Boot Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
63 Uplink Failure Detection (UFD) Uplink failure detection (UFD) provides detection of the loss of upstream connectivity and, if you use this with network interface controller (NIC) teaming, automatic recovery from a failed link. NOTE: In Standalone, VLT, and Stacking modes, the UFD group number is 1 by default and cannot be changed.
Related Commands Version Description 9.2(0.0) Supported on the M I/O Aggregator. ● downstream — assigns a port or port-channel to the uplink-state group as a downstream interface. ● uplink-state-group — creates an uplink-state group and enables the tracking of upstream links. debug uplink-state-group Enable debug messages for events related to a specified uplink-state group or all groups.
Usage Information This command is not supported in Programmable-Mux mode. description Enter a text description of an uplink-state group. Syntax Parameters Defaults description text text Text description of the uplink-state group. The maximum length is 80 alphanumeric characters. none Command Modes UPLINK-STATE-GROUP Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
Usage Information Version Description 9.4(0.0) Supported on the FN I/O Aggregator. You can assign physical port or port-channel interfaces to an uplink-state group. You can assign an interface to only one uplink-state group. Configure each interface assigned to an uplink-state group as either an upstream or downstream interface, but not both. You can assign individual member ports of a port channel to the group.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Supported on the M I/O Aggregator. A user-configurable number of downstream interfaces in an uplink-state group are put into a link-down state with an UFD-Disabled error message when one upstream interface in an uplink-state group goes down.
Example Related Commands Version Description 9.2(0.0) Supported on the M I/O Aggregator. Dell#show running-config uplink-state-group ! no enable uplink state track 1 downstream TengigabitEthernet 0/2,4,6,11 upstream TengigabitEthernet 0/8, 12 upstream PortChannel 1 ! uplink state track 2 downstream TengigabitEthernet 0/1,3,5 upstream TengigabitEthernet 0/9,10 ● show uplink-state-group — displays the status information on a specified uplink-state group or all groups.
Related Commands ● show running-config uplink-state-group— displays the current configuration of one or more uplinkstate groups. ● uplink-state-group — create an uplink-state group and enables the tracking of upstream links. uplink-state-group Create an uplink-state group and enable the tracking of upstream links on a switch/ router. Syntax uplink-state-group group-id To delete an uplink-state group, enter the no uplink-state-group group-id command.
● 10 Gigabit Ethernet: tengigabitethernet {slot/port | slot/portrange} ● Port channel: port-channel {1-512 | port-channel-range} Where port-range and port-channel-range specify a range of ports separated by a dash (-) and/or individual ports/port channels in any order; for example: tengigabitethernet 0/1-2,5,9,11-12 port-channel 1-3,5. A comma is required to separate each port and port-range entry.
64 VLAN Stacking With the virtual local area network (VLAN)-stacking feature (also called stackable VLANs and QinQ), you can “stack” VLANs into one tunnel and switch them through the network transparently. For more information about basic VLAN commands, refer to the Virtual LAN (VLAN) Commands section in the Layer 2 chapter.
dei honor Honor the incoming DEI value by mapping it to a system drop precedence. Enter the command once for 0 and once for 1. Syntax dei honor {0 | 1} {green | red | yellow} Parameters Defaults 0|1 Enter the bit value you want to map to a color. green | red | yellow Choose a color: ● Green: High priority packets that are the least preferred to be dropped. ● Yellow: Lower priority packets that are treated as best-effort.
member Assign a stackable VLAN access or trunk port to a VLAN. The VLAN must contain the vlan-stack compatible command in its configuration. Syntax member interface To remove an interface from a Stackable VLAN, use the no member interface command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Default Drop precedence: Green Interface CFI/DEI Drop precedence --------------------------------------------Te 0/1 0 Green Te 0/1 1 Yellow Te 1/2 1 Red Te 1/3 0 Yellow Related Commands dei honor — honors the incoming DEI value. show interface dei-mark Display the dei mark configuration. Syntax show interface dei-mark [interface slot/port] Parameters interface slot/ port Enter the interface type then the line card slot and port number.
Usage Information Prior to enabling this command, to place the interface in Layer 2 mode, enter the switchport command. To remove the access port designation, remove the port (using the no member interface command) from all stackable VLAN enabled VLANs. vlan-stack compatible Enable the stackable VLAN feature on a VLAN. Syntax vlan-stack compatible To disable the Stackable VLAN feature on a VLAN, use the no vlan-stack compatible command. Defaults Not configured.
Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. vlan-stack protocol-type Define the stackable VLAN tag protocol identifier (TPID) for the outer VLAN tag (also called the VMAN tag). If you do not configure this command, the system assigns the value 0x9100. Syntax vlan-stack protocol-type number Parameters number Enter the hexadecimal number as the stackable VLAN tag.
To remove the trunk port designation, first remove the port (using the no member interface command) from all stackable VLAN-enabled VLANs. Starting with the Dell Networking OS version 7.8.1.0, a VLAN-Stack trunk port is also allowed to be configured as a tagged port and as an untagged port for single-tagged VLANs. When the VLAN-Stack trunk port is also a member of an untagged VLAN, the port must be in Hybrid mode. Refer to portmode hybrid.
Dell(config)#interface vlan 20 Dell(conf-if-vlan)#vlan-stack compatible Dell(conf-if-vlan)#member Te 7/0, te 3/8, TenGi 8/0 Dell(conf-if-vlan)#exit Dell(config)#interface vlan 20 Dell(conf-if-vlan)#untagged TenGi 8/0 Dell(conf-if-vlan)#exit Dell(config)# Dell(config)#interface vlan 40 Dell(conf-if-vlan)#tagged TenGi 8/0 Dell(conf-if-vlan)#exit Dell(config)# 1198 VLAN Stacking
65 Virtual Link Trunking (VLT) VLT allows physical links between two chassis to appear as a single virtual link to the network core. VLT eliminates the requirement for Spanning Tree protocols by allowing link aggregation group (LAG) terminations on two separate distribution or core switches, and by supporting a loop-free topology.
back-up destination Configure the IPv4 or IPv6 address of the management interface on the remote VLT peer to be used as the endpoint of the VLT backup link for sending out-of-band hello messages. Syntax back-up destination {[ipv4–address] | [ipv6 ipv6–address] [interval seconds]} Parameters Defaults ipv4–address Enter the IPv4 address of the backup destination. ipv6 Enter the keyword ipv6 then an IPv6 address in the X:X:X:X::X format.
Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you use this command on a local VLT node, all multicast routes from the local PIM TIB, the entire multicast route table, and all the entries in the data plane are deleted. The entries in Peer PIM TIB (Sync) are not deleted but are marked for re-download.
To remove use the no delay-restore abort-threshold command. Defaults 60 seconds Command Modes VLT DOMAIN Supported Modes Full–Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Parameter Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.
multicast peer-routing timeout Configure the time for a VLT node to retain synced multicast routes or synced multicast outgoing interface (OIF) after a VLT peer node failure. Syntax multicast peer-routing timeout value To restore the default value, use the no multicast peer-routing timeout command. Parameters Default value Enter the timeout value in seconds. The range is from 1 to 1200. The default is 150. Not configured.
Command Modes VLT DOMAIN (conf-vlt-domain) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the IPV6/IPV4 support on the MXL. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. peer-routing-timeout Configure the timeout for the software to wait before connecting to a VLT peer with a Down status. This command is applicable for both IPV6/ IPV4.
show ip mroute View the multicast routing table. Syntax Parameters show ip mroute [static | group-address [source-address] | count | snooping [vlan vlan-id] [group-address [source-address]] | summary | vlt [groupaddress | count] Static (OPTIONAL) Enter the keyword static to view static multicast routes. group-address (OPTIONAL) Enter the multicast group-address to view only routes associated with [source-address] that group.
Example (static) Example (snooping) Dell#show ip mroute static Mroute: 23.23.23.0/24, interface: Lo 2 Protocol: static, distance: 0, route-map: none, last change: 00:00:23 Dell#show ip mroute snooping IPv4 Multicast Snooping Table (*, 224.0.0.0), uptime 17:46:23 Incoming vlan: Vlan 2 Outgoing interface list: TenGigabitEthernet 4/1 (*, 225.1.2.1), uptime 00:04:16 Incoming vlan: Vlan 2 Outgoing interface list: TenGigabitEthernet 4/2 TenGigabitEthernet 4/3 (165.87.1.7, 225.1.2.
Example Version Description 9.2(0.0) Supported on the M I/O Aggregator. Dell# show vlt backup-link VLT Backup Link ----------------Destination: Peer HeartBeat status: HeartBeat Timer Interval: HeartBeat Timeout: UDP Port: HeartBeat Messages Sent: HeartBeat Messages Received: 169.254.31.23 Up 1 3 34998 24 25 show vlt brief Display brief status information about VLT domains currently configured on the switch. Syntax show vlt brief Default Not configured.
Command Modes EXEC Supported Modes All Modes Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Supported on the M I/O Aggregator. Dell# show vlt detail Local LAG Id Peer LAG Id Local Status ------------ ----------- -----------128 128 UP Dell# Peer Status ----------UP Active VLANs ------------1000 show vlt inconsistency Display deviations in VLT multicast traffic.
Example Dell#show vlt mismatch Domain ----------Parameters Local ---------------------Unit-ID 0 Peer --------15 Vlan-config -----------Vlan-ID Local Mode Peer Mode -------------------- ----------100 -- L3 Vlan IPV4 Multicast Status -------------------------Vlan-ID Local Status ------------------4094 Peer Status ----------- Active Inactive Dell# show vlt role Display the VLT peer status, role of the local VLT switch, VLT system MAC address and system priority, and the MAC address and priority of t
Supported Modes All Modes Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 9.2(0.0) Supported on the M I/O Aggregator.
Ndp Reg Request rcvd:1 VLT multicast not enabled stack-unit iom-mode Set the switch operating mode to VLT mode. Syntax Parameters stack-unit iom-mode vlt unit number <0-5> Enter the number of the member stack unit. The range is from 0 to 5. The default is 0. vlt Enable virtual link trunking mode. Command Modes CONFIGURATION Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
unit-id Explicitly configure the default unit ID of a VLT peer switch. Syntax unit-id [0 | 1] Parameters Defaults 0|1 Configure the default unit ID of a VLT peer switch. Enter 0 for the first peer or enter 1 for the second peer. Automatically assigned based on the MAC address of each VLT peer. The peer with the lower MAC address is assigned unit 0; the peer with the higher MAC address is assigned unit 1.
vlt-peer-lag port-channel Associate the port channel to the corresponding port channel in the VLT peer for the VLT connection to an attached device. Syntax Parameters Defaults vlt-peer-lag port-channel id-number id-number Enter the respective vlt port-channel number of the peer device. Not configured. Command Modes INTERFACE PORT-CHANNEL Supported Modes Programmable-Mux (PMUX) Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
66 Virtual Router Redundancy Protocol (VRRP) Virtual router redundancy protocol (VRRP) is supported by the Dell Networking Operating System (OS) for IPv4 and IPv6. The following commands apply to both VRRP IPv4 and IPv6: ● advertise-interval ● description ● disable ● hold-time ● preempt ● priority ● show config ● track ● virtual-address VRRP Ipv6 are in the VRRP for IPv6 Commands section.
centisecs centisecs Defaults Enter the keyword centisecs followed by the number of centisecs in multiple of 25 centisecs. The range is 25 to 4075 centisecs in multiples of 25 centisecs. 1 second or 100 centisecs Command Modes INTERFACE-VRRP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced the support for centisecs on the MXL 10/40GbE Switch . 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information NOTE: This command also enables you to clear the port configurations corresponding to a range of ports. ● You can specify multiple ports as slot/port-range. For example, if you want to clear the port configurations corresponding to all ports between 1 and 4, specify the port range as clear counters interfaces interface-type 1/1 - 4.
Defaults Not enabled. Command Modes VRRP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable Disable a VRRP group. Syntax disable To re-enable a disabled VRRP group, use the no disable command. Defaults Enabled. Command Modes VRRP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Usage Information If a switch is a MASTER and you change the hold timer, disable and re-enable VRRP for the new hold timer value to take effect. Related Commands disable — disables a VRRP group. preempt To preempt or become the MASTER router, permit a BACKUP router with a higher priority value. Syntax preempt To prohibit preemption, use the no preempt command. Defaults Enabled (that is, a BACKUP router can preempt the MASTER router).
show config View the non-default VRRP configuration. Syntax Parameters show config [verbose] verbose (OPTIONAL) Enter the keyword verbose to view all VRRP group configuration information, including defaults. Command Modes VRRP Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-vrid-4)#show con vrrp-group 4 virtual-address 119.192.182.
Example (Brief) Item Description Pri Displays the priority value assigned to the interface. If the track command is configured to track that interface and the interface is disabled, the cost is subtracted from the priority value assigned to the interface. Pre States whether preempt is enabled on the interface. ● Y = Preempt is enabled. ● N = Preempt is not enabled. State Displays the operational state of the interface by using one of the following: ● NA/IF (the interface is not available).
Item Description ● Dn or Up states whether the interface is down or up. ● the interface type slot/port information. Example Dell>show vrrp -----------------TenGigabitEthernet 1/3, VRID: 1, Net: 10.1.1.253 VRF: 0 default State: Master, Priority: 105, Master: 10.1.1.253 (local) Hold Down: 0 sec, Preempt: TRUE, AdvInt: 1 sec Adv rcvd: 0, Adv sent: 1862, Gratuitous ARP sent: 0 Virtual MAC address: 00:00:5e:00:01:01 Virtual IP address: 10.1.1.
Usage Information 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If the interface is disabled, the cost value is subtracted from the priority value and forces a new MASTER election if the priority value is lower than the priority value in the BACKUP virtual routers. virtual-address Configure up to 12 IP addresses of virtual routers in the VRRP group. To start sending VRRP packets, set at least one virtual address for the VRRP group.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command applies to a single interface. When used with the vrrp delay reload CLI, the later timer rules the VRRP enabling. For example, if vrrp delay reload is 600 and the vrrp delay minimum is 300: ● When the system reloads, VRRP waits 600 seconds (10 minutes) to bring up VRRP on all interfaces that are up and configured for VRRP.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The VRRP group only becomes active and sends VRRP packets when a virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets. Related Command virtual-address — assigns up to 12 virtual IP addresses per VRRP group. VRRP for IPv6 Commands The following commands apply to IPv6.
all Enter the keyword all to enable debugging of all VRRP groups. packets Enter the keyword packets to enable debugging of VRRP control packets. state Enter the keyword state to enable debugging of VRRP state changes timer Enter the keyword timer to enable debugging of the VRRP timer. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Line Beginning with Description ● backup (BACKUP virtual router). the interface’s priority and the IP address of the MASTER. Hold Down:... This line displays additional VRRP configuration information: ● Hold Down displays the hold down timer interval in seconds. ● Preempt displays TRUE if preempt is configured and FALSE if preempt is not configured. ● AdvInt displays the Advertise Interval in seconds. Adv rcvd:...
Usage Information 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The VRRP group only becomes active and sends VRRP packets when a link-local virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets. ● When VRF microcode is not loaded in CAM, the VRID for a VRRP group is the same as the VRID number configured with the vrrp-group or vrrp-ipv6-group command.
Example Dell(conf-if-te-1/1-vrid-100)#version ? 2 VRRPv2 3 VRRPv3 both Interoperable, send VRRPv3 receive both Dell(conf-if-te-1/1-vrid-100)#version 3 1228 Virtual Router Redundancy Protocol (VRRP)
67 SNMP Traps This chapter lists the traps sent by the Dell Networking Operating System (OS). Each trap is listed by the fields Message ID, Trap Type, and Trap Option. Table 6.
Table 6.
Table 6.
Table 6.
68 FC Flex IO Modules This part provides a generic, broad-level description of the operations, capabilities, and configuration commands of the Fiber Channel (FC) Flex IO module. FC Flex IO Module mentioned in this guide refers to FCF Port Combo Card.
Command Modes FCOE MAP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. Usage Information The text description is displayed in show fcoe-map command output. Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric.
fabric-id vlan In an FCoE map, configure the association between the dedicated VLAN used to carry FCoE traffic between servers and a SAN, and the fabric where the desired storage arrays are installed. Syntax Parameters fabric-id fabric-num vlan vlan-id fabric-id fabric- num vlan vlan-id Defaults Enter a fabric ID number that is the same as the ID number of the dedicated VLAN used to carry FCoE storage traffic to the fabric specified in the FCoE map. You can enter a fabric ID in the range 1–4094.
Usage Information The FCF priority you assign to the Switch with the FC Flex IO module is used by server CNAs to select an upstream FCF to use for a fabric login (FLOGI). To remove a configured FCF priority from an FCoE map, enter the no fcf-priority command. Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show fcoe-map — displays the Fibre Channel and FCoE configuration parameters in FCoE maps.
● Description: SAN_FABRIC ● Fabric-id: 1002 ● Fcoe-vlan: 1002 ● Fc-map: 0x0efc00 ● Fcf-priority: 128 ● Fka-adv-period: 8000mSec ● Keepalive: enable ● Vlan priority: 3 Command Modes CONFIGURATION INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. An FCoE map is a template used to map FCoE and FC parameters in a converged fabric.
Command History Version Version 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. Usage Information To delete the FIP keepalive time period from an FCoE map, enter the no fka-adv-erpiod command. Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric.
keepalive In an FCoE map, enable the monitoring of FIP keepalive messages (if it is disabled). Syntax keepalive Parameters None Defaults FIP keepalive monitoring is enabled on Ethernet and Fibre Channel interfaces. Command Modes FCOE MAP Supported Modes Full–Switch Command History Usage Information Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module.
Field Description Fabric-Name Name of a SAN fabric. Fabric ID The ID number of the SAN fabric to which FC traffic is forwarded. VLAN ID The dedicated FCoE VLAN used to transport FCoE storage traffic between servers and a fabric over the NPIV proxy gateway. The configured VLAN ID must be the same as the fabric ID. FC-MAP FCoE MAC address-prefix value - The unique 24-bit MAC address prefix that identifies a fabric. FCF Priority The priority used by a server to select an upstream FCoE forwarder.
Fabric Id Vlan Id Vlan priority FC-MAP FKA-ADV-Period Fcf Priority Config-State Oper-State Members Related Commands 1004 1004 3 0efc04 8 128 ACTIVE DOWN fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show npiv devices Display the FCoE and FC devices currently logged in to a Switch with the FC Flex IO module NPIV proxy gateway.
Total NPIV Devices = 2 ------------------------------------------------------------------------------------------ENode-Intf ENode-WWPN FCoE-Vlan Fabric-Intf Fabric-Map LoginMethod Status -----------------------------------------------------------------------------------------Te 0/12 LOGGED_IN Te 0/13 LOGGED_IN Usage Information Example 1242 20:01:00:10:18:f1:94:20 1003 Fc 0/5 fid_1003 FLOGI 10:00:00:00:c9:d9:9c:cb 1003 Fc 0/0 fid_1003 FDISC The following table describes the show npiv devices o
Fabric Map ENode WWPN ENode WWNN FCoE MAC FC-ID LoginMethod Secs Status Related Commands : : : : : : : : fid_1003 10:00:00:00:c9:d9:9c:cb 10:00:00:00:c9:d9:9c:cd 0e:fc:03:01:02:02 01:02:01 FDISC 5593 LOGGED_IN fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric.
69 Debugging and Diagnostics This chapter contains the following sections: ● Offline Diagnostic Commands ● Hardware Commands Topics: • • • • • • • • • • • • • • • • Offline Diagnostic Commands Hardware Commands clear hardware stack-unit clear hardware system-flow show hardware layer2 acl show hardware layer3 diag stack-unit hardware watchdog online stack-unit offline stack-unit show diag show hardware stack-unit show hardware system-flow show hardware buffer interface show hardware counters interface inte
● show hardware stack-unit ● show hardware system-flow clear hardware stack-unit Clear statistics from selected hardware components. Syntax Parameters Defaults clear hardware stack-unit 0–5 {counters | unit 0–1 counters | cpu dataplane statistics | stack-port 9–12} stack-unit 0–5 Enter the keywords stack-unit then 0 to 5 to select a particular stack member and then enter one of the following command options to clear a specific collection of data.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show hardware stack-unit — displays the data plane or management plane input and output statistics of the designated component of the designated stack member. show hardware layer2 acl Display Layer 2 ACL or eg data for the selected stack member and stack member port-pipe.
Parameters Defaults number Enter the stack-unit number. The range is from 0 to 5. alllevels Enter the keyword alllevels to run the complete set of offline diagnostic tests. level0 Enter the keyword level0 to run Level 0 diagnostics. Level 0 diagnostics check for the presence of various components and perform essential path verifications. In addition, they verify the identification registers of the components on the board. level1 Enter the keyword Level1 to run Level 1 diagnostics.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Supported on the FN I/O Aggregator. 8.3.17.0 Supported on the M I/O Aggregator. This command enables a hardware watchdog mechanism that automatically reboots an Dell Networking OS switch/router with a single unresponsive unit. This is a last resort mechanism intended to prevent a manual power cycle. online stack-unit Place a stack unit in the online state.
Make sure that stacking is not configured for Diagnostics execution. Also, reboot/online command is necessary for normal operation after the offline command is issued. show diag View diagnostics information. Syntax Parameters show diag {information | stack-unit unit-id [detail | summary] | testcase} information Enter the keyword information to view current diagnostics information in the system.
Example 3 (show diag testcase stackunit Command) Dell#show diag testcase stack-unit 0 ******** Blade IOM Diagnostics Test ********** Test ID ------1 3 4 5 6 7 8 9 11 12 13 14 16 17 101 102 103 104 105 106 107 108 109 110 111 113 114 117 123 124 201 203 204 205 206 207 208 Test Description ---------------POWERRAILSTATUSTEST TSENSORACCESSTEST RTCPRESENCETEST CPUSDRAMPRESENCETEST CPUSDRAMSIZETEST USBAACCESSTEST USBHOSTCONTROLLERACCESSTEST SDFLASHACCESSTEST CPLDPRESENCETEST FLASHACCESSTEST BOARDREVTEST MGMTPH
Dell# show hardware stack-unit Display the data plane or management plane input and output statistics of the designated component of the designated stack member.
Command History Example (dataplane) Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.0) Replaced the keyword port with interface. 9.4(0.0) Supported on the FN I/O Aggregator.
RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX RX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX - IPV4 L3 Unicast Frame Counter IPV4 L3 Routed Multicast Packets IPV6 L3 Unicast Frame Counter IPV6 L3 Routed Multicast Packets Unicast Packet Counter 64 Byte Frame Counter 65 to 127 Byte Frame Counter 128 to 255 Byte Frame Counter 256 to 511 Byte Frame Counter 512 to 1023 Byte Frame Counter 1
TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX - Fragment Counter PFC Frame Priority PFC Frame Priority PFC Frame Priority PFC Frame Priority PFC Frame Priority PFC Frame Priority PFC Frame Priority PFC Frame Priority Debug Counter 0 Debug Counter 1 Debug Counter 2 Debug Counter 3 Debug Counter 4 Debug Counter 5 Debug Counter 6 Debug Counter 7 Debug Counter 8 Debug Counter 9 Debug Counter 10 Debug Counter 11 0 1 2 3 4 5 6 7 --------------------unit: 0 port: 61 (interface Fo 1/60) Descrip
RX RX RX RX RX RX RX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX TX Example (portstatistics) - Debug Counter 2 Debug Counter 3 Debug Counter 4 Debug Counter 5 Debug Counter 6 Debug Counter 7 Debug Counter 8 64 Byte Frame Counter 65 to 127 Byte Frame Counter 128 to 255 Byte Frame Counter 256 to 511 Byte Frame Counter 512 to 1023 Byte Frame Counter 1024 to 1518 Byte Frame Counter 1519 to 1522 Byte Good VLAN Frame Counter 15
11996 11996 11996 11996 11996 11996 Dell# Example (register) Example (unit details) xe7 down 1G FD SW Yes Block RX None FA GMII xe8 down 10G FD SW No Block RX None FA SFI xe9 down 10G FD SW No Block RX None FA SFI xe10 up 10G FD SW No Forward None FA SFI xe11 up 10G FD SW No Forward None FA SFI Dell#show hardware stack-unit 0 unit 0 register 0x0f180d34 ALTERNATE_EMIRROR_BITMAP_PARITY_CONTROL.
Front End Link Status 0xea3000000000000000000000 Front End Port Present Status 0x000000000000000000000000 Back Plane Link Status 0x00000000 ****************************************************** Link Status of all the ports in the Device - 0 The linkStatus of Front End Port 42 is TRUE The linkStatus of Front End Port 43 is TRUE The linkStatus of Front End Port 44 is TRUE The linkStatus of Front End Port 45 is FALSE The linkStatus of Front End Port 46 is TRUE The linkStatus of Front End Port 47 is FALSE The
Default Packet Buffer allocate for the Queue: 8 Used Packet Buffer: 0
507 506 510 505 504 503 502 501 500 499 498 497 496 495 494 493 492 491 490 Dell# Example (noncounters) 249 147 145 144 773 772 771 770 769 MSDP_SPORT PACKETS MSDP_DPORT PACKETS IGMP PACKETS WITH IP OPTIONS FP Entry for OSPF IPv4 Unicast FP Entry for RIP IPv4 Unicast FP Entry for OSPF IPv6 Unicast FP Entry for NA IPv6 FP Entry for RA IPv6 FP Entry for NS IPv6 FP Entry for RS IPv6 FP Entry for MLD IPv6 L3 CPU Bound Traffic ClassId 2 to Q5 FP Entry for ICMP CPU Terminated IPv6 FP Entry for ICMP IPv6 L3 Te
counter={idx=2, mode=0x01, entries=1} ################# FP Entry for redirecting GVRP traffic to RSM ########### EID 2044: gid=1, slice=15, slice_idx=0x03, prio=0x7fc, flags=0x82, Installed tcam: color_indep=0, higig=0, higig_mask=0, KEY=0x00000000 00000000 00000000 0180c200 00210000 00000000 00000000 , FPF4=0x00 MASK=0x00000000 00000000 00000000 ffffffff ffff0000 00000000 00000000 , 0x00 action={act=Drop, param0=0(0x00), param1=0(0x00)}, action={act=CosQCpuNew, param0=7(0x07), param1=0(0x00)}, action={act=
Example displaying priority-group range Dell#show hardware buffer interface tengigabitethernet 1/1 priority-group 0 buffer-info ----- Buffer stats for unit: 0 port: 1 (interface Te 1/1) ---------------------------------------------------------------------------PG# PRIORITIES ALLOTED (CELLS) COUNTER (CELLS) MIN SHARED MODE HDRM MIN SHARED HDRM -----------------------------------------------------------------------0 61440 0 STATIC 174 0 0 0 Dell# Example displaying queue range Dell#show hardware buffer int
interface interface Defaults Enter any of the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History This guide is platform-specific.
RX - Debug Counter 1 RX - Debug Counter 2
HOL DROPS on COS13 HOL DROPS on COS14 HOL DROPS on COS15 HOL DROPS on COS16 HOL DROPS on COS17 TxPurge CellErr Aged Drops --- Egress MAC counters--Egress FCS Drops --- Egress FORWARD PROCESSOR IPv4 L3UC Aged & Drops TTL Threshold Drops INVALID VLAN CNTR Drops L2MC Drops PKT Drops of ANY Conditions Hg MacUnderflow TX Err PKT Counter --- Error counters--Internal Mac Transmit Errors Unknown Opcodes Internal Mac Receive Errors Example displaying internal drops for FC port 1264 : : : : : : : 0 0 0 0 0 0 0 :
Internal Mac Transmit Errors Unknown Opcodes Internal Mac Receive Errors Dell(conf)# : 0 : 0 : 0 Debugging and Diagnostics 1265
A Internet Control Message Protocol (ICMP) Message Types This chapter lists and describes the possible ICMP message type resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. Table 7. ICMP messages and their definitions Symbol Type Code . 0 U 3 3 Error echo reply . destination unreachable: 0 network unreachable . 1 host unreachable . 2 protocol unreachable . 3 port unreachable .
Table 7. ICMP messages and their definitions (continued) Symbol & Type Code Description Query 10 0 router solicitation . 11 Error time exceeded: 0 time-to-live equals 0 during transit . 1 time-to-live equals 0 during reassembly . 12 parameter problem: 1 IP header bad (catchall error) . 2 required option missing . 13 0 timestamp request . 14 0 timestamp reply . 15 0 information request (obsolete) . 16 0 information reply (obsolete) . 17 0 address mask request .