Dell Networking Command Line Reference Guide for the MXL 10/40GbE Switch I/O Module 9.14.1.5 May 2019 Rev.
Notes, cautions, and warnings NOTE: A NOTE indicates important information that helps you make better use of your product. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. © 2018 - 2019 Dell Inc. or its subsidiaries. All rights reserved. Dell, EMC, and other trademarks are trademarks of Dell Inc. or its subsidiaries.
Contents Chapter 1: About this Guide......................................................................................................... 41 Objectives............................................................................................................................................................................ 41 Audience.............................................................................................................................................................................
banner motd........................................................................................................................................................................74 clear alarms......................................................................................................................................................................... 74 clear command history............................................................................................................................
telnet................................................................................................................................................................................... 112 terminal xml........................................................................................................................................................................112 traceroute................................................................................................................................
ip access-list standard.....................................................................................................................................................141 permit (for Standard IP ACLs)...................................................................................................................................... 141 seq.....................................................................................................................................................................
set metric...........................................................................................................................................................................182 set metric-type.................................................................................................................................................................182 set tag............................................................................................................................................
Chapter 8: Bidirectional Forwarding Detection (BFD)................................................................ 242 bfd all-neighbors..............................................................................................................................................................242 bfd disable.........................................................................................................................................................................244 bfd enable (Configuration)...
clear ip bgp flap-statistics............................................................................................................................................. 271 clear ip bgp peer-group.................................................................................................................................................. 271 debug ip bgp........................................................................................................................................................
show ip bgp cluster-list................................................................................................................................................. 300 show ip bgp community................................................................................................................................................. 301 show ip bgp community-list.........................................................................................................................................
service-policy rate-limit-protocols.............................................................................................................................. 337 show cpu-queue rate cp................................................................................................................................................337 show ip protocol-queue-mapping...............................................................................................................................
online stack-unit.............................................................................................................................................................. 373 Hardware Commands.....................................................................................................................................................373 clear hardware stack-unit.........................................................................................................................................
clear ipv6 dhcp snooping binding................................................................................................................................405 ip dhcp snooping............................................................................................................................................................. 406 ipv6 dhcp snooping........................................................................................................................................................
Chapter 17: FIPS Cryptography................................................................................................. 435 fips mode enable............................................................................................................................................................. 435 show fips status.............................................................................................................................................................. 435 show ip ssh.............
IGMP Snooping Commands..........................................................................................................................................463 ip igmp access-group..................................................................................................................................................... 464 ip igmp group-join-limit..................................................................................................................................................
show interfaces configured.......................................................................................................................................... 501 show interfaces dampening......................................................................................................................................... 502 show interfaces description.........................................................................................................................................
ip helper-address hop-count disable.......................................................................................................................... 538 ip host................................................................................................................................................................................ 539 ip icmp source-interface..........................................................................................................................................
clear ipv6 fib.....................................................................................................................................................................574 clear ipv6 route................................................................................................................................................................575 clear ipv6 mld_host..................................................................................................................................
capture bgp-pdu max-buffer-size.............................................................................................................................. 605 clear ip bgp * (asterisk)................................................................................................................................................ 605 clear ip bgp as-number..................................................................................................................................................
router bgp......................................................................................................................................................................... 632 show capture bgp-pdu neighbor................................................................................................................................. 632 show config..........................................................................................................................................................
show show show show show show show show ip ip ip ip ip ip ip ip bgp bgp bgp bgp bgp bgp bgp bgp ipv6 ipv6 ipv6 ipv6 ipv6 ipv6 ipv6 ipv6 unicast unicast unicast unicast unicast unicast unicast unicast dampened-paths..............................................................................................................659 detail................................................................................................................................... 659 filter-list..........................
hostname dynamic..........................................................................................................................................................685 ignore-lsp-errors............................................................................................................................................................. 686 ip router isis.................................................................................................................................................
show lacp........................................................................................................................................................................... 714 Chapter 31: Layer 2.................................................................................................................... 716 MAC Addressing Commands.........................................................................................................................................
advertise advertise advertise advertise advertise advertise advertise advertise med med med med med med med med location-identification.........................................................................................................................740 power-via-mdi....................................................................................................................................... 741 softphone-voice..................................................................................
spanning-tree msti.......................................................................................................................................................... 767 spanning-tree mstp.........................................................................................................................................................767 tc-flush-standard...............................................................................................................................................
auto-cost...........................................................................................................................................................................798 clear ip ospf...................................................................................................................................................................... 798 clear ip ospf statistics........................................................................................................................
show ip ospf database summary..................................................................................................................................831 show ip ospf interface................................................................................................................................................... 832 show ip ospf neighbor....................................................................................................................................................
ip redirect-list...................................................................................................................................................................866 permit.................................................................................................................................................................................867 redirect......................................................................................................................................
show ipv6 pim neighbor.................................................................................................................................................897 show ipv6 pim rp............................................................................................................................................................. 897 show ipv6 pim tib..................................................................................................................................................
strict-priority unicast..................................................................................................................................................... 928 Policy-Based QoS Commands..................................................................................................................................... 929 bandwidth-percentage..................................................................................................................................................
default-information originate....................................................................................................................................... 958 default-metric..................................................................................................................................................................958 description........................................................................................................................................................
show config......................................................................................................................................................................985 spanning-tree rstp.......................................................................................................................................................... 986 spanning-tree rstp........................................................................................................................................
radius dynamic-auth................................................................................................................................................ 1013 radius-server deadtime........................................................................................................................................... 1014 radius-server host....................................................................................................................................................
ip dhcp snooping trust........................................................................................................................................... 1040 ip dhcp source-address-validation....................................................................................................................... 1041 ip dhcp snooping vlan..............................................................................................................................................
snmp-server enable traps......................................................................................................................................1067 snmp-server engineID............................................................................................................................................ 1068 snmp-server group..................................................................................................................................................
show storm-control broadcast...................................................................................................................................1097 show storm-control multicast.................................................................................................................................... 1098 show storm-control unknown-unicast.....................................................................................................................
preferred-method.....................................................................................................................................................1124 time-zone................................................................................................................................................................... 1124 SupportAssist Server Commands..............................................................................................................................
default gateway..............................................................................................................................................................1150 enable................................................................................................................................................................................1150 help...............................................................................................................................................
delay-restore abort-threshold.....................................................................................................................................1176 lacp ungroup member-independent vlt..................................................................................................................... 1176 multicast peer-routing timeout...................................................................................................................................
Chapter 66: FC Flex IO Modules............................................................................................... 1209 FC Flex IO Modules.......................................................................................................................................................1209 Data Center Bridging (DCB) for FC Flex IO Modules.......................................................................................... 1209 NPIV Proxy Gateway for FC Flex IO Modules.....................
1 About this Guide This guide provides information about the Dell Networking Operating System (OS) command line interface (CLI). This guide also includes information about the protocols and features found in the Dell OS and on the Dell Networking systems supported by the Dell OS.
Information Icons This book uses the following information symbols: NOTE: The Note icon signals important operational information. CAUTION: The Caution icon signals information about situations that could result in equipment damage or loss of data. NOTE: The Warning icon signals information about hardware handling that could result in injury.
2 CLI Basics This chapter describes the command line interface (CLI) structure and command modes. The Dell operating software commands are in a text-based interface that allows you to use the launch commands, change command modes, and configure interfaces and protocols.
When another user enters CONFIGURATION mode, the Dell Networking OS sends a message similar to the following: % Warning: User "admin" on line vty2 "172.16.1.210" is in configuration In this case, the user is “admin” on vty2. Navigating the CLI The Dell Networking Operating System (OS) displays a command line interface (CLI) prompt comprised of the host name and CLI mode. ● Host name is the initial part of the prompt and is “Dell” by default. You can change the host name with the hostname command.
Example The following is an example of typing ip ? at the prompt: Dell(conf)#ip ? igmp Internet Group Management Protocol route Establish static routes telnet Specify telnet options When entering commands, you can take advantage of the following timesaving features: ● The commands are not case-sensitive. ● You can enter partial (truncated) command keywords. For example, you can enter int gig int interface for the interface gigabitethernet interface command.
Defaults None Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN MXL 8.3.17.0 Supported on the M I/O Aggregator. Filtering show Commands To find specific information, display certain information only or begin the command output at the first instance of a regular expression or phrase, you can filter the display output of a show command.
NOTE: Each mode prompt is preceded by the host name. EXEC Privilege Mode The enable command accesses EXEC Privilege mode. If an administrator has configured an “Enable” password, you are prompted to enter it. EXEC Privilege mode allows you to access all the commands accessible in EXEC mode, plus other commands, such as to clear address resolution protocol (ARP) entries and IP addresses. In addition, you can access CONFIGURATION mode to configure interfaces, routes and protocols on the switch.
IP ACCESS LIST Mode To enter IP ACCESS LIST mode and configure either standard or extended access control lists (ACLs), use the ip accesslist standard or ip access-list extended command. To enter IP ACCESS LIST mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Use the ip access-list standard or ip access-list extended command. Include a name for the ACL. The prompt changes to include (conf-std-nacl) or (conf-ext-nacl). You can return to CONFIGURATION mode by using the exit command.
PREFIX-LIST Mode To configure a prefix list, use PREFIX-LIST mode. To enter PREFIX-LIST mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the ip prefix-list command. Include a name for the prefix list. The prompt changes to include (confnprefixl). You can return to CONFIGURATION mode by using the exit command. PROTOCOL GVRP Mode To enable and configure GARP VLAN Registration Protocol (GVRP), use PROTOCOL GVRP mode. For more information, refer to GARP VLAN Registration (GVRP).
You can return to CONFIGURATION mode by using the exit command. SPANNING TREE Mode To enable and configure the Spanning Tree protocol, use SPANNING TREE mode. For more information, refer to Spanning Tree Protocol (STP). To enter SPANNING TREE mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the protocol spanning-tree stp-id command. The prompt changes to include (conf-stp). You can return to CONFIGURATION mode by using the exit command.
3 File Management This chapter contains command line interface (CLI) commands needed to manage the configuration files as well as other file management commands. The commands in this chapter are supported by the Dell Networking Operating System (OS).
tftp: Enter the keyword TFTP: to retrieve the image from a TFTP server. tftp://hostip/ filepath. A: | B: Enter A: or B: to boot one of the system partitions. bmp-boot Enter the keyword bmp-boot to boot the system, when you are not sure about the partition that contains image from DHCP offer. NOTE: In normal-reload, this keyword is not enabled. Defaults Not configured. Command Modes CONFIGURATION Command History This guide is platform-specific.
Parameters Enter the following location keywords and information: file-url To copy a file from the internal FLASH Enter the keyword flash:// then the filename. To copy the running configuration Enter the keywords running-config. To copy the startup configuration Enter the keywords startup-config. To copy a file on the external FLASH Enter the keyword slot0:// then the filename. Command Modes EXEC Privilege Command History Usage Information Version Description 9.9(0.
is the internal Flash. The source is on a secure server running SSH, so you are prompted for the user datagram protocol (UDP) port of the SSH server on the remote host. Example Related Commands Dell#copy scp: flash: Address or name of remote host []: 10.11.199.134 Port number of the server [22]: 99 Source file name []: test.cfg User name to login remote host: admin Password to login remote host: Destination file name [test.cfg]: test1.cfg cd – changes the working directory.
5 d--- 4096 Feb 25 6 -rwx 720969768 Mar 05 7 -rwx 4260 Mar 03 8 -rwx 31969685 Mar 05 DellS-XL-8-3-16-148.bin 9 -rwx 3951 Mar 06 2010 2010 2010 2010 23:32:50 03:25:40 22:04:50 17:56:26 +00:00 ADMIN_DIR +00:00 6gb +00:00 prem-23-5-12 +00:00 2010 00:36:18 +00:00 startup-config flash: 2143281152 bytes total (1389801472 bytes free) Dell# Related Commands cd — Changes the working directory. format flash Erase all existing files and reformat the filesystem in the internal flash memory.
Command Modes EXEC Privilege Command History Example Version Description 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.3(0.1) Introduced on the S6000, Z9000, S4810, and S4820T. copy http://admin:admin123@10.16.206.77/sample_file flash://sample_file logging coredump Enable coredump. Syntax logging coredump stack-unit all Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Usage Information Because flash space may be limited, using this command ensures your entire crash kernel files are uploaded successfully and completely. Only a single coredump server can be configured. Configuration of a new coredump server over-writes any previously configured server. NOTE: You must disable logging coredump before you designate a new server destination for your core dumps. Related Commands logging coredump – disables the kernel coredump pwd Display the current working directory.
all Enter the keyword all to restore all units in the stack. bootvar Enter the keyword bootvar to reset boot line. clear-all Enter the keywords clear-all to reset the NvRAM, boot environment variables, and the system startup configuration. nvram Enter the keyword nvram to reset the NvRAM only. Command Modes EXEC Privilege Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.1) Added bootvar as a new parameters. 9.0.2.0 Introduced on the S6000. 9.0.
NOTE: For information on the default values that these variables take, refer to the Restoring Factory Default Environment Variables section in the Dell Networking OS Configuration guide.
************************************************************** Proceed with factory settings? Confirm [yes/no]:yes -- Restore status -Unit Nvram Config -----------------------1 Success Power-cycling the unit(s). Dell# show boot system Displays information about boot images currently configured on the system. Syntax show boot system stack-unit {0-5 | all} Parameters Defaults 0–5 Enter this information to display the boot image information of only the entered stack-unit.
Example Related Commands Dell#show file flash://startup-config ! Version E8-3-16-29 ! Last configuration change at Thu Apr 26 19:19:02 2012 by default ! Startup-config last updated at Thu Apr 26 19:19:04 2012 by default ! boot system stack-unit 0 primary system: A: boot system stack-unit 0 secondary tftp://10.11.200.241/dt-m1000e-5-c2 boot system gateway 10.11.209.
Field Description ● r = read access ● w = write access Prefixes Related Commands Displays the name of the storage location. format flash — Erases all the existing files and reformats the filesystem in the internal flash memory. show file — Displays the contents of a text file in the local filesystem. show startup-config — Displays the current SFM status. show os-version Display the release and software image version information of the image file specified.
Stack-unit 5 Dell# IOM SYSTEM CPLD 5 show running-config Display the current configuration and display changes from the default values. Syntax Parameters show running-config [entity] [configured] [status] entity (OPTIONAL) To display that entity’s current (non-default) configuration, enter one of the following keywords: NOTE: If you did not configure anything that entity, nothing displays and the prompt returns.
resolve for the current DNS configuration rip for the current RIP configuration route-map for the current route map configuration snmp for the current SNMP configuration spanning-tree for the current spanning tree configuration static for the current static route configuration status for the file status information tacacs+ for the current TACACS+ configuration tftp for the current TFTP configuration users for the current users configuration wred-profile for the current wred-profile conf
show startup-config Display the startup configuration. Syntax show startup-config Command Modes EXEC Privilege Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
128M bytes of boot flash memory. 1 12-port GE/TE (FN) 12 Ten GigabitEthernet/IEEE 802.3 interface(s) Dell# Command Fields Lines Beginning With Description Dell Force10 Network... Name of the operating system Dell Force10 Operating... OS version number Dell Force10 Application... Software version Copyright (c)... Copyright information Build Time... Software build’s date stamp Build Path... Location of the software build files loaded on the system Dell Force10 uptime is...
Defaults tftp: After entering the keyword tftp:, you can either follow it with the location of the source file in this form: //hostlocation/filepath or press Enter to launch a prompt sequence. flash: After entering the keyword flash:, you can either follow it with the location of the source file in this form: //filepath or press Enter to launch a prompt sequence.
B: Defaults Enter this keyword to upgrade the bootflash partition B. none Command Modes EXEC Privilege Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Reset the card using the power-cycle option after restoring the FPGA command.
● verify sha256 flash://img-file ● verify sha256 flash://img-file Example Without Entering the Hash Value for Verification using SHA256 DellEMC# verify sha256 flash://FTOS-SE-9.5.0.0.bin SHA256 hash for FTOS-SE-9.5.0.0.bin: e6328c06faf814e6899ceead219afbf9360e986d692988023b749e6b2093e933 Entering the Hash Value for Verification using SHA256 DellEMC# verify sha256 flash://FTOS-SE-9.5.0.0.bin e6328c06faf814e6899ceead219afbf9360e986d692988023b749e6b2093e933 SHA256 hash VERIFIED for FTOS-SE-9.5.0.
4 Control and Monitoring The Dell Networking OS supports the following control and monitoring commands.
• • • • • • • • • • • • • • show memory show processes cpu show processes ipc flow-control show processes memory show reset-reason show software ifm show system show tech-support telnet terminal xml traceroute undebug all virtual-ip write asset-tag Assign and store a unique asset-tag to the stack member. Syntax asset-tag stack-unit unit id Asset-tag ID To remove the asset tag, use no stack-unit unit-id Asset-tag ID command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You must save the configuration and reload the system to implement ASF. When you enter the command, the system sends a message stating that the new mode is enabled when the system reloads. banner exec Configure a message that is displayed when your enter EXEC mode.
banner login Set a banner to display when logging on to the system. Syntax banner login {acknowledgement | keyboard-interactive | c line c} Enter no banner login to delete the banner text. Enter no banner login keyboardinteractive to automatically go to the banner message prompt (does not require a carriage return). Parameters keyboardinteractive Enter the keyword keyboard-interactive to require a carriage return (CR) to get the message banner prompt.
banner motd Set a message of the day (MOTD) banner. Syntax banner motd c line c Parameters Defaults c Enter a delineator character to specify the limits of the text banner. The delineator is a percent character (%). line Enter a text string for your message of the day banner message ending the message with your delineator. The delineator is a percent character (%). No banner is configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.
clear line Reset a terminal line. Syntax Parameters clear line {line-number | console 0 | vty number} line-number Enter a number for one of the 12 terminal lines on the system. The range is from 0 to 11. console 0 Enter the keywords console 0 to reset the console port. vty number Enter the keyword vty then a number to clear a terminal line. The range is from 0 to 9. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.
The following message is an indication that collection of CPU traffic is automatically turned on. To view the traffic statistics, use the show cpu-traffic-stats command. If the CPU receives excessive traffic, traffic is rate controlled. NOTE: You must enable this command before the show cpu-traffic-stats command displays traffic statistics. Dell Networking OS recommends disabling debugging (no debug cpu-trafficstats) after troubleshooting is complete.
Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
To disable optical power information updates, use the no enable optic-info-update interval command. Parameters Defaults interval seconds Enter the keyword interval then the polling interval in seconds. The range is from 120 to 6000 seconds. The default is 300 seconds (5 minutes). Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Replaces the enable xfp-power-updates command.
Related Commands exit — returns to the lower command mode. exec-banner Enable the display of a text string when the user enters EXEC mode. Syntax exec-banner Defaults Enabled on all lines (if configured, the banner appears). Command Modes LINE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
exit Return to the lower command mode. Syntax exit Command Modes ● ● ● ● ● ● ● ● ● ● ● ● Command History Related Commands EXEC Privilege CONFIGURATION LINE INTERFACE PROTOCOL GVRP SPANNING TREE MULTIPLE SPANNING TREE MAC ACCESS LIST ACCESS-LIST PREFIX-LIST ROUTER OSPF ROUTER RIP Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. end — returns to EXEC Privilege mode. feature unique-name Set a unique host name for the system.
ftp-server enable Enable FTP server functions on the system. Syntax ftp-server enable Defaults Disabled Command Modes CONFIGURATION Command History Example Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. morpheus% ftp 10.31.1.111 Connected to 10.31.1.111. 220 FTOS (1.0) FTP server ready Name (10.31.1.
ftp-server username Create a user name and associated password for incoming FTP server sessions. Syntax ftp-server username username password [encryption-type] password Parameters username Enter a text string up to 40 characters long as the user name. password Enter the keyword password then a string up to 40 characters long as the password. Without specifying an encryption type, the password is unencrypted.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The password is listed in the configuration file; you can view the password by entering the show running-config ftp command in EXEC mode. Use the ip ftp password command when you use the ftp: parameter in the copy command. Related Commands copy — copy files. ftp-server username — sets the user name for the FTP sessions.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Configure a password with the ip ftp password command. Related Commands ip ftp password — sets the password for FTP connections. ip telnet server enable Enable the Telnet server on the switch. Syntax ip telnet server enable To disable the Telnet server, use the no ip telnet server enable command. Defaults Enabled Command Modes CONFIGURATION Command History Related Commands Version Description 8.3.
Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For Loopback interfaces, enter the keyword loopback then a number from zero (0) to 16383. ● For a Port Channel, enter the keywords port-channel then a number. The range is from 1 to 128. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
Parameters Defaults limit number-of- sessions Sets the number of concurrent sessions that any user can have on console and virtual terminal lines. The range is from 1 to 12 (10 VTY lines, one console, and one AUX line). clear-line enable Enables you to clear your existing sessions. Not configured. You can use all the available sessions. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.
Current sessions for user admin: Line Location 2 vty 0 10.14.1.97 3 vty 1 10.14.1.97 4 vty 2 10.14.1.97 5 vty 3 10.14.1.97 Clear existing session? [line number/Enter to cancel]: Related Commands login statistics — Enable and configure user login statistics on console and virtual terminal lines. show login statistics — Displays login statistics of users who have used the console or virtual terminal lines to log in to the system.
The preceding message shows that the user had previously logged in to the system using the VTY line from 10.14.1.97. It also displays the number of unsuccessful login attempts since the last login and the number of unsuccessful login attempts in the last 30 days. $ telnet 10.11.178.14 Trying 10.11.178.14... Connected to 10.11.178.14. Escape character is '^]'.
Defaults datagram size Enter the ICMP datagram size. The range is from 36 to 15360 bytes. The default is 100. timeout Enter the interval to wait for an echo reply before timing out. The range is from 0 to 3600 seconds. The default is 2 seconds. source Enter the IPv4 or IPv6 source ip address or the source interface. For IPv6 addresses, you may enter global addresses only. Enter the IP address in A.B.C.D format.
Reply Reply :: Reply Reply Reply Dell# Example (IPv6) to request 1 from 172.31.1.216 0 ms to request 1 from 172.31.1.205 16 ms to request 5 from 172.31.1.209 0 ms to request 5 from 172.31.1.66 0 ms to request 5 from 172.31.1.87 0 ms Dell#ping 100::1 Type Ctrl-C to abort. Sending 5, 100-byte ICMP Echos to 100::1, timeout is 2 seconds: !!!!! Success rate is 100.0 percent (5/5), round-trip min/avg/max = 0/0/0 (ms) Dell# reload Reboot the Dell Networking OS.
service timestamps To debug and log messages, add time stamps. This command adds either the uptime or the current time and date. Syntax Parameters Defaults service timestamps [debug | log] [datetime [localtime] [msec] [showtimezone] [utc] | uptime] debug (OPTIONAL) Enter the keyword debug to add timestamps to debug messages. log (OPTIONAL) Enter the keyword log to add timestamps to log messages with severity from 0 to 6.
--------------------------------------No minor alarms -- Major Alarms -Alarm Type Duration ---------------------------------------No major alarms Dell# show command-history Display a buffered log of all commands all users enter along with a time stamp. Syntax show command-history Defaults none Command Modes ● EXEC ● EXEC Privilege Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information One trace log message is generated for each command.
Example 3: service timestamps log uptime DellEMC#show clock 15:51:47.
NOTE: After debugging is complete, use the no debug cpu-traffic-stats command to shut off traffic statistics collection. Example Related Commands Dell#show cpu-traffic-stats Processor : CP -------------Received 100% traffic on TenGigabitEthernet 1/4 Total packets:100 LLC:0, SNAP:0, IP:100, ARP:0, other:0 Unicast:100, Multicast:0, Broadcast:0 Dell# debug cpu-traffic-stats — enables CPU traffic statistics for debugging. show debugging View a list of all enabled debugging processes.
Usage Information Example (all) The following example shows the output of the show environment fan command as it appears prior to the Dell Networking OS version 7.8.1.0.
System Mode Software Version : 1.
Command History Usage Information Version Description 9.10(0.0) Introduced the successful-attempts keyword. 9.9(0.0) Introduced on the FN IOM. 9.8(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To view the successful and failed login details of the current user in the last 30 days or the custom defined period, use the show login statistics command.
User: admin3 Last login time: 13:18:42 UTC Tue Mar 22 2016 Last login location: Line vty0 ( 10.16.127.145 ) Unsuccessful login attempt(s) since the last successful login: 0 Unsuccessful login attempt(s) in last 30 day(s): 3 Successful login attempt(s) in last 30 day(s): 2 The following is sample output of the show login statistics user user-id command.
Command History Usage Information Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The output for show memory displays the memory usage of LP part (sysdlp) of the system. The sysdlp is an aggregate task that handles all the tasks running on the CPU.
Example (managementunit) Example (stackunit) 100 Dell#show proc cpu management-unit 5 CPU utilization for five seconds: 6%/0%; one minute: 6%; five minutes: 7% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 0x00000000 4650 465 10000 4.43% 4.43% 4.43% 0 system 0x00000112 56372590 5637259 10000 1.58% 1.78% 1.89% 0 sysdlp 0x00000107 9630080 963008 10000 0.79% 0.28% 0.33% 0 sysd 0x00000172 1435540 143554 10000 0.00% 0.10% 0.05% 0 igmp 0x000001fc 1366570 136657 10000 0.00% 0.08% 0.
Example (memory) Dell#show processes memory Memory Statistics Of Stack Unit 0 (bytes) =========================================================== Total: 2147483648, MaxUsed: 378417152, CurrentUsed: 378417152, CurrentFree: 1769066496 TaskName TotalAllocated TotalFreed MaxHeld CurrentHolding f10appioserv 225280 0 0 208896 ospf 573440 0 0 8716288 f10appioserv 225280 0 0 208896 fcoecntrl 262144 0 0 7917568 dhclient 548864 0 0 1310720 f10appioserv 225280 0 0 208896 ndpm 618496 0 0 7512064 f10appioserv 225280 0
show interfaces stack-unit — displays information on all interfaces on a specific stack member. show processes memory — displays CPU usage information based on processes running. show processes ipc flow-control Display the single window protocol queue (SWPQ) statistics. Syntax show processes ipc flow-control [cp] Parameters Defaults cp (OPTIONAL) Enter the keyword cp to view the control processor’s SWPQ statistics.
ACL0 RTM0 ACL0 DIFFSERV0 ACL0 IGMP0 ACL0 PIM0 ARPMGR0 MRTM0 LACP0 IFMGR0 RTM0 OTM0 RTM0 OTM0 Dell# Len Mark Out 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ies Sent Rcvd Retra Retra 0 0 0 10 10 0 0 0 10 10 0 0 0 10 10 0 0 0 10 10 0 0 0 100 100 0 0 0 25 25 0 0 0 60 60 0 0 0 60 60 show processes memory Display memory usage information based on the running processes.
The output for the show process memory command displays the memory usage statistics running on CP part (sysd) of the system. The sysd is an aggregate task that handles all the tasks running on the MXL 10/40GbE Switch IO Module’s CP. The output of the show memory command and this command differ based on which the Dell OS processes are counted. ● In the show memory output, the memory size is equal to the size of the application processes.
Usage Information Example — Userinitiated reboot with the reload command Example — System reboot due to the upgrade command Example — System reboot for unknown reasons Version Description 9.13(0.0) Introduced on the S3048–ON, S3100 series, S4048–ON, S4048T–ON, S5000, S6000, S6000–ON, S6010–ON, S6100–ON, Z9100–ON, C9010, MXL, M-IOA, and FN-IOM. You can use the show reset-reason without the stack-unit option to view the reason for the last system reboot of the local system.
----------------------------------------------------------------------------------stack-unit 1 Reboot by Software 11/05/2017-09:04 stack-unit 2 Reboot by Software 11/05/2017-09:04 stack-unit 3 Cold Reset N/A stack-unit 4 N/A N/A stack-unit 5 N/A N/A stack-unit 6 N/A N/A show software ifm Display interface management (IFM) data.
SFL_CP 0 0x00000000 0x00000000 0x807739ff 0x00000000 24 DHCP 0 0x00000000 0x00000000 0x807040f3 0x18001000 35 V6RAD 0 0x00000433 0x0000c000 0x00000000 0x00000000 0 Unidentified Client0 0x006e0002 0x00000000 0x00000000 0x00000000 0 Unidentified Client0 0x6066003f 0x00000000 0x6066003f 0x00000000 95 LLDP 0 0x007f2433 0x0408c000 0x007f2433 0x0408c000 60 --More-- show system Display the current status of all stack members or a specific member.
Voltage Switch Power Product Name Mfg By Mfg Date Serial Number Part Number Piece Part ID PPID Revision Service Tag Expr Svc Code Chassis Svce Tag Fabric Id Asset tag PSOC FW Rev ICT Test Date ICT Test Info Max Power Req Fabric Type Fabric Maj Ver Fabric Min Ver SW Manageability HW Manageability Max Boot Time Link Tuning Auto Reboot Burned In MAC No Of MACs : : : : : : : : : : : : : : : : : : : : : : : : : : : : ok GOOD Dell PowerEdge FN 2210S IOM DELL 2014-05-26 TW000000000028 0HWGX7X01 TW-0HWGX7-00000-0
Command History Usage Information Version Description 9.14(0.0) Updated to display the show revision and show os-version command outputs. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Without the page or stack-unit option, the command output is continuous. Use Ctrl-z to interrupt the command output. The save option works with other filtering commands. This allows you to save specific information of a show command.
1 drwx 4096 2 drwx 2048 3 drwx 4096 4 drwx 4096 5 d--4096 6 -rwx 10303 7 -rwx 7366 8 -rwx 4 9 -rwx 12829 10 drwx 4096 11 -rwx 7689 Jan May Jan Jan Jan Mar Apr Feb Feb Mar Feb 01 16 24 24 24 15 20 19 18 08 21 1980 2012 2012 2012 2012 2012 2012 2012 2012 2012 2012 01:00:00 10:49:01 19:38:32 19:38:32 19:38:34 18:37:20 10:57:02 07:05:02 02:24:14 22:58:54 04:45:40 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 . .. TRACE_LOG_DIR CORE_DUMP_DIR ADMIN_DIR startup-config.
-- Stack unit 0 IOM SYSTEM CPLD -- : 6 ------------------------------------ show clock ------------------------------22:41:49.
show processes memory — Displays memory usage based on running processes. telnet Connect through Telnet to a server. The Telnet client and server in the Dell Networking Operating System (OS) support IPv4 connections. You can establish a Telnet session directly to the router or a connection can be initiated from the router. Syntax telnet {host | ip-address} [/source-interface] Parameters Defaults host Enter the name of a server.
traceroute View a packet’s path to a specific device. Syntax Parameters Defaults traceroute {host | ip-address} host Enter the name of device. ip-address Enter the IP address of the device in dotted decimal format. ● ● ● ● ● Timeout = 5 seconds Probe count = 3 30 hops max 40 byte packet size UDP port = 33434 Command Modes ● EXEC ● EXEC Privilege Command History Usage Information Example (IPv4) Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
virtual-ip Configure a virtual IP address for the active management interface. You can configure virtual addresses both for IPv4 independently. Syntax virtual-ip {ipv4-address} Parameters Defaults ipv4-address Enter the IP address of the active management interface in a dotted decimal format (A.B.C.D.). none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
5 802.1X An authentication server must authenticate a client connected to an 802.1X switch port. Until the authentication, only extensible authentication protocol over LAN (EAPOL) traffic is allowed through the port to which a client is connected. After authentication is successful, normal traffic passes through the port. The Dell Networking operating software supports remote authentication dial-in service (RADIUS) and active directory environments using 802.1X Port Authentication.
• • • show dot1x cos-mapping interface show dot1x interface show dot1x profile debug dot1x Display 802.1X debugging information. Syntax debug dot1x [all | auth-pae-fsm | backend-fsm | eapol-pdu] [interface interface] Parameters all Enable all 802.1X debug messages. auth-pae-fsm Enable authentication PAE FSM debug messages. backend-fsm Enable backend FSM debug messages. eapol-pdu Enable the EAPOL frame trace and related debug messages.
After the authentication VLAN is assigned, the port-state must be toggled to restart authentication. Authentication occurs at the next reauthentication interval (dot1x reauthentication). Related Commands ● dot1x port-control — Enables port control on an interface. ● dot1x guest-vlan — Configures a guest VLAN for limited access users or for devices that are not 802.1X capable. ● show dot1x interface — Displays the 802.1X configuration of an interface.
dot1x authentication (Configuration) Enable dot1x globally. Enable dot1x both globally and at the interface level. Syntax dot1x authentication To disable dot1x on a globally, use the no dot1x authentication command. Defaults Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Version Description 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S3100 series, S4048–ON, S4048–ON, S4810, S4820T, S5000, S6000, S6000–ON, S6100–ON, the Configuration Terminal Batch mode on C9010, Z9100–ON, and Z9500. 9.9(0.0) Introduced on the C9000 Series. The dot1x critical-vlan command configures critical VLAN for the interface.
Usage Information Version Description 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S3100 series, S4048–ON, S4048–ON, S4810, S4820T, S5000, S6000, S6000–ON, S6100–ON, the Configuration Terminal Batch mode on C9010, Z9100–ON, and Z9500. 9.9(0.0) Introduced on the C9010. The dot1x profile command configures a dot1x profile to define a list of trusted supplicant MAC addresses. Maximum number of dot1x profiles is limited to 10.
Port Control: Port Auth Status: Re-Authentication: Untagged VLAN id: Guest VLAN: Guest VLAN id: Auth-Fail VLAN: Auth-Fail VLAN id: Auth-Fail Max-Attempts: Critical VLAN: Critical VLAN id: Mac-Auth-Bypass: Mac-Auth-Bypass Only: Static-MAB: Static-MAB Profile: Tx Period: Quiet Period: ReAuth Max: Supplicant Timeout: Server Timeout: Re-Auth Interval: Max-EAP-Req: Host Mode: Auth PAE State: Backend State: AUTO AUTHORIZED (STATIC-MAB) Enable 400 Enable 400 Enable 400 3 Enable 400 Disable Disable Enable Sample 3
dot1x host-mode Enable single-host or multi-host authentication. Syntax dot1x host-mode {single-host | multi-host | multi-auth} Parameters Defaults single-host Enable single-host authentication. multi-host Enable multi-host authentication. multi-auth Enable multi-supplicant authentication. single-host Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Defaults 2 Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x max-supplicants Restrict the number of supplicants that can be authenticated and permitted to access the network through the port. This configuration is only takes effect in Multi-Auth mode.
dot1x quiet-period Set the number of seconds that the authenticator remains quiet after a failed authentication with a client. Syntax dot1x quiet-period seconds To disable quiet time, use the no dot1x quiet-time command. Parameters Defaults seconds Enter the number of seconds. The range is from 1 to 65535. The default is 60. 60 seconds Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x server-timeout Configure the amount of time after which exchanges with the server time-out. Syntax dot1x server-timeout seconds To return to the default, use the no dot1x server-timeout command. Parameters Defaults seconds Enter a time-out value in seconds. The range is from 1 to 300, where 300 is implementation dependant. The default is 30.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x tx-period Configure the intervals at which EAPOL PDUs the Authenticator PAE transmits. Syntax dot1x tx-period seconds To return to the default, use the no dot1x tx-period command. Parameters Defaults seconds Enter the interval time, in seconds, that EAPOL PDUs are transmitted. The range is from 1 to 65535. The default is 30.
Use this command in Configuration Terminal Batch mode to configure a list of supplicant MAC addresses for dot1x profile in a dual-homing setup.
802.1p CoS re-map table on Te 0/1: ---------------------------------802.1p CoS re-map table for Supplicant: 00:00:00:00:00:10 Dot1p 0 1 2 3 4 5 6 7 Dell# Remapped Dot1p 7 6 5 4 3 2 1 0 show dot1x interface Display the 802.1X configuration of an interface.
Re-Auth Interval: Max-EAP-Req: Host Mode: Auth PAE State: Backend State: Dell# 3600 seconds 2 SINGLE_HOST Authenticated Idle Dell#show dot1x interface tengigabitethernet 0/1 mac-address 00:00:00:00:00:10 Supplicant Mac: 0 0 0 0 0 10 Lookup for Mac: 802.
Example DellEMC#show dot1x profile 802.1x profile information ----------------------------Dot1x Profile mySupplicants Profile MACs 00:50:56:aa:01:10 00:50:56:aa:01:11 130 802.
6 Access Control Lists (ACL) Access control lists (ACLs) are supported by the Dell Networking Operating System (OS).
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • 132 Standard MAC ACL Commands deny mac access-list standard permit seq Extended MAC ACL Commands deny mac access-list extended permit seq IP Prefix List Commands clear ip prefix-list deny ip prefix-list permit seq show config show ip prefix-list detail show ip prefix-list summary Route Map Commands continue description match interface match ip address match ip next-hop match ip route-source matc
• • • • • • • • • • • seq ether-type seq seq permit udp permit tcp permit icmp permit deny udp (for IPv6 ACLs) deny tcp (for IPv6 ACLs) deny icmp (for Extended IPv6 ACLs) deny (for IPv6 ACLs) Commands Common to all ACL Types The following commands are available within each ACL mode and do not have mode-specific options. Some commands in this chapter may use similar names, but require different options to support the different ACL types (for example, the deny command).
● CONFIGURATION-MAC ACCESS LIST-EXTENDED Supported Modes Full–Switch Command History Usage Information Version Description 9.14.0.0 Made the remark number as an optional value. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The remark command is available in each ACL mode. You can configure up to 4294967290 remarks in a given ACL. The following example shows the use of the remark command twice within CONFIGURATIONSTANDARD-ACCESS-LIST mode.
resequence access-list Re-assign sequence numbers to entries of an existing access-list. Syntax Parameters resequence access-list {ipv4 | mac} {access-list-name StartingSeqNum Stepto-Increment} ipv4 | mac Enter the keyword ipv4 or mac to identify the access list type to resequence. access-list-name Enter the name of a configured IP access list. Defaults StartingSeqNum Enter the starting sequence number to resequence. The range is from 0 to 4294967290.
Related Commands seq — Assigns a sequence number to a deny or permit filter in an IP access list while creating the filter. show config Display the current ACL configuration. Syntax show config Command Modes ● ● ● ● CONFIGURATION-IP ACCESS-LIST-STANDARD CONFIGURATION-IP ACCESS-LIST-EXTENDED CONFIGURATION-MAC ACCESS LIST-STANDARD CONFIGURATION-MAC ACCESS LIST-EXTENDED Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Usage Information Version Description 9.8(0.0) Added the ipv4 and ipv6 parameters to the command. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When you use the access-class access-list-name command without specifying the ipv4 or ipv6 attribute, both IPv4 as well as IPv6 rules that are defined in that ACL are applied to the terminal. This is a generic way of configuring access restrictions.
layer3 Defaults (OPTIONAL) Enter the keyword layer3 to enable layer 3 mode. It ensures that all the ACL rules in the access-group are applied only for L3 router packets. Not enabled.. Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module platform. You can assign one ACL (standard or extended ACL) to an interface..
show ip accounting access-list Display the IP access-lists created on the switch and the sequence of filters. Syntax Parameters show ip accounting {access-list access-list-name | cam_count} interface interface access-list-name Enter the name of the ACL to be displayed. cam_count List the count of the CAM rules for this ACL.
deny (for Standard IP ACLs) To drop packets with a certain IP address, configure a filter. Syntax deny {source | any | host {ip-address}}[count [byte]] [dscp value] [order] [fragments] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: ● Use the no seq sequence-number command if you know the filter’s sequence number. ● Use the no deny {source [mask] | any | host ip-address} command.
MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces. You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode.
Parameters Defaults source Enter the IP address in dotted decimal format of the network from which the packet was sent. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address or hostname.
monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG).
Usage Information 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only. The following applies: ● The seq sequence-number command is applicable only in an ACL group. ● The order option works across ACL groups that have been applied on an interface via the QoS policy framework.
● Use the no seq sequence-number command if you know the filter’s sequence number. ● Use the no deny {ip | ip-protocol-number} {source mask | any | host ipaddress} {destination mask | any | host ip-address} command. Parameters Defaults source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous.
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module. 9.3(0.0) Added the support for logging ACLs on the MXL 10/40GbE Switch IO Module. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only.
● syn: synchronize sequence numbers ● urg: urgent field operator (OPTIONAL) Enter one of the following logical operand: ● eq = equal to ● neq = not equal to ● gt = greater than ● lt = less than ● range = inclusive range of ports (you must specify two ports for the port command) port port Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535.
Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators (for example, gt, lt, or range) may require more than one entry. The range of ports is configured in the CAM based on bit mask boundaries; the space required depends on exactly what ports are included in the range. When the configured maximum threshold is exceeded, generation of logs is stopped.
Parameters Defaults source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address. dscp Enter this keyword dscp to deny a packet based on the DSCP value.
When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
Related Commands ip access-list standard — configures a standard IP access list. resequence access-list — Displays the current configuration. permit (for Extended IP ACLs) To pass IP packets meeting the filter criteria, configure a filter.
Usage Information Version Description 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
Defaults byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
● Use the no seq sequence-number command if you know the filter’s sequence number. ● Use the no permit tcp {source mask | any | host ip-address} {destination mask | any | host ip-address} command. Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous.
monitor Defaults (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM. Dell# Data Mask From To 1 0000000000000000 1111110000000000 0 #Covered 1023 1024 Total Ports: 1024 Related Commands ip access-list extended — creates an extended ACL. permit — assigns a permit filter for IP packets. permit udp — assigns a permit filter for UDP packets. permit udp To pass UDP packets meeting the filter criteria, configure a filter.
which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.
Total Ports: 1024 Related Commands ip access-list extended — creates an extended ACL. permit — assigns a permit filter for IP packets. permit tcp — assigns a permit filter for TCP packets. seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.
Defaults destination Enter the IP address of the network or host to which the packets are sent. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry.
MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces. You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode.
Defaults in Enter the keyword in to configure the ACL to filter incoming traffic. out Enter the keyword out to configure the ACL to filter outgoing traffic. none Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can assign one ACL (standard or extended) to an interface.
show mac accounting access-list Display MAC access list configurations and counters (if configured). Syntax Parameters show mac accounting access-list access-list-name interface interface in | out access-list-name Enter the name of a configured MAC ACL, up to 140 characters. interface interface in | out Enter the keyword interface then the one of the following keywords and slot/ port or number information: ● For a Port Channel interface, enter the keywords port-channel and then enter a number.
● Use the no deny {any | mac-source-address mac-source-address-mask} command. Parameters Defaults any Enter the keyword any to specify that all routes are subject to the filter. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match).
seq — configures a MAC address filter with a specified sequence number. mac access-list standard To configure a standard MAC ACL, name a new or existing MAC access control list (MAC ACL) and enter MAC ACCESS LIST mode. Syntax Parameters Defaults mac access-list standard mac-list-name mac-list-name Enter a text string as the name of the standard MAC access list (140 character maximum). Not configured.
Defaults threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes.
Parameters Defaults sequencenumber Enter a number from 0 to 65535. deny Enter the keyword deny to configure a filter to drop packets meeting this condition. permit Enter the keyword permit to configure a filter to forward packets meeting this criteria. any Enter the keyword any to filter all packets. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match.
looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny — configures a filter to drop packets. permit — configures a filter to forward packets.
Defaults Not configured. Command Modes CONFIGURATION-MAC ACCESS LIST-EXTENDED Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. permit — configures a MAC address filter to pass packets. seq — configures a MAC address filter with a specified sequence number. mac access-list extended Name a new or existing extended MAC access control list (extended MAC ACL).
permit To pass packets matching the criteria specified, configure a filter. Syntax permit {any | host mac-address | mac-source-address mac-source-addressmask} {any | host mac-address | mac-destination-address mac-destinationaddress-mask} [ethertype operator] [count [byte]] To remove this filter, you have two choices: ● Use the no seq sequence-number command if you know the filter’s sequence number.
seq Configure a filter with a specific sequence number. Syntax Parameters seq sequence-number {deny | permit} {any | host mac-address | mac-sourceaddress mac-source-address-mask} {any | host mac-address | mac-destinationaddress mac-destination-address-mask} [ethertype operator] [count [byte]] sequencenumber Enter a number as the filter sequence number. The range is from zero (0) to 65535. deny Enter the keyword deny to drop any traffic matching this filter.
IP Prefix List Commands When you create an access-list without any rule and then apply it to an interface, the ACL behavior reflects implicit permit. To configure or enable IP prefix lists, use these commands. clear ip prefix-list Reset the number of times traffic mets the conditions (“hit” counters) of the configured prefix lists.
ip prefix-list Enter the PREFIX-LIST mode and configure a prefix list. Syntax Parameters ip prefix-list prefix-name prefix-name Enter a string up to 16 characters long as the name of the prefix list, up to 140 characters long. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
seq To a deny or permit filter in a prefix list while configuring the filter, assign a sequence number. Syntax seq sequence-number {deny | permit} {any} | [ip-prefix /nn {ge min-prefixlength} {le max-prefix-length}] | [bitmask number] Parameters sequencenumber Enter a number. The range is from 1 to 4294967294. deny Enter the keyword deny to configure a filter to drop packets meeting this condition.. permit Enter the keyword permit to configure a filter to forward packets meeting this condition.
ip prefix-list snickers Dell(conf-nprefixl)# show ip prefix-list detail Display details of the configured prefix lists. Syntax Parameters show ip prefix-list detail [prefix-name] prefix-name (OPTIONAL) Enter a text string as the name of the prefix list, up to 140 characters. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Route Map Commands When you create an access-list without any rule and then applied to an interface, the ACL behavior reflects implicit permit. To configure route maps and their redistribution criteria, use the following commands. continue To a route-map entry with a higher sequence number, configure a route-map. Syntax continue [sequence-number] Parameters Defaults sequencenumber (OPTIONAL) Enter the route map sequence number. The range is from 1 to 65535.
description Add a description to this route map. Syntax Parameters Defaults description description description Enter a description to identify the route map (80 characters maximum). none Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. route-map — Enables a route map.
match ip address To match routes based on IP addresses specified in an access list, configure a filter. Syntax match ip address prefix-list-name Parameters Defaults prefix-list-name Enter the name of configured prefix list, up to 140 characters. Not configured. Command Modes ROUTE-MAP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
match ip route-source To match based on the routes advertised by routes specified in IP access lists or IP prefix lists, configure a filter. Syntax Parameters match ip route-source {access-list | prefix-list prefix-list-name} access-list-name Enter the name of a configured IP access list, up to 140 characters. prefix-list prefix- Enter the keywords prefix-list and then enter the name of configured prefix list-name list, up to 140 characters. Defaults Not configured.
match route-type To match routes based on the how the route is defined, configure a filter. Syntax match route-type {external [type-1 | type-2] | internal | local} Parameters Defaults external [type-1| type-2] Enter the keyword external then either type-1 or type-2 to match only on OSPF Type 1 routes or OSPF Type 2 routes. internal Enter the keyword internal to match only on routes generated within OSPF areas. local Enter the keyword local to match only on routes generated within the switch.
match route-type — redistributes routes that match a route type. route-map Enable a route map statement and configure its action and sequence number. This command also places you in ROUTE-MAP mode. Syntax Parameters Defaults route-map map-name [permit | deny] [sequence-number] map-name Enter a text string of up to 140 characters to name the route map for easy identification. permit (OPTIONAL) Enter the keyword permit to set the route map default as permit.
Related Commands set metric — specify the metric value assigned to redistributed routes. set metric-type — specify the metric type assigned to redistributed routes. set tag — specify the tag assigned to redistributed routes. set metric To assign a new metric to redistributed routes, configure a filter. Syntax set metric [+ | -] metric-value To delete a setting, use the no set metric command. Parameters Defaults + (OPTIONAL) Enter + to add a metric-value to the redistributed routes.
Related Commands set automatic-tag — computes the tag value of the route. set metric — specifies the metric value assigned to redistributed routes. set tag — specifies the tag assigned to redistributed routes. set tag To specify a tag for redistributed routes, configure a filter. Syntax Parameters Defaults set tag tag-value tag-value Enter a number as the tag. The range is from zero (0) to 4294967295. Not configured.
Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show route-map route-map firpo, permit, sequence 10 Match clauses: Set clauses: tag 34 Dell# route-map — configures a route map. deny (for Standard IP ACLs) To drop packets with a certain IP address, configure a filter.
Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-STANDARD-ACCESS-LIST Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.
Defaults byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) If you did not use the keyword order, the ACLs have the lowest order by default (255).
seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter. Syntax Parameters Defaults seq sequence-number {deny | permit} {source [mask] | any | host ipaddress}} [count [byte] [dscp value] [order] [fragments] [threshold-in-msgs [count] sequencenumber Enter a number from 0 to 4294967290. The range is from 0 to 65534. deny Enter the keyword deny to configure a filter to drop packets meeting this condition.
● If sequence-number is not configured, the rules with the same order value are ordered according to their configuration order. ● If sequence-number is configured, the sequence-number is used as a tie breaker for rules with the same order. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
● ● ● ● ● port port eq = equal to neq = not equal to gt = greater than lt = less than range = inclusive range of ports (you must specify two ports for the port command) Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535.
When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
Defaults any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address. dscp Enter this keyword dscp to deny a packet based on the DSCP value. The range is from 0 to 63.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces Example An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
Enter an IP address in dotted decimal format (A.B.C.D) as the target IP address of the ARP. opcode code-number Enter the keyword opcode and then enter the number of the ARP opcode. The range is from 1 to 23. Defaults count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG).
Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module. 9.3(0.0) Added the support for logging ACLs on the MXL 10/40GbE Switch IO Module. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only.
any Enter the keyword any to match and drop specific Ethernet traffic on the interface. vlan vlan-id Enter the keyword vlan and then enter the VLAN ID to filter traffic associated with a specific VLAN. The range is 1 to 4094 and 1 to 2094 for ExaScale ( you can use IDs 1 to 4094). To filter all VLAN traffic, specify VLAN 1. source-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG).
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces.
Defaults By default, 10 ACL logs are generated, if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-STANDARD Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module. 9.3(0.
Defaults mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address or hostname. no-drop Enter the keywords no-drop to match only the forwarded packets.
specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny — assigns a IP ACL filter to deny IP packets. ip access-list standard — creates a standard ACL. permit arp Configure a filter that forwards ARP packets meeting this criteria.
Defaults threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes.
NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. permit ether-type (for Extended MAC ACLs) Configure a filter that allows traffic with specified types of Ethernet packets. This command is supported only on 12-port GE line cards with SFP optics. For specifications, refer to your line card documentation.
monitor Defaults (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. NOTE: For more information, refer to the Flow-based Monitoring section in the Port Monitoring chapter of the Dell Networking OS Configuration Guide. By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
permit icmp Configure a filter to allow all or specific ICMP messages. Syntax permit icmp {source mask | any | host ip-address} {destination mask | any | host ip-address} [dscp] [message-type] [count [byte]] [order] [fragments] [threshold-in-msgs [count]] To remove this filter, you have two choices: ● Use the no seq sequence-number command if you know the filter’s sequence number. ● Use the no permit icmp {source mask | any | host ip-address} {destination mask | any | host ip-address} command.
Usage Information The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the Quality of Service chapter of the Dell Networking OS Configuration Guide. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
Defaults order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
Total Ports: 4001 Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM. Dell# Data Mask From To 1 0000000000000000 1111110000000000 0 #Covered 1023 1024 Total Ports: 1024 Related Commands ip access-list extended — creates an extended ACL. permit — assigns a permit filter for IP packets. permit tcp — assigns a permit filter for TCP packets. permit (for Extended IP ACLs) To pass IP packets meeting the filter criteria, configure a filter.
monitor Defaults (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
Defaults mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
seq To a deny or permit filter in a MAC access list while creating the filter, assign a sequence number. Syntax seq sequence-number {deny | permit} {any | mac-source-address [mac-sourceaddress-mask]} [count [byte]] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, use the no seq sequence-number command. Parameters Defaults sequencenumber Enter a number from 0 to 65535. deny Enter the keyword deny to configure a filter to drop packets meeting this condition.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces.
The following list includes some common TCP port numbers: ● 23 = Telnet ● 20 and 21 = FTP ● 25 = SMTP ● 169 = SNMP Defaults destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. count (OPTIONAL) Enter the keyword count to count packets the filter processes.
If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces.
destination-mac- Enter a MAC address and mask in the nn:nn:nn:nn:nn format. address macFor the MAC address mask, specify which bits in the MAC address must match. address-mask The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly. Defaults any Enter the keyword any to match and drop any ARP traffic on the interface.
Usage Information The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to Port Monitoring. The order option is relevant in the context of the Policy QoS feature only. The following applies: ● The seq sequence-number command is applicable only in an ACL group. ● The order option works across ACL groups that have been applied on an interface via the QoS policy framework. ● The order option takes precedence over seq sequence-number.
The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly. any Enter the keyword any to match and drop specific Ethernet traffic on the interface. vlan vlan-id Enter the keyword vlan and then enter the VLAN ID to filter traffic associated with a specific VLAN. The range is 1 to 4094 and 1 to 2094 for ExaScale (you can use IDs 1 to 4094). To filter all VLAN traffic specify VLAN 1.
Usage Information The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to Port Monitoring. The order option is relevant in the context of the Policy QoS feature only. The following applies: ● The seq sequence-number command is applicable only in an ACL group. ● The order option works across ACL groups that have been applied on an interface via the QoS policy framework. ● The order option takes precedence over seq sequence-number.
Defaults any Enter the keyword any to specify that all routes are subject to the filter. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry.
Related Commands deny — configures a filter to drop packets. permit — configures a filter to forward packets. seq — assigns a sequence number to a deny or permit filter in an IP access list while creating the filter. seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.
Defaults count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority).
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
Defaults interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
Parameters source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. The :: notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all routes are subject to the filter. host ipv6address Enter the keyword host followed by the IPv6 address of the host in the x:x:x:x::x format.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped.
Defaults count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. threshold-inmsgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands.
● Use the no seq sequence-number command syntax if you know the filter’s sequence number ● Use the no permit {ipv6-protocol-number | icmp | ipv6 | tcp | udp} command Parameters ip-protocolnumber Enter an IPv6 protocol number. The range is from 0 to 255. icmp Enter the keyword icmp to filter internet Control Message Protocol version 6. ipv6 Enter the keyword ipv6 to filter any internet Protocol version 6. tcp Enter the keyword tcp to filter the Transmission Control protocol.
● Use the no deny udp {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} command Parameters source Enter the IP address of the network or host from which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter.
Usage Information Version Description 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
● range = inclusive range of ports (you must specify two ports for the port command) port Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535. The following list includes some common TCP port numbers: ● 23 = Telnet ● 20 and 21= FTP ● 25 = SMTP ● 169 = SNMP Defaults destination Enter the IP address of the network or host to which the packets are sent.
that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped.
monitor Defaults (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled.
7 Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM) This section describes the access control list (ACL) virtual local area network (VLAN) group, and content addressable memory (CAM) enhancements. Topics: • • • • • • • • • • member vlan ip access-group show acl-vlan-group show cam-acl-vlan cam-acl-vlan show cam-usage show running config acl-vlan-group acl-vlan-group show acl-vlan-group detail description (ACL VLAN Group) member vlan Add VLAN members to an ACL VLAN group.
ip access-group Apply an egress IP ACL to the ACL VLAN group. Syntax Parameters Default ip access-group {group name} out implicit-permit group-name Enter the name of the ACL VLAN group where you want the egress IP ACLs applied, up to 140 characters. out Enter the keyword out to apply the ACL to outgoing traffic.
acl-vlan-group Test member vlan 1-100 ip access-group test in Dell#show acl-vlan-group Group Name Ingress V6 Acl Test - Egress IP Acl Vlan Members 1-100 Ingress IP Acl test The following sample output is displayed when using the show acl-vlan-group group-name option. NOTE: The access list name is truncated.
Field Description Stack Unit Details about the CAM blocks allocated for ACLs for various VLAN operations for a particular stack unit. Current Information about the number of FP blocks that are currently in use or allocated. Settings(in block sizes) Example VlanOpenFlow Number of FP blocks for VLAN open flow operations. VlanIscsi Number of FP blocks for VLAN internet small computer system interface (iSCSI) counters. VlanHp Number of FP blocks for VLAN high performance processes.
one, or two flow processor (FP) blocks to iSCSI Counters, OpenFlow and ACL Optimization. You can configure only two of these features at a point in time. show cam-usage View the amount of CAM space available, used, and remaining in each partition (including IPv4Flow and Layer 2 ACL subpartitions). Syntax show cam-usage [acl | router | switch] Parameters acl (OPTIONAL) Enter the keyword acl to display Layer 2 and Layer 3 ACL CAM usage.
| | | | | | IN-L2 ACL | | IN-NLB ACL | | IPMAC ACL | | OUT-L3 ACL | | OUT-V6 ACL | Codes: * - cam usage is above 90%.
acl-vlan-group Create an ACL VLAN group. Syntax acl-vlan-group {group name} To remove an ACL VLAN group, use the no acl-vlan-group {group name} command. Parameters Default group-name Specify the name of the ACL VLAN group. The name can contain a maximum 140 characters. No default behavior or values Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.
Usage Information The output for this command displays in a line-by-line format. This allows the ACL-VLAN-Group names (or the Access List Group Names) to display in their entirety. Examples The following sample output shows the line-by-line style display when using the show acl-vlangroup detail option.
8 Bidirectional Forwarding Detection (BFD) Bidirectional forwarding detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The Dell Networking Operating System (OS) implementation is based on the standards specified in the IETF Draft draft-ietfbfd-base-03 and supports BFD on all Layer 3 physical interfaces including virtual local area network (VLAN) interfaces and port-channels.
Command Modes ROUTER OSPF ROUTER OSPFv3 ROUTER BGP ROUTER ISIS Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.13(0.0) Introduced support for enabling BFD on non-default VRFs for IPv4 BGP, default, and non-default VRFs for IPv6 BGP on the S3100 series, S3048–ON, S4048–ON, S4048T-ON, S5000, S6000, S6000–ON, S6010–ON, S6100–ON, C9010, Z9500, and Z9100–ON. 9.11(2.
disable values configured with the bfd neighbor command or configured for the peer group to which a neighbor belongs. The neighbors inherit only the global timer values (configured with the bfd neighbor command). You can only enable BFD for VRRP in INTERFACE command mode (vrrp bfd all-neighbors). You can enable BFD on both default and nondefault VRFs for OSPF and BGP protocols for both IPv4 and IPv6 neighbors. NOTE: The bfd all-neighbors command is applicable for both IPv4 and IPv6 BGP sessions.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bfd interval Specify non-default BFD session parameters beginning with the transmission interval. Syntax Parameters bfd interval interval min_rx min_rx multiplier value role {active | passive} interval milliseconds min_rx milliseconds Enter the keywords interval to specify non-default BFD session parameters beginning with the transmission interval.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Protocol Liveness is a feature that notifies the BFD Manager when a client protocol (for example, OSPF and ISIS) is disabled. When a client is disabled, all BFD sessions for that protocol are torn down. Neighbors on the remote system receive an Admin Down control packet and are placed in the Down state.
ip ospf bfd all-neighbors Establish BFD sessions with all OSPF neighbors on a single interface or use non-default BFD session parameters. Syntax ip ospf bfd all-neighbors [disable | [interval interval min_rx min_rx multiplier value role {active | passive}]] To disable all BFD sessions on an OSPF interface implicitly, use the no ip ospf bfd allneighbors disable command in interface mode.. Parameters disable (OPTIONAL) Enter the keyword disable to disable BFD on this interface.
ipv6 ospf bfd all-neighbors Establish BFD sessions with all OSPFv3 neighbors on a single interface or use non-default BFD session parameters. Syntax ipv6 ospf bfd all-neighbors [disable | [interval interval min_rx min_rx multiplier value role {active | passive}]] To disable all BFD sessions on an OSPFv3 interface implicitly, use the no ipv6 ospf bfd allneighbors [disable | [interval interval min_rx min_rx multiplier value role {active | passive}]]command in interface mode..
multiplier value Enter the keywords multiplier to specify the number of packets that must be missed in order to declare a session down. The range is from 3 to 50. The default is 3. role [active | passive] Enter the role that the local system assumes: ● Active — The active system initiates the BFD session. Both systems can be active for the same session. ● Passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system.
● The neighbor only inherits the global timer values configured with the bfd neighbor command: interval, min_rx, and multiplier. Related Commands neighbor bfd disable — explicitly disables a BFD session with a BGP neighbor or a BGP peer group. show bfd neighbors — displays the BFD neighbor information on all interfaces or a specified interface. neighbor bfd disable Explicitly disable a BFD session with a BGP neighbor or a BGP peer group.
● For a VLAN interface, enter the keyword vlan then a number from 1 to 4094. detail Defaults (OPTIONAL) Enter the keyword detail to view detailed information about BFD neighbors. None Command Modes ● EXEC ● EXEC Privilege Command History Example This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(2.
Command History 252 Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
9 Border Gateway Protocol IPv4 (BGPv4) For detailed information about configuring BGP, refer to the BGP chapter in the Dell Networking OS Configuration Guide.
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • 254 debug ip bgp soft-reconfiguration debug ip bgp updates default-metric description max-paths neighbor activate neighbor add-path neighbor advertisement-interval neighbor advertisement-start neighbor allowas-in neighbor default-originate neighbor description neighbor distribute-list neighbor ebgp-multihop neighbor fall-over neighbor local-as neighbor maximum-prefix neighbor password neighbor p
• • • • • • • • • • • • • • • • • • • • • show ip bgp paths community show ip bgp peer-group show ip bgp regexp show ip bgp summary show running-config bgp timers bgp timers bgp extended MBGP Commands BGP Extended Communities (RFC 4360) set extcommunity rt set extcommunity soo show ip bgp paths extcommunity show ip bgp extcommunity-list IPv6 BGP Commands bgp soft-reconfig-backup clear ip bgp ipv6 unicast soft debug ip bgp ipv6 unicast soft-reconfiguration ipv6 prefix-list show ipv6 prefix-list IPv6 MBGP Co
aggregate-address To minimize the number of entries in the routing table, summarize a range of prefixes. Syntax aggregate-address ip-address mask [advertise-map map-name] [as-set] [attribute-map map-name] [summary-only] [suppress-map map-name] Parameters ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.D) and mask in /prefix format (/x).
Parameters Defaults send Enter the keyword send to indicate that the system sends multiple paths to peers. receive Enter the keyword receive to indicate that the system accepts multiple paths from peers. both Enter the keyword both to indicate that the system sends and accepts multiple paths from peers. path-count Enter the number paths supported. The range is from 2 to 64.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Before enabling this feature, enable the enable bgp four-octet-as-supportcommand. If you disable the four-octect-support command after using dot or dot+ format, the AS numbers revert to asplain text. When you apply an asnotation, it is reflected in the running-configuration.
bgp bestpath as-path multipath-relax Include prefixes received from different AS paths during multipath calculation. Syntax bgp bestpath as-path multipath-relax To return to the default BGP routing process, use the no bgp bestpath as-path multipathrelax command. Defaults Disabled Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The MED is a 4-byte unsigned integer value and the default behavior is to assume a missing MED as 4294967295. This command causes a missing MED to be treated as 0. During path selection, paths with a lower MED are preferred over paths with a higher MED.
bgp cluster-id Assign a cluster ID to a BGP cluster with more than one route reflector. Syntax bgp cluster-id {ip-address | number} To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command. Parameters Defaults ip-address Enter an IP address as the route reflector cluster ID. number Enter a route reflector cluster ID as a number from 1 to 4294967295. Not configured.
The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. The next hop, MED, and local preference information is preserved throughout the confederation. The system accepts confederation EBGP peers without a LOCAL_PREF attribute. The software sends AS_CONFED_SET and accepts AS_CONFED_SET and AS_CONF_SEQ.
reuse (OPTIONAL) Enter a number as the reuse value, which is compared to the flapping route’s Penalty value. If the Penalty value is less than the reuse value, the flapping route is once again advertised (or no longer suppressed). The range is from 1 to 20000. The default is 750. suppress (OPTIONAL) Enter a number as the suppress value, which is compared to the flapping route’s Penalty value.
Usage Information All routers apply the bgp default local-preference command setting within the AS. To set the local preference for a specific route, use the set local-preference command in ROUTE-MAP mode. Related Commands set metric — assigns a local preference value for a specific route. bgp enforce-first-as Disable (or enable) enforce-first-as check for updates received from EBGP peers. Syntax bgp enforce-first-as To turn off the default, use the no bgp enforce-first-as command.
bgp four-octet-as-support Enable 4-byte support for the BGP process. Syntax bgp four-octet-as-support To disable fast external failover, use the no bgp four-octet-as-support command. Defaults Disabled (supports 2–byte format) Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
BGP graceful restart is active only when the neighbor becomes established. Otherwise it is disabled. Graceful-restart applies to all neighbors with established adjacency. bgp non-deterministic-med Compare MEDs of paths from different autonomous systems. Syntax bgp non-deterministic-med To return to the default, use the no bgp non-deterministic-med command. Defaults Disabled (that is, paths/routes for the same destination but from different ASs do not have their MEDs compared).
bgp recursive-bgp-next-hop Enable next-hop resolution through other routes learned by BGP. Syntax bgp recursive-bgp-next-hop To disable next-hop resolution, use the no bgp recursive-bgp-next-hop command. Defaults Enabled Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Area 51 Routing for Networks 10.10.10.0/00 Routing Protocol is "bgp 1" Cluster Id is set to 10.10.10.0 Router Id is set to 10.10.10.0 Fast-external-fallover enabled Regular expression evaluation optimization enabled Capable of ROUTE_REFRESH For Address Family IPv4 Unicast BGP table version is 0, main routing table version 0 Distance: external 20 internal 200 local 200 Dell(conf-router_bgp)# Related Commands show ip protocols — views information on all routing protocols enabled and active.
Usage Information When you enable soft-reconfiguration for a neighbor and you execute the clear ip bgp soft in command, the update database stored in the router is replayed and updates are re-evaluated. With this command, the replay and update process is triggered only if route-refresh request is not negotiated with the peer. If the request is indeed negotiated (after executing the clear ip bgp soft in command), BGP sends a route-refresh request to the neighbor and receives all of the peer’s updates.
clear ip bgp Reset BGP sessions. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection. Syntax clear ip bgp * | as-number | ip-address [flap-statistics | soft [in | out]] Parameters * Enter an asterisk ( * ) to reset all BGP sessions. as-number Enter the AS number to reset all neighbors belonging to that AS. The range is from 0 to 65535 (2 byte), from 1 to 4294967295 (4 byte), or from 0.1 to 65535.65535 (dotted format).
clear ip bgp flap-statistics Clear BGP flap statistics, which includes number of flaps and the time of the last flap. Syntax Parameters clear ip bgp flap-statistics [ip-address mask | filter-list as-path-name | regexp regular-expression] ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and the prefix mask in slash format (/x) to reset only that prefix. filter-list as- (OPTIONAL) Enter the keywords filter-list then the name of a configured AS-PATH list.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug ip bgp Display all information on BGP, including BGP events, keepalives, notifications, and updates. Syntax debug ip bgp [ip-address | peer-group peer-group-name] [in | out] To disable all BGP debugging, use the no debug ip bgp command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show debugging — view enabled debugging operations. show ip bgp dampened-paths — view BGP dampened routes. debug ip bgp events Display information on local BGP state changes and other BGP events.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To remove all configured debug commands for BGP, enter the no debug ip bgp command. debug ip bgp notifications Allows you to view information about BGP notifications received from neighbors.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command turns on BGP soft-reconfiguration inbound debugging. If no neighbor is specified, debug turns on for all neighbors. debug ip bgp updates Allows you to view information about BGP updates.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The default-metric command in BGP sets the value of the BGP MULTI_EXIT_DISC (MED) attribute for redistributed routes only. Related Commands bgp always-compare-med — enables comparison of all BGP MED attributes. redistribute — redistributes routes from other routing protocols into BGP.
Usage Information If you enable this command, use the clear ip bgp * command to recompute the best path. neighbor activate This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI (Address Family Identifier/ Subsequent Address Family Identifier). Syntax neighbor [ip-address | peer-group-name] activate To disable, use the no neighbor [ip-address | peer-group-name] activate command.
Related Commands Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bgp add-path — allows the advertisement of multiple paths for the same address prefix without the new paths implicitly replacing any previous ones. neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group.
neighbor allowas-in Set the number of times an AS number can occur in the AS path. Syntax neighbor {ip-address | peer-group-name} allowas-in number To return to the default value, use the no neighbor {ip-address | peer-group-name} allowas-in command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group.
neighbor description Assign a character string describing the neighbor or group of neighbors (peer group). Syntax neighbor {ip-address | peer-group-name} description text To delete a description, use the no neighbor {ip-address | peer-group-name} description command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. text Defaults Enter a continuous text string up to 80 characters. Not configured.
neighbor ebgp-multihop Attempt and accept BGP connections to external peers on networks that are not directly connected. Syntax neighbor {ip-address | peer-group-name} ebgp-multihop [ttl] To disallow and disconnect connections, use the no neighbor {ip-address | peer-groupname} ebgp-multihop command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group.
neighbor local-as To accept external routes from neighbors with a local AS number in the AS number path, configure Internal BGP (IBGP) routers. Syntax neighbor {ip-address | peer-group-name} local-as as-number [no-prepend] To return to the default value, use the no neighbor {ip-address | peer-group-name} local-as command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you configure the neighbor maximum-prefix command and the neighbor receives more prefixes than the neighbor maximum-prefix command configuration allows, the neighbor goes down and the show ip bgp summary command displays (prfxd) in the State/PfxRcd column for that neighbor.
Also, if you configure different passwords on the two routers, the following message appears on the console: %RPM0-P:RP1 %KERN-6-INT: BGP MD5 password mismatch from [peer's IP address] : 11502 to [local router's IP address] :179 neighbor peer-group (assigning peers) Allows you to assign one peer to an existing peer group. Syntax neighbor ip-address peer-group peer-group-name To delete a peer from a peer group, use the no neighbor ip-address peer-group peergroup-name command.
Parameters Defaults peer-group-name Enter a text string up to 16 characters long as the name of the peer group. Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you create a peer group, it is disabled (Shut mode). Related Commands neighbor peer-group (assigning peers) — assigns routers to a peer group.
To delete a remote AS entry, use the no neighbor {ip-address | peer-group-name} remote-as number command. Parameters ip-address Enter the IP address of the neighbor to enter the remote AS in its routing table. peer-group-name Enter the name of the peer group to enter the remote AS into routing tables of all routers within the peer group. number Defaults Enter a number of the AS. The range is from 0 to 65535 (2 byte) or from 1 to 4294967295 (4 byte). Not configured.
Private AS numbers are from 64512 to 65535 (2 byte). neighbor route-map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group. Syntax neighbor {ip-address | peer-group-name} route-map map-name {in | out} To remove the route map, use the no neighbor {ip-address | peer-group-name} routemap map-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. A route reflector reflects routes to the neighbors assigned to the cluster. Neighbors in the cluster do not need not to be fully meshed. By default, when you use no route reflector, the internal BGP (IBGP) speakers in the network must be fully meshed.
To disable, use the no neighbor {ip-address | peer-group-name} softreconfiguration inbound command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to disable or enable all routers within the peer group. Defaults Disabled Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Usage Information Timer values configured with the neighbor timers command override the timer values configured with any other command. When two neighbors, configured with different keepalive and holdtime values, negotiate for new values, the resulting values are as follows: ● the lower of the holdtime value is the new holdtime value, and ● whichever is the lower value; one-third of the new holdtime value, or the configured keepalive value, is the new keepalive value.
interface Defaults Enter the keyword loopback then a number of the Loopback interface. The range is from 0 to 16383. Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Loopback interfaces are up constantly and the BGP session may need one interface constantly up to stabilize the session.
mask Enter the mask of the IP address in the slash prefix length format (for example, / 24). The mask appears in command outputs in dotted decimal format (A.B.C.D). route-map mapname (OPTIONAL) Enter the keyword route-map then the name of an established route map. Only the following ROUTE-MAP mode commands are supported: ● match ip address ● set metric ● set tag If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured.
redistribute Redistribute routes into BGP. Syntax redistribute {connected | static} [route-map map-name] To disable redistribution, use the no redistribution {connected | static} command. Parameters connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static to redistribute manually configured routes. These routes are treated as incomplete routes.
match internal (OPTIONAL) Enter the keywords match internal to redistribute OSPF internal routes only. route-map map- (OPTIONAL) Enter the keywords route-map then the name of a configured route map. name Defaults Not configured. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. With the Dell Networking OS version 8.3.1.
shutdown all Disables all the BGP neighbors. Syntax shutdown all Use the no shutdown all command to enable all the configured BGP neighbors. Command Modes ROUTER BGP Command History Usage Information Version Description 9.11.0.0 Introduced on the S-Series, Z-Series, MXL, and IOM. You can use this command to disable all the configured BGP neighbors. This command is global for all VRFs.
shutdown address-family-ipv6–unicast Disables all the BGP neighbors corresponding to the unicast IPv6 address families. Syntax shutdown address-family-ipv6–unicast Use the no shutdown address-family-ipv6–unicast command to enable all the configured BGP neighbors corresponding to the unicast IPv6 address families. Command Modes ROUTER BGP CONFIGURATION Command History Usage Information Version Description 9.11.0.0 Introduced on the S-Series, Z-Series, MXL, and IOM.
PDU[3] : len 19, captured 00:34:50 ago ffffffff ffffffff ffffffff ffffffff 00130400 [. . .] Dell# Related Commands capture bgp-pdu max-buffer-size — specifies a size for the capture buffer. show config View the current ROUTER BGP configuration. Syntax show config Command Modes ROUTER BGP Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
network-mask (OPTIONAL) Enter the network mask (in slash prefix format) of the BGP network address. longer-prefixes (OPTIONAL) Enter the keywords longer-prefixes to view all routes with a common prefix. cluster-list (OPTIONAL) Enter the keyword cluster-list then the cluster-ID to display the routes matching the cluster.
Example Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network.
Following is the example for displaying all the received routes from all IPv6 neighbors: DellEMC# show ip bgp ipv6 unicast neighbors all received-routes BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0 BGP local router ID is 11.1.1.
Example Field Description Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network. Dell#show ip bgp cluster-list BGP table version is 64444683, local router ID is 120.1.1.
All routes with the NO_ADVERTISE (0xFFFFFF02) community attribute must not be advertised to other BGP peers. no-export Enter the keywords no-export to view all routes containing the well-known community attribute of NO_EXPORT. All routes with the NO_EXPORT (0xFFFFFF01) community attribute must not be advertised outside a BGP confederation boundary. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM.
*>i 6.151.0.0/1 --More-- 205.171.0.16 100 0 209 7170 1455 i show ip bgp community-list View routes that a specific community list affects. Syntax Parameters show ip bgp [ipv4 unicast] community-list community-list-name [exact-match] ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. community-listname Enter the name of a configured IP community list (maximum 140 characters).
show ip bgp dampened-paths View BGP routes that are dampened (non-active). Syntax show ip bgp [ipv4 unicast] dampened-paths Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp damp command shown in the following example.
-1 : NdIgnrIllId 0 : NdRRC2C 1 : NdClstId 33686273 : NdPaTblP 0x41a19088 NdASPTblP 0x41a19090 : NdCommTblP 0x41a19098 : NhOptTransTblP 0x41a190a0 : NdRRClsTblP 0x41a190a8 NdPktPA 0 : NdLocCBP 0x41a6f000 : NdTmpPAP 0x419efc80 : NdTmpASPAP 0x41a25000 : NdTmpCommP 0x41a25800 NdTmpRRClP 0x41a4b000 : NdTmpOptP 0x41a4b800 : NdTmpNHP : NdOrigPAP 0 NdOrgNHP 0 : NdModPathP 0x419efcc0 : NdModASPAP 0x41a4c000 : NdModCommP 0x41a4c800 NdModOptP 0x41a4d000 : NdModNHP : NdComSortBufP 0x41a19110 : NdComSortHdP 0x41a19d04 :
AfNetBKDRCnt 0 : AfDampHLife 0 AfDampReuse 0 : AfDampSupp 0 : AfDampMaxHld 0 : AfDampCeiling 0 : AfDampRmapP show ip bgp extcommunity-list View information on all routes with Extended Community attributes. Syntax show ip bgp [ipv4 unicast] extcommunity-list [list name] Parameters ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. list name Enter the extended community list name you wish to view. The range is 140 characters.
Field Description ● ● ● ● ● Example i = internal route entry a = aggregate route entry c = external confederation route entry n = network route entry r = redistributed route entry Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight.
regexp regular- expression Enter a regular expression then use one or a combination of the following characters to match. The range is 256 characters. ● . = (period) any single character (including a white space). ● * = (asterisk) the sequences in a pattern (zero or more sequences). ● + = (plus) the sequences in a pattern (one or more sequences). ● ? = (question mark) sequences in a pattern (either zero or one sequences). NOTE: Enter an escape sequence (CTRL+v) prior to entering the ? regular expression.
● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp inconsistent-as command shown in the following example. Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.
ip-address (OPTIONAL) Enter the IP address of the neighbor to view only BGP information exchanged with that neighbor. advertisedroutes (OPTIONAL) Enter the keywords advertised-routes to view only the routes the neighbor sent. dampened-routes (OPTIONAL) Enter the keywords dampened-routes to view information on dampened routes from the BGP neighbor. detail (OPTIONAL) Enter the keyword detail to view neighbor-specific internal information for the IPv4 Unicast address family.
The Lines Beginning with: Description Sent messages The line displays the number of BGP messages sent, the number of notifications (error messages), and the number of messages waiting in a queue for processing. Received updates This line displays the number of BGP updates received and sent. Soft reconfiguration This line indicates that soft reconfiguration inbound is configured. Minimum time Displays the minimum time, in seconds, between advertisements.
MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) Capabilities advertised to neighbor for IPv4 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) ROUTE_REFRESH(2) GRACEFUL_RESTART(64) CISCO_ROUTE_REFRESH(128) Route map for incoming advertisements is test Maximum prefix set to 4 with threshold 75 For address family: IPv4 Unicast BGP table version 34, neighbor version 34 5 accepted prefixes consume 20 bytes Prefix advertised 0, denied 4, withdrawn 0 Prefixes accepted 1 (consume 4 bytes), withdrawn 0 by pe
redistributed n - network, D - denied, S - stale Origin codes: i - IGP, e - EGP, ? - incomplete Network D 70.70.21.0/24 D 70.70.22.0/24 D 70.70.23.0/24 D 70.70.24.0/24 Dell# Related Commands Next Hop 100.10.10.2 100.10.10.2 100.10.10.2 100.10.10.2 Metric LocPrf Weight Path 0 0 100 200 0 0 100 200 0 0 100 200 0 0 100 200 ? ? ? ? show ip bgp — views the current BGP routing table. show ip bgp next-hop View all next hops (using learned routes only) with current reachability and flap status.
Parameters regexp regular- expression Enter a regular expression then use one or a combination of the following characters to match: ● . = (period) any single character (including a white space). ● * = (asterisk) the sequences in a pattern (zero or more sequences). ● + = (plus) the sequences in a pattern (one or more sequences). ● ? = (question mark) sequences in a pattern (either zero or one sequences). NOTE: Enter an escape sequence (CTRL+v) prior to entering the ? regular expression.
show ip bgp paths as-path View all unique AS-PATHs in the BGP database. Syntax show ip bgp paths as-path Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp paths as-path command shown in the following example.
Usage Information Example The following describes the show ip bgp paths community command shown in the following example. Field Description Address Displays the internal address where the path attribute is stored. Hash Displays the hash bucket where the path attribute is stored. Refcount Displays the number of BGP routes using these communities. Community Displays the community attributes in this BGP path.
summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group. The output is the same as that found in the show ip bgp summary command. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp peer-group command shown in the following example.
12.1.1.3* 12.1.1.4* 12.1.1.5* 12.1.1.6* 12.2.1.2* 12.2.1.3* 12.2.1.4* 12.2.1.5* 12.2.1.6* 12.3.1.2* 12.3.1.3* 12.3.1.4* 12.3.1.5* 12.3.1.6* 12.4.1.2* 12.4.1.3* 12.4.1.4* 12.4.1.5* 12.4.1.6* Related Commands neighbor peer-group (assigning peers) — assigns a peer to a peer-group. neighbor peer-group (creating group) — creates a peer group. show ip bgp regexp Display the subset of the BGP routing table matching the regular expressions specified.
Example (S4810) Field Description Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then non-BGP routes exist in the router’s routing table. Metric Displays the BGP router’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight Path Lists all the AS paths the route passed through to reach the destination network.
Field Description BGP router identifier Displays the local router ID and the AS number. BGP table version Displays the BGP table version and the main routing table version. network entries Displays the number of network entries, route paths, and the amount of memory used to process those entries. paths Displays the number of paths and the amount of memory used. denied paths Displays the number of denied paths and the amount of memory used.
BGP table version is 34, main routing table version 34 9 network entrie(s) using 1372 bytes of memory 5 paths using 380 bytes of memory 4 denied paths using 164 bytes of memory BGP-RIB over all using 385 bytes of memory 2 BGP path attribute entrie(s) using 168 bytes of memory 1 BGP AS-PATH entrie(s) using 39 bytes of memory 1 BGP community entrie(s) using 43 bytes of memory 2 neighbor(s) using 7232 bytes of memory Neighbor AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/Pfx 100.10.10.
timers bgp extended Adjust the BGP idle holdtime for all the BGP neighbors. Syntax timers bgp extended idle-holdtime To return to the default, use the no timers bgp extended command. Parameters extended idle- holdtime Defaults Enter a number for the time interval, in seconds, for the peer to be idle state. The range is from 1 to 32767. The default is 15 seconds. The default idle-holdtime is 15 seconds.
distance bgp Define an administrative distance for routes. Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command. Parameters external-distance Enter a number to assign to routes learned from a neighbor external to the AS. The range is from 1 to 255. The default is 20. internal-distance Enter a number to assign to routes learned from a router within the AS. The range is from 1 to 255. The default is 200.
Example Field Description Path Lists all the ASs the dampened route passed through to reach the destination network. Dell>show ip bgp dampened-paths BGP table version is 210708, local router ID is 63.114.8.
● If the rt option comes after soo, without the additive option, rt overrides the communities soo sets. ● If the rt with the additive option comes after soo, rt adds the communities soo sets. Related Commands set extcommunity soo — sets the extended community site-of-origin in the route-map. set extcommunity soo To set extended community site-of-origin in Route Map, use this feature.
Usage Information Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp paths extcommunity command shown in the following example. Field Description Address Displays the internal address where the path attribute is stored. Hash Displays the hash bucket where the path attribute is stored. Refcount Displays the number of BGP routes using these extended communities.
bgp soft-reconfig-backup To avoid the peer from resending messages, use this command only when route-refresh is not negotiated. Syntax bgp soft-reconfig-backup To return to the default setting, use the no bgp soft-reconfig-backup command. Defaults Disabled Command Modes ROUTER BGP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug ip bgp ipv6 unicast soft-reconfiguration Enable soft-reconfiguration debugging for IPv6 unicast routes. Syntax debug ip bgp [ipv4-address | ipv6-address | peer-group-name] ipv6 unicast soft-reconfiguration To disable debugging, use the no debug ip bgp [ipv4-address | ipv6-address | peergroup-name] ipv6 unicast soft-reconfiguration command.
show ipv6 prefix-list Displays the specified IPv6 prefix list. Syntax Parameters show ipv6 prefix-list detail {prefix-list name} | summary detail Display a detailed description of the selected IPv6 prefix list. prefix-list name Enter the name of the prefix list. NOTE: There is a 140-character limit for prefix list names. summary Display a summary of RPF routes. Command Modes EXEC Supported Modes Full–Switch Command History Command History Related Commands Version Description 9.9(0.
10 Content Addressable Memory (CAM) Content addressable memory (CAM) commands are supported on the Dell Networking operating software on the platform. NOTE: If you are using these features for the first time, contact Dell Networking Technical Assistance Center (TAC) for guidance.
● ● ● ● ● ● ● ● ● ● IPv6 L3 ACL (ipv6acl): 0 L3 QoS (ipv4qos): 1 L2 QoS (l2qos): 1 L2PT (L2PT): 0 MAC ACL (IpMacAcl): 0 VmanDualQos: 0 EcfmAcl: 0 nlbclusteracl: 0 FcoeAcl: 4 iscsiOptAcl: 2 l2acl number Enter the keyword l2acl and then the number of l2acl blocks. The range is from 1 to 8. ipv4acl number Enter the keyword ipv4acl and then the number of FP blocks for IPv4. The range is from 0 to 8. ipv6acl number Enter the keyword ipv6acl and then the number of FP blocks for IPv6.
l2acl number ipv4acl number ipv6acl number , ipv4qos number l2qos number , l2pt number ipmacacl number ecfmacl number [vman-qos | vman--qos-dual number | vmanqos-dual-fp number ] ipv4pbr Allocate space to each CAM region. Enter the CAM profile name then the amount of CAM space to be allotted. The total space allocated must equal 13. The range for ipv4acl is from 1 to 4. The ipv6acl range must be a factor of 2. The total space allocated must equal 13. The range for ipv4acl is 1 to 4.
Usage Information When you enable this command, if a Policy Map containing classification rules (ACL and/or dscp/ ipprecedence rules) is applied to more than one physical interface on the same port pipe, only a single copy of the policy is written (only one FP entry is used). NOTE: An ACL itself may still require more that a single FP entry, regardless of the number of interfaces.
show cam-acl Display the details of the CAM profiles on the chassis and all stack units. Syntax show cam-acl Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example (Default) Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The display reflects the settings implemented with the cam-acl command.
Ipv6Acl : Ipv4Qos : L2Qos : L2PT : IpMacAcl : VmanQos : VmanDualQos : EcfmAcl : FcoeAcl : iscsiOptAcl : ipv4pbr : vrfv4Acl : Openflow : fedgovacl : nlbclusteracl: 0 2 1 0 0 0 0 0 0 0 0 0 0 0 0 show cam-acl-egress Display the details of the FP groups allocated for the egress ACL. Syntax show cam-acl-egress Defaults none Command Modes Configuration Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
11 Control Plane Policing (CoPP) The Dell Networking OS supports the following CoPP commands. Topics: • • • • • • • control-plane-cpuqos service-policy rate-limit-cpu-queues service-policy rate-limit-protocols show cpu-queue rate cp show ip protocol-queue-mapping show ipv6 protocol-queue-mapping show mac protocol-queue-mapping control-plane-cpuqos To manage control-plane traffic, enter control-plane mode and configure the switch. Syntax control-plane-cpuqos Defaults Not configured.
Related Commands qos-policy-input — creates a QoS input policy map. policy-map-input — creates an input policy map. service-policy rate-limit-protocols Apply a policy for the system to rate limit control protocols on a per-protocol basis. Syntax Parameters Defaults service-policy rate-limit-protocols policy-name policy-name Enter the service-policy name, using a string up to 32 characters. Not configured.
Q1 Q2 Q3 Q4 Q5 Q6 Q7 Q8 Q9 Q10 Q11 300 300 400 2000 300 400 400 400 600 300 300 50 50 50 50 50 50 50 50 50 50 50 show ip protocol-queue-mapping Display the queue mapping for each configured protocol. Syntax show ip protocol-queue-mapping Defaults Not configured. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
12 Data Center Bridging (DCB) Data center bridging (DCB) refers to a set of IEEE Ethernet enhancements that provide data centers with a single, robust, converged network to support multiple traffic types, including local area network (LAN), server, and storage traffic. The Dell Networking Operating System (OS) commands for data center bridging features include 802.1Qbb priority-based flow control (PFC), 802.1Qaz enhanced transmission selection (ETS), and the data center bridging exchange (DCBX) protocol.
advertise dcbx-appln-tlv On a DCBX port with a manual role, configure the application priority TLVs advertised on the interface to DCBX peers. Syntax advertise dcbx-appln-tlv {fcoe | iscsi} To remove the application priority TLVs, use the no advertise dcbx-appln-tlv {fcoe | iscsi} command. Parameters Defaults {fcoe | iscsi} Enter the application priority TLVs, where: ● fcoe: enables the advertisement of FCoE in application priority TLVs.
bandwidth-percentage Configure the bandwidth percentage allocated to priority traffic in port queues. Syntax bandwidth-percentage percentage To remove the configured bandwidth percentage, use the no bandwidth-percentage command. Parameters Defaults percentage (Optional) Enter the bandwidth percentage. The percentage range is from 1 to 100% in units of 1%. none Command Modes QOS-POLICY-OUT-ETS Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
dcb-policy buffer-threshold (Global Configuration) Assign the dcb buffer threshold policy on the stack ports. To apply the dcb buffer threshold policy on the stack-units, use the configuration mode. To apply on front-end ports, use the interface mode. Syntax Parameters Default dcb-policy buffer-threshold stack-unit all stack-ports all profile-name dcb-bufferthreshold Configure the profile name for the DCB buffer threshold.
Version Description 9.3(0.0) Introduced on the MXL platform. Usage Information You can configure a maximum of four lossless (PFC) queues. By configuring four lossless queues, you can configure four different priorities and assign a particular priority to each application that your network is used to process. For example, you can assign a higher priority for time-sensitive applications and a lower priority for other services, such as file transfers.
● cin: configures the port to use Cisco-Intel-Nuova (DCBX 1.0). ● ieee-v2: configures the port to use IEEE 802.1az (Draft 2.5). Defaults Auto Command Modes INTERFACE PROTOCOL LLDP Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. DCBX requires that you enable LLDP to advertise DCBX TLVs to peers. Configure DCBX operation at the INTERFACE level on a switch or globally on the switch.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. fcoe priority-bits Configure the FCoE priority advertised for the FCoE protocol in application priority TLVs. Syntax fcoe priority-bits priority-bitmap To remove the configured FCoE priority, use the no fcoe priority-bits command. Parameters Defaults priority-bitmap Enter the priority-bitmap range.
value Enter a number in the range of 0 to 7 to denote the priority to be allocated to the dynamic buffer control mechanism buffer-size Ingress buffer size size Size of the ingress buffer in KB. Enter a number in the range of 0 to 7787. The default is 45 KB. pause-threshold Buffer limit for pause frames to be sent threshold-value Buffer limit at which the port sends the pause to peer in KB. Enter a number in the range of 0 to 7787. The default is 10 KB.
Version 8.3.16.1 Usage Information Introduced on the MXL 10/40GbE Switch IO Module. By applying a DCB input policy with PFC enabled, you enable PFC operation on ingress port traffic. To achieve complete lossless handling of traffic, also enable PFC on all DCB egress ports or configure the dot1p priority-queue assignment of PFC priorities to lossless queues (refer to pfc no-drop queues). To disable PFC operation on an interface, enter the no pfc mode on command in DCB Input Policy Configuration mode.
To remove the priority list, use the no priority-list command. Parameters Defaults value Enter the priority list value. Separate priority values with a comma; specify a priority range with a dash; for example, priority-list 3,5-7. The range is from 0 to 7. none Command Modes PRIORITY-GROUP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.
Parameters Defaults value Enter schedule priority value. The valid values are: ● strict: strict-priority traffic is serviced before any other queued traffic. ● werr: weighted elastic round robin (werr) provides low-latency scheduling for priority traffic on port queues. Weighted elastic round robin (WERR) scheduling is used to queue priority traffic. Command Modes POLICY-MAP-OUT-ETS Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
slot/port Enter the slot/port number. NOTE: This command also enables you to view information corresponding to a range of ports. ● You can specify multiple ports as slot/port-range. For example, if you want to display information corresponding to all ports between 1 and 4, specify the port range as show interfaces interface-type 1/1 - 4. Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.
Field Description Local DCBX Status: Protocol State Current operational state of the DCBX protocol: ACK or IN-SYNC. Peer DCBX Status: DCBX Operational Version DCBX version advertised in Control TLVs received from the peer device. Peer DCBX Status: DCBX Max Version Supported Highest DCBX version supported in Control TLVs received from the peer device. Peer DCBX Sequence number transmitted in Control TLVs received from the peer device.
Example Field Description Application Priority TLV Statistics: Error Appln Priority TLV Pkts Number of Application TLV error packets received Total DCBX Frames transmitted Number of DCBX frames sent from the local port. Total DCBX Frames received Number of DCBX frames received from the remote peer port. Total DCBX Frame errors Number of DCBX frames with errors received. Total DCBX Frames unrecognized Number of unrecognizable DCBX frames received.
show interface ets Displays the ETS configuration applied to egress traffic on an interface, including priority groups with priorities and bandwidth allocation. Syntax show interface port-type slot/port ets {summary | detail} Parameters port-type slot/ port ets Enter the port-type slot and port ETS information. {summary | detail} Enter the keyword summary for a summary list of results or enter the keyword detail for a full list of results.
Example (Summary) Field Description ETS DCBX Oper status Operational status of the ETS configuration on the local port: match or mismatch. State Machine Type Type of state machine used for DCBX exchanges of ETS parameters: Feature — for legacy DCBX versions; Asymmetric — for an IEEE version. Conf TLV Tx Status Status of ETS Configuration TLV advertisements: enabled or disabled. ETS TLV Statistic: Input Conf TLV pkts Number of ETS Configuration TLVs received.
5 12% ETS 6 12% ETS 7 12% ETS Oper status is init Conf TLV Tx Status is disabled Traffic Class TLV Tx Status is disabled Example (Detail) Dell(conf)# show interfaces tengigabitethernet 0/0 ets detail Interface TenGigabitEthernet 0/0 Max Supported TC Groups is 4 Number of Traffic Classes is 8 Admin mode is on Admin Parameters : -----------------Admin is enabled TC-grp Priority# Bandwidth TSA 0 0,1,2,3,4,5,6,7 100% ETS 1 0% ETS 2 0% ETS 3 0% ETS 4 0% ETS 5 0% ETS 6 0% ETS 7 0% ETS Priority# 0 1 2 3 4 5 6 7 R
show interface pfc Displays the PFC configuration applied to ingress traffic on an interface, including priorities and link delay. Syntax Parameters show interface port-type slot/port pfc {summary | detail} port-type slot/ port pfc Enter the port-type slot and port PFC information. {summary | detail} Enter the keyword summary for a summary list of results or enter the keyword detail for a full list of results. NOTE: This command also enables you to view information corresponding to a range of ports.
Example (Summary) 358 Field Description PFC Link Delay Link delay (in quanta) used to pause specified priority traffic. Application Priority TLV: FCOE TLV Tx Status Status of FCoE advertisements in application priority TLVs from the local DCBX port: enabled or disabled. Application Priority TLV: SCSI TLV Tx Status Status of ISCSI advertisements in application priority TLVs from the local DCBX port: enabled or disabled.
ISCSI TLV Tx Status is disabled Local FCOE PriorityMap is 0x8 Local ISCSI PriorityMap is 0x10 Remote FCOE PriorityMap is 0x8 Remote ISCSI PriorityMap is 0x8 Dell# show interfaces tengigabitethernet 0/49 pfc detail Interface TenGigabitEthernet 0/49 Admin mode is on Admin is enabled Remote is enabled Remote Willing Status is enabled Local is enabled Oper status is recommended PFC DCBX Oper status is Up State Machine Type is Feature TLV Tx Status is enabled PFC Link Delay 45556 pause quanta Application Priorit
5 6 7 0 0 0 0 0 0 0 0 0 show qos priority-groups Displays the ETS priority groups configured on the switch, including the 802.1p priority classes and ID of each group. Syntax show qos priority-groups Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
-----------------------------------------------0 0,1,2,3,4,5,6,7 100% ETS 1 - 2 - 3 - 4 - 5 - 6 - 7 - 8 - Stack unit 1 stack port all Max Supported TC Groups is 4 Number of Traffic Classes is 1 Admin mode is on Admin Parameters: -------------------Admin is enabled TC-grp Priority# Bandwidth TSA -----------------------------------------------0 0,1,2,3,4,5,6,7 100% ETS 1 2 3 4 5 6 7 8 - dcb pfc-shared-buffer-size Configure the maximum amount of shared buffer size for PFC packets in kilobytes.
dcb pfc-total-buffer-size Configure the total buffer size for PFC in kilobytes. Syntax dcb pfc-total—buffer—size KB Parameters Default KB Enter a number in the range of 0 to 7787. The default is 6592KB. Command Modes CONFIGURATION mode Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.9(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Configure the maximum buffer available for PFC traffic.
Usage Information When you enter the profile name, you enter the DCB buffer threshold configuration mode. You can specify the shared buffer threshold limit, the ingress buffer size, buffer limit for pausing the acceptance of packets, and the buffer offset limit for resuming the acceptance of received packets.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3 (0.1) Introduced on S6000, S4810, and S4820T. Usage Information PFC and ETS are enabled by default on the interfaces when DCB is globally enabled (refer to dcb enable). In some network topology, you may want to disable PFC on an interface and apply link level flow control; Similarly you may want to disable ETS on an interface and apply QoS bandwidth configurations.
Parameters Default dcb-bufferthreshold Configure the profile name for the DCB buffer threshold. profile-name Enter the name of the profile, which can be a string of up to 32 characters in length. stack-unit all Enter the stack unit identification. Indicates the specific the stack unit or units. Entering all shows the status for all stacks. stack-port all Enter the port number of a port in a switch stack.
dot1p6_groupnum dot1p7_groupnum Defaults None Command Modes DCB MAP Command History Usage Information Version 9.3(0.0) Introduced on the FC Flex IO module installed in the MXL 10/40GbE Switch module platform. PFC and ETS settings are not pre-configured on Ethernet ports. You must use the dcb-map command to configure different groups of 802.1p priorities with PFC and ETS settings. Using the priority-pgid command, you assign each 802.1p priority to one priority group. A priority group consists of 802.
threshold-value Buffer limit at which the port sends the pause to peer in KB. Enter a number in the range of 0 to 7787. The default is 10 KB. resume-offset Buffer offset limit for resuming in KB threshold-value Buffer offset limit at which the port resumes the peer in KB. Enter a number in the range of 1 to 7787. The default is 10 KB. sharedBuffer shared threshold weight threshold-weight size Default Weightage of the priorities on the shared buffer size in the system.
queue 0 to queue To apply the shared-threshold weight, specify the queue number . 7 number Default Enter a weight for the queue on the shared buffer as a number in the range of 1 to 11. The default threshold weight on the shared buffer for each queue is 9. Therefore, each queue can consume up to 66.67 percent of available shared buffer by default. Command Modes INTERFACE mode Supported Modes Full–Switch Usage Information Command History Example You can configure all the data queues.
Command Modes ● EXEC ● EXEC Privilege Command History Usage Information Version 9.3(0.0) Introduced on the FC Flex IO module installed in the MXL 10/40GbE Switch. Use the show qos dcb-map command to display the enhanced transmission selection (ETS) and priority-based flow control (PFC) parameters used to configure server-facing Ethernet ports. The following table describes the show qos dcb-map output shown in the example below.
Local is enabled, Priority list is 4-5 Link Delay 45556 pause quantum 0 Pause Tx pkts, 0 Pause Rx pkts stack unit 1 stack-port all Admin mode is On Admin is enabled, Priority list is 4-5 Local is enabled, Priority list is 4-5 Link Delay 45556 pause quantum 0 Pause Tx pkts, 0 Pause Rx pkts 370 Data Center Bridging (DCB)
13 Debugging and Diagnostics The basic debugging and diagnostic commands are supported by the Dell Networking Operating System (OS).
Defaults level0 Enter the keyword level0 to run Level 0 diagnostics. Level 0 diagnostics check for the presence of various components and perform essential path verifications. In addition, they verify the identification registers of the components on the board. level1 Enter the keyword Level1 to run Level 1 diagnostics. Level 1 diagnostics is a smaller set of diagnostic tests with support for automatic partitioning.
offline stack-unit Place a stack unit in the offline state. Syntax Parameters Defaults offline stack-unit number number Enter the stack-unit number. The range is from 0 to 5. none Command Modes EXEC Privilege Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The system reboots when the off-line diagnostics complete. This reboot is an automatic process.
unit 0–0 counters Enter the keyword unit along with a port-pipe number, from 0 to 1, then the keyword counters to clear the counters on the selected port-pipe. cpu data-plane statistics Enter the keywords cpu data-plane statistics to clear the data plane statistics. cpu party-bus statistics Enter the keywords cpu party-bus statistics to clear the management statistics.
Parameters Defaults stack-unit 0–5 Enter the keyword stack-unit then 0 to 5 to select a stack ID. port-set 0–0 Enter the keywords port-set with a port-pipe number. none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show hardware layer3 Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe.
enter the keywords buffer unit, and queue (0-14 or all), and bufferinfo. The buffer unit default is 1. phy-firmwareversion Each member of the stack is updated automatically with the latest firmware while booting as well as during OIR. To dump the physical firmware version for stack units, enter the keywords phy-firmware-version.
Example (dataplane) Dell#show hardware stack-unit 0 cpu data-plane statistics bc pci driver statistics for device: rxHandle :0 noMhdr :0 noMbuf :0 noClus :0 recvd :0 dropped :0 recvToNet :0 rxError :0 rxDatapathErr :0 rxPkt(COS0) :0 rxPkt(COS1) :0 rxPkt(COS2) :0 rxPkt(COS3) :0 rxPkt(COS4) :0 rxPkt(COS5) :0 rxPkt(COS6) :0 rxPkt(COS7) :0 rxPkt(UNIT0) :0 transmitted :1696 txRequested :1696 noTxDesc :0 txError :0 txReqTooLarge :0 txInternalError :0 txDatapathErr :0 txPkt(COS0) :0 txPkt(COS1) :0 txPkt(COS2) :0
xe6 !ena xe7 !ena xe8 !ena xe9 !ena xe10 down xe11 !ena xe12 !ena xe13 !ena xe14 !ena xe15 !ena xe16 !ena xe17 !ena xe18 down xe19 !ena xe20 down Dell# Example (register) Example (unit details) 1G FD 1G FD 1G FD 1G FD 10G FD 1G FD 1G FD 1G FD 1G FD 1G FD 1G FD 1G FD 1G FD 1G FD 1G FD SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Forward Forward Forward Forward Forward Forward Block Forward Forward Forward Forward Forward Forward Forward Forward
************************************************ bcmLinkMonStatusShow: The Current Link Status Is Front End Link Status 0x200000000000000000000000 Front End Port Present Status0x000000000000000000000000 Back Plane Link Status 0x00000000 ************************************************ Link Status of all the ports in the Device - 0 The linkStatus of Front End Port 1 is FALSE The linkStatus of Front End Port 2 is FALSE The linkStatus of Front End Port 3 is TRUE The linkStatus of Front End Port 4 is FALSE The
----- Buffer Stats for Interface Te 1/3 Queue Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/4 Queue Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/5 Queue Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/6 Queue
Parameters interface interface Enter any of the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. priority-group Enter the keyword priority-group followed by id for specific priority group or keyword all. queue Enter the keyword queue followed by id for specific queue or keyword all. buffer-info To display total buffer information for the interface, enter the keywords bufferinfo.
Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue Maximum Shared Limit: 29514 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue Maximum Shared Limit: 29514 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue Maximum Shared Limit: 29514 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue Maximum Shared Lim
RX - 65 to 127 Byte Frame Counter RX - 128 to 255 Byte Frame Counter RX - 256 to 511 Byte Frame Counter RX - 512 to 1023 Byte Frame Counter RX - 1024 to 1518 Byte Frame Counter RX - 1519 to 1522 Byte Good VLAN Frame Counter RX - 1519 to 2047 Byte Frame Counter RX - 2048 to 4095 Byte Frame Counter RX - 4096 to 9216 Byte Frame Counter RX - Good Packet Counter RX - Packet/Frame Counter RX - Unicast Frame Counter RX - Multicast Frame Counter RX - Broadcast Frame Counter RX - Byte Counter RX - Control Frame Coun
● Interface all queue ucast {id | all} - egress queue-level snapshot for unicast packets only. ● Interface all queue mcast {id | all} - egress queue-level snapshot for multicast packets only. ● Interface all prio-group {id | all} - ingress priority-group level snapshot. Command Modes EXEC EXEC Privilege Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.0) Introduced on the MXL 10/40GbE Switch.
Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 unit: 3 port: 29 (interface Fo 1/172) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 unit: 3 port: 33 (interface Fo 1/176) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 unit: 3 port: 37 (interface Fo 1/180) --------------------------------------Q# TYPE Q# TOTAL BUFFER
UCAST UCAST UCAST UCAST UCAST UCAST UCAST UCAST UCAST UCAST MCAST MCAST MCAST MCAST MCAST MCAST MCAST MCAST MCAST Example displaying egress queue-level snapshot for unicast packets for the specific interface 2 3 4 5 6 7 8 9 10 11 0 1 2 3 4 5 6 7 8 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 Del#show hardware buffer-stats-snapshot resource interface fortyGigE 0/0 queue ucast 10 Unit 0 unit: 0 port: 1 (interface Fo 0/0) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS -----------------------
MCAST MCAST MCAST MCAST Example displaying ingress prioritygroup level snapshot for the specific interface 5 6 7 8 0 0 0 0 Dell#show hardware buffer-stats-snapshot resource interface fortyGigE 0/0 priority-group 7 Unit 0 unit: 0 port: 1 (interface Fo 0/0) --------------------------------------PG# SHARED CELLS HEADROOM CELLS --------------------------------------7 0 0 Dell#show hardware buffer-stats-snapshot resource interface fortyGigE 0/0 priority-group all Unit 0 unit: 0 port: 1 (interface Fo 0/0) ----
2044 2043 2042 2041 2040 2039 2036 2000 1999 1998 1997 1995 1917 1916 1915 1792 1791 25 Dell# Example (noncounters) GVRP traffic Redirects 0 ARP Reply Redirects 0 802.
action={act=CosQCpuNew, param0=7(0x07), param1=0(0x00)}, action={act=CopyToCpu, param0=0(0x00), param1=0(0x00)}, action={act=UpdateCounter, param0=1(0x01), param1=0(0x00)}, meter=NULL, counter={idx=2, mode=0x01, entries=1} ################# FP Entry for redirecting GVRP traffic to RSM ########### EID 2044: gid=1, slice=15, slice_idx=0x03, prio=0x7fc, flags=0x82, Installed tcam: color_indep=0, higig=0, higig_mask=0, KEY=0x00000000 00000000 00000000 0180c200 00210000 00000000 00000000 , FPF4=0x00 MASK=0x00000
Example displaying internal drops for the specific interface Example displaying internal drops for FC port 390 Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Packets dropped by FP (L2+L3) Drops Port bitmap zero Drops Rx VLAN Drops --- Ingress MAC counters--Ingress FCSDrops Ingress MTUExceeds --- MMU Drops --Ingress MMU Drops Ingress Drops Bytes HOL DROPS(TOTAL) HOL DROPS on COS0 HOL DROPS on COS1 HOL DROPS on COS2 HOL DROPS on COS3 HOL DROPS on COS4 HOL DROPS on COS5 HOL DROPS on COS6 HOL DROPS on COS7 HOL DROPS on COS8 HOL DROPS on COS9 HOL DROPS on COS10 HOL DROPS on COS11 HOL DROPS on COS12 HOL DROPS on COS13 HOL DROPS on COS14 TxPurge CellErr Aged Drops ---
14 Dynamic Host Configuration Protocol (DHCP) Dynamic host configuration protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on the configuration policies the network administrators determine. An MXL switch can operate as a DHCP server or DHCP client. As a DHCP client, the switch requests an IP address from a DHCP server.
• • • • • • • • • • • • • • • • • • • • • • • clear ipv6 dhcp snooping binding ip dhcp snooping ipv6 dhcp snooping ip dhcp snooping database ipv6 dhcp snooping database write-delay ip dhcp snooping binding IPv6 DHCP Snooping Binding ip dhcp snooping database renew ipv6 dhcp snooping database renew ip dhcp snooping trust ipv6 dhcp snooping trust ip dhcp source-address-validation ip dhcp snooping vlan ipv6 dhcp snooping vlan ip dhcp relay ip dhcp relay information-option ip dhcp relay source-interface ipv6 d
debug ip dhcp server Display the Dell Networking OS debugging messages for DHCP. Syntax debug ip dhcp server [events | packets] Parameters Defaults events Enter the keyword events to display the DHCP state changes. packet Enter the keyword packet to display packet transmission/reception. none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
disable Disable the DHCP server. Syntax disable DHCP Server is disabled by default. To enable the system to be a DHCP server, use the no disable command. Defaults Disabled Command Modes DHCP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. dns-server Assign a DNS server to clients based on address pool. Syntax Parameters Defaults dns-server address [address2...
excluded-address Prevent the server from leasing an address or range of addresses in the pool. Syntax excluded-address [address | low-address high-address] Parameters Defaults address Enter a single address to be excluded from the pool. low-address Enter the lowest address in a range of addresses to be excluded from the pool. high-address Enter the highest address in a range of addresses to be excluded from the pool.
Usage Information Version Description 9.14.1.3 This command replaces host command. Introduced on S3048–ON, S4048–ON, S4048T-ON, S6000–ON, S6010–ON, S6100–ON, Z9100–ON, S3100, S6000, S4810, S4820T, S5048F-ON, MXL, FN-IOM, and C9010. When you upgrade the Dell EMC Networking OS from an earlier version to 9.14.1.3 or later, the system converts the DHCP CONFIGURATION host command in the running configuration to the hostaddress command. If you downgrade the Dell EMC Networking OS from version 9.14.1.
Defaults hours Enter the number of hours of the lease. The range is from 0 to 23. minutes Enter the number of minutes of the lease. The range is from 0 to 59. infinite Specify that the lease never expires. 24 hours Command Modes DHCP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. network Specify the range of addresses in an address pool. Syntax Parameters Defaults network network /prefix-length network/ prefixlength Specify a range of addresses. Prefix-length range is from 17 to 31. none Command Modes DHCP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp conflict Display the address conflict log. Syntax show ip dhcp conflict address Parameters Defaults address Display a particular conflict log entry. none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The ip address dhcp command enables an Ethernet interface to acquire a DHCP server-assigned dynamic IP address. This setting persists after a switch reboot. If you enter the shutdown command on the interface, DHCP transactions are stopped and the dynamically-acquired IP address is saved.
● For a 10-GigabitEthernet Ethernet interface, enter TenGigabitEthernet then the slot/port numbers; for example, tengigabitethernet 1/3. Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug ip dhcp clients packets Enable the display of log messages for all DHCP packets sent and received on DHCP client interfaces.
renew dhcp interface Re-acquire a dynamic IP address on an Ethernet interface enabled as a DHCP client. Syntax Parameters renew dhcp interface type slot/port interface type slot/port Defaults ● For a 10-GigabitEthernet Ethernet interface, enter TenGigabitEthernet then the slot/port numbers; for example, tengigabitethernet 1/3. none Command Modes EXEC Privilege Command History Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Commands to Configure Secure DHCP DHCP, as defined by RFC 2131, provides no authentication or security mechanisms. Secure DHCP is a suite of features that protects networks that use dynamic address allocation from spoofing and attacks. arp inspection Enable dynamic arp inspection (DAI) on a VLAN.
arp inspection-trust Specify a port as trusted so that ARP frames are not validated against the binding table. Syntax arp inspection-trust Defaults Disabled Command Modes ● INTERFACE ● INTERFACE PORT-CHANNEL Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. arp inspection — enables dynamic ARP inspection on a VLAN. clear ip dhcp snooping Clear the DHCP binding table.
ip dhcp snooping Enable DHCP snooping globally. Syntax [no] ip dhcp snooping Defaults Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When enabled, no learning takes place until you enable snooping on a VLAN.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ipv6 dhcp snooping database write-delay To set time interval for storing the snooping binding entries in a file. Syntax [no] ipv6 dhcp snooping database write-delay value To disable the storing of snooping binding entries in a file, use the no ipv6 dhcp snooping writedelay command. Parameters Defaults value The range is from 5 to 21600.
Command History Version Description 9.13(0.0) Enhanced the command to map multiple IP addresses to one MAC address. Enhanced to support DHCP snooping in a VLT setup. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Instructions You can map multiple IP addresses to the same MAC address. Related Commands show ip dhcp snooping — displays the contents of the DHCP binding table.
Defaults none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 dhcp snooping database renew To load the binding entries from the file to DHCPv6 snooping binding database. Syntax ipv6 dhcp snooping database renew Defaults none Command Modes ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL. ip dhcp source-address-validation Enable the IP Source Guard. Syntax [no] ip dhcp source-address-validation [ipmac] Parameters Defaults ipmac Enable IP+MAC Source Address Validation. Disabled Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
ipv6 dhcp snooping vlan Enable ipv6 DHCP Snooping on VLAN or range of VLANs. Syntax [no] ip dhcp snooping vlan vlan-id To disable the ipv6 dhcp snooping on VLAN basis or range of VLAN, use the no ipv6 dhcp snooping vlan command. Parameters Defaults vlan-id Enter the name of a VLAN id or list of the VLANs to enable DHCP Snooping. Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.
Default remote-id WORD Enter the remote-id WORD option to configure the system to enable the remoteid string in option 82. circuit-id Enter the keyword circuit-id to configure the system to enable the circuit-id string in option–82. circuit-id hostname:port Enter the keywords circuit-id hostname:port to configure the circuit-id format that is sent to the server. trustdownstream Configure the system to trust Option 82 when it is received from the previous-hop router.
● For a 10-Gigabit Ethernet information, enter the keyword TenGigabitEthernet then the slot/port information. ● For a 40-Gigabit Ethernet information, enter the keyword FortyGigabitEthernet then the slot/port information. ● For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. ● For a Tunnel interface, enter the keyword tunnel then the tunnel ID. The range is from 1 to 16383. ● For a port channel interface, enter thee keyword port-channel then a number.
● For a port channel interface, enter thee keyword port-channel then a number. The range is from 1 to 128. ● For a VLAN interface, enter the keyword vlan then a number from 1 to 4094. Defaults Disabled Command Modes ● CONFIGURATION ● INTERFACE Supported Modes Full–Switch Command History Related Commands This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.14(1.
Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip dhcp snooping — clears the contents of the DHCP binding table. show ipv6 DHCP snooping Display the DHCPv6 snooping database. Syntax show ipv6 dhcp snooping Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.
ipv6 DHCP snooping verify mac-address Configure to enable verify source mac-address against ipv6 DHCP packet mac address. Syntax [no] ipv6 dhcp snooping verify mac-address To disable verify source mac-address against ipv6 DHCP packet mac address, use the no ipv6 dhcp snooping verify mac-address command. Defaults Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History 416 Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL.
15 Equal Cost Multi-Path (ECMP) Equal cost multi-path (ECMP) is supported on the Dell Networking OS. Topics: • • • • • • • • • ecmp-group hash-algorithm hash-algorithm ecmp hash-algorithm seed ip ecmp-group link-bundle-distribution trigger-threshold link-bundle-monitor enable show config show link-bundle distribution ecmp-group Provides a mechanism to monitor traffic distribution on an ECMP link bundle.
[number] lag {checksum | crc | xor} [number] nh-ecmp {checksum | crc | xor}[number] linecard number ip-sa-mask value ip-da-mask value | seed seedvalue }hash-algorithm {ecmp {crc16 | crc16cc | crc32MSB | crc32LSB | crcupper | dest-ip | flow-based-hashing {crc16|crc16cc|crc32MSB|crc32LSB|xor1| xor2|xor4|xor8|xor16}|lsb | xor1 | xor2 | xor4 | xor8 | xor16}[[hg {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16}]| [lag {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 |
| xor16 }| lsb | xor1 | xor2 | xor4 | xor8 | xor16 crc16 |crc16cc |crc32MSB |crc32LSB |xor1 |xor2 |xor4 |xor8 | xor16 ● lsb: Returns the LSB of the key as the hash ● xor1: Use CRC16_BISYNC_AND_XOR1 — Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor1 ● xor2: Use CRC16_BISYNC_AND_XOR2 — Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor2 ● xor4: Use CRC16_BISYNC_AND_XOR4 — Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor4 ● xor8: Use CRC16_BISYNC_AND_XOR8 — Upper 8 bits of CRC16-BISYNC and lower 8
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. Added flow-based-hashing support for hashing on ECMP. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To ensure that CRC is not used for LAG, set the default hash-algorithm method on ExaScale systems. For example,hash-algorithm ecmp xor lag checksum nh-ecmp checksum. To achieve the functionality of hash-align on the ExaScale platform, do not use CRC as a hash-algorithm method.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The hash value calculated with the hash-algorithm command is unique to the entire chassis. The default ECMP hash configuration is crc-lower. This command takes the lower 32 bits of the hash key to compute the egress port and is the “fall-back” configuration if you have not configured anything else.
ip ecmp-group Enable and specify the maximum number of ecmp that the L3 CAM hold for a route, By default, when maximum paths are not configured, the CAM can hold a maximum of 16 ecmp per route. Syntax ip ecmp-group {maximum-paths | {number} {path-fallback} To negate a command, use the no ip ecmp-group maximum-paths command. Parameters Defaults maximum-paths Specify the maximum number of ECMP for a route. The range is 2 to 64. path-fallback Use the keywords path-fallback to enable this feature.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show config Display the ECMP configuration. Syntax show config Command Modes CONFIGURATION-ECMP-GROUP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
16 FC FLEXIO FPORT The switch is a blade switch which is plugged into the Dell M1000 Blade server chassis.The blade module contains two slots for pluggable flexible module. With single FC Flex IO module, 4 ports are supported, whereas 8 ports are supported with both FC Flex IO modules. Each port can operate in 2G, 4G or 8G Fiber Channel speed. The topology-wise, FC Flex IOM is directly connected to a FC Storage.
• • • • show show show show fc zoneset fc zone fc alias fcoe-map feature fc Enable feature fc with FPort functionality. Syntax Parameters feature fc fport domain-id range Range Enter the range from 1 to 239. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands show fc zone — displays the configured zone. show fcoe-map — displays the fabric parameters. fc alias Create a zone alias name. Syntax fc alias ZoneAliasNamemember name To delete a zone alias name, use the no fc zone ZoneAliasName command. Parameters ZoneAliasNamem Enter the zone alias name. ember name Enter the WWPN, port ID, or domain/port. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.
Example Related Commands Dell(conf)#fc zoneset test1 Dell(conf-fc-zoneset-test1)#member ? WORD Zone Name Dell(conf-fc-zoneset-test1)#member show fc zoneset — displays the configured and active zoneset. show fcoe-map — displays the fabric parameters. fcoe-map Create an FCoE map which contains the parameters used to configure the links between server CNAs and a SAN fabric. Apply the FCoE map on a server-facing Ethernet port.
Parameters Defaults map-name Maximum: 32 alphanumeric characters. None Command Modes INTERFACE FIBRE_CHANNEL Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.0(1.3) Introduced on the S5000. An FCoE map is a template used to map FCoE and FC parameters in a converged fabric.
Related Commands show fc zoneset — displays the configured and active zoneset. show fc ns Display the devices in the name server database. Syntax Parameters show fc ns { switch } [brief] switch Enter the keyword switch to display all the devices in the name server database of the switch. brief Enter the keyword brief to display in brief devices in the name server database. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.
Symbolic Node Name Port Type Registered with NameServer Registered for SCN Switch Name Domain Id Switch Port Port Id Port Name Node Name Class of Service IP Address Symbolic Port Name Symbolic Node Name Port Type Registered with NameServer Registered for SCN Switch Name Domain Id Switch Port Port Id Port Name Node Name Class of Service IP Address Symbolic Port Name | Symbolic Node Name Port Type Registered with NameServer Registered for SCN Dell# Dell#show fc ns fabric brief Total number of devices = 2 Intf
Example Switch Mode Fibre Channel mode of operation of an FN IOM switch. Switch WWN Factory-assigned worldwide node (WWN) name of the MXL. The MXL WWN name is not user-configurable. Dell(conf)#do show fc switch Switch Mode : FPORT Switch WWN : 10:00:aa:00:00:00:00:ac Dell(conf)# show fc zoneset Display the configured and active zoneset.
10:00:8c:7c:ff:21:5f:8d 20:02:00:11:0d:03:00:00 Dell# Related Commands fc zone — creates a zone. fc zoneset — creates a zoneset. active-zoneset — activates the zoneset. show fc zone Display the configured zone. Syntax show fc zone [zonename ] Parameters zonename Enter the zone name to display the details. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.
Example Dell#show fc alias Zone Alias Name 0x030303 al1 Dell# Related Commands fc alias — creates a zone alias name. show fcoe-map Display the Fibre Channel and FCoE configuration parameters in FCoE maps. Syntax show fcoe-map Parameters None Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1.1.0 Introduced on the S5000.
Related Commands 434 fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric.
17 FIPS Cryptography To configure federal information processing standards (FIPS) cryptography, use the following commands on the switch. Topics: • • • • fips mode enable show fips status show ip ssh ssh fips mode enable Enable the FIPS cryptography mode on the platform. Syntax fips mode enable To disable the FIPS cryptography mode, use the no fips mode enable command.
Example Dell#show fips status FIPS Mode : Disabled Dell# Dell#show fips status FIPS Mode : Enabled Dell# show ip ssh Display information about established SSH sessions Syntax show ip ssh Defaults none Command Modes EXEC EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip ssh SSH server : enabled. SSH server version : v1 and v2.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. -c encryption cipher Enter the following encryption cipher to use. (For v2 clients only.) Without the FIPS mode enabled: ● 3des-cbc: Force ssh to use 3des-cbc encryption cipher. With the FIPS mode enabled: ● aes128–cbc: Force ssh to use the aes128–cbc encryption cipher. ● aes256–cbc: Force ssh to use the aes256–cbc encryption cipher. -l username (OPTIONAL) Enter the keyword —l then the user name used in this SSH session.
With FIPS mode enabled: Dell#ssh 10.11.8.12 ? -c Encryption cipher to use (for v2 client -l User name option -m HMAC algorithm to use (for v2 clients only) -p SSH server port option (default 22) Dell#ssh 10.11.8.12 -c ? aes128-cbc Force ssh to use aes128-cbc encryption cipher aes256-cbc Force ssh to use aes256-cbc encryption cipher Dell#ssh 10.11.8.
18 FIP Snooping In a converged Ethernet network, the switch can operate as an intermediate Ethernet bridge to snoop on Fibre Channel over Ethernet initialization protocol (FIP) packets during the login process on Fibre Channel over Ethernet (FCoE) forwarders (FCFs). Acting as a transit FIP snooping bridge, the switch uses dynamically-created ACLs to permit only authorized FCoE traffic to be transmitted between an FCoE end-device and an FCF.
clear fip-snooping statistics Clears the statistics on the FIP packets snooped on all VLANs, a specified VLAN, or a specified port interface. Syntax clear fip-snooping statistics [interface vlan vlan-id | interface port-type port/slot | interface port-channel port-channel-number] Parameters vlan-id Enter the VLAN ID of the FIP packet statistics to be cleared. port-type port/ slot Enter the port-type and slot number of the FIP packet statistics to be cleared.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The maximum number of FCFs supported per FIP snooping-enabled VLAN is four. The maximum number of FIP snooping sessions supported per ENode server is 16. fip-snooping fc-map Configure the FC-MAP value FIP snooping uses on all VLANs.
show fip-snooping config Display the FIP snooping status and configured FC-MAP values. Syntax show fip-snooping config Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
----------------------- ---------- ----d4:ae:52:1b:e3:cd Te 0/8 54:7f:ee:37:34:40 100 62:00:11 show fip-snooping fcf Display information on the FCFs in FIP-snooped sessions, including the FCF interface and MAC address, FCF interface, VLAN ID, FC-MAP value, FKA advertisement period, and number of ENodes connected. Syntax Parameters show fip-snooping fcf [fcf-mac-address] fcf-mac-address Enter the MAC address of the FCF to display.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show fip-snooping sessions command shown in the following example. Field Description ENode MAC MAC address of the ENode. ENode Interface Slot/ port number of the interface connected to the ENode. FCF MAC MAC address of the FCF.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show fip-snooping statistics command shown in the following example. Field Description Number of VLAN Requests Number of FIP-snoop VLAN request frames received on the interface. Number of VLAN Notifications Number of FIP-snoop VLAN notification frames received on the interface.
Field Description Number of FCF Discovery Timeouts Number of FCF discovery timeouts that occurred on the interface. Number of VN Port Session Timeouts Number of VN port session timeouts that occurred on the interface. Number of Session failures due to Hardware Config Number of session failures due to hardware configuration that occurred on the interface.
Number Number Number Number Number Number Number Number Number Number Number Number Number Number Number Number of of of of of of of of of of of of of of of of FDISC :0 FLOGO :0 Enode Keep Alive :0 VN Port Keep Alive :0 Multicast Discovery Advertisement :4451 Unicast Discovery Advertisement :2 FLOGI Accepts :2 FLOGI Rejects :0 FDISC Accepts :16 FDISC Rejects :0 FLOGO Accepts :0 FLOGO Rejects :0 CVL :0 FCF Discovery Timeouts :0 VN Port Session Timeouts :0 Session failures due to Hardware Config :0 show fi
*1 100 448 FIP Snooping 0X0EFC00 1 2 17
19 Force10 Resilient Ring Protocol (FRRP) FRRP is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the spanning tree protocol (STP). The resilient ring protocol is an efficient protocol that transmits a high-speed token across a ring to verify the link status. All the intelligence is contained in the master node with practically no intelligence required of the transit mode. Important Points to Remember ● ● ● ● FRRP is media- and speed-independent.
● Topology change Rx and Tx counters ● The number of state change counters Example Dell#clear frrp Clear frrp statistics counter on all ring [confirm] yes Dell#clear frrp 4 Clear frrp statistics counter for ring 4 [confirm] yes Dell# Related Commands show frrp — displays the resilient ring protocol configuration. debug frrp Clear the FRRP statistics counters.
Defaults none Command Modes CONFIGURATION (conf-frrp) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. disable Disable the resilient ring protocol. Syntax disable To enable the Resilient Ring Protocol, use the no disable command. Defaults Disabled Command Modes CONFIGURATION (conf-frrp) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM.
Command Modes CONFIGURATION (conf-frrp) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command causes the Ring Manager to take ownership of the two ports after IFM validates the configuration. Ownership is relinquished for a port only when the interface does not play a part in any control VLAN, that is, the interface does not belong to any ring.
protocol frrp Enter the Resilient Ring Protocol and designate a ring identification. Syntax protocol frrp {ring-id} To exit the ring protocol, use the no protocol frrp {ring-id} command. Parameters Defaults ring-id Enter the ring identification number. The range is from 1 to 255. none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example (1) Example (2 Summary) Related Commands Dell#show frrp 1 Ring protocol 1 is in Master mode Ring Protocol Interface: Primary : TenGigabitEthernet 0/6 State: Forwarding Secondary: Port-channel 100 State: Blocking Control Vlan: 1 Ring protocol Timers: Hello-Interval 50 msec Dead-Interval 150 msec Ring Master's MAC Address is 00:01:e8:13:a3:19 Topology Change Statistics: Tx:110 Rx:45 Hello Statistics: Tx:13028 Rx:12348 Number of state Changes: 34 Member Vlans: 1000-1009 Dell# Dell#show frrp 2 summar
20 GARP VLAN Registration (GVRP) The Dell Networking Operating System (OS) supports the basic GVRP commands. The generic attribute registration protocol (GARP) mechanism allows the configuration of a GARP participant to propagate through a network quickly. A GARP participant registers or de-registers its attributes with other participants by making or withdrawing declarations of attributes. At the same time, based on received declarations or withdrawals, GARP handles attributes of other participants.
• • • • • show config show garp timers show gvrp clear gvrp statistics show vlan clear gvrp statistics Clear GVRP statistics on an interface. Syntax clear gvrp statistics interface interface Parameters interface interface Defaults Enter the following keywords and slot/port or number information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
disable Globally disable GVRP. Syntax disable To re-enable GVRP, use the no disable command. Defaults Enabled. Command Modes CONFIGURATION-GVRP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. gvrp enable — enables GVRP on physical interfaces and LAGs. protocol gvrp — access GVRP protocol. garp timers Set the intervals (in milliseconds) for sending GARP messages.
● Leave Timer — Leave announces the willingness to de-register with other participants. Together with Join, Leave messages help GARP participants complete attribute reregistration and deregistration. The leave timer starts after receipt of a leave message sent for de-registering some attribute information. If a Join message is not received before the Leave time expires, the GARP application entity removes the attribute information as requested.
Usage Information Fixed registration prevents an interface, configured using the command line, to belong to a VLAN (static configuration) from being unconfigured when it receives a Leave message. Therefore, Registration mode on that interface is fixed. Normal registration is the default registration. The port’s membership in the VLAN depends on GVRP. The interface becomes a member of a VLAN after learning about the VLAN through GVRP.
Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show garp timers GARP Timers Value (milliseconds) ---------------------------------------Join Timer 200 Leave Timer 600 LeaveAll Timer 10000 Dell# garp timers — sets the intervals (in milliseconds) for sending GARP messages. show gvrp Display the GVRP configuration.
Te 3/7 Te 3/8 Related Commands Disabled Disabled No No show gvrp statistics — displays the GVRP statistics. clear gvrp statistics Clear GVRP statistics on an interface. Syntax Parameters clear gvrp statistics {interface interface | summary} interface interface summary Defaults Enter the following keywords and slot/port or number information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Failed Registrations: 0 Dell# Related Commands show gvrp — displays the GVRP configuration. show vlan Display the global VLAN configuration. Syntax show vlan Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
21 Internet Group Management Protocol (IGMP) The IGMP commands are supported by the Dell Networking Operating System (OS).
● When enabled, IGMP snooping Querier starts after one query interval in case no IGMP general query (with IP SA lower than its VLAN IP address) is received on any of its VLAN members. ● When enabled, IGMP snooping Querier periodically sends general queries with an IP source address of the VLAN interface. If it receives a general query on any of its VLAN member, it checks the IP source address of the incoming frame.
To return to the default value, use the no ip igmp querier-timeout command. Parameters Defaults seconds Enter the number of seconds the router must wait to become the new querier. The range is from 60 to 300. The default is 125 seconds. 125 seconds Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ip igmp version Manually set the version of the router to IGMPv2 or IGMPv3. Syntax ip igmp version {2 | 3} Parameters Defaults 2 Enter the number 2 to set the IGMP version number to IGMPv2. 3 Enter the number 3 to set the IGMP version number to IGMPv3. 2 (that is, IGMPv2) Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Queriers normally send some queries when a leave message is received prior to deleting a group from the membership database. There may be situations when you require a fast deletion of a group.
ip igmp snooping mrouter Statically configure a VLAN member port as a multicast router interface. Syntax ip igmp snooping mrouter interface interface To delete a specific multicast router interface, use the no igmp snooping mrouter interface interface command. Parameters interface interface Defaults Enter the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Parameters vlan number Enter the keyword vlan then the VLAN number. The range is from 1 to 4094. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
22 Interfaces The commands in this chapter are supported by Dell Networking Operating System (OS).
• • • • • • • • • • • • • • • • • • • speed (for 1000/10000/auto interfaces) stack-unit portmode wavelength Port Channel Commands channel-member group interface port-channel minimum-links port-channel failover-group show config show interfaces port-channel Time Domain Reflectometer (TDR) tdr-cable-test show tdr UDP Broadcast debug ip udp-helper ip udp-broadcast-address ip udp-helper udp-port show ip udp-helper Basic Interface Commands The following commands are for Physical, Loopback, and Null interfaces.
learning-limit Defaults (OPTIONAL) Enter the keywords learning-limit to clear unknown source address (SA) drop counters when MAC learning limit is configured on the interface. Without an interface specified, the command clears all interface counters. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM and added support to clear the interface configurations corresponding to a range of ports. 9.2(0.
cx4-cable-length Configure the length of the cable to be connected to the selected CX4 port. Syntax Parameters Defaults [no] cx4-cable-length {long | medium | short} long | medium | short Enter the keyword that matches the cable length to be used at the selected port: ● short = For 1-meter and 3-meter cable lengths. ● medium = For 5-meter cable length. ● long = For 10-meter and 15-meter cable lengths.
To disable dampening, use the no dampening [[[[half-life] [reuse-threshold]] [suppress-threshold]] [max-suppress-time]] command. Parameters Defaults half-life Enter the number of seconds after which the penalty is decreased. The penalty decreases half after the half-life period expires. The range is from 1 to 30 seconds. The default is 5 seconds. reuse-threshold Enter a number as the reuse threshold, the penalty value below which the interface state is changed to “up”. The range is from 1 to 20000.
Defaults None Command Modes CONFIGURATION Supported Modes Full–Switch Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Usage Information Example Version Description 9.9(0.0) Introduced on the MXL and FN IOM.
Usage Information Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Important Points to Remember: ● Spaces between characters are not preserved after entering this command unless you enclose the entire description in quotation marks (“desc_text”). ● Entering a text string after the description command overwrites any previous text string that you previously configured as the description.
To remove a management application configuration, use the no application {all | application-type} command. Parameters Defaults application-type Enter any of the following keywords: ● For DNS, enter the keyword dns. ● For FTP, enter the keyword ftp. ● For NTP, enter the keyword ntp. ● For Radius, enter the keyword radius. ● For sFlow collectors, enter the keyword sflow-collector. ● For SNMP (traps and MIB responses), enter the keywords snmp . ● For SSH, enter the keyword ssh .
Version Description 9.14(1.0) Introduced arp-inspection option. 9.14(0.0) Introduced on the platforms S4048–ON, S6100–ON, Z9100–ON, S4048T-ON, S3048–ON, S6000, S6010–ON, S5048F-ON, FN-IOM and MXL. 9.13(0.2P2) Introduced on the S3100. Usage Information This command has to be configured before the interface moves to Err-disabled state. If not, the recovery action is not performed. Related Commands errdisable recovery interval— Configure recovery timer interval for an interface.
Defaults tx on Enter the keywords tx on to send control frames from this port to the connected device when a higher rate of traffic is received. This is the default value on the send side. tx off Enter the keywords tx off so that flow control frames are not sent from this port to the connected device when a higher rate of traffic is received. negotiate (Optional) Enter the keyword negotiate to enable the pause-negotiation with the egress port of the peer device.
NOTE: The flow control must be off (rx off tx off) before configuring the half duplex. Example (partial) Example (Monitor Session) Dell(conf-if-tengig-0/1)#show config ! interface TenGigabitEthernet 0/1 no ip address switchport no negotiation auto flowcontrol rx off tx on no shutdown ...
show interfaces — displays the negotiated flow control parameters. interface Configure a physical interface on the switch. Syntax Parameters Defaults interface interface interface Enter one of the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a Fibre Channel interface, enter the keyword FibreChannel, then the slot/port information. Not configured.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf)#interface loopback 1655 Dell(conf-if-lo-1655)# interface — configures a physical interface. interface null — configures a Null interface. interface port-channel — configures a port channel. interface vlan — configures a VLAN.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You cannot delete the Null interface. The only configuration command possible in a Null interface is ip unreachables. Dell(conf)#interface null 0 Dell(conf-if-nu-0)# interface — configures a physical interface.
Usage Information When creating an interface range, interfaces appear in the order they are entered; they are not sorted. The command verifies that interfaces are present (physical) or configured (logical). Important Points to Remember: ● Bulk configuration is created if at least one interface is valid. ● Non-existing interfaces are excluded from the bulk configuration with a warning message. ● The interface range prompt includes interface types with slot/port information for valid interfaces.
Vlan 2–100, Port 1–25 Dell(config-if-range)# no shutdown Dell(config-if-range)# Related Commands interface port-channel — configures a port channel group. interface vlan — configures a VLAN interface. show config (from INTERFACE RANGE mode) — shows the bulk configuration interfaces. show range — shows the bulk configuration ranges. interface range macro (define) Defines a macro for an interface range and then saves the macro in the running configuration.
interface range macro name Run the interface-range macro to automatically configure the pre-defined range of interfaces. Syntax interface range macro name Parameters Defaults name Enter the name of an existing macro. none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Example (Single Range) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
interface port-channel — configures a port channel group. intf-type cr4 autoneg Set the interface type as CR4 with auto-negotiation enabled. Syntax intf-type cr4 autoneg If you configure intf-type cr4 autoneg, use the no intf-type cr4 autoneg command to set the interface type as cr4 with autonegotiation disabled. Defaults Not configured Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
load-balance By default, Dell Networking OS uses an IP 4-tuple (IP SA, IP DA, Source Port, and Destination Port) to distribute IP traffic over members of a Port Channel as well as equal-cost paths. To designate another method to balance traffic over Port Channel members, use the load-balance command.
load-balance hg Choose the traffic flow parameters the hash calculation uses while distributing the traffic across internal higig links.
monitor interface Monitor counters on a single interface or all interfaces on a line card. The screen is refreshed every five seconds and the CLI prompt disappears. Syntax monitor interface [interface] To disable monitoring and return to the CLI prompt, press the q key. Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: ● For the management port, enter the keyword managementethernet then the slot (0 or 1) and the port (0).
Output packets: 64B packets: Over 64B packets: Over 127B packets: Over 255B packets: Over 511B packets: Over 1023B packets: Error statistics: Input underruns: Input giants: Input throttles: Input CRC: Input IP checksum: Input overrun: Output underruns: Output throttles: m l T q - 9401589 67 49166 350 1351 286 2781 0 0 0 0 0 0 0 pps pps pps pps pps pps pps 1 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 pps pps pps pps pps pps pps pps 0 0 0 0 0 0 0 0 Change mode Page up Increase refresh interval Quit
● The VLAN link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the VLAN members. For example, the VLAN contains tagged members with Link MTU of 1522 and IP MTU of 1500 and untagged members with Link MTU of 1518 and IP MTU of 1500. The VLAN’s Link MTU cannot be higher than 1518 bytes and its IP MTU cannot be higher than 1500 bytes. The following shows the difference between Link MTU and IP MTU.
You can display master/slave settings with the show interfaces command.
portmode hybrid To accept both tagged and untagged frames, set a physical port or port-channel. A port configured this way is identified as a hybrid port in report displays. Syntax portmode hybrid To return a port to accept either tagged or untagged frames (non-hybrid), use the no portmode hybrid command. Defaults non-hybrid Command Modes INTERFACE (conf-if-interface-slot/port) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.
x G i V - Dot1x untagged, X - Dot1x tagged GVRP tagged, M - Trunk, H - VSN tagged Internal untagged, I - Internal tagged, v - VLT untagged, VLT tagged Name: TenGigabitEthernet 3/2 802.1QTagged: Hybrid Vlan membership: Q Vlans U 20 T 10 Native VlanId: 20.
rate-interval (Configuration Mode) Configure the traffic sampling interval for all physical and logical port-channel interfaces globally. The support to configure rate-interval globally enables you to modify the default interval rate for all physical and logical interfaces at one time. Syntax rate-interval seconds Use the no rate-interval command to remove the sampling interval configuration. Parameters seconds Enter the number of seconds for which to collect traffic data.
Usage Information Example Version Description 9.7(0.0) Introduced on the MXL switch. By default, the switch processes the RFI errors transmitted by remote peers and brings down the interface when an RFI error is detected. Dell(conf-if-te-1/3)#remote-fault-signaling rx ? on Enable off Disable show config Display the interface configuration. Syntax show config Command Modes INTERFACE Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.
switchport no shutdown Dell(conf-if-range-te-1/1-2)# show interfaces Display information on a specific physical interface or virtual interface. Syntax show interfaces interface Parameters interface Enter one of the following keywords and slot/port or number information: ● For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. ● For a management interface, enter the keyword ManagementEthernet then the slot/port information. The slot range is 0 to 1 and the port range is 0.
NOTE: After the counters are cleared, the line-rate continues to increase until it reaches the maximum line rate. When the maximum line rate is reached, there is no change in the line-rate. User Information The following table describes the show interfaces command shown in the 10G (TeraScale) Example below. Line Description TenGigabitEther net 2/0... Interface type, slot/port, and administrative and line protocol status. Hardware is...
Example (10G port) Usage Information Example (1G SFP) 500 Interfaces Line Description Time since... Elapsed time since the last interface status change (hh:mm:ss format). Dell#show interfaces tengigabitethernet 2/1 TenGigabitEthernet 2/1 is up, line protocol is up Hardware is Dell Force10Eth, address is 00:01:e8:05:f7:3a Interface index is 100990998 Internet address is 213.121.22.
Output 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Time since last interface status change: 21:13:36 Dell# Example (ManagementEth ernet) Related Commands Dell#show interface managementethernet ? 0/0 Management Ethernet interface number Dell#show interface managementethernet 0/0 ManagementEthernet 0/0 is up, line protocol is up Hardware is DellForce10Eth, address is 00:1e:c9:f1:00:05 Current address is 00:1e:c9:f1:00:05 Pluggable media not present Interface index is 235159752 Internet address is 10.
MTU 1554 bytes, IP MTU 1500 bytes LineSpeed 1000 Mbit, Mode full duplex, Master ARP type: ARPA, ARP Timeout 04:00:00 Last clearing of "show interfaces" counters 00:12:42 Queueing strategy: fifo Input Statistics: 10 packets, 10000 bytes 0 Vlans 0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 10 over 511-byte pkts, 0 over 1023-byte pkts 0 Multicasts, 0 Broadcasts 0 runts, 0 giants, 0 throttles 0 CRC, 0 overrun, 0 discarded Output Statistics: 1 packets, 64 bytes, 0 underruns 1 6
Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM and added support to display the interface configurations corresponding to a range of ports. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM and added support to display the interface configurations corresponding to a range of ports.. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show interfaces description command shown in the Example below.
Interface index is 34148609 Internet address is not set Mode of IP Address Assignment : NONE DHCP Client-ID :tenG130001ec9f10005 MTU 1554 bytes, IP MTU 1500 bytes LineSpeed auto Flowcontrol rx off tx off ARP type: ARPA, ARP Timeout 04:00:00 Last clearing of "show interface" counters 5d5h24m Queueing strategy: fifo Input Statistics: 0 packets, 0 bytes 0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 0 Multicasts, 0 Broadcasts 0 runts,
● EXEC Privilege Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM and added support to display the interface configurations corresponding to a range of ports. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM and added support to display the interface configurations corresponding to a range of ports. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show interfaces switchport command for the following example. Items Description Name Displays the interface’s type, slot, and port number. 802.
show interfaces transceiver Display the physical status and operational status of an installed transceiver. The output also displays the transceiver’s serial number. Syntax show interfaces tengigabitethernet slot/port transceiver Parameters tengigabitethern et For a 10G interface, enter the keyword tengigabitethernet then the slot/port information. NOTE: This command also enables you to view information corresponding to a range of ports.
Line Description Bias Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. TX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. RX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. Temp High Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Voltage High Warning threshold Factory-defined setting. Value can differ between SFP and SFP+.
Line Description Data Ready state This field indicates that the transceiver has achieved power up and data is ready. Bar This is set to true if data is ready to be sent and set to false if data is being transmitted. Rx LOS state This is the digital state of the Rx_LOS output pin. This is set to true if the operating status is down. Tx Fault state This is the digital state of the Tx Fault output pin. Rate Select state This is the digital state of the SFP rate_select input pin.
Example Line Description Tx Power Low Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Rx Power Low Warning Flag This can be either true or false, depending on the Current Rx power value displayed above. Dell#show interfaces tengigabitethernet 1/1 transceiver SFP is present.
SFP 1 RS state = False SFP 1 Tx Disable state = False =================================== SFP 1 Temperature High Alarm Flag = False SFP 1 Voltage High Alarm Flag = False SFP 1 Tx Bias High Alarm Flag = False SFP 1 Tx Power High Alarm Flag = False SFP 1 Rx Power High Alarm Flag = False SFP 1 Temperature Low Alarm Flag = False SFP 1 Voltage Low Alarm Flag = False SFP 1 Tx Bias Low Alarm Flag = False SFP 1 Tx Power Low Alarm Flag = False SFP 1 Rx Power Low Alarm Flag = True ===================================
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The shutdown command marks a physical interface as unavailable for traffic. To discover if an interface is disabled, use the show ip interface brief command. Disabled interfaces are listed as down. Disabling a VLAN or a port channel causes different behavior. When you disable a VLAN, the Layer 3 functions within that VLAN are disabled.
Related Commands ● negotiation auto — enables or disables auto-negotiation on an interface. stack-unit portmode Split a single 40G port into 4-10G ports on the switch. Syntax stack-unit stack-unit-number port number portmode quad Parameters Defaults stack-unit Enter the stack member unit identifier of the stack member to reset. The range is 0 to 5.
Usage Information Version Description 9.10(0.0) Introduced on the S6000, S6000–ON, S5000, S4810, S4820T, S3048–ON, S4048–ON, M I/O Aggregator, FN I/O Module, MXL, C9010, S3100 series, and Z9100-ON. The wavelength can be configured only on a tunable 10–Gigabit SFP+ optic. The wavelength range is from 1528.3 nm to 1568.77nm. If you configure the wavelength on a non-tunable optic, there is no change to the existing wavelength.
Usage Information Use the interface port-channel command to access this command. You cannot add an interface to a Port Channel if the interface contains an IP address in its configuration. Link MTU and IP MTU considerations for Port Channels are: ● All members must have the same link MTU value and the same IP MTU value. ● The Port Channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members.
Related Commands port-channel failover-group — accesses PORT-CHANNEL FAILOVER-GROUP mode to configure a LAG failover group. show interfaces port-channel — displays information on configured Port Channel groups. interface port-channel Create a Port Channel interface, which is a link aggregation group (LAG) containing 16 physical interfaces on the MXL switch. Syntax interface port-channel channel-number To delete a Port Channel, use the no interface port-channel channel-number command.
Parameters Defaults number Enter the number of links in a LAG that must be in “oper up” status. The range is from 1 to 16. The default is 1. 1 Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-po-1)#show config ! interface Port-channel 1 no ip address shutdown Dell(conf-if-po-1)# show interfaces port-channel Display information on configured Port Channel groups. Syntax Parameters show interfaces port-channel [channel-number] [brief] channel-number For a Port Channel interface, enter the keywords port-channel then a number.
Example (EtherScale) User Information 520 Interfaces Field Description Members in this... Displays the interfaces belonging to this port channel. ARP type:... Displays the ARP type and the ARP timeout value for the interface. Last clearing... Displays the time when the show interfaces counters were cleared. Queueing strategy. States the packet queuing strategy. FIFO means first in first out. packets input... Displays the number of packets and bytes into the interface. Input 0 IP packets...
Example (brief) Field Description Status Displays the status of the port channel. ● down — if the port channel is disabled (shutdown) ● up — if the port channel is enabled (no shutdown) Uptime Displays the age of the port channel in hours:minutes:seconds. Ports Lists the interfaces assigned to this port channel. (untitled) Displays the status of the physical interfaces (up or down). ● In Layer 2 port channels, an * (asterisk) indicates which interface is the primary port of the port channel.
Usage Information The interface must be enabled to run the test or an error message is generated: Dell#tdr-cable-test tengigabitethernet 5/2 %Error: Interface is disabled Te 5/2 Related Commands show tdr — displays the results of the TDR test. show tdr Display the TDR test results. Syntax show tdr interface Parameters Defaults interface Enter the keyword TenGigabitEthernet then the slot/port information for the 100/1000 Ethernet interface.
UDP Broadcast The user datagram protocol (UDP) broadcast feature is a software-based method to forward low throughput (not to exceed 200 pps) IP/UDP broadcast traffic arriving on a physical or VLAN interface. Important Points to Remember ● Routing information protocol (RIP) is not supported with the UDP Broadcast feature. ● If you configure this feature on an interface using the ip udp-helper udp-port command, the ip directedbroadcast command becomes ineffective on that interface.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Enter an IP broadcast address in dotted decimal format (A.B.C.D). Usage Information When a UDP broadcast packet is flooded out of an interface, and the outgoing interface is configured using this command, the outgoing packet’s IP destination address is replaced with the configured broadcast address.
Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip udp-helper -------------------------------------------------Port UDP port list -------------------------------------------------Te 1/1 656, 658 Te 1/2 All debug ip udp-helper — enables debug and displays the debug information on a console.
23 IPv4 Routing The basic IPv4 commands are supported by Dell Networking Operating System (OS).
arp To associate an IP address with a multicast MAC address in the switch when you configure multicast mode of the network load balancing (NLB), use the address resolution protocol (ARP). Syntax arp ip-address multicast-mac-address interface To remove an ARP address, use the no arp ip-address command. Parameters Defaults ip-address Enter an IP address in dotted decimal format.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. arp retries Set the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request. Syntax arp retries number Parameters Defaults number Enter the number of retries. The range is from 5 to 20. The default is 5.
clear arp-cache Clear the dynamic ARP entries from a specific interface or optionally delete (no-refresh) ARP entries from the content addressable memory (CAM). Syntax Parameters clear arp-cache [interface | ip ip-address] [no-refresh] interface (OPTIONAL) Enter the following keywords and slot/port or number information: ● For the Management interface, enter the keyword ManagementEthernet then the slot/port information. The slot range is from 0 to 1 and the port range is 0.
clear ip fib stack-unit Clear all forwarding information base (FIB) entries in the specified stack unit (use this command with caution, refer to Usage Information.) Syntax clear ip fib stack-unit unit-number Parameters unit-number Enter the number of the stack unit. The range is from 0 to 5. Command Modes EXEC EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug arp View information on ARP transactions. Syntax debug arp [interface] [count value] To stop debugging ARP transactions, use the no debug arp command. Parameters Defaults interface (OPTIONAL) Enter the following keywords and slot/port or number information: ● For the Management interface, enter the keyword ManagementEthernet then the slot/port information.
Example Related Commands Dell#debug ip dhcp 00:12:21 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP Request, hops = 0, XID = 0xbf05140f, secs = 0, hwaddr = 00:60:CF:20:7B:8C, giaddr = 0.0.0.0 00:12:21 : %RELAY-I-BOOTREQUEST: Forwarded BOOTREQUEST for 00:60:CF:20:7B:8C to 14.4.4.2 00:12:26 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP Request, hops = 0, XID = 0xbf05140f, secs = 5, hwaddr = 00:60:CF:20:7B:8C, giaddr = 0.0.0.
Supported Modes Full–Switch Command History Example Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ICMP: ICMP: ICMP: ICMP: ICMP: ICMP: ICMP: ICMP: echo request rcvd from src 40.40.40.40 src 40.40.40.40, dst 40.40.40.40, echo src 40.40.40.40, dst 40.40.40.40, echo echo request sent to dst 40.40.40.40 echo request rcvd from src 40.40.40.40 src 40.40.40.40, dst 40.40.40.40, echo src 40.40.40.40, dst 40.40.40.
Field Description len Displays the packet’s length. sending, rcvd, fragment, sending broad/ multicast proto, unroutable The last part of each line lists the status of the packet. TCP src= Displays the source and destination ports, the sequence number, the acknowledgement number, and the window size of the packets in that TCP packets. UDP src= Displays the source and destination ports for the UDP packets. ICMP type= Displays the ICMP type and code.
%Error: port operator LT not supported in access-list debug %Error: port operator RANGE not supported in access-list debug %Error: port operator NEQ not supported in access-list debug Dell#00:10:45: %RPM0-P:CP %IPMGR-3-DEBUG_IP_PACKET_ACL_AMBIGUOUS_EXP: Ambiguous rules not supported in access-list debug, access-list debugging is turned off Dell# icmp6-redirect enable Enable ICMP and ICMP6 redirects.
ip directed-broadcast Enables the interface to receive directed broadcast packets. Syntax ip directed-broadcast To disable the interface from receiving directed broadcast packets, use the no ip directedbroadcast command. Defaults Disabled (that is, the interface does not receive directed broadcast packets) Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ip domain-lookup To address resolution (that is, DNS), enable dynamic host-name. Syntax ip domain-lookup To disable DNS lookup, use the no ip domain-lookup command. Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To fully enable DNS, also specify one or more domain name servers with the ip name-server command.
ip helper-address Specify the address of a DHCP server so that DHCP broadcast messages can be forwarded when the DHCP server is not on the same subnet as the client. Syntax ip helper-address ip-address To remove a DHCP server address, use the no ip helper-address command. Parameters Defaults ip-address Enter an IP address in dotted decimal format (A.B.C.D). Not configured. Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.
ip host Assign a name and IP address to be used by the host-to-IP address mapping table. Syntax ip host name ip-address To remove an IP host, use the no ip host name [ip-address] command. Parameters Defaults name Enter a text string to associate with one IP address. ip-address Enter an IP address, in dotted decimal format, to be mapped to the name. Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.
Usage Information Version Description 9.3(0.0) Introduced on the MXL platform. You can enable the mechanism to configure the source or the originating interface from which the packet (the device that generates the ICMP error messages) is received by the switch to send the loopback address instead of its source IP address to be used in the ICMP unreachable messages and in the traceroute command output. The loopback address must be unique in a particular domain.
Usage Information Version Description 9.3(0.0) Introduced on the MXL platform. You can enable the mechanism to configure the source or the originating interface from which the packet (the device that generates the ICMP error messages) is received by the switch to send the loopback address instead of its source IP address to be used in the ICMP unreachable messages and in the traceroute command output. The loopback address must be unique in a particular domain.
Defaults No name servers are configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The system does not support sending DNS queries over a VLAN. DNS queries are sent out on all other interfaces, including the Management port. ip proxy-arp Enable proxy ARP on an interface.
distance (OPTIONAL) Enter the value of the distance metric assigned to the route. The range is from 1 to 255. name description (OPTIONAL) Enter the keyword name and the description for the IPv4 static route configuration. Defaults permanent (OPTIONAL) Enter the keyword permanent to specify that the route must not be removed even if the interface assigned to that route goes down. The route must be currently active to be installed in the routing table.
ip tcp initial-time Define the wait duration in seconds for the TCP connection to be established. Syntax ip tcp initial-time <8-75> To restore the default behavior, which causes the wait period to be set as eight seconds, use the no ip tcp initial-time command. Parameters <8-75> Wait duration in seconds for the TCP connection to be established. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. management route Configure a static route that points to the Management interface or a forwarding router. Syntax management route {{ipv4-address]/mask | {forwarding-router-address | managementethernet} To remove a static route, use the no management route{{ip-address mask | {ipv6address prefix-length}}{forwarding-router-address | managementethernet} command. Parameters ipv4-address]/ mask Enter an IPv4 Address (A.B.C.
macaddress mac- (OPTIONAL) Enter the keyword macaddress then a MAC address in address mask nn:nn:nn:nn:nn:nn format. Enter the optional MAC address mask in nn:nn:nn:nn:nn format also. static (OPTIONAL) Enter the keyword static to view entries entered manually. dynamic (OPTIONAL) Enter the keyword dynamic to view dynamic entries. summary (OPTIONAL) Enter the keyword summary to view a summary of ARP entries.
Internet Internet Internet Internet Internet Usage Information Example (Summary) 10.1.2.4 10.10.10.4 10.16.127.53 10.16.134.254 133.33.33.4 1 1 1 20 1 00:01:e8:d5:9e:e2 00:01:e8:d5:9e:e2 00:01:e8:d5:9e:e2 00:01:e8:d5:9e:e2 00:01:e8:d5:9e:e2 Ma Ma Ma Ma Ma 0/0 0/0 0/0 0/0 0/0 - CP CP CP CP CP The following describes the show arp summary command shown in the following example. Row Heading Description Total Entries Lists the total number of ARP entries in the ARP table.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show hosts command in the following example. Field Description Default domain... Displays the domain name (if configured). Name/address lookup... States if DNS is enabled on the system. ● If DNS is enabled, the Name/Address lookup is domain service. ● If DNS is not enabled, the Name/Address lookup is static mapping Name servers are... Lists the name servers, if configured.
detail Enter the keyword detail to display the group index ID used by the ecmp routes in the CAM. member-info Enter the keywords member-info to display the group index used by the ecmp, the number of egress ports (members) for the ecmp, and the port details of each member. The detail information under member-info gives the MAC address, VLAN ID, and gateway of every member port of the ecmp.
Field Description Initial Size Displays the CAM size the system allocates for the corresponding mask. The system adjusts the CAM size if the number of routes for the mask exceeds the initial allocation. Example (ECMPGroup) Dell#show ip cam stack-unit 0 po 0 ecmp-group detail Destination EC CG ----------------1.1.1.2 0 0 2.1.1.2 0 0 1.1.1.1 0 0 2.1.1.1 0 0 1.1.1.0 0 0 2.1.1.0 0 0 100.1.1. 0 1 100.1.1. 0 1 0.0.0.
Example Field Description Gateway Displays either the word “direct” and an interface for a directly connected route or the remote IP address used to forward the traffic. First-Hop Displays the first hop IP address. Mac-Addr Displays the MAC address. Port Displays the egress-port information. VId Displays the VLAN ID. If no VLAN is assigned, zero (0) is listed. EC Displays the number of ECMP paths.
Usage Information The following describes the show ip interface command shown in the following example. Lines Description TenGigabitEther net 0/0... Displays the interface’s type, slot/port, and physical and line protocol status. Internet address... States whether an IP address is assigned to the interface. If an IP address is assigned, that address is displayed. IP MTU is... Displays IP MTU value. Inbound access... Displays the name of the configured incoming access list.
show ip management-route View the IP addresses assigned to the Management interface. Syntax Parameters show ip management-route [all | connected | summary | static] all (OPTIONAL) Enter the keyword all to view all IP addresses assigned to all Management interfaces on the switch. connected (OPTIONAL) Enter the keyword connected to view only routes directly connected to the Management interface.
Address : 20.20.20.2 Filter-list in : foo Route-map in : foo Weight : 0 Address : 5::6 Weight : 0 Dell# show ip route View information, including how they were learned, about the IP routes on the switch. Syntax show ip route [hostname | ip-address [mask] [longer-prefixes] | list prefix-list [process-id | all | connected | static | summary] Parameters ip-address (OPTIONAL) Specify a name of a device or the IP address of the device to view more detailed information about the route.
Field Description ● ● ● ● ● ● ● ● ● ● ● ● Example IA = OSPF inter area N1 = OSPF NSSA external type 1 N2 = OSPF NSSA external type 2 E1 = OSPF external type 1 E2 = OSPF external type 2 i = IS-IS L1 = IS-IS level-1 L2 = IS-IS level-2 IA = IS-IS inter-area * = candidate default > = non-active route + = summary routes Destination Identifies the route’s destination IP address Gateway Identifies whether the route is directly connected and on which interface the route is configured.
show ip route list Display IP routes in an IP prefix list. Syntax show ip route list prefix-list Parameters prefix-list Enter the name of a configured prefix list. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Column Heading Description Route Source Identifies how the route is configured in the system. Active Routes Identifies the best route if a route is learned from two protocol sources. Non-active Routes Identifies the back-up routes when a route is learned by two different protocols. If the best route or active route goes down, the non-active route becomes the best route.
Keyword Definition Frags: IP fragments received. ... reassembled Number of IP fragments that were reassembled. ... timeouts Number of times a timer expired on a reassembled queue. ... too big Number of invalid IP fragments received. ... couldn’t fragment Number of packets that could not be fragmented and forwarded. ...encapsulation failed Counts packets which could not be forwarded due to ARP resolution failure. The system sends an arp request prior to forwarding an IP packet.
show tcp statistics View information on TCP traffic through the switch. Syntax show tcp statistics Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show tcp statistics cp command shown in the following example. Field Description Rcvd: Displays the number and types of TCP packets received by the switch.
Field Description 14 Connections closed... Displays the number of TCP connections closed, dropped. 20 Total rxmt... Displays the number of times the switch tried to re-send data and the number of connections dropped during the TCP retransmit timeout period. 0 Keepalive.... Lists the number of keepalive packets in timeout, the number keepalive probes and the number of TCP connections dropped during keepalive.
24 Internet Protocol Security (IPSec) Internet protocol security (IPSec) is an end-to-end security scheme for securing IP communications by authenticating and encrypting all packets in a session. Use IPSec between hosts, gateways, or hosts and gateways. IPSec uses a series of protocol functions to achieve information security: ● Authentication Headers (AH) — Connectionless integrity and origin authentication for IP packets.
● null — Causes an encryption policy configured for the area to not be inherited on the interface. Defaults espauthentication Enter the keywords esp-authentication then the transform type of operation to apply to traffic. The transform type represents the encryption or authentication applied to traffic. ● md5 — Use Message Digest 5 (MD5) authentication. ● sha1 — Use Secure Hash Algorithm 1 (SHA-1) authentication.
Usage Information Example This command creates a crypto policy entry and enters the crypto policy configuration mode for configuring the flow parameters. Dell(conf)#crypto ipsec policy West 10 ipsec-manual Dell(conf-crypto-policy)# management crypto-policy Apply the crypto policy to management traffic. Syntax management crypto-policy name To remove the management traffic crypto policy, use the no management crypto-policy name command. Parameters Defaults name Enter the name for the crypto policy.
Usage Information Example UDP is not supported. Only TCP 23 telnet and 21 FTP are supported. Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match Dell(conf-crypto-policy)#match 0 1 2 3 4 5 6 7 tcp tcp tcp tcp tcp tcp tcp tcp a::1 /128 0 a::2 /128 23 a::1 /128 23 a::2 /128 0 a::1 /128 0 a::2 /128 21 a::1 /128 21 a::2 /128 0 1.1.1.1 /32 0 1.1.
Command Modes EXEC Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.2) Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf)#do show crypto ipsec transform-set Transform-Set Name : ts1 Transform-Set refCnt : 0 AH Transform : md5 ESP Auth Transform : ESP Encry Transform : Dell(conf)# show crypto ipsec policy Display the crypto policy configuration.
source-interface name : source-interface num : Dell(conf-crypto-policy)# transform-set Specify the transform set the crypto policy uses. Syntax transform-set transform-set-name To delete a transform set from the crypto policy, use the no transform-set transform-setname command. Parameters Defaults transform-setname Enter the name for the crypto policy transform set. none Command Modes CONFIG-CRYPTO-POLICY Supported Modes Full–Switch Command History 566 Version Description 9.9(0.
25 IPv6 Access Control Lists (IPv6 ACLs) IPv6 ACLs and IPv6 Route Map commands are supported on Dell Networking switch. NOTE: For IPv4 ACL commands, refer to the Access Control Lists (ACL) chapter. Important Points to Remember ● Certain platforms require manual CAM usage space allotment. For more information, refer to the cam-acl (Configuration) command. ● Egress IPv6 ACL and IPv6 ACL on the Loopback interface is not supported. ● Reference to an empty ACL permits any traffic.
l2acl 1-10 ipv4acl 1-10 ipv6acl 0-10 ipv4qos 1-10 l2qos 1-10 Allocate space to support IPv6 ACLs. Enter all of the profiles and a range. Enter the CAM profile name then the amount to be allotted. The total space allocated must equal 13. The ipv6acl range must be a factor of 2. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
default Reset Egress CAM ACL entries to default setting l2acl Set L2-ACL entries Dell(conf)#cam-acl-egress l2acl ? <1-4> Number of FP blocks for l2acl Dell(conf)#cam-acl-egress l2acl 1 ? ipv4acl Set IPV4-ACL entries Dell(conf)#cam-acl-egress l2acl 1 ipv4acl 1 ? ipv6acl Set IPV6-ACL entries Dell(conf)#cam-acl-egress l2acl 1 ipv4acl 1 ipv6acl ? <0-4> Number of FP blocks for IPV6 (multiples of 2) Dell(conf)#cam-acl-egress l2acl 1 ipv4acl 1 ipv6acl 2 ipv6 access-list Configure an access list based on IPv6 addr
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. permit To configure a filter that matches the filter criteria, select an IPv6 protocol number, ICMP, IPv6, TCP, or UDP.
Version Description 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. permit icmp To allow all or specific internet control message protocol (ICMP) messages, configure a filter.
Usage Information Version Description 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped.
iscsiOptAcl ipv4pbr vrfv4Acl Openflow fedgovacl : : : : : 0 0 0 0 F3940 -- stack-unit 0 -Current Settings(in block sizes) 1 block = 128 entries L2Acl : 2 Ipv4Acl : 4 Ipv6Acl : 4 Ipv4Qos : 2 L2Qos : 1 L2PT : 0+F394 IpMacAcl : 0 VmanQos : 0 VmanDualQos : 0 EcfmAcl : 0 FcoeAcl : 0 iscsiOptAcl : 0 ipv4pbr : 0 vrfv4Acl : 0 Openflow : 0 fedgovacl : 0 Dell# Related Commands cam-acl — configures CAM profiles to support IPv6 ACLs. show cam-acl-egress Show information on FP groups allocated for egress ACLs.
26 IPv6 Basics This chapter describes IPv6 basic commands.
clear ipv6 route Clear (refresh) all or a specific route from the IPv6 routing table. Syntax Parameters clear ipv6 route {* | ipv6-address prefix-length} * Enter the * to clear (refresh) all routes from the IPv6 routing table. ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
address from the current unused prefix is used to create a new address. If there are no remaining prefixes, the software waits to receive a new prefix from the RA. ● If auto-configuration is enabled, all IPv6 addresses on that management interface are auto-configured. Manual and auto-configurations are not supported on a single management interface. ● Removing auto-configuration removes all auto-configured IPv6 addresses and the link-local IPv6 address from that management interface.
Dell(conf-if-te-x/x)#ipv6 address 2002:1:2::3 /96 Dell(conf-if-te-x/x)#show config ipv6 address eui64 Configure IPv6 EUI64 address configuration on the interface. Syntax ipv6 address {ipv6-address prefix-length} eui64 To disable IPv6 EUI64 address autoconfiguration, use the no ipv6 address {ipv6-address prefix-length} eui64 command. Parameters ipv6-address prefix-length Enter the IPv6 prefix in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128.
ipv6 flowlabel-zero Configure system to set the flow label field in the packets to zero. Syntax ipv6 flowlabel-zero To disable the 0 from being set in the field and allow the rotocol operations to fill the field, use the no ipv6 flowlabel-zero command. Default Disabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Defaults none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. You can separately configure both IPv4 and IPv6 domain name servers. ipv6 nd dad attempts To perform duplicate address detection (DAD) on the management interface, configure the number of neighbor solicitation messages that are sent.
ipv6 nd dns-server Configures Recursive DNS Server (RDNSS) addresses to be distributed via IPv6 router advertisements to an IPv6 device. Syntax ipv6 nd dns-server {ipv6-RDNSS-address} {lifetime | infinite} To remove the IPv6 RDSS configuration, use no ipv6 nd dns-server {ipv6-RDNSS-address} {lifetime | infinite} Parameters Defaults ipv6-RDNSSaddress Enter the IPv6 Recursive DNS Server’s (RDNSS) address. You can specify up to 4 IPv6 RDNSS server addresses. lifetime Enter the lifetime in seconds.
no-advertise Enter the keyword no-advertise to prevent the specified prefix from being advertised. no-autoconfig Enter the keywords no-autoconfig to disable Stateless Address Autoconfiguration. no-rtr-address Enter the keyword no-rtr-address to exclude the full router address from router advertisements (the R bit is not set). off-link Enter the keywords off-link to advertise the prefix without stating to recipients that the prefix is either on-link or off-link.
● For a VLAN interface, enter the keyword VLAN then the vlan number. The range is from 1 to 4094. If you configure a static IPv6 route using an egress interface and enter the ping command to reach the destination IPv6 address, the ping operation may not work. Configure the IPv6 route using a next-hop IPv6 address in order for the ping command to detect the destination address. ipv6-address (OPTIONAL) Enter the forwarding router IPv6 address in the x:x:x:x::x format.
Related Commands show ipv6 route — views the IPv6 configured routes. ipv6 unicast-routing Enable IPv6 Unicast routing. Syntax ipv6 unicast-routing To disable unicast routing, use the no ipv6 unicast-routing command. Defaults Enabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information NOTE: If a route has a mask greater than 64, no output is displayed and no output is displayed for show ipv6 cam stack-unit unit-number port-set {0-1} ipv6-address, but an equivalent /64 entry would be listed in the show ipv6 cam stack-unit unit-number port-set {0-0} output.
Usage Information Host tables are not stored in CAM tables. Entries for camIndex displays as zero (0) on the show ipv6 fib stack-unit output for neighbor entries, such as address resolution protocol (ARP) entries. show ipv6 flowlabel-zero Display the flow label zero setting. Syntax show ipv6 flowlabel-zero Default Disabled Command Modes EXEC Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
vlan Defaults (OPTIONAL) View information for IPv6 VLANs. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Example (Managementeth ernet) 586 IPv6 Basics Version Description 9.11(0.0) Updated the command output to include the unicast reverse path forwarding (uRPF) status. 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The Management port is enabled by default (no shutdown).
Example (Brief) Example (tunnel) Dell#show ipv6 interface brief TenGigabitEthernet 0/2 fe80::201:e8ff:fea7:497e 2002:1:2::3/96 TenGigabitEthernet 0/8 fe80::201:e8ff:fea7:497e 100::2/64 ManagementEthernet 0/0 fe80::201:e8ff:fea7:497e 300::1/64 Dell# [administratively down/down] [up/up] [up/up] Dell#show ipv6 interface tun 1 Tunnel 1 is up, line protocol is up IPV6 is enabled Link Local address: fe80::201:e8ff:fea7:497e Global Unicast address(es): 400::1, subnet is 400::/64 (MANUAL) Remaining lifetime: in
Example Field Description MLDv1 queries The number of MLDv1 queries that have been received. MLDv2 queries The number of MLDv2 queries that have been received. Malformed Packets The number of MLDv1 and MLDv2 packets that do not match the requirement for a valid MLD packet.
Example Field Description (undefined) Identifies the type of route: ● L = Local ● C = connected ● S = static ● R = RIP ● B = BGP ● IN = internal BGP ● EX = external BGP ● LO = Locally Originated ● O = OSPF ● IA = OSPF inter-area ● N1 = OSPF NSSA external type 1 ● N2 = OSPF NSSA external type 2 ● E1 = OSPF external type 1 ● E2 = OSPF external type 2 ● i = IS-IS ● L1 = IS-IS level-1 ● L2 = IS-IS level-2 ● IA = IS-IS inter-area ● * = candidate default ● > = non-active route ● + = summary routes Destinatio
trust ipv6-diffserv Allows the dynamic classification of IPv6 DSCP. Syntax trust ipv6-diffserv To remove the definition, use the no trust ipv6-diffserv command. Defaults none Command Modes CONFIGURATION-POLICY-MAP-IN Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
27 IPv6 Border Gateway Protocol (IPv6 BGP) IPv6 Border Gateway Protocol (IPv6 BGP) is supported on Dell Networking platforms.
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • 592 neighbor activate neighbor advertisement-interval neighbor allowas-in neighbor default-originate neighbor description neighbor distribute-list neighbor ebgp-multihop neighbor fall-over neighbor filter-list neighbor maximum-prefix neighbor X:X:X::X password neighbor next-hop-self neighbor peer-group (assigning peers) neighbor peer-group (creating group) neighbor peer-group passive neighbor re
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • aggregate-address bgp dampening clear ip bgp ipv6 unicast clear ip bgp ipv6 unicast dampening clear ip bgp ipv6 unicast flap-statistics debug ip bgp ipv6 unicast dampening debug ip bgp ipv6 unicast peer-group updates debug ip bgp ipv6 unicast updates distance bgp neighbor activate neighbor advertisement-interval neighbor default-originate neighbor distribute-list neighbor filter-list neighbor maximum-prefix neighbor next-hop-self neighbor re
Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. After this command is executed, all subsequent commands apply to this address family. You can exit from this AFI/SAFI to the IPv6 Unicast (the default) family by entering the exit command and returning to the Router BGP context.
The summary-only parameter suppresses all advertisements. If you want to suppress advertisements to only specific neighbors, use the neighbor distribute-list command. In the show ip bgp ipv6 unicast command, aggregates contain an ‘a’ in the first column and routes suppressed by the aggregate contain an ‘s’ in the first column. bgp always-compare-med Allows you to enable comparison of the MULTI_EXIT_DISC (MED) attributes in the paths from different external ASs.
Defaults Disabled. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The software compares the MEDs only if the path contains no external autonomous system numbers. If you enable this command, use the capture bgp-pdu max-buffer-size * command to recompute the best path.
neighbor route-reflector-client — configures a route reflector and clients. bgp cluster-id Assign a cluster ID to a BGP cluster with more than one route reflector. Syntax bgp cluster-id {ip-address | number} To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command. Parameters Defaults ip-address Enter an IP address as the route reflector cluster ID. number Enter a route reflector cluster ID as a number from 1 to 4294967295. Not configured.
Usage Information The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. The next hop, MED, and local preference information is preserved throughout the confederation. The system accepts confederation EBGP peers without a LOCAL_PREF attribute. The software sends AS_CONFED_SET and accepts AS_CONFED_SET and AS_CONF_SEQ.
max-suppresstime (OPTIONAL) Enter the maximum number of minutes a route can be suppressed. The default is four times the half-life value. The range is from 1 to 255. The default is 60 minutes. route-map map- (OPTIONAL) Enter the keywords route-map then the name of a configured route map. Only match commands in the configured route map are supported. name Defaults Disabled. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Version Description 9.9(0.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the 10/40GbE Switch IO Module. This is enabled by default; that is, for all updates received from EBGP peers, BGP ensures that the first AS of the first AS segment is always the AS of the peer. If not, the update is dropped and a counter is incremented. To view the failed enforce-first-as check counter, use the show ip bgp ipv6 unicast neighbors command.
When creating Confederations, all the routers in the Confederation must be 4- or 2-byte identified routers. You cannot mix them. Where the 2-Byte format is from 1 to 65535, the 4-Byte format is from 1 to 4294967295. Both formats are accepted, and the advertisements reflect the entered format. For more information about using the 2- or 4-Byte format, refer to the Dell Networking OS Configuration Guide.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The bgp log-neighbor-changes command appears in the show config command output. Related Commands show config — views the current configuration. bgp non-deterministic-med Compare MEDs of paths from different autonomous systems (ASs). Syntax bgp non-deterministic-med To return to the default, use the no bgp non-deterministic-med command.
For this command to take effect and to keep the BGP database consistent, you need the clear ip bgp command. Execute the clear ip bgp command right after executing this command. Related Commands capture bgp-pdu max-buffer-size bgp regex-eval-optz-disable Disables the Regex Performance engine that optimizes complex regular expression with BGP. Syntax bgp regex-eval-optz-disable To re-enable optimization engine, use the no bgp regex-eval-optz-disable command. Defaults Enabled.
Usage Information Peering sessions are reset when you change the router ID of a BGP router. bgp soft-reconfig-backup Use this command only when route-refresh is not negotiated between peers to avoid having a peer re-send BGP updates. Syntax bgp soft-reconfig-backup To return to the default setting, use the no bgp soft-reconfig-backup command. Defaults Off Command Modes ROUTER BGPV6 ADDRESS FAMILY (conf-router_bgpv6_af) Supported Modes Full–Switch Command History Version Description 9.9(0.
capture bgp-pdu max-buffer-size Set the size of the BGP packet capture buffer. This buffer size pertains to both IPv4 and IPv6 addresses. Syntax Parameters Defaults capture bgp-pdu max-buffer-size 100-102400000 100-102400000 Enter a size for the capture buffer. 40960000 bytes Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
clear ip bgp as-number Reset BGP sessions. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection. Syntax clear ip bgp as-number [flap-statistics | ipv4 {multicast {flap-statistics | soft {in | out}} | unicast {flap-statistics | soft {in | out}} | ipv6 unicast {flap-statistics | soft {in | out}| soft [in | out] Parameters as-number Enter an autonomous system (AS) number to reset neighbors belonging to that AS.
multicast (OPTIONAL) Enter the keyword multicast to select the multicast option within the selected address family. Multicast is supported on IPv4 only. soft (OPTIONAL) Enter the keyword soft to configure and activate policies without resetting the BGP TCP session; that is, BGP Soft Reconfiguration. NOTE: If you enter clear ip bgp ip6-address soft, both inbound and outbound policies are reset. in (OPTIONAL) Enter the keyword in to activate only inbound policies.
Usage Information After you enter this command, the software deletes the history routes and returns the suppressed routes to the active state. clear ip bgp ipv6 flap-statistics Clear BGP flap statistics, which includes number of flaps and the time of the last flap.
ipv4-neighboraddr | ipv6neighbor-addr Clear and reapply policies for a neighbor. peer-group name Clear and reapply policies for all BGP routers in the specified peer group. ipv6 unicast Clear and reapply policies for all IPv6 unicast routes. in Reapply only inbound policies. NOTE: If you enter soft, without an in or out option, both inbound and outbound policies are reset. out Reapply only outbound policies.
Related Commands debug ip bgp events — views information about BGP events. debug ip bgp keepalives — views information about BGP keepalives. debug ip bgp notifications — views information about BGP notifications. debug ip bgp updates — views information about BGP updates. debug ip bgp events Allows you to view information on local BGP state changes and other BGP events.
Usage Information Entering a no debug ip bgp command removes all configured debug commands for BGP. Related Commands show ip bgp ipv6 unicast dampened-paths — views BGP dampened routes. debug ip bgp ipv6 unicast soft-reconfiguration Enable soft-reconfiguration debugging for IPv6 unicast routes.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Entering a no debug ip bgp command removes all configured debug commands for BGP. debug ip bgp notifications Allows you to view information about BGP notifications received from neighbors.
ipv6 unicast [ ipv6-address ] (OPTIONAL) Enter the keywords ipv6 unicast, and, optionally, an ipv6 address. in (OPTIONAL) Enter the keyword in to view only BGP updates received from neighbors. out (OPTIONAL) Enter the keyword out to view only BGP updates sent to neighbors. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes ROUTER BGP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. router bgp — enters ROUTER mode on the switch. distance bgp Configure three administrative distances for routes. Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command.
number Defaults Enter a number as the maximum number of parallel paths. The range is from 1 to 16. The default is 1. 1 Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you enable this command, use the capture bgp-pdu max-buffer-size command to recompute the best path.
peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group. seconds Defaults Enter a number as the time interval, in seconds, between BGP advertisements. The range is from 0 to 600 seconds. The default is 5 seconds for internal BGP peers and 30 seconds for external BGP peers.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group. route-map map- name Defaults (OPTIONAL) Enter the keywords route-map then the name of a configured route map. Not configured.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. Defaults prefix-list-name Enter the name of an established prefix list. If the prefix list is not configured, the default is permit (to allow all routes). in Enter the keyword in to distribute only inbound traffic. out Enter the keyword out to distribute only outbound traffic. Not configured.
neighbor fall-over Enable or disable fast fall-over for BGP neighbors. Syntax neighbor {ipv6-address | peer-group-name} fall-over To disable, use the no neighbor {ipv6-address | peer-group-name} fall-over command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. Defaults Disabled.
neighbor maximum-prefix Control the number of network prefixes received. Syntax neighbor {ipv6-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor {ipv6-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The TCP session is authentication and prevents the data from being compromised. neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. (This command is used for IBGP).
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. You can assign up to 64 peers to one peer group. When you add a peer to a peer group, it inherits all the peer group’s configured parameters.
neighbor peer-group passive Enable passive peering on a BGP peer group; that is, the peer group does not send an OPEN message, but does respond to one. Syntax neighbor peer-group-name peer-group passive To delete a passive peer-group, use the no neighbor peer-group-name peer-group passive command. Parameters Defaults peer-group-name Enter a text string up to 16 characters long as the name of the peer group. Not configured.
neighbor remove-private-as Remove private AS numbers from the AS-PATH of outgoing updates. Syntax neighbor {ipv6-address | peer-group-name} remove-private-as To return to the default, use the no neighbor {ipv6-address | peer-group-name} removeprivate-as command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to remove the private AS numbers.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command.
peer-group-name Enter the name of the peer group. All routers in the peer group receive routes from a route reflector. Defaults Not configured and COMMUNITY attributes are not sent to neighbors. Command Modes ROUTER BGP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor shutdown Disable a BGP neighbor or peer group.
peer-group-name Enter the name of the peer group for which you want to start storing inbound routing updates. Defaults Disabled. Command Modes ROUTER BGPv6 ADDRESS FAMILY (conf-router_bgpv6_af) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command enables soft-reconfiguration for the specified BGP neighbor.
peer-group-name Enter the name of the peer group to set the timers for all routers within the peer group. Defaults keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. the range is from 1 to 65535. the default is 60 seconds. holdtime Enter a number for the time interval, in seconds, between the last keepalive message and declaring the router dead. The range is from 3 to 65535. The default is 180 seconds.
neighbor weight Assign a weight to the neighbor connection, which is used to determine the best path. Syntax neighbor {ipv6-address | peer-group-name} weight weight To remove a weight value, use the no neighbor {ipv6-address | peer-group-name} weight weight command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The software resolves the network address configured by the network command with the routes in the main routing table to ensure that the networks are reachable using non-BGP routes and non-default routes. Related Commands redistribute — redistributes routes into BGP. network backdoor Specify this IGP route as the preferred route.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you do not configure the default-metric command, in addition to the redistribute command, or there is no route map to set the metric, the metric for redistributed static and connected is “0”. To redistribute the default route (0::0/0), configure the neighbor default-originate command.
match internal (OPTIONAL) Enter the keywords match internal to redistribute OSPFv3 internal routes only. route-map map- (OPTIONAL) Enter the keywords route-map then the name of an established route map. name If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Related Command Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. capture bgp-pdu neighbor (ipv6) — enables capture of an IPv6 BGP neighbor packet. capture bgp-pdu max-buffer-size — specifies a size for the capture buffer. show config View the current ROUTER BGP configuration. Syntax show config Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
longer-prefixes (OPTIONAL) Enter the keywords longer-prefixes to view all routes with a common prefix. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When you enable the bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To view the total number of COMMUNITY attributes found, use the show ip bgp ipv6 unicast summary command. The text line above the route table states the number of COMMUNITY attributes found. show ip bgp ipv6 unicast community-list View routes that are affected by a specific community list.
● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast extcommunity-list View information on all routes with Extended Community attributes. Syntax show ip bgp ipv6 unicast extcommunity-list [list name] Parameters list name Enter the extended community list name you wish to view.
show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes. Syntax Parameters show ip bgp ipv6 unicast flap-statistics [ipv6-address prefix-length] [filter-list as-path-name] [regexp regular-expression] ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
show ip bgp ipv6 unicast neighbors Displays information on IPv6 unicast routes exchanged by BGP neighbors. Syntax show ip bgp ipv6 unicast neighbors [ipv4-neighbor-addr | ipv6-neighboraddr] [advertised-routes | dampened-routes | detail | flap-statistics | routes | received-routes [network [network-mask]] | denied-routes [network [network-mask]]] Parameters ipv6 unicast Enter the keywords ipv6 unicast to view information only related to IPv6 unicast routes.
Lines Beginning With Description BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state.
Minimum time before advertisements start is 0 seconds Capabilities received from neighbor for IPv6 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) Capabilities advertised to neighbor for IPv6 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) For address family: IPv6 Unicast BGP table version 12, neighbor version 12 2 accepted prefixes consume 32 bytes Prefixes accepted 1 (consume 4 bytes), withdrawn 0 by peer Prefixes advertised 0, rejected 0, withdrawn 0 from peer
show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. Syntax Parameters show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. detail (OPTIONAL) Enter the keyword detail to view peer-group-specific information for the IPv6 address family. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group.
Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell# show ip bgp summary BGP router identifier 55.55.55.
show ip bgp paths View all the BGP path attributes in the BGP database. Syntax Parameters show ip bgp paths [regexp regular-expression] regexp regular- expression Enter a regular expression then use one or a combination of the following characters to match: ● . = (period) any single character (including a white space). ● * = (asterisk) the sequences in a pattern (0 or more sequences). ● + = (plus) the sequences in a pattern (1 or more sequences).
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp paths extcommunity View all unique extended community information in the BGP database. Syntax show ip bgp paths extcommunity Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
timers bgp Allows you to adjust the BGP network timers for all neighbors. Syntax timers bgp keepalive holdtimer To return to the default values, use the no timers bgp command. Parameters Defaults keepalive Enter the time interval (in seconds) between which the system sends keepalive messages. The range is from 1 to 65535. The default is 60 seconds. holdtimer Enter the time interval (in seconds) that the the system waits since the last keepalive message before declaring a BGP peer dead.
Usage Information After this command is executed, all subsequent commands apply to this address family. You can exit from this AFI/SAFI to the IPv6 Unicast (the default) family by entering the exit command and returning to the Router BGP context. aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table.
bgp dampening Enable MBGP route dampening. Syntax bgp dampening [half-life time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life time] [route-map mapname] command. Parameters half-life time (OPTIONAL) Enter the number of minutes after which the Penalty is decreased. After the router assigns a Penalty of 1024 to a route, the Penalty is decreased by half, after the half-life period expires. The range is from 1 to 45. The default is 15 minutes.
clear ip bgp ipv6 unicast dampening Clear information on route dampening. Syntax clear ip bgp dampening ipv6 unicast [network network-mask] Parameters network (OPTIONAL) Enter the IPv6 network address in x:x:x:x::x format. network-mask If you enter the network address, next enter the network mask, from 0 to 128. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
To disable debugging, use the no debug ip bgp ipv6 unicast dampening command. Parameters dampening Enter the keyword dampening to clear route flap dampening information. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the S4820T. debug ip bgp ipv6 unicast peer-group updates View information about BGP peer-group updates.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. distance bgp Define an administrative distance for routes. Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command. Parameters external-distance Enter a number to assign to routes learned from a neighbor external to the AS. The range is from 1 to 255.
activate Defaults Enter the keyword activate to enable the identified neighbor or peer group in the new AFI/SAFI. Disabled. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information By default, when a neighbor/peer group configuration is created in the Router BGP context, it is enabled for the IPv6/Unicast AFI/SAFI.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group. route-map map- name Defaults (OPTIONAL) Enter the keywords route-map then the name of a configured route map. Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Version Description 9.9(0.
neighbor filter-list Configure a BGP filter based on the AS-PATH attribute. Syntax neighbor [ipv6-address | peer-group-name] filter-list aspath access-listname [in | out] To delete a BGP filter, use the no neighbor [ipv6-address | peer-group-name] filterlist aspath access-list-name [in | out] command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. Syntax neighbor {ipv6-address | peer-group-name} next-hop-self To return to the default setting, use the no neighbor {ipv6-address | peer-group-name} next-hop-self command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format.
neighbor route-map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group. Syntax neighbor {ipv6-address | peer-group-name} route-map map-name {in | out} To remove the route map, use the no neighbor {ipv6-address | peer-group-name} route-map map-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The first time you enter this command it configures the neighbor as a route reflector and members of the route-reflector cluster. Internal BGP (IBGP) speakers do not need to be fully meshed if you configure a route reflector. When all clients of a route reflector are disabled, the neighbor is no longer a route reflector.
If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast community View information on all routes with community attributes or view specific BGP community groups.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast dampened-paths View BGP routes that are dampened (non-active). Syntax show ip bgp ipv6 unicast dampened-paths Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast detail Display detailed BGP information.
show ip bgp ipv6 unicast filter-list View the routes that match the filter lists. Syntax show ip bgp ipv6 unicast filter-list as-path-name Parameters as-path-name Enter the name of an AS-PATH. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes.
Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r redistributed, n network Origin codes: i - IGP, e - EGP, ? - incomplete h h h h Network dead:1::/100 dead:1::/100 dead:4::/100 dead:4::/100 From 5ffe:10::3 5ffe:11::3 5ffe:10::3 5ffe:11::3 Flaps 1 1 1 1 Duration Reuse Path 00:03:20 1 i 00:03:20 1 i 00:04:39 1 i 00:04:39 1 i Dell# show ip bgp ipv6 unicast inconsistent-as View routes with inconsistent originating aut
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp ipv6 unicast neighbors command shown in the Example below. Lines Beginning With Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one.
Example Dell#show ip bgp ipv6 unicast neighbors BGP neighbor is 5ffe:10::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
Last reset 00:00:41, due to Closed by neighbor Notification History 'OPEN error/Bad AS' Sent : 0 Recv: 1 Local host: 5ffe:11::4, Local port: 179 show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. Syntax show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] Parameters peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only.
Field Description network entries Displays the number of network entries, route paths, and the amount of memory used to process those entries. BGP path attribute entries Displays the number of BGP path attributes and the amount of memory used to process them. BGP AS-PATH entries Displays the number of BGP AS_PATH attributes processed and the amount of memory used to process them.
28 iSCSI Optimization Internet small computer system interface (iSCSI) optimization enables quality-of-service (QoS) treatment for iSCSI storage traffic. To configure and verify the iSCSI optimization feature, use the following Dell Networking Operating System (OS) commands.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. iscsi cos Set the QoS policy that is applied to the iSCSI flows. Syntax iscsi cos {enable | disable | dot1p vlan-priority-value [remark] | dscp dscp-value [remark]} To disable the QoS policy, use the no iscsi cos dscp command.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When you enable the iSCSI feature using the iscsi enable command, flow control settings are set to rx on tx off on all interfaces. iscsi priority-bits Configure the priority bitmap that advertises in the iSCSI application TLVs.
Parameters tcpEnter the tcp-port number of the iSCSI target ports. The tcp-port-n is the TCP port-2...tcpport- port number or a list of TCP port numbers on which the iSCSI target listens to 16 requests. Separate port numbers with a comma. The default is 860, 3260. ip-address Defaults (Optional) Enter the ip-address that the iSCSI monitors. The ip-address specifies the IP address of the iSCSI target.
Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell# show isci session Session 0: -----------------------------------------------------Target: iqn.2001-05.com.equallogic:0-8a0906-0e70c2002-10a0018426a48c94iom010 Initiator: iqn.1991-05.com.
Up Time:00:00:01:22(DD:HH:MM:SS) Time for aging out:00:00:09:31(DD:HH:MM:SS) ISID:806978696102 Initiator Initiator Target Target Connection IP Address TCP Port IP Address TCPPort ID 10.10.0.53 33432 10.10.0.101 3260 0 Related Commands ● show iscsi — displays the currently configured iSCSI settings. ● show iscsi sessions — displays information about active iSCSI sessions on the switch. ● show run iscsi — shows run iscsi.
29 Intermediate System to Intermediate System (IS-IS) The Dell Networking OS supports the intermediate system to intermediate system (IS-IS) protocol for IPv4 and IPv6. IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic. A router is considered an intermediate system. Networks are partitioned into manageable routing domains, called areas.
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • isis hello padding isis ipv6 metric isis metric isis network point-to-point isis password isis priority is-type log-adjacency-changes lsp-gen-interval lsp-mtu lsp-refresh-interval max-area-addresses max-lsp-lifetime maximum-paths metric-style multi-topology net passive-interface redistribute redistribute bgp redistribute ospf router isis set-overload-bit show config show isis database show isis graceful-restart detail show isis hostname show i
advertise Leak routes between levels (distribute IP prefixes between Level 1 and Level 2 and vice versa). Syntax advertise {level1-into-level2 | level2-into-level1} prefix-list-name To return to the default, use the no advertise {level1-into-level2 | level2-intolevel1}[prefix-list-name] command. Parameters level1-into-level2 Enter the keywords level1-into-level2 to advertise Level 1 routes into Level 2 LSPs. This setting is the default.
The configured password injects into Level 1 LSPs, CSNPs, and PSNPs. Related Commands ● domain-password — allows you to set the authentication password for a routing domain. ● isis password — allows you to configure an authentication password for an interface. clear config Clear IS-IS configurations that display under the router isis heading of the show running-config command output. Syntax clear config Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Version Description 9.9(0.
Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To configure a shortcut name that you can use instead of entering a long string of numbers associated with an NSAP address, use this command.
debug isis local-updates To debug IS-IS local update packets, enable debugging on a specific interface and provides diagnostic information. Syntax debug isis local-updates [interface] To turn off debugging, use the no debug isis local-updates [interface] command. Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug isis update-packets Enable debugging on link state PDUs (LSPs) that a router detects. Syntax debug isis update-packets [interface] To turn off debugging, use the no debug isis update-packets [interface] command.
Usage Information When you use this command to redistribute routes into a routing domain, the router becomes an autonomous system (AS) boundary router. An AS boundary router does not always generate a default route into a routing domain. The router still requires its own default route before it can generate one. How a metric value assigned to a default route advertises depends on the metric-style command configuration.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The administrative distance indicates the trust value of incoming packets. A low administrative distance indicates a high trust rate. A high value indicates a lower trust rate. For example, a weight of 255 is interpreted that the routing information source is not trustworthy and should be ignored.
Defaults rip (OPTIONAL) Enter the keyword rip for RIP routes. static (OPTIONAL) Enter the keyword static for user-configured routing process. Not configured. Command Modes ● ROUTER ISIS (for IPv4) ● CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The domain password is inserted in Level 2 link state PDUs (LSPs), complete sequence number PDUs (CSNPs), and partial sequence number PDUs (PSNPs). Related Commands ● area-password — configures an IS-IS area authentication password.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. graceful-restart t1 Set the graceful restart wait time before unacknowledged restart requests are generated. This wait time is the interval before the system sends a restart request (an IIH with RR bit set in Restart TLV) until the CSNP is received from the helping router.
graceful-restart t3 Configure the overall wait time before graceful restart completes. Syntax graceful-restart t3 {adjacency | manual} seconds To return to the default, use the no graceful-restart t3 command. Parameters Defaults adjacency Enter the keyword adjacency so that the restarting router receives the remaining time value from its peer and adjusts its T3 value so if you have configured this option. manual Enter the keyword manual to specify a time value that the restarting router uses.
Related Commands graceful-restart t3 — configures the overall wait time before graceful restart completes. hello padding Use to turn ON or OFF padding for LAN and point-to-point hello PDUs or to selectively turn padding ON or OFF for LAN or point-to-point hello PDUs. Syntax hello padding [multi-point | point-to-point] To return to the default, use the no hello padding [multi-point | point-to-point] command.
ignore-lsp-errors Ignore LSPs with bad checksums instead of purging those LSPs. Syntax ignore-lsp-errors To return to the default values, use the no ignore-lsp-errors command. Defaults In IS-IS, the default deletes LSPs with internal checksum errors (no ignore-lsp-errors). Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Parameters Defaults tag (OPTIONAL) This parameter is a unique name for a routing process. A null tag is assumed if the tag option is not specified. The tag name must be unique for all IP router processes for a given router. Not configured. Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
isis csnp-interval Configure the IS-IS complete sequence number PDU (CSNP) interval on an interface. Syntax isis csnp-interval seconds [level-1 | level-2] To return to the default values, use the no isis csnp-interval [seconds] [level-1 | level-2] command. Parameters Defaults seconds Interval of transmission time between CSNPs on multi-access networks for the designated intermediate system. The range is from 0 to 65535. The default is 10.
Usage Information The default values of this command are typically satisfactory transmission times for a specific interface on a designated intermediate system. To maintain database synchronization, the designated routers send CSNPs. You can configure Level 1 and Level 2 CSNP intervals independently. isis hello-multiplier Specify the number of IS-IS hello packets a neighbor must miss before the router declares the adjacency down.
isis ipv6 metric Assign metric to an interface for use with IPv6 information. Syntax isis ipv6 metric default-metric [level-1 | level-2] To return to the default values, use the no ipv6 isis metric [default-metric] [level-1 | level-2] command. Parameters Defaults default-metric Metric assigned to the link and used to calculate the cost from each other router via the links in the network to other destinations. You can configure this metric for Level 1 or Level 2 routing. The range is from 0 to 16777215.
Usage Information Dell Networking recommends configuring metrics on all interfaces. Without configuring this command, the IS-IS metrics are similar to hop-count metrics. isis network point-to-point Enable the software to treat a broadcast interface as a point-to-point interface. Syntax isis network point-to-point To disable the feature, use the no isis network point-to-point command. Defaults Not enabled. Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.
isis priority Set the priority of the designated router you select. Syntax isis priority value [level-1 | level-2] To return to the default values, use the no isis priority [value] [level-1 | level-2] command. Parameters Defaults value This value sets the router priority. The higher the value, the higher the priority. The range is from 0 to 127. The default is 64. level-1 (OPTIONAL) Specify the priority for Level 1. This setting is the default. level-2 (OPTIONAL) Specify the priority for Level 2.
Usage Information The IS-IS protocol automatically determines area boundaries and are able to keep Level 1 and Level 2 routing separate. Poorly planned use of this feature may cause configuration errors, such as accidental area partitioning. If you are configuring only one area in your network, you do not need to run both Level 1 and Level 2 routing algorithms. You can configure the IS type as Level 1. log-adjacency-changes Generate a log messages for adjacency state changes.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. LSP throttling slows down the frequency at which LSPs are generated during network instability. Even though throttling LSP generations slows down network convergence, no throttling can result in a network not functioning as expected. If network topology is unstable, throttling slows down the scheduling of LSP generations until the topology regains its stability.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The refresh interval determines the rate at which route topology information is transmitted preventing the information from becoming obsolete. The refresh interval must be less than the LSP lifetime specified with the max-lsp-lifetime command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Change the maximum LSP lifetime with this command. The maximum LSP lifetime must always be greater than the LSP refresh interval. The seconds parameter enables the router to keep LSPs for the specified length of time. If the value is higher, the overhead is reduced on slower-speed links.
Command Modes ROUTER ISIS Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you enter the metric-style wide command, the system generates and accepts only new-style TLVs. The router uses less memory and other resources rather than generating both old-style and newstyle TLVs. The new-style TLVs have wider metric fields than old-style TLVs.
passive-interface Suppress routing updates on an interface. This command stops the router from sending updates on that interface. Syntax passive-interface interface To delete a passive interface configuration, use the no passive-interface interface command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet then the slot/port information.
level-1 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 1 routes. level-1-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level-1-2 routes. level-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 2 routes. This setting is the default. route-map map- (OPTIONAL) If you do not enter the route-map argument, all routes are redistributed. If a map-name value is not specified, no routers are imported.
metric metric- value (OPTIONAL) The value used for the redistributed route. Use a metric value that is consistent with the destination protocol. The range is from 0 to 16777215. The default is 0. metric-type {external| internal} (OPTIONAL) The external link type associated with the default route advertised into a routing domain. The two options are: ● external ● internal route-map map- map-name is an identifier for a configured route map.
level-1 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 1 routes. level-1-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level-1-2 routes. level-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 2 routes. This setting is the default. match {external | (OPTIONAL) The command used for OSPF to route and redistribute into other internal} routing domains.
You can configure only one IS-IS routing process to perform Level 2 routing. A level-1-2 designation performs Level 1 and Level 2 routing at the same time. Related Commands ● ip router isis — configures IS-IS routing processes for IP on interfaces and attaches an area designator to the routing process. ● net — configures an IS-IS network entity title (NET) for a routing process. ● is-type — assigns a type for a given area.
set-overload-bit spf-interval level-1 100 15 20 spf-interval level-2 120 20 25 exit-address-family Example (AddressFamily_IPv6) The bold section identifies that Multi-Topology IS-IS is enabled in Transition mode. Dell(conf-router_isis-af_ipv6)#show conf ! address-family ipv6 unicast maximum-paths 16 multi-topology transition set-overload-bit spf-interval level-1 100 15 20 spf-interval level-2 120 20 25 exit-address-family show isis database Display the IS-IS link state database.
Field Description The last octet is the LSP number. An LSP is divided into multiple LSP fragments if there is more data than cannot fit in a single LSP. Each fragment has a unique LSP number. An * after the LSPID indicates that the system originates an LSP where this command was issued. Example LSP Seq Num This value is the sequence number for the LSP that allows other systems to determine if they have received the latest information from the source.
Topology: IPv4 (0x00) IPv6 (0x8002) Metric: 10 IS OSPF.00 Metric: 10 IS (MT-IPv6) OSPF.00 Metric: 10 IP 10.1.1.0 255.255.255.0 Metric: 10 IP 15.1.1.0 255.255.255.0 Metric: 20 IP 10.3.3.0 255.255.255.0 Metric: 10 IPv6 (MT-IPv6) 1011::/64 Metric: 10 IPv6 (MT-IPv6) 1511::/64 Metric: 10 IPv6 (MT-IPv6) 2511::/64 Metric: 20 IPv6 (MT-IPv6) 1033::/64 Metric: 10 IPv6 2511::/64 Metric: 20 IPv6 1033::/64 Hostname: ISIS Dell# show isis graceful-restart detail Display detailed IS-IS graceful restart related settings.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show isis hostname System Id Dynamic Name Static Name *F100.E120.0013 Force10 ISIS Dell# show isis interface Display detailed IS-IS interface status and configuration information.
show isis neighbors Display information about neighboring (adjacent) routers. Syntax Parameters show isis neighbors [level-1 | level-2] [detail] [interface] level-1 (OPTIONAL) Displays information about Level 1 IS-IS neighbors. level-2 (OPTIONAL) Displays information about Level 2 IS-IS neighbors. detail (OPTIONAL) Displays detailed information about neighbors.
Adjacency being used for MTs: IPv4 IPv6 Dell# show isis protocol Display IS-IS routing information. Syntax show isis protocol Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The bold section identifies that Multi-Topology IS-IS is enabled. Dell#show isis protocol IS-IS Router: System Id: F100.E120.
Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show isis traffic command shown in the following example. Item Description Level-1/Level-2 Hellos (sent/ rcvd) Displays the number of Hello packets sent and received. PTP Hellos (sent/rcvd) Displays the number of point-to-point Hellos sent and received.
spf-interval Specify the minimum interval between shortest path first (SPF) calculations. Syntax spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] To restore default values, use the no spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] command. Parameters level-l (OPTIONAL) Enter the keyword level-1 to apply the configuration to Level-1 SPF calculations.
30 Link Aggregation Control Protocol (LACP) This chapter contains commands for Dell Networks’s implementation of the link aggregation control protocol (LACP) for creating dynamic link aggregation groups (LAGs) — known as port-channels in the Dell Networking Operating System (OS). NOTE: For static LAG commands, refer to theInterfaces chapter), based on the standards specified in the IEEE 802.3 Carrier sense multiple access with collision detection (CSMA/CD) access method and physical layer specifications.
interface in | out (OPTIONAL) Enter the following keywords and slot/port or number information: ● For a Ten-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Optionally, enter an in or out parameter: ● Receive enter in ● Transmit enter out Defaults none Command Modes ● EXEC ● EXEC Privilege Command History Version 8.3.16.
Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command applies to dynamic port-channel interfaces only. When applied on a static port-channel, this command has no effect. lacp port-priority To influence which ports will be put in Standby mode when there is a hardware limitation that prevents all compatible ports from aggregating, configure the port priority.
NOTE: LACP modes are defined in Usage Information. off Enter the keyword off to set the mode to the off state. NOTE: LACP modes are defined in Usage Information. Defaults off Command Modes INTERFACE Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. LACP Modes Mode Function active An interface is in an active negotiating state in this mode.
Parameters Defaults port-channelnumber Enter a port-channel number. The range is from 1 to 128. sys-id (OPTIONAL) Enter the keywords sys-id and the value that identifies a system. counters (OPTIONAL) Enter the keyword counters to display the LACP counters. Without a Port Channel specified, the command clears all Port Channel counters. Command Modes ● EXEC ● EXEC Privilege Command History Example (Port-ChannelNumber) Version 8.3.16.
31 Layer 2 This chapter describes commands to configure Layer 2 features.
● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. vlan vlan-id Enter the keyword vlan then a VLAN ID number from 1 to 4094. Command Modes EXEC Privilege Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
mac-address-table static Associate specific MAC or hardware addresses to an interface and virtual local area networks (VLANs). Syntax mac-address-table static mac-address output interface vlan vlan-id To remove a MAC address, use the no mac-address-table static mac-address output interface vlan vlan-id command. Parameters Defaults mac-address Enter the 48-bit hexadecimal address in nn:nn:nn:nn:nn:nn format.
Defaults dynamic (OPTIONAL) Enter the keyword dynamic to allow aging of MACs even though a learning limit is configured. no-station-move (OPTIONAL) Enter the keywords no-station-move to disallow a station move (associate the learned MAC address with the most recently accessed port) on learned MAC addresses. station-move (OPTIONAL) Enter the keywords station-move to allow a station move on learned MAC addresses.
Command Modes INTERFACE (conf-if-interface-slot/port) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command is supported on physical interfaces, static LAGs, and LACP LAGs. Related Commands show mac learning-limit — displays details of the mac learning-limit. mac learning-limit station-move-violation Specify the actions for a station move violation.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mac port-security Enable or disable the port security feature globally in the system. Syntax mac port-security To disable the port security, use the no mac port-security command. Defaults Enabled Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information This guide is platform-specific.
● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. vlan vlan-id (OPTIONAL) Enter the keyword vlan then the VLAN ID to display the MAC address assigned to the VLAN. The range is 1 to 4094. Command Modes ● EXEC ● EXEC Privilege Command History Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Usage Information Column Heading Description VlanId Displays the VLAN ID number. Mac Address Displays the MAC address in nn:nn:nn:nn:nn:nn format. Type Lists whether the MAC address was manually configured (Static), learned dynamically (Dynamic), or associated with a specific port (Sticky). Interface Displays the interface type and slot/port information. The following abbreviations describe the interface types: ● gi — Gigabit Ethernet then a slot/port. ● po — Port Channel then a number.
Total MAC Addresses in Use: Dell# Related Commands 5 show mac-address-table aging-time — displays MAC aging time. show mac-address-table aging-time Display the aging times assigned to the MAC addresses on the switch. Syntax show mac-address-table aging-time [vlan vlan-id] Parameters vlan vlan-id (OPTIONAL) Enter the keyword vlan then the VLAN ID to display the MAC address assigned to the VLAN. The range is from 1 to 4094.
Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show mac learning-limit Interface Learning Dynamic Slot/port Limit MAC count Dell# Static Unknown MAC count SA Drops Virtual LAN (VLAN) Commands The following commands configure and monitor virtual LANs (VLANs). VLANs are a virtual interface and use many of the same commands as physical interfaces. You can configure an IP address and Layer 3 protocols on a VLAN called Inter-VLAN routing.
Command History Usage Information Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To return VLAN 1 as the Default VLAN, use the (default-vlan-id 1) command. The Default VLAN contains only untagged interfaces. interface vlan — configures a VLAN. default-vlan disable Disable the default VLAN so that all switchports are placed in the Null VLAN until they are explicitly configured as a member of another VLAN.
show config Display the current configuration of the selected VLAN. Syntax show config Command Modes INTERFACE VLAN Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-vl-100)#show config ! interface Vlan 1 description a no ip address mtu 2500 shutdown Dell(conf-if-vl-100)# show vlan Display the current VLAN configurations on the switch.
Column Heading Description ● ● ● ● Example P = primary VLAN C = community VLAN I = isolated VLAN O = OpenFlow NUM Displays existing VLAN IDs. Status Displays the word Inactive for inactive VLANs and the word Active for active VLANs. Q ● ● ● ● ● ● ● ● ● ● ● ● ● Ports Displays the type, slot, and port information.
Example (Brief) Example (Name) Dell#show vlan brief VLAN Name STG MAC Aging IP Address ---- -----------------------------1 0 0 unassigned 2 0 0 unassigned 20 0 0 unassigned 1002 0 0 unassigned Dell# Dellconf)#interface vlan 222 Dell(conf-if-vl-222)#name test Dell(conf-if-vl-222)#do show vlan name test Codes: Q: U x G - * - Default VLAN, G - GVRP VLANs Untagged, T - Tagged Dot1x untagged, X - Dot1x tagged GVRP tagged, M - Vlan-stack NUM Status Description 222 Inactive Dell(conf-if-vl-222)# Related Comman
track ip Track the Layer 3 operational state of a Layer 3 VLAN, using a subset of the VLAN member interfaces. Syntax track ip interface To remove the tracking feature from the VLAN, use the no track ip interface command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Usage Information Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Untagged interfaces can only belong to one VLAN. In the Default VLAN, you cannot use the no untagged interface command. To remove an untagged interface from all VLANs, including the Default VLAN, enter INTERFACE mode and use the no switchport command. interface vlan — configures a VLAN. tagged — specifies which interfaces in a VLAN are tagged.
32 Link Layer Discovery Protocol (LLDP) Link layer discovery protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management. The Dell Networking operating software implementation of LLDP is based on IEEE standard 801.1ab.
To remove advertised dot1-tlv, use the no advertise dot1-tlv {port-protocol-vlan-id | port-vlan-id | vlan-name} command. Parameters Defaults port-protocolvlan-id Enter the keywords port-protocol-vlan-id to advertise the port protocol VLAN identification TLV. port-vlan-id Enter the keywords port-vlan-id to advertise the port VLAN identification TLV. vlan-name Enter the keywords vlan-name to advertise the vlan-name TLV. Disabled.
Defaults None Command Modes CONFIGURATION (conf-lldp) INTERFACE (conf-if-interface-lldp) Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(2.0P1) Introduced the description and port-id options. If you do not specify the option, by default the port-id takes higher precedence and sends the port-id in the LLDP packets.
Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear lldp neighbors Clear LLDP neighbor information for all interfaces or a specific interface. Syntax Parameters Defaults clear lldp neighbors {interface} interface Enter the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword tenGigabitEthernet then the slot/port information.
Command Modes EXEC Privilege Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable Enable or disable LLDP. Syntax disable To enable LLDP, use the no disable command. Defaults Enabled, that is no disable. Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command History Related Commands Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) — enables LLDP globally. show lldp neighbors — displays the LLDP neighbors. multiplier Set the number of consecutive misses before LLDP declares the interface dead.
Command History Usage Information Version 8.3.16.1 Before LLDP can be configured on an interface, it must be enabled globally from CONFIGURATION mode. This command places you in LLDP mode on the interface; it does not enable the protocol. When you enter the LLDP protocol in the Interface context, it overrides global configurations. When you execute the no protocol lldp from INTERFACE mode, interfaces begin to inherit the configuration from global LLDP CONFIGURATION mode.
show running-config lldp Display the current global LLDP configuration. Syntax show running-config lldp Defaults none Command Modes EXEC Privilege Supported Modes Full-Switch Command History Example 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
DSCP_value Enter the DSCP value. The range is from 0 to 63. priority-tagged Enter the keywords priority-tagged followed the Layer 2 priority. The range is from 0 to 7. number Defaults Unconfigured. Command Modes CONFIGURATION (conf-lldp) Supported Modes Full-Switch Command History Related Commands 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) — enables LLDP globally. debug lldp interface — debugs LLDP.
To return to the default, use the no advertise med location-identification {coordinate-based value | civic-based value | ecs-elin value} command. Parameters coordinate-based Enter the keywords coordinate-based then the coordinated based location in value hexadecimal value of 16 bytes. civic-based value Enter the keywords civic-based then the civic based location in hexadecimal format. The range is from 6 to 255 bytes.
advertise med softphone-voice To advertise softphone to enable IP telephony on a computer so that the computer can be used as a phone, configure the system. Syntax advertise med softphone-voice {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med softphone-voice {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094. priority-tagged Enter the keywords priority-tagged then the Layer 2 priority.
advertise med video-conferencing To advertise dedicated video conferencing and other similar appliances that support real-time interactive video, configure the system. Syntax advertise med video-conferencing {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med video-conferencing {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094. priority-tagged Enter the keywords priority-tagged then the Layer 2 priority.
advertise med voice To advertise a dedicated IP telephony handset or other appliances supporting interactive voice services, configure the system. Syntax advertise med voice {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med voice {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094. priority-tagged Enter the keywords priority-tagged then the Layer 2 priority. The range is from 0 to 7.
33 Microsoft Network Load Balancing Network Load Balancing (NLB) is a clustering functionality that is implemented by Microsoft on Windows 2000 Server and Windows Server 2003 operating systems. NLB uses a distributed methodology or pattern to equally split and balance the network traffic load across a set of servers that are part of the cluster or group.
Limitations With Enabling NLB on Switches The following limitations apply to switches on which you configure NLB: ● The NLB unicast mode uses switch flooding to transmit all packets to all the servers that are part of the VLAN. When a large volume of traffic is processed, the clustering performance might be impacted in a small way. This limitation is applicable to switches that perform unicast flooding in the software. ● The ip vlan-flooding command applies globally across the system and for all VLANs.
the VLAN. To delete a configured static multicast MAC address from the MAC address table on the router, enter the no mac-address-table static multicast-mac-address command. Syntax mac-address-table static multicast-mac-address multicast vlan vlan-id range-output {single-interface | interface-list | interface-range} To remove a MAC address, use the no mac-address-table static multicast-mac-address output interface vlan vlan-id command.
Usage Information 748 By default this command is disabled. There might be some ARP table entries which are resolved through ARP packets which had Ethernet MAC SA different from MAC information inside the ARP packet. This unicast data traffic flooding occurs only for those packets which use these ARP entries.
34 Multicast Source Discovery Protocol (MSDP) Multicast source discovery protocol (MSDP) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections.
Parameters Defaults group-address Enter the group IP address in dotted decimal format (A.B.C.D.). rejected-sa Enter the keywords rejected-sa to clear the cache source-active entries that are rejected because the RPF check failed, an SA filter or limit is configured, the RP or MSDP peer is unreachable, or because of a format error. local Enter the keyword local to clear out local PIM advertised entries.
Defaults packet peer address Enter the keyword packet then the peer address in a dotted decimal format (A.B.C.D.). pim Enter the keyword pim to debug advertisement from PIM. Not configured. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip msdp cache-rejected-sa Enable an MSDP cache for the rejected source-active entries.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If a list is not specified, all SA messages received from the default peer are accepted. You can enter multiple default peer commands. ip msdp log-adjacency-changes Enable logging of MSDP adjacency changes. Syntax ip msdp log-adjacency-changes To disable logging, use the no ip msdp log-adjacency-changes command.
ip msdp originator-id Configure the MSDP Originator ID. Syntax ip msdp originator-id {interface} To remove the originator-id, use the no ip msdp originator-id {interface} command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The connect-source option is used to supply a source IP address for the TCP connection. When an interface is specified using the connect-source option, the primary configured address on the interface is used.
Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip msdp sa-limit Configure the upper limit of source-active (SA) entries in SA-cache. Syntax ip msdp sa-limit number To return to the default, use the no ip msdp sa-limit number command. Parameters Defaults number Enter the maximum number of SA entries in SA-cache.
Command History Version Version 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip multicast-msdp Enable MSDP. Syntax ip multicast-msdp To exit MSDP, use the no ip multicast-msdp command. Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example (Sacache) Example (Summary) Dell#show ip msdp sa-cache MSDP Source-Active Cache - 1 entries GroupAddr SourceAddr RPAddr 224.1.1.1 172.21.220.10 172.21.3.254 Dell# Dell#show ip msdp summary Peer Addr Local Addr Description 5.5.5.32 6.6.6.32 Peer1 Dell# LearnedFrom Expire UpTime 172.21.3.254 102 00:02:52 State Source Established Lo 32 SA 20 Up/Down 00:07:17 show ip msdp sa-cache rejected-sa Display the rejected SAs in the SA cache.
35 Multiple Spanning Tree Protocol (MSTP) Multiple spanning tree protocol (MSTP), as implemented by the Dell Networking Operating System (OS), conforms to IEEE 802.1s.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#debug spanning-tree mstp bpdu tengigabitethernet 0/16 ? in Receive (in) out Transmit (out) Dell# description Enter a description of the multiple spanning tree. Syntax description {description} To remove the description, use the no description {description} command.
disable Enable bridge protocol data units (BPDU) filter globally to filter transmission of BPDU on port-fast enabled interfaces. Syntax edge-port bpdufilter default To disable global bpdu filter default, use the no edge-port bpdufilter default command. Defaults disabled. Command Modes MULTIPLE SPANNING TREE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. edge-port bpdufilter default — the amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. max-age — changes the wait time before MSTP refreshes protocol configuration information.
Usage Information The max-hops command is a configuration command that applies to both the IST and all MST instances in the MSTP region. The BPDUs sent out by the root switch set the remaining-hops parameter to the configured value of max-hops. When a switch receives the BPDU, it decrements the received value of the remaining hops and uses the resulting value as remaining-hops in the BPDUs.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information For two MSTP switches to be within the same MSTP region, the switches must share the same region name (including matching case). Related Commands msti — maps the VLAN(s) to an MST instance. revision — assigns the revision number to the MST configuration. protocol spanning-tree mstp To enable and configure the multiple spanning tree group, enter MULTIPLE SPANNING TREE mode.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information For two MSTP switches to be within the same MST region, the switches must share the same revision number. Related Commands msti — maps the VLAN(s) to an MST instance. name — assigns the region name to the MST region. show config View the current configuration for the mode. Only non-default values are shown.
10 101-105 Dell# show spanning-tree msti View the multiple spanning tree instance. Syntax Parameters show spanning-tree msti [instance-number [brief]] [guard] instance-number (Optional) Enter the multiple spanning tree instance number. The range is from 0 to 63. brief (Optional) Enter the keyword brief to view a synopsis of the MST instance. guard (Optional) Enter the keyword guard to display the type of guard enabled on an MSTP interface and the current port state.
Example (EDS and LBK) The bold line shows the loopback BPDU inconsistency (LBK_INC). Dell#show spanning-tree msti 0 brief MSTI 0 VLANs mapped 1-4094 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15, max hops 20 Bridge ID Priority 32768, Address 0001.e801.
spanning-tree Enable the multiple spanning tree protocol on the interface. Syntax spanning-tree To disable the multiple spanning tree protocol on the interface, use the no spanning-tree command. Parameters Defaults spanning-tree Enter the keywords spanning-tree to enable the MSTP on the interface. Enable. Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters edge-port Enter the keywords edge-port to configure the interface as a multiple spanning tree edge port. bpduguard (OPTIONAL) Enter the keyword portfast to enable Portfast to move the interface into forwarding mode immediately after the root fails. Enter the keyword bpduguard to disable the port when it receives a BPDU. bpdufilter (OPTIONAL) Enter the keyword edgeport to enable edge port configuration to move the interface into forwarding mode immediately after the root fails.
Usage Information By default, the sytem implements an optimized flush mechanism for MSTP. This mechanism helps in flushing the MAC addresses only when necessary (and less often) allowing for faster convergence during topology changes. However, if a standards-based flush mechanism is needed, this knob command can be turned on to enable flushing MAC addresses after receiving every topology change notification.
36 Multicast The multicast commands are supported by Dell Networking Operating System (OS). This chapter contains the following sections: ● IPv4 Multicast Commands ● IPv6 Multicast Commands Topics: • • • • • • • • • • • IPv4 Multicast Commands clear ip mroute ip mroute ip multicast-limit ip multicast-routing mtrace show ip mroute show ip rpf IPv6 Multicast Commands debug ipv6 mld_host ip multicast-limit IPv4 Multicast Commands The following section contains the IPv4 multicast commands.
ip mroute Assign a static mroute. Syntax ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] To delete a specific static mroute, use the ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] command. To delete all mroutes matching a certain mroute, use the no ip mroute destination mask command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This feature allows you to limit the number of multicast entries on the system. This number is the total of all the multicast entries on all line cards in the system. On each line card, the multicast module only installs the maximum number of entries, depending on the configured CAM profile. To store multicast routes, use the IN-L3-McastFib CAM partition.
Command Modes EXEC Privilege Command History Usage Information Version Description 9.11.0.0 Re-introduced the mtrace command on the Dell EMC Networking OS. 7.5.1.0 Expanded to support originator. 7.4.1.0 Expanded to support the intermediate (transit) router. Mtrace is an IGMP based protocol that provides a multicast trace route facility and is implemented according to the IETF draft “A trace route facility for IP Multicast” (draft-fenner-traceroute-ipm-01.txt).
Enter the source-address to view routes with that group-address and sourceaddress. count (OPTIONAL) Enter the keyword count to view the number of multicast routes and packets. snooping [vlan vlan-id ] [ groupaddress [ sourceaddress ]] Enter the keyword snooping to display information on the multicast routes PIMSM snooping discovers. Enter a VLAN ID to limit the information displayed to the multicast routes PIM-SM snooping discovers on a specified VLAN. The VLAN ID range is from 1 to 4094.
IP Multicast Routing Table (*, 224.10.10.1), uptime 00:05:12 Incoming interface: TenGigabitEthernet 0/2 Outgoing interface list: TenGigabitEthernet 0/13 (1.13.1.100, 224.10.10.1), uptime 00:04:03 Incoming interface: TenGigabitEthernet 1/4 Outgoing interface list: TenGigabitEthernet 0/6 TenGigabitEthernet 0/7 (*, 224.20.20.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2.(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Network administrators use static mroutes to control the reach-ability of the multicast sources. If a PIM-registered multicast source is reachable using static mroute as well as unicast route, the distance of each route is examined and the route with shorter distance is the one the PIM selects for reach-ability.
ip multicast-limit To limit the number of multicast entries on the system, use this feature. Syntax Parameters Defaults ip multicast-limit limit limit Enter the desired maximum number of multicast entries on the system. The range is from 1 to 50000. 15000 routes. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
37 Neighbor Discovery Protocol (NDP) The Dell Networking Operating System (OS) supports the network discovery protocol for IPv6. The neighbor discovery protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 neighbor Configure a static entry in the IPv6 neighbor discovery. Syntax ipv6 neighbor {ipv6-address} {interface interface} {hardware_address} To remove a static IPv6 entry from the IPv6 neighbor discovery, use the no ipv6 neighbor {ipv6address} {interface interface} command.
interface interface Defaults Enter the keyword interface then the interface type and slot/port or number information: ● For a Fast Ethernet interface, enter the keyword fastEthernet then the slot/port information. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a VLAN, enter the keyword vlan then the VLAN ID. The range is from 1 to 4094.
38 Object Tracking Object Tracking supports IPv4 and IPv6, and is available on the Dell Networking platforms. Object tracking allows you to define objects of interest, monitor their state, and report to a client when a change in an object’s state occurs.
delay Configure the time delay used before communicating a change in the status of a tracked object to clients. Syntax delay {[up seconds] [down seconds]} To return to the default setting, use the no delay command. Parameters Defaults seconds Enter the number of seconds the object tracker waits before sending a notification about the change in the UP and/or DOWN state of a tracked object to clients. The range is 0 to 180. The default is 0 seconds.
Parameters object-id (OPTIONAL) Display information on the specified tracked object. The range is 1 to 500. Command Modes EXEC Privilege Command History Example Version Description 9.7(0.0) Introduced on the MXL. Dell#show running-config track track 1 ip route 23.0.0.0/8 reachability track 2 ipv6 route 2040::/64 metric threshold delay down 3 delay up 5 threshold metric up 200 track 3 ipv6 route 2050::/64 reachability track 4 interface TenGigabitEthernet 1/2 ip routing track 5 ip route 192.168.0.
Usage Information The following describes the show track command shown in the Example below. Output Description Track object-id Displays the number of the tracked object. Interface type Displays the interface type and slot/port number or address of the IPv4/IPv6 route slot/port , IP that is being tracked. route ip-address , IPv6 route ipv6address object is Up/ Down Up/Down state of tracked object; for example, IPv4 interface, reachability or metric threshold of an IP route.
threshold metric Configure the metric threshold used to determine the UP and/or DOWN state of a tracked IPv4 or IPv6 route. Syntax threshold metric {up number | down number} To return to the default setting, use the no threshold metric {up number | down number} command. Parameters Defaults up number Enter a number for the UP threshold to be applied to the scaled metric of an IPv4 or IPv6 route. The default UP threshold is 254.
● For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. ● For a port channel interface, enter the keywords port-channel then a number. ● For a tunnel interface, enter the keyword tunnel. ● For a VLAN interface, enter the keyword vlan then a number from 1 to 4094. Defaults none Command Modes CONFIGURATION Command History Usage Information Version Description 9.7(0.0) Introduced on the MXL. Added support for tunnel interface.
track ip route metric threshold Configure object tracking on the threshold of an IPv4 route metric. Syntax track object-id ip route ip-address/prefix-len metric threshold To return to the default setting, use the no track object-id command. Parameters Defaults object-id Enter the ID number of the tracked object. The range is 1 to 500. ip-address/ prefix-len Enter an IPv4 address in dotted decimal format. The valid IPv4 prefix lengths are from /0 to /32.
vrf vrf-name Defaults (Optional) E-Series only: You can configure a VPN routing and forwarding (VRF) instance to specify the virtual routing table to which the tracked route belongs. none Command Modes CONFIGURATION Command History Usage Information Version Description 9.7(0.0) Introduced on the MXL. Use this command to create an object that tracks the reachability of an IPv4 route. In order for a route’s reachability to be tracked, the route must appear as an entry in the routing table.
track resolution ip route Configure the protocol-specific resolution value used to scale an IPv4 route metric. Syntax track resolution ip route {isis resolution-value | ospf resolution-value} To return to the default setting, use the no track object-id command. Parameters object-id Enter the ID number of the tracked object. The range is 1 to 500. isis resolution- Enter the resolution used to convert the metric in the routing table for ISIS routes to a scaled metric.
Command Modes ● EXEC ● EXEC Privilege Command History Usage Information Version Description 9.7(0.0) Introduced on the MXL. The following describes the show track ipv6 route command shown in the Example below. Output Description Track object-id Displays the number of the tracked object. Interface type Displays the interface type and slot/port number or address of the IPv4/IPv6 route slot/port , IP that is being tracked.
track interface ipv6 routing Configure object tracking on the routing status of an IPv6 Layer 3 interface. Syntax track object-id interface interface ipv6 routing To return to the default setting, use the no track object-id command. Parameters Defaults object-id Enter the ID number of the tracked object. The range is 1 to 500. interface Enter one of the following values: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Usage Information Use this command to create an object that tracks the UP and/or DOWN threshold of an IPv6 route metric. In order for a route’s metric to be tracked, the route must appear as an entry in the routing table. A tracked IPv6 route is considered to match an entry in the routing table only if the exact IPv6 address and prefix length match a table entry. For example, when configured as a tracked route, 3333:100:200:300:400::/80 does not match routing table entry 3333:100:200:300::/64.
If the next-hop address in the ARP cache ages out for a route tracked for its reachability, an attempt is made to regenerate the ARP cache entry to if the next-hop address appears before considering the route DOWN. Related Commands ● show track ipv6 route - displays information about tracked IPv6 routes, including configuration, current state, and clients which track the route. track resolution ipv6 route Configure the protocol-specific resolution value used to scale an IPv6 route metric.
39 Open Shortest Path First (OSPFv2 and OSPFv3) The Switch supports open shortest path first version 2 (OSPFv2) for IPv4 and version 3 (OSPFv3) for IPv6. Up to 16 OSPF instances can be run simultaneously on the Switch. OSPF is an Interior Gateway Protocol (IGP), which means that it distributes routing information between routers in a single Autonomous System (AS). OSPF is also a link-state protocol in which all routers contain forwarding tables derived from information about their links to their neighbors.
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • log-adjacency-changes maximum-paths mib-binding network area passive-interface redistribute redistribute bgp redistribute isis router-id router ospf show config show ip ospf show ip ospf asbr show ip ospf database show ip ospf database asbr-summary show ip ospf database external show ip ospf database network show ip ospf database nssa-external show ip ospf database opaque-area show ip ospf databa
• • • • • • • • • • • • ipv6 router ospf maximum-paths passive-interface redistribute router-id show crypto ipsec policy show crypto ipsec sa ipv6 show ipv6 ospf database show ipv6 ospf interface show ipv6 ospf neighbor snmp context timers spf OSPFv2 Commands The Dell Networking implementation of OSPFv2 is based on IETF RFC 2328. area default-cost Set the metric for the summary default route the area border router (ABR) generates into the stub area.
Parameters area-id Specify the OSPF area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535. no-redistribution (OPTIONAL) Specify that the redistribute command does not distribute routes into the NSSA. Only use this command in an NSSA area border router (ABR). Defaults defaultinformationoriginate (OPTIONAL) Allows external routing information to be imported into the NSSA by using Type 7 default.
area stub Configure a stub area, which is an area not connected to other areas. Syntax area area-id stub [no-summary] To delete a stub area, use the no area area-id stub command. Parameters Defaults area-id Specify the OSPF area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535. no-summary (OPTIONAL) Enter the keywords no-summary to prevent the ABR from sending summary Link State Advertisements (LSAs) into the stub area. Disabled.
Parameters process-id Enter the OSPF Process ID to clear a specific process. If no Process ID is entered, all OSPF processes are cleared. process (OPTIONAL) Enter the keyword process to reset the OSPF process. Command Modes EXEC Privilege Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip ospf statistics Clear the packet statistics in interfaces and neighbors.
bfd (OPTIONAL) Enter the keyword bfd to debug only OSPF BFD information. event (OPTIONAL) Enter the keyword event to debug only OSPF event information. packet (OPTIONAL) Enter the keyword packet to debug only OSPF packet information. spf (OPTIONAL) Enter the keyword spf to display the Shortest Path First information. database-timer rate-limit (OPTIONAL) Enter the keywords database-timer rate-limit to display the LSA throttling timer information.
Field Description ● MC+ (bit used by MOSPF is set and router is able to forward IP multicast packets) ● MC- (bit used by MOSPF is not set and router cannot forward IP multicast packets) ● E + (router is able to accept AS External LSAs) ● E - (router cannot accept AS External LSAs) ● T + (router can support TOS) ● T - (router cannot support TOS) Example hi: Displays the amount of time configured for the HELLO interval. di: Displays the amount of time configured for the DEAD interval.
Related Commands redistribute — redistributes routes from other routing protocols into OSPF. default-metric Change the metrics of redistributed routes to a value useful to OSPF. Use this command with the redistribute command. Syntax default-metric number To return to the default values, use the no default-metric [number] command. Parameters Defaults number Enter a number as the metric. The range is from 1 to 16777214. Disabled.
Parameters weight Specify an administrative distance. The range is from 1 to 255. The default is 110. ip-address (OPTIONAL) Enter a router ID in the dotted decimal format. If you enter a router ID, include the mask for that router address. mask (OPTIONAL) Enter a mask in dotted decimal format or /n format. access-list-name (OPTIONAL) Enter the name of an IP standard access list, up to 140 characters.
Parameters Defaults prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: ● For Port Channel groups, enter the keywords port-channel then a number. The range is from 1 to 128. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a VLAN, enter the keyword vlan then a number from 1 to 4094. Not configured.
fast-convergence This command sets the minimum LSA origination and arrival times to zero (0), allowing more rapid route computation so that convergence takes less time. Syntax fast-convergence {number} To cancel fast-convergence, use the no fast convergence command. Parameters Defaults number Enter the convergence level desired. The higher this parameter is set, the faster OSPF converge takes place. The range is from 1 to 4. none.
graceful-restart grace-period Specifies the time duration, in seconds, that the router’s neighbors continue to advertise the router as fully adjacent regardless of the synchronization state during a graceful restart. Syntax graceful-restart grace-period seconds To disable the grace period, use the no graceful-restart grace-period command. Parameters Defaults seconds Time duration, in seconds, that specifies the duration of the restart process before OSPF terminates the process.
Command Modes ROUTER OSPF Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. graceful-restart role Specify the role for your OSPF router during graceful restart. Syntax graceful-restart role [helper-only | restart-only] To disable graceful restart role, use the no graceful-restart role command.
ip ospf authentication-key Enable authentication and set an authentication key on OSPF traffic on an interface. Syntax ip ospf authentication-key [encryption-type] key To delete an authentication key, use the no ip ospf authentication-key command. Parameters Defaults encryption-type (OPTIONAL) Enter 7 to encrypt the key. key Enter an eight-character string. Strings longer than eight characters are truncated. Not configured.
To return to the default values, use the no ip ospf dead-interval command. Parameters Defaults seconds Enter the number of seconds for the interval. The range is from 1 to 65535. The default is 40 seconds. 40 seconds Command Modes INTERFACE Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information By default, the dead interval is four times the default hello-interval.
Defaults No MD5 authentication is configured. Command Modes INTERFACE Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can configure a maximum of six digest keys on an interface. Of the available six digest keys, the switches select the MD5 key that is common. The remaining MD5 keys are unused.
Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip ospf priority To determine the designated router for the OSPF network, set the priority of the interface. Syntax ip ospf priority number To return to the default setting, use the no ip ospf priority command. Parameters Defaults number Enter a number as the priority. The range is from 0 to 255. The default is 1.
ip ospf transmit-delay To send a link state update packet on the interface, set the estimated time elapsed. Syntax ip ospf transmit-delay seconds To return to the default value, use the no ip ospf transmit-delay command. Parameters seconds Enter the number of seconds as the interval between retransmission. The range is from 1 to 3600. The default is 1 second. This value must be greater than the transmission and propagation delays for the interface.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Added support for OSPFv3. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mib-binding Enable this OSPF process ID to manage the SNMP traps and process SNMP queries. Syntax mib-binding To mib-binding on this OSPF process, use the no mib-binding command. Defaults none.
Usage Information To enable OSPF on an interface, the network area command must include, in its range of addresses, the primary IP address of an interface. NOTE: An interface can be attached only to a single OSPF area. If you delete all the network area commands for Area 0, the show ip ospf command output does not list Area 0. passive-interface Suppress both receiving and sending routing updates on an interface.
● Remove the interface from the passive list. ● The ABR status for the router is updated. ● If passive-interface default is specified, then save no passive-interface interface into the running configuration. No ● ● ● passive-interface default Clear everything and revert to the default behavior. All previously marked passive interfaces are removed. May update ABR status. redistribute Redistribute information from another routing protocol throughout the OSPF process.
redistribute bgp Redistribute BGP routing information throughout the OSPF instance. Syntax redistribute bgp as number [metric metric-value] | [metric-type type-value] | [tag tag-value] To disable redistribution, use the no redistribute bgp as number [metric metric-value] | [metric-type type-value] [tag tag-value] command. Parameters as number Enter the autonomous system number. The range is from 1 to 65535. metric metric- (OPTIONAL) Enter the keyword metric then the metric-value number.
tag tag-value Defaults (OPTIONAL) Enter the keyword tag to set the tag for routes redistributed into OSPF. The range is from 0 to 4294967295. Not configured. Command Modes ROUTER OSPF Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. router-id To configure a fixed router ID, use this command. Syntax router-id ip-address To remove the fixed router ID, use the no router-id ip-address command.
Parameters Defaults process-id Enter a number for the OSPF instance. The range is from 1 to 65535. Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You must have an IP address assigned to an interface to enter ROUTER OSPF mode and configure OSPF.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If you delete all the network area commands for Area 0, the show ip ospf command output does not list Area 0. The following describes the show ip ospf command shown in the following example. Line Beginning with Description “Routing Process...” Displays the OSPF process ID and the IP address associated with the process ID. “Supports only...” Displays the number of Type of Service (TOS) rouse supported.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To isolate problems with external routes, use this command. In OSPF, external routes are calculated by adding the LSA cost to the cost of reaching the ASBR router. If an external route does not have the correct cost, use this command to determine if the path to the originating router is correct. The display output is not sorted in any order.
Example Dell>show ip ospf 1 database OSPF Router with ID (11.1.2.1) (Process ID 1) Router (Area 0.0.0.0) Link ID ADV Router Age Seq# Checksum 11.1.2.1 11.1.2.1 673 0x80000005 0x707e 13.1.1.1 13.1.1.1 676 0x80000097 0x1035 192.68.135.2 192.68.135.2 1419 0x80000294 0x9cbd Link ID 10.2.3.2 10.2.4.2 Link ID 0.0.0.0 1.1.1.1 10.1.1.0 10.1.2.0 10.2.2.0 10.2.3.0 10.2.4.0 11.1.1.0 11.1.2.0 12.1.2.0 13.1.1.0 13.1.2.0 172.16.1.0 Dell> Related Commands Link count 2 2 1 Network (Area 0.0.0.
Example Field Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: ● TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service. ● DC or No DC is displayed depending on whether the originating router can support OSPF over demand circuits. ● E or No E is displayed on whether the originating router can accept AS External LSAs.
Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format. The LSA ID value depends on the LSA type, and it can be one of the following: ● the network’s IP address for Type 3 LSAs or Type 5 LSAs ● the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs ● the default destination (0.0.0.
OSPF Router with ID (20.20.20.5) (Process ID 1) Type-5 AS External LS age: 612 Options: (No TOS-capability, No DC, E) LS type: Type-5 AS External Link State ID: 12.12.12.2 Advertising Router: 20.31.3.1 LS Seq Number: 0x80000007 Checksum: 0x4cde Length: 36 Network Mask: /32 Metrics Type: 2 TOS: 0 Metrics: 25 Forward Address: 0.0.0.0 External Route Tag: 43 LS age: 1868 Options: (No TOS-capability, DC) LS type: Type-5 AS External Link State ID: 24.216.12.0 Advertising Router: 20.20.20.
Usage Information Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip ospf process-id database network command shown in the following example. Field Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: ● TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
Related Commands show ip ospf database — displays OSPF database information. show ip ospf database nssa-external Display NSSA-External (type 7) LSA information. Syntax show ip ospf database nssa-external [link-state-id] [adv-router ip-address] Parameters link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Usage Information Example The following describes the show ip ospf process-id database opaque-area command shown in the following example. Item Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: ● TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
Parameters process-id Enter the OSPF process ID to show a specific process. If you do not enter the process ID, the command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format. The LSA ID value depends on the LSA type, and it can be one of the following: ● the network’s IP address for Type 3 LSAs or Type 5 LSAs ● the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs ● the default destination (0.0.0.
show ip ospf database router Display the router (type 1) LSA information. Syntax Parameters show ip ospf process-id database router [link-state-id] [adv-router ipaddress] process-id Enter the OSPF Process ID to show a specific process. If you do not enter a process ID, the command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Example Item Description Number of TOS Metric Lists the number of TOS metrics. TOS 0 Metric Lists the number of TOS 0 metrics. Dell#show ip ospf 100 database router OSPF Router with ID (1.1.1.10) (Process ID 100) Router (Area 0) LS age: 967 Options: (No TOS-capability, No DC, E) LS type: Router Link State ID: 1.1.1.10 Advertising Router: 1.1.1.
show ip ospf database summary Display the network summary (type 3) LSA routing information. Syntax Parameters show ip ospf process-id database summary [link-state-id] [adv-router ipaddress] process-id Enter the OSPF process ID to show a specific process. If you do not enter a process ID, the command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
OSPF Router with ID (1.1.1.10) (Process ID 100) Summary Network (Area 0.0.0.0) LS age: 1551 Options: (No TOS-capability, DC, E) LS type: Summary Network Link State ID: 192.68.16.0 Advertising Router: 192.168.17.1 LS Seq Number: 0x80000054 Checksum: 0xb5a2 Length: 28 Network Mask: /24 TOS: 0 Metric: 1 LS age: 9 Options: (No TOS-capability, No DC, E) LS type: Summary Network Link State ID: 192.68.32.0 Advertising Router: 1.1.1.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip ospf process-id interface command shown in the following example. Item Description TenGigabitEther net... This line identifies the interface type slot/port and the status of the OSPF protocol on that interface. Internet Address... This line displays the IP address, network mask and area assigned to this interface.
show ip ospf neighbor Display the OSPF neighbors connected to the local router. Syntax show ip ospf process-id neighbor Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is useful in isolating routing problems between the OSPF and the RTM. For example, if a route is missing from the RTM/FIB but is visible from the display output of this command, the problem is with downloading the route to the RTM. This command has the following limitations: ● The display output is sorted by prefixes; intra-area ECMP routes are not displayed together.
Row Heading Description Total Displays the total number of packets the OSPF process receives/transmits. Error Displays the error count while receiving and transmitting packets by the OSPF process. Hello Number of OSPF Hello packets. DDiscr Number of database description packets. LSReq Number of link state request packets. LSUpd Number of link state update packets. LSAck Number of link state acknowledgement packets. TxQ-Len The transmission queue length. RxQ-Len The reception queue length.
OSPF Packet Count Total Error Hello DDiscr LSReq LSUpd LSAck RX 34 0 26 2 1 3 2 TX 34 0 25 3 1 3 2 OSPF Global Queue Length TxQ-Len RxQ-Len Tx-Mark Rx-Mark Hello-Q 0 0 1 1 LSR-Q 0 0 1 1 Other-Q 0 0 2 2 Error packets (Receive statistics) Intf-Down 0 Non-Dr 0 Self-Org 0 Wrong-Len 0 Invld-Nbr 0 Nbr-State 0 Auth-Err 0 MD5-Err 0 Chksum 0 Version 0 AreaMis 0 Conf-Issues 0 No-Buffer 0 Seq-No 0 Socket 0 Q-OverFlow 0 Unknown-Pkt 0 RtidZero 0 Error packets (Transmit statistics) Socket Errors 0 Dell# Usage Information
show ip ospf timers rate-limit Show the LSA currently in the queue waiting for timers to expire. Syntax show ip ospf process-id timers rate-limit Parameters Defaults process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
summary-address To advertise one external route, set the OSPF ASBR. Syntax summary-address ip-address mask [not-advertise] [tag tag-value] To disable summary address, use the no summary-address ip-address mask command. Parameters Defaults ip-address Specify the IP address in dotted decimal format of the address to summarize. mask Specify the mask in dotted decimal format of the address to summarize.
Command History Usage Information Example for IPv4 and IPv6 Version Description 9.11(0.0) Introduced the msec keyword. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Setting the delay and holdtime parameters to a low number enables the switch to an alternate path quickly but requires more CPU usage.
timers throttle lsa arrival Configure the LSA acceptance intervals. Syntax timers throttle lsa arrival arrival-time To return to the default, use the no timers throttle lsa command. Parameters Defaults arrival-time Set the interval between receiving the same LSA repeatedly, to allow sufficient time for the system to accept the LSA. The range is from 0 to 600,000 milliseconds. 1000 msec Command Modes ROUTER OSPF Supported Modes Full–Switch Command History Version Description 9.9(0.
Command Modes ROUTER OSPFv3 Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Before you enable IPsec authentication on an OSPFv3 area, you must first enable OSPFv3 globally on the router. Configure the same authentication policy (same SPI and key) on each interface in an OSPFv3 link.
For MD5 authentication, the key must be 32 hex digits (non-encrypted) or 64 hex digits (encrypted). For SHA-1 authentication, the key must be 40 hex digits (non-encrypted) or 80 hex digits (encrypted). null Defaults Causes an encryption policy configured for the area to not be inherited on the interface. Not configured. Command Modes ROUTER OSPFv3 Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Version Description 9.13(0.0) Introduced on the remaining DNOS platforms. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000-ON. 9.2(1.0) Introduced on the Z9500. 9.0.2.0 Introduced on the S6000. 8.3.19.
Example Dell#show running-config ospf ! ipv6 router ospf 10 log-adjacency-changes auto-cost reference-bandwidth 2000 Dell(conf-ipv6-router_ospf)#auto-cost reference-bandwidth ? <1-4294967> Reference bandwidth in Mbits/second (default = 100) Dell(conf-ipv6-router_ospf)#no auto-cost ? reference-bandwidth Use reference bandwidth method to assign OSPF cost Dell(conf-ipv6-router_ospf)# clear ipv6 ospf process Reset an OSPFv3 router process without removing or re-configuring the process.
debug ipv6 ospf bfd Display debug information and interface types for BFD on OSPF IPv6 packets. Syntax [no] debug ipv6 ospf bfd [interface] To cancel the debug command, use the no debug ipv6 ospf command. Parameters interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a Port Channel interface, enter the keywords port-channel then a number.
Te 0/2 (diag: NBR_DN) Aug 25 11:20:00: %STKUNIT0-M:CP %BFDMGR-1-BFD_STATE_CHANGE: Changed session state to Up for neighbor fe80::201:e8ff:fe8b:7720 on interface Te 0/2 (diag: NO_DIAG) 00:59:45 : OSPFv3INFO: OSPFV3 got BFD msg 00:59:45 : OSPFv3INFO: Bfd Msg Type Up for interface Te 0/2 00:59:45 : OSPFv3INFO: OSPFV3 updating NBR state debug ipv6 ospf events Display debug information and interface types on OSPF IPv6 events.
Command Fields Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces. 05:21:01 Displays the time stamp. Sending Ver:3 Sending OSPF3 version.. type: Displays the type of packet sent: ● 1 - Hello packet ● 2 - database description ● 3 - link state request ● 4 - link state update ● 5 - link state acknowledgement Length: Displays the OSPFv3 packet length. Router ID: Displays the OSPFv3 router ID. Area ID: Displays the OSPFv3 area ID.
Version Description 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.2(1.0) Introduced on the Z9500. 9.1.(0.0) Introduced on the S4810 and Z9000. 8.3.19.0 Introduced on the S4820T. 7.8.1.0 Added support for C-Series. 7.4.1.0 Introduced on E-Series. Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces. 05:21:01 Displays the time stamp.
Command History Usage Information Example This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.11.0.0 Introduced the command. The following section describes the command fields. Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces. 05:21:01 Displays the time stamp. Sending Ver:3 Sending OSPF3 version..
metric metric- value metric-type type-value route-map map- name Defaults (OPTIONAL) Enter the keyword metric then a number to configure a metric value for the route. The range is from 1 to 16777214. (OPTIONAL) Enter the keywords metric-type then an OSPFv3 link state type of 1 or 2 for default routes. The values are: ● 1 = Type 1 external route ● 2 = Type 2 external route (OPTIONAL) Enter the keywords route-map then the name of an established route map. Disabled.
graceful-restart mode Specify the type of events that trigger an OSPFv3 graceful restart. Syntax graceful-restart mode {planned-only | unplanned-only} To disable graceful restart mode, enter no graceful-restart mode. Parameters Defaults planned-only (OPTIONAL) Enter the keywords planned-only to indicate graceful restart is supported in a planned restart condition only.
ipv6 ospf authentication Enable IPv6 OSPF on an interface. Syntax ipv6 ospf authentication {null | ipsec spi number {MD5 | SHA1} [keyencryption-type] key}} To remove an IPsec authentication policy from an interface, use the no ipv6 ospf authentication spi number command. To remove null authentication on an interface to allow the interface to inherit the authentication policy configured for the OSPFv3 area, use the no ipv6 ospf authentication null command.
min_rx milliseconds Enter the keywords min_rx to specify the minimum rate at which the local system would like to receive control packets from the remote system. The range is from 50 to 100. The default is 100. multiplier value Enter the keyword multiplier to specify the number of packets that must be missed in order to declare a session down. The range is from 3 to 50. The default is 3.
ipv6 ospf dead-interval Set the time interval since the last hello-packet was received from a router. After the time interval elapses, the neighboring routers declare the router down. Syntax Parameters Defaults ipv6 ospf dead-interval seconds seconds Enter the time interval in seconds. The range is from 1 to 65535 seconds. 40 seconds (Ethernet). Command Modes INTERFACE Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Valid values: 0 (key is not encrypted) or 7 (key is encrypted). key Text string used in authentication. For MD5 authentication, the key must be 32 hex digits (non-encrypted) or 64 hex digits (encrypted). For SHA-1 authentication, the key must be 40 hex digits (non-encrypted) or 80 hex digits (encrypted). Defaults Not configured. Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Parameters Defaults seconds Enter the time interval in seconds as the time between hello packets. The range is from 1 to 65525 seconds. 10 seconds (Ethernet). Command Modes INTERFACE Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The time interval between hello packets must be the same for routers in a network.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. maximum-paths Enable the software to forward packets over multiple paths. Syntax maximum-paths number To disable packet forwarding over multiple paths, use the no maximum-paths command. Parameters Defaults number Specify the number of paths. The range is from 1 to 64. The default is 8 paths.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, no interfaces are passive. Routing updates are sent to all interfaces on which the routing protocol is enabled. If you disable the sending of routing updates on an interface, the particular address prefix continues to be advertised to other interfaces, and updates from other routers on that interface continue to be received and processed.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Added support for OSPFv3. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To redistribute the default route (x:x:x:x::x), use the default-information originate command. Related Commands default-information originate — generates a default route into the OSPF routing domain. router-id Designate a fixed router ID.
Defaults none Command Modes EXEC EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The show crypto ipsec policy command output displays the AH and ESP parameters configured in IPsec security policies, including the SPI number, keys, and algorithms used.
grace-lsa Defaults (OPTIONAL): Enter the keywords grace-lsa to display the Type-11 Grace LSAs sent and received on an OSPFv3 router. none Command Modes EXEC EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. The show crypto ipsec sa ipv6 command output displays security associations set up for OSPFv3 links in IPsec authentication and encryption policies on the router.
Timer intervals configured, Hello 10, Dead 40, Wait 1, Retransmit 5 Dell# show ipv6 ospf neighbor Display the OSPF neighbor information on a per-interface basis. Syntax Parameters show ipv6 ospf neighbor [interface] interface (OPTIONAL) Enter the following keywords and slot/port or number information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a Port Channel interface, enter the keywords port-channel then a number.
Example DellEMC(conf-ipv6-router_ospf)#snmp context ospf1 DellEMC>show runnig-config ospf ! ipv6 router ospf 10 router-id 10.10.10.1 snmp context ospf1 ! DellEMC> timers spf Set the time interval between when the switch receives a topology change and starts a shortest path first (SPF) calculation. Syntax timers spf delay holdtime msec To return to the default, use the no timers spf command. Parameters delay Enter a number as the delay. The range is from 0 to 2147483647. The default is 5 seconds.
40 Policy-based Routing (PBR) Policy-based routing (PBR) allows you to apply routing policies to specific interfaces. To enable PBR, create a redirect list and apply it to the interface. After the redirect list is applied to the interface, all traffic passing through the interface is subject to the rules defined in the redirect list. PBR is supported by the Dell Networking operating software (OS).
Parameters Defaults redirect-listname Enter the name of a configured redirect list. l2–switch Enter the keyword l2–switch to enable PBR on Layer2 (switched) traffic. none Command Modes INTERFACE (conf-if-vl-) Supported Modes Full—Switch Command History Usage Information Version Description 9.11(2.0) Introduced the l2–switch attribute. 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 8.4.2.1 Introduced on the C-Series and S-Series. 8.4.2.
Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 8.4.2.1 Introduced on the C-Series and S-Series. 8.4.2.0 Introduced on the E-Series TeraScale. 6.5.3.0 Introduced on the E-Series ExaScale. permit Configure a permit rule. A permit rule excludes the matching packets from PBR classification and routes them using conventional routing.
● range = inclusive range of ports (you must specify two ports for the portcommand parameter.) Defaults none Command Modes REDIRECT-LIST Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 8.4.2.1 Introduced on the C-Series and S-Series. 8.4.2.0 Introduced on the E-Series TeraScale. 7.5.1.0 Introduced on the E-Series ExaScale. redirect Configure a rule for the redirect list.
Defaults source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all traffic is subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent. operator (OPTIONAL) For TCP and UDP parameters only.
ip-protocolnumber Enter the keyword ip-protocol-number then the number from 0 to 255 for the protocol identified in the IP protocol header. protocol-type Enter one of the following keywords as the protocol type: ● icmp for internet control message protocol ● ip for any internet protocol ● tcp for transmission control protocol ● udp for user datagram protocol source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x).
show cam pbr Displaysthe PBR CAM content. Syntax Parameters show cam pbr {[interface interface] | stack—unit slot-number port-set number]} [summary] interface interface stack–unit number Defaults Enter the keyword interface then the name of the interface. Enter the keyword stack-unit then the slot number. The range is from 0 to 11 . port-set number Enter the keywords port-set then the port-pipe number. The range is from 0 to 0.
● EXEC Privilege Supported Modes Full—Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for removing the Sonet interface on the MXL. 7.4.1.0 Introduced. Dell#show ip redirect-list explicit_tunnel IP redirect-list explicit_tunnel: Defined as: seq 5 redirect tunnel 1 track 1 tcp 155.55.2.0/24 222.22.2.
41 PIM-Sparse Mode (PIM-SM) The protocol-independent multicast (PIM) commands are supported by the Dell Networking Operating System (OS).
• • show ipv6 pim rp show ipv6 pim tib IPv4 PIM-Sparse Mode Commands The following describes the IPv4 PIM-sparse mode (PIM-SM) commands. clear ip pim rp-mapping The bootstrap router (BSR) feature uses this command to remove all or particular rendezvous point (RP) advertisement. Syntax clear ip pim rp-mapping rp-address Parameters rp-address (OPTIONAL) Enter the RP address in dotted decimal format (A.B.C.D).
To disable PIM debugging, use the no debug ip pim command or use the undebug all to disable all the debugging commands. Parameters bsr (OPTIONAL) Enter the keyword bsr to view PIM Candidate RP/BSR activities. events (OPTIONAL) Enter the keyword group to view PIM messages for a specific group. group (OPTIONAL) Enter the keyword group to view PIM messages for a specific group. packet [in | out] (OPTIONAL) Enter the keyword packet to view PIM packets.
ip pim bsr-candidate To join the Bootstrap election process, configure the PIM router. Syntax ip pim bsr-candidate interface [hash-mask-length] [priority] To return to the default value, use the no ip pim bsr-candidate command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. ● For a Port Channel interface, enter the keywords port-channel then a number.
ip pim join-filter Permit or deny PIM Join/Prune messages on an interface using an extended IP access list. This command prevents the PIM-SM router from creating state based on multicast source and/or group. Syntax ip pim join-filter ext-access-list {in | out} To remove the access list, use the no ip pim join-filter ext-access-list {in | out} command. Parameters Defaults ext-access-list Enter the name of an extended access list. in Enter this keyword to apply the access list to inbound traffic.
Dell(config-std-nacl)#exit Dell(conf)#int te 0/1 Dell(config-if-te-0/1)# ip pim ingress-interface-map map1 ip pim neighbor-filter To prevent a router from participating in protocol independent multicast (PIM), configure this feature. Syntax ip pim neighbor-filter {access-list} To remove the restriction, use the no ip pim neighbor-filter {access-list} command. Parameters Defaults access-list Enter the name of a standard access list. Maximum 16 characters.
Parameters Defaults access-list Enter the name of an extended access list. Maximum 16 characters. Not configured. Command Modes CONFIGURATION Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The access name is an extended IP access list that denies PIM register packets to RP at the source DR based on the multicast and group addresses.
● For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. ● For a VLAN, enter the keyword vlan then a number from 1 to 4094. Defaults priority (OPTIONAL) Enter the priority used in Bootstrap election process. The range is zero (0) to 255. The default is 192.
Parameters Defaults seconds Enter the number of seconds the S, G entries are retained. The range is from 211 to 86400. access-list name (OPTIONAL) Enter the name of a previously configured Extended ACL to enable the expiry time to specified S,G entries. Disabled. The default expiry timer (with no times configured) is 210 sec. Command Modes CONFIGURATION Supported Modes Full—Swtich Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. By default, when you enable PIM-SM snooping, a switch floods all multicast traffic to the PIM designated router (DR), including unnecessary multicast packets. To minimize the traffic sent over the network to the designated router, you can disable designated-router flooding.
Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip pim interface command shown in the following example. Field Description Address Lists the IP addresses of the interfaces participating in PIM. Interface List the interface type, with either slot/port information or ID (VLAN or Port Channel), of the interfaces participating in PIM.
Example Field Description Uptime/expires Displays the amount of time the neighbor has been up then the amount of time until the neighbor is removed from the multicast routing table (that is, until the neighbor hold time expires). Ver Displays the PIM version number. ● v2 = PIM version 2 DR prio/Mode Displays the Designated Router priority and the mode.
Uptime: 00:03:11, expires: 00:03:03 Dell# Example (Address) Dell#sh ip pim rp 229.1.2.1 Group RP 229.1.2.1 165.87.20.4 Dell# show ip pim snooping interface Display information on VLAN interfaces with PIM-SM snooping enabled. Syntax Parameters show ip pim snooping interface [vlan vlan-id] vlan vlan-id (OPTIONAL) Enter a VLAN ID to display information about a specified VLAN configured for PIM-SM snooping. The valid VLAN IDs range is from 1 to 4094.
Parameters vlan vlan-id (OPTIONAL) Enter a VLAN ID to display information about PIM neighbors that PIM-SM snooping discovered on a specified VLAN. The valid VLAN IDs range is from 1 to 4094. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full—Swtich Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
● EXEC Privilege Supported Modes Full—Swtich Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip pim snooping tib commands shown in the following example. Field Description (S, G) Displays the entry in the PIM multicast snooping database. uptime Displays the amount of time the entry has been in the PIM multicast route table.
(165.87.1.7, 225.1.2.1), uptime 00:00:08, expires 00:02:52, flags: j Incoming interface: Vlan 2, RPF neighbor 0.0.0.0 Outgoing interface list: TenGigabitEthernet 4/7 Upstream Port -/TenGigabitEthernet 4/6 DR Port -/TenGigabitEthernet 4/8 RPF 165.87.32.10 00:00:08/00:02:52 show ip pim summary View information about PIM-SM operation. Syntax show ip pim summary Command Modes ● EXEC ● EXEC Privilege Supported Modes Full—Swtich Command History Example Version Description 9.9(0.
Interface table : 992 bytes Neighbor table : 528 bytes RP Mapping : 0 bytes show ip pim tib View the PIM tree information base (TIB). Syntax Parameters show ip pim tib [group-address [source-address]] group-address (OPTIONAL) Enter the group address in dotted decimal format (A.B.C.D). source-address (OPTIONAL) Enter the source address in dotted decimal format (A.B.C.D).
Flags:D- Dense, S- Sparse, C- Connected, L- Local, P- Pruned, R- RP-bit set, F- Register flag, T- SPT-bit set, J- Join SPT, M- MSDP created entry, A- Candidate for MSDP Advertisement, K- Ack-Pending State Timers: Uptime/Expires Interface state: Interface, next-Hop, State/Mode (*, 226.1.1.1), uptime 01:29:19, expires 00:00:52, RP 10.211.2.1, flags: SCJ Incoming interface: TenGigabitEthernet 0/2, RPF neighbor 10.211.1.2 Outgoing interface list: TenGigabitEthernet 0/8 (*, 226.1.1.
ipv6 pim bsr-border Define the border of PIM domain by filtering inbound and outbound PIM-BSR messages per interface. Syntax ipv6 pim bsr-border Defaults Disabled. Command Modes INTERFACE Supported Modes Full—Swtich Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command is applied to the subsequent PIM-BSR messages. Existing BSR advertisements are cleaned up by time-out.
Parameters Defaults priority-value Enter a number. Preference is given to larger/higher number. The range is from 0 to 4294967294. The default is 1. 1 Command Modes INTERFACE Supported Modes Full—Swtich Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The router with the largest value assigned to an interface becomes the designated router.
Defaults 30 seconds Command Modes INTERFACE Supported Modes Full—Swtich Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 pim neighbor-filter Prevent the system from forming a PIM adjacency with a neighboring system. Syntax Parameters Defaults ipv6 pim neighbor-filter {access-list} access-list Enter the name of a standard access list. Maximum 16 characters.
ipv6 pim rp-address Configure a static PIM rendezvous point (RP) address for a group. First-hop routers use this address to send register packets on behalf of the source multicast host. Syntax ipv6 pim rp-address address group-address group-address mask override To remove an RP address, use the no ipv6 pim re-address address group-address mask override command. Parameters address Enter the IPv6 RP address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zero.
Supported Modes Full—Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 pim sparse-mode Enable IPv6 PIM sparse mode on the interface. Syntax ipv6 pim sparse-mode To disable IPv6 PIM sparse mode, use the no ipv6 pim sparse-mode command. Defaults Disabled. Command Modes INTERFACE Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
show ipv6 pim bsr-router View information on the Bootstrap router (v2). Syntax show ipv6 pim bsr-router Command Modes ● EXEC ● EXEC Privilege Supported Modes Full—Swtich Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show ipv6 pim neighbor Displays IPv6 PIM neighbor information. Syntax Parameters show ipv6 pim neighbor [detail] detail (OPTIONAL) Enter the keyword detail to displayed PIM neighbor detailed information. Supported Modes Full—Swtich Command Modes ● EXEC ● EXEC Privilege Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Info source: 14::1, via bootstrap, priority 192 Uptime: 00:03:37, expires: 00:01:53 Group(s): ff00::/8, Static RP: 14::2, v2 Dell show ipv6 pim tib View the IPv6 PIM multicast-routing database (tree information base — tib). Syntax show ipv6 pim tib [group-address [source-address]] Parameters group-address (OPTIONAL) Enter the multicast group address in the x:x:x:x::x format to view RP mappings for a specific group. NOTE: The :: notation specifies successive hexadecimal fields of zero.
42 Port Monitoring The port monitoring feature allows you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port. Important Points to Remember ● Port monitoring is supported on physical ports and logical interfaces, such as Port Channels and virtual local area networks (VLANs). ● The monitoring (destination, “MG”) and monitored (source, “MD”) ports must be on the same switch.
Related Commands Version Description 8.3.16.1 Introduced on the M I/O Aggregator. monitor session — enables a monitoring session. erpm Configure the source and destination IP address for ERPM traffic. Syntax erpm source-ip ip-address dest-ip ip-address [gre-protocol value] To remove the configuration, use the no erpm source-ip IP-address dest-ip IP-address [gre-protocol value] command.
Usage Information Version Description 8.1.1.0 Introduced on the E-Series ExaScale. 7.4.1.0 Introduced on the E-Series. To monitor traffic with particular flows the interface, appropriate ACLs has be applied in ingress direction. Flow- based is not supported in the tx direction. Even though we can configure it in both the direction, only rx will work.
rate-limit Configure the rate-limit to limit the mirrored packets. Syntax rate-limit limit To remove the limit, use the no rate-limit limit command. Parameters Defaults limit Enter the rate-limit value. The range is from 0 to 40000 Megabits per second. 60 Command Modes CONFIGURATION Supported Modes Full—Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide.
Defaults none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full—Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for the RPM / ERPM. 8.3.16.1 Introduced on the M I/O Aggregator. Dell#show monitor session SessID Source Destination Dir ------ ------ ----------- --1 Vl 10 Te 0/8 rx Mode Source IP Dest IP ---- --------- -------Flow N/A N/A monitor session — creates a session for monitoring.
source (port monitoring) Configure a port monitor source. Syntax source {interface | range | any} destination interface direction {rx | tx | both} To disable a monitor source, use the no source interface destination interface direction {rx | tx | both} command. Parameters source interface Enter the one of the following keywords and slot/port information: ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
43 Private VLAN (PVLAN) Private VLANs extend the Dell Networking OS security suite by providing Layer 2 isolation between ports within the same private VLAN. A private VLAN partitions a traditional VLAN into subdomains identified by a primary and secondary VLAN pair. The Dell Networking OS private VLAN implementation is based on RFC 3069. For more information, refer to the following commands. The command output is augmented in the Dell Networking OS version 7.8.1.
ip local-proxy-arp Enable/disable Layer 3 communication between secondary VLANs in a private VLAN. Syntax [no] ip local-proxy-arp To disable Layer 3 communication between secondary VLANs in a private VLAN, use the no ip localproxy-arp command in INTERFACE VLAN mode for the primary VLAN. To disable Layer 3 communication in a particular secondary VLAN, use the no ip local-proxy-arp command in INTERFACE VLAN mode for the selected secondary VLAN.
● Specified with this command even before they have been created. ● Amended by specifying the new secondary VLAN to be added to the list. Related Commands private-vlan mode — sets the mode of the selected VLAN to community, isolated, or primary. show interfaces private-vlan — displays the type and status of the PVLAN interfaces. show vlan private-vlan — displays the PVLANs and/or interfaces that are part of a PVLAN. show vlan private-vlan mapping — displays the primary-secondary VLAN mapping.
show interfaces private-vlan Display type and status of PVLAN interfaces. Syntax show interfaces private-vlan [interface interface] Parameters interface interface Defaults (OPTIONAL) Enter the keyword interface then the ID of the specific interface for which to display PVLAN status. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
show vlan private-vlan Display PVLANs and/or interfaces that are part of a PVLAN. Syntax Parameters show vlan private-vlan [community | interface | isolated | primary | primary_vlan | interface interface] community (OPTIONAL) Enter the keyword community to display VLANs configured as community VLANs, along with their interfaces. interface (OPTIONAL) Enter the keyword interface to display VLANs configured as community VLANs, along with their interfaces.
Example (Primary) Example (Isolated) Example (Community) Example (Specific) Usage Information Example Example Related Commands Dell# show vlan private-vlan primary Primary Secondary Type Active Ports ------- --------- --------- ------ ------10 primary Yes Gi 2/1,3 20 primary Yes Gi 3/1,3 Dell# show vlan private-vlan isolated Primary Secondary Type Active Ports ------- --------- --------- ------ ---------10 primary Yes Gi 2/1,3 100 isolated Yes Gi 2/2,4-6 200 isolated Yes Gi 3/2,4-6 Dell# show vlan pr
Command Modes ● EXEC ● EXEC Privilege Supported Modes Full—Switch Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced the on MXL 10/40GbE Switch IO Module. The output of this command, shown below, displays the community and isolated VLAN IDs that are associated with each primary VLAN.
Dell(conf)#interface GigabitEthernet 2/2 Dell(conf-if-te-2/2)#switchport mode private-vlan host Dell(conf)#interface GigabitEthernet 2/3 Dell(conf-if-te-2/3)#switchport mode private-vlan trunk Dell(conf)#interface port-channel 10 Dell(conf-if-te-2/3)#switchport mode private-vlan promiscuous Related Commands private-vlan mode — sets the mode of the selected VLAN to community, isolated, or primary.
44 Per-VLAN Spanning Tree Plus (PVST+) The Dell Networking Operating System (OS) implementation of per-VLAN spanning tree plus (PVST+) is based on the IEEE 802.1w standard spanning tree protocol, but it creates a separate spanning tree for each VLAN configured. NOTE: For easier command line entry, the plus (+) sign is not used at the command line.
Defaults Disabled. Command Modes CONFIGURATION (conf-pvst) Supported Modes Full—Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree pvst — enter PVST+ mode. edge-port bpdufilter default Enable BPDU Filter globally to filter transmission of BPDU on port fast enabled interfaces.
Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID ---------- -------- ---- ------ ----------- -------------------------- -------Po 23 128.24 128 1600 FWD 0 32768 001e.c9f1.00f3 128.24 Te 0/10 128.450 128 2000 DIS 0 32768 001e.c9f1.00f3 128.450 Te 0/11 128.459 128 2000 FWD 0 32768 001e.c9f1.00f3 128.459 Interface Name Role PortID Prio Cost Sts Cost Link-type Edge BpduFilter ---------- ------ -------- ---- ---- ------------ ---------Po 23 Desg 128.24 128 1600 FWD 0 P2P No No Te 0/9 Dis 128.
show spanning-tree pvst View the Per-VLAN spanning tree configuration. Syntax show spanning-tree pvst [vlan vlan-id] [brief] [guard] Parameters Defaults vlan vlan-id (OPTIONAL) Enter the keyword vlan then the VLAN ID. The range is 1 to 4094. brief (OPTIONAL) Enter the keyword brief to view a synopsis of the PVST+ configuration information.
Interface Name Role PortID Prio Cost Sts ---------- ------ -------- ---- ------Po 23 Desg 128.24 128 1600 FWD Te 0/11 Dis 128.450 128 2000 DIS Te 0/12 Desg 128.459 128 2000 FWD Dell# Example Bpdu Cost Link-type Edge Filter --- -------- ---- -----0 P2P No No 0 P2P No No 0 P2P No No Dell#show spanning-tree pvst vlan 2 VLAN 2 Root Identifier has priority 32768, Address 001e.c9f1.00f3 Root Bridge hello time 2, max age 20, forward delay 15 Bridge Identifier has priority 32768, Address 001e.c9f1.
Bpdus sent 1, received 0 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID --------------------------------------------------------Te 0/6 128.1223 128 20000 EDS 0 32768 0001.e800.a12b 128.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The BPDU guard option prevents the port from participating in an active STP topology in case a BPDU appears on a port unintentionally, or is misconfigured, or is subject to a DOS attack. This option places the port into the Error Disable state if a BPDU appears, and a message is logged so that the administrator can take corrective action.
tc-flush-standard Enable the MAC address flushing after receiving every topology change notification. Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full—Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, the system implements an optimized flush mechanism for PVST+.
To return to the default setting, use the no vlan forward-delay command. Parameters vlan vlan-range Enter the keyword vlan then the VLAN numbers. The range is from 1 to 4094. forward-delay Enter the keywords forward-delay then the time interval, in seconds, that the system waits before transitioning PVST+ to the forwarding state. The range is from 4 to 30 seconds. The default is 15 seconds.
vlan max-age To maintain configuration information before refreshing that information, set the time interval for the PVST+ bridge. Syntax vlan vlan-range max-age seconds To return to the default, use the no vlan max-age command. Parameters vlan vlan-range Enter the keyword vlan then the VLAN numbers. The range is from 1 to 4094. max-age seconds Enter the keywords max-age then the time interval, in seconds, that the system waits before refreshing configuration information.
45 Quality of Service (QoS) The Dell Networking Operating System (OS) commands for quality of service (QoS) include traffic conditioning and congestion control.
• • • • • • • • • • • • • show qos qos-policy-output show qos statistics show qos wred-profile test cam-usage trust wred wred ecn wred-profile dscp qos dscp-color-map qos dscp-color-policy show qos dscp-color-policy show qos dscp-color-map Global Configuration Commands There are only two global configuration QoS commands. qos-rate-adjust By default, while rate limiting, policing, and shaping, the system does not include the Preamble, SFD, or the IFG fields.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Per-Port QoS Commands Per-port QoS (port-based QoS) allows you to define the QoS configuration on a per-physical-port basis. dot1p-priority Assign a value to the IEEE 802.1p bits on the traffic this interface receives. Syntax dot1p-priority priority-value To delete the IEEE 802.1p configuration on the interface, use the no dot1p-priority command. Parameters Defaults priority-value Enter a value from 0 to 7.
rate police Police the incoming traffic rate on the selected interface. Syntax rate police [kbps] committed-rate [burst-KB] [peak [kbps] peak-rate [burstKB]] [vlan vlan-id] Parameters Defaults kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Make the following value a multiple of 64. The range is from 0 to 40000000. The default granularity is Megabits per second (Mbps). committed-rate Enter the bandwidth in Mbps. The range is from 0 to 10000.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rate-shape — shapes traffic output as part of the designated policy. service-class dynamic dot1p Honor all 802.1p markings on incoming switched traffic on an interface (from INTERFACE mode) or on all interfaces (from CONFIGURATION mode). A CONFIGURATION mode entry supersedes an INTERFACE mode entry.
service-class bandwidth-percentage Specify a minimum bandwidth for queues. Syntax service-class bandwidth-percentage queue0 number queue1 number queue2 number queue3 number Parameters Defaults number Enter the bandwidth-weight, as a percentage. The range is from 1 to 100. none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.
superseded by ETS configurations. This is to provide compatibility with DCBX. Therefore, Dell Networking OS recommends disabling ETS when you wish to apply these features exclusively. After you disable ETS on an interface, the configured parameters are applied. Policy-Based QoS Commands Policy-based traffic classification is handled with class maps. These maps classify unicast traffic into one of four classes. The system allows you to match multiple class maps and specify multiple match criteria.
Defaults Layer 3 Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Packets arriving at the input interface are checked against the match criteria configured using this command to determine if the packet belongs to that class.
crypto key zeroize rsa Removes the generated RSA host keys and zeroize the key storage location. Syntax crypto key zeroize rsa Defaults none Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.
Version Description 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000–ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, MXL match ip access-group Configure match criteria for a class map, based on the access control list (ACL). Syntax match ip access-group access-group-name [set-ip-dscp value] To remove ACL match criteria from a class map, use the no match ip access-group accessgroup-name [set-ip-dscp value] command.
Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL switch. To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. Use this command to match an IP class-map against a single VLAN ID . Related Commands class-map — identifies the class map. match ip vrf Uses a VRF as the match criterion for an L3 class map.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. policy-map-output — creates an output policy map. qos-policy-output — creates an output QoS-policy on the router. match ip dscp Use a differentiated services code point (DSCP) value as a match criteria.
match ip precedence Use IP precedence values as a match criteria. Syntax match {ip | ipv6 | ip-any} precedence ip-precedence-list [set-ip-dscp value] To remove IP precedence as a match criteria, use the no match {ip | ipv6 | ip-any} precedence ip-precedence-list [[multicast] set-ip-dscp value] command. Parameters ip Enter the keyword ip to support IPv4 traffic. ipv6 Enter the keyword ipv6 to support IPv6 traffic. ip-any Enter the keyword ip-any to support IPv4 and IPv6 traffic.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. Related Commands class-map — identifies the class map. match mac dot1p Configure a match criterion for a class map based on a dot1p value.
policy-aggregate Allow an aggregate method of configuring per-port QoS via policy maps. An aggregate QoS policy is part of the policy map (input/output) applied on an interface. Syntax policy-aggregate qos-policy-name To remove a policy aggregate configuration, use the no policy-aggregate qos-policy-name command. Parameters Defaults qos-policy-name Enter the name of the policy map in character format (32 characters maximum).
service-policy input — applies an input policy map to the selected interface. policy-map-output Create an output policy map. Syntax policy-map-output policy-map-name To remove a policy map, use the no policy-map-output policy-map-name command. Parameters Defaults policy-map-name Enter the name for the policy map in character format (32 characters maximum). none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
When changing a Service-Queue configuration in a QoS policy map, all QoS rules are deleted and readded automatically to ensure that the order of the rules is maintained. As a result, the Matched Packets value shown in the show qos statistics command is reset. Related Commands rate police — incoming traffic policing function. qos-policy-output Create a QoS output policy. Syntax qos-policy-output qos-policy-name To remove an existing output QoS policy, use the no qos-policy-output qos-policy-name command.
Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rate police — specifies traffic policing on the selected interface. qos-policy-input — creates a QoS output policy. rate shape Shape the traffic output on the selected interface.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can attach a single policy-map to one or more interfaces to specify the service-policy for those interfaces. A policy map attached to an interface can be modified. NOTE: The service-policy commands are not allowed on a port channel.
class-map classmap-name (OPTIONAL) Enter the keyword class-map then the class map name assigned to the queue in character format (32 character maximum). NOTE: This option is available under policy-map-input only. qos-policy qos- policy-name Defaults (OPTIONAL) Enter the keywords qos-policy then the QoS policy name assigned to the queue in text format (32 characters maximum).
Parameters Defaults class-name (Optional) Enter the name of a configured class map. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos class-map Class-map match-any CM Match ip access-group ACL Related Commands class-map — identifies the class map. show qos policy-map View the QoS policy map information.
2 3 Example (Summary IPv4) CM2 CM3 q2 q3 Dell#sho qos policy-map summary Interface policy-map-input policy-map-output Gi 4/1 PM1 Te 4/2 PM2 PMOut Dell# show qos policy-map-input View the input QoS policy map details. Syntax show qos policy-map-input [policy-map-name] [class class-map-name] [qospolicy-input qos-policy-name] Parameters policy-map-name Enter the policy map name. class class-mapname Enter the keyword class then the class map name.
Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos policy-map-output Policy-map-output PolicyMapOutput Aggregate Qos-policy-name AggPolicyOut Queue# Qos-policy-name 0 qosPolicyOutput Dell# show qos qos-policy-input View the input QoS policy details.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos qos-policy-output Qos-policy-output qmap_out Bandwidth-percentage 10 Qos-policy-output qmap_wg Rate-shape 100 50 Wred yellow wy Wred green wg Dell# show qos statistics View QoS statistics.
9 10 11 12 Dell# MCAST MCAST MCAST MCAST 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 show qos wred-profile View the WRED profile details. Syntax Parameters Defaults show qos wred-profile wred-profile-name wred-profilename Enter the WRED profile name to view the profile details. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information This feature allows you to determine if the CAM has enough space available before applying the configuration on an interface. An input policy map with both Trust and Class-map configuration, the Class-map rules are ignored and only the Trust rule is programmed in the CAM. In such an instance, the Estimated CAM output column contains the size of the CAM space required for the Trust rule and not the Class-map rule.
Parameters Defaults diffserv Enter the keyword diffserv to specify trust of DSCP markings. dot1p Enter the keyword dot1p to specify trust dot1p configuration. fallback Enter the keyword fallback to classify packets according to their DSCP value as a secondary option in case no match occurs against the configured class maps. none Command Modes CONFIGURATION (conf-policy-map-in) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM.
Pre-defined Profiles: wred_drop, wred-ge_y, wred_ge_g, wred_teng_y, wred_teng_. ecn Defaults When you configure wred ecn command, instead of droppping the packets exponentially, Explicit Congestion Notification (ECN) marking is made on the packets. none Command Modes CONFIGURATION (conf-qos-policy-out) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.
● If neither endpoint is ECN-capable, the packet may be dropped based on the WRED drop probability. This behavior is the identical treatment that a packet receives when WRED is enabled without ECN configured on the router. When you enable wred ecn, and the number of packets in the queue is above the maximum threshold, packets are dropped based on the drop probability. This behavior is the identical treatment a packet receives when WRED is enabled without ECN configured on the router.
Command Modes CONFIG-COLOR-MAP Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.
Version Description 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.5(0.1) Introduced on the Z9500. 9.7(0.0) Introduced on the S6000-ON. 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL.
Version Description 9.5(0.1) Introduced on the Z9500. Version 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL. Usage Information If the specified color-map does not exist, the Diffserv Manager (DSM) creates a color map and sets all the DSCP values to green (low drop precedence). Example The following example assigns the color map, bat-enclave-map, to interface. Related Commands ● dscp— sets the number of specific DSCP values for color map profile to yellow or red.
Parameters Defaults map-name Enter the name of the color map. None Command Modes EXEC Command History Example This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.
46 Routing Information Protocol (RIP) Routing information protocol (RIP) is a distance vector routing protocol. The Dell Networking Operating System (OS) supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2). The implementation of RIP is based on IETF RFCs 2453 and RFC 1058. For more information about configuring RIP, refer to the Dell Networking OS Configuration Guide.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip rip Update all the RIP routes in the routing table. Syntax clear ip rip Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command triggers updates of the main RIP routing tables.
default-information originate Generate a default route for the RIP traffic. Syntax default-information originate [always] [metric metric-value] [route-map map-name] To return to the default values, use the no default-information originate command. Parameters always (OPTIONAL) Enter the keyword always to enable the switch software to always advertise the default route. metric metric- (OPTIONAL) Enter the keyword metric then a number as the metric value. The range is from 1 to 16. The default is 1.
description Enter a description of the RIP routing protocol. Syntax description {description} To remove the description, use the no description {description} command. Parameters Defaults description Enter a description to identify the RIP protocol (80 characters maximum). none Command Modes ROUTER RIP Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
To delete the filter, use the no distribute-list prefix-list-name in command. Parameters Defaults prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
ip poison-reverse Set the prefix of the RIP routing updates to the RIP infinity value. Syntax ip poison-reverse To disable poison reverse, use the no ip poison-reverse command. Defaults Disabled. Command Modes INTERFACE Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip split-horizon — sets the RIP routing updates to exclude routing prefixes.
Parameters Defaults 1 (OPTIONAL) Enter the number 1 for RIP version 1. The default is RIPv1. 2 (OPTIONAL) Enter the number 2 for RIP version 2. RIPv1 Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To enable the interface to send both version of RIP packets, use the ip rip send version 1 2 command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. RIP supports a maximum of 16 ECMP paths. neighbor Define a neighbor router with which to exchange RIP information. Syntax neighbor ip-address To delete a neighbor setting, use the no neighbor ip-address command. Parameters Defaults ip-address Enter the IP address, in dotted decimal format, of a router with which to exchange information.
Usage Information You can enable an unlimited number of RIP networks. RIP operates over interfaces configured with any address the network command specifies. offset-list Specify a number to add to the incoming or outgoing route metrics learned using RIP. Syntax offset-list prefix-list-name {in | out} offset [interface] To delete an offset list, use the no offset-list prefix-list-name {in | out} offset [interface] command.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is intended for low-speed interfaces. passive-interface Suppress routing updates on a specified interface. Syntax passive-interface interface To delete a passive interface, use the no passive-interface interface command. Parameters Defaults interface Enter the following information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To redistribute the default route (0.0.0.0/0), configure the default-information originate command. Related Commands default-information originate — generates a default route for RIP traffic. redistribute ospf Redistribute routing information from an OSPF process.
Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To enable RIP, assign a network address using the network command. Dell(conf)#router rip Dell(conf-router_rip)# network — enables RIP. show config Display the changes you made to the RIP configuration. The default values are not shown.
Example Field Description Total number of routes in RIP database Displays the number of RIP routes stored in the RIP database. 100.10.10.0/24 directly connected Lists the routes directly connected. 150.100.0.0 redistributed Lists the routes learned through redistribution. 209.9.16.0/24... Lists the routes and the sources advertising those routes. Dell#show ip rip database Total number of routes in RIP database: 1624 204.250.54.0/24 [50/1] via 192.14.1.3, 00:00:12, TenGigabitEthernet 0/1 204.250.
timers basic Manipulate the RIP timers for routing updates, invalid, holddown times, and flush time. Syntax timers basic update invalid holddown flush To return to the default settings, use the no timers basic command. Parameters Defaults update Enter the number of seconds to specify the rate at which RIP routing updates are sent. The range is from zero (0) to 4294967295. The default is 30 seconds.
Related Commands 970 Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip rip receive version — sets the RIP version the interface receives. ip rip send version — sets the RIP version the interface sends.
47 Remote Monitoring (RMON) The Dell Networking Operating System (OS) remote monitoring (RMON) is based on IEEE standards, providing both 32-bit and 64-bit monitoring and long-term statistics collection.
variable Enter the MIB object to monitor. The variable must be in the SNMP OID format; for example, 1.3.6.1.2.1.1.3. The object type must be a 32-bit integer. interval Time, in seconds, the alarm monitors the MIB variables; this is the alarmSampleType in the RMON alarm table. The range is from 5 to 3600 seconds. delta Enter the keyword delta to test the change between MIB variables. This is the alarmSampleType in the RMON alarm table.
Command Modes CONFIGURATION INTERFACE (config-if) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rmon collection statistics Enable RMON MIB statistics collection on an interface. Syntax rmon collection statistics {controlEntry integer} [owner name] To remove RMON MIB statistics collection on an interface, use the no rmon collection statistics {controlEntry integer} command.
Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rmon hc-alarm Set an alarm on any MIB object. Syntax rmon hc-alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon hc-alarm number command. Parameters Defaults number Enter the alarm integer number from 1 to 65535.
Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell# show rmon RMON status total memory used 218840 bytes.
4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 Dell# 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 show rmon events Display the contents of the RMON event table.
9 10 11 12 13 14 15 16 17 18 19 20 21 22 Dell# 9 10 11 12 13 14 15 16 17 18 19 20 21 22 show rmon hc-alarm Display the contents of RMON High-Capacity alarm table. Syntax Parameters Defaults show rmon hc-alarm [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON High-Capacity alarm table in an easy-to-read format.
show rmon history Display the contents of the RMON Ethernet history table. Syntax show rmon history [index] [brief] Parameters Defaults index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON Ethernet history table in an easy-to-read format none Command Modes EXEC Supported Modes Full–Switch Command History Example (Index) Example (Brief) Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Command History Usage Information Example (Index) Example (Brief) Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The log table has a maximum of 500 entries. If the log exceeds that maximum, the oldest log entry is purged to allow room for the new entry.
1024-1518 bytes packets: 0 owner: 1 status: OK HC packets received overflow: 0 HC packets received: 0 HC bytes received overflow: 0 HC bytes received: 0 HC 64bytes packets overflow: 0 HC 64bytes packets: 0 HC 65-127 bytes packets overflow: 0 HC 65-127 bytes packets: 0 HC 128-255 bytes packets overflow: 0 HC 128-255 bytes packets: 0 HC 256-511 bytes packets overflow: 0 HC 256-511 bytes packets: 0 HC 512-1023 bytes packets overflow: 0 HC 512-1023 bytes packets: 0 HC 1024-1518 bytes packet
48 Rapid Spanning Tree Protocol (RSTP) The Dell Networking Operating System (OS) implementation of rapid spanning tree protocol (RSTP) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged local area network (LAN) that is comprised of LANs interconnected by bridges.
Parameters all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu interface {in | out} (OPTIONAL) Enter the keyword bpdu to debug the bridge protocol data units. (OPTIONAL) Enter the keyword interface along with the type slot/port of the interface you want displayed. Type slot/port options are the following: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
To enable Rapid Spanning Tree Protocol, use the no disable command. Defaults RSTP is disabled. Command Modes CONFIGURATION RSTP (conf-rstp) Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree rstp — enters SPANNING TREE mode on the switch.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The hello time is encoded in BPDUs in increments of 1/256ths of a second. The standard minimum hello time in seconds is 1 second, which is encoded as 256. Millisecond hello times are encoded using values less than 256; the millisecond hello time equals (x/1000)*256.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree rstp To configure RSTP, enter RSTP mode. Syntax protocol spanning-tree rstp To exit RSTP mode, use the exit command. Defaults Not configured Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
spanning-tree rstp Configure an RSTP interface with one of these settings: port cost, edge port with optional bridge port data unit (BPDU) guard, port priority, loop guard, or root guard. Syntax spanning-tree rstp {cost port-cost | edge-port [bpduguard [shutdown-onviolation]] | bpdufilter | priority priority | {rootguard}} Parameters cost port-cost Enter the keyword cost then the port cost value. The range is from 1 to 200000.
● If a BPDU is received from a remote device, BPDU guard places the port in an Err-Disabled Blocking state and no traffic is forwarded on the port. ● If no BPDU is received from a remote device, loop guard places the port in a Loop-Inconsistent Blocking state and no traffic is forwarded on the port.
Usage Information The BPDU guard option prevents the port from participating in an active STP topology in case a BPDU appears on a port unintentionally, or is misconfigured, or is subject to a DOS attack. This option places the port into an Error Disable state if a BPDU appears and a message is logged so that the administrator can take corrective action. NOTE: A port configured as an edge port, on an RSTP switch, immediately transitions to the Forwarding state.
49 Security This chapter contains various types of security commands offered in the Dell Networking Operating System (OS). The commands are listed in the following sections: ● AAA Accounting Commands ● Authorization and Privilege Commands ● Authentication and Password Commands ● RADIUS Commands ● TACACS+ Commands ● SSH Server and SCP Commands ● Secure DHCP Commands For configuration details, refer to the Security chapter in the Dell Networking OS Configuration Guide.
commands { level | Enter the keyword command then a privilege level for accounting of commands role role-name } executed at that privilege level or enter the keyword role then the role name for accounting of commands executed by a user with that user role. Defaults name | default Enter one of the following: ● For name, enter a user-defined name of a list of accounting methods. ● For default, the default accounting methods used.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The system issues accounting records for all users on the system, including users whose username string, due to protocol translation, is NULL. For example, a user who comes on line with the aaa authentication login method-list none command is applied.
Version Description 9.10(0.0) Introduced on the S6100-ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000–ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, MXL show accounting Display the active accounting sessions for each online user.
Defaults commands { level | role role-name } Enter the keywords commands followed by either a privilege level for accounting of commands executed at that privilege level, or enter the keyword role then the role name for authorization of commands executed by a user with that user role. role method is supported only on Full-Switch mode. method-list Enter a method list that you defined using the aaa accounting exec or aaa accounting commands. none Command Modes LINE Supported Modes All Modes.
aaa authorization role-only Configure authentication to use the user’s role only when determining if access to commands is permitted. Syntax aaa authorization role-only To return to the default setting, use the no aaa authentication role-only command. Parameters Defaults name Enter a text string for the name of the user up to 63 characters. It cannot be one of the system defined roles (sysadmin, secadmin, netadmin, netoperator).
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, the aaa authorization commands command configures the system to check both EXEC level and CONFIGURATION level commands. To enable only EXEC-level command checking, use the command no aaa authorization config-commands. role method is supported only on Full-Switch mode.
level level Enter the keyword level then a number for the access level. The range is from 0 to 15. Level 1 is EXEC mode and Level 15 allows access to all CLI modes and commands. Defaults reset Enter the keyword reset to return the security level to the default setting. command Enter the command’s keywords to assign the command to a certain access level. You can enter one or all of the keywords. Not configured.
Parameters Defaults default Enter the keyword default then the authentication methods to use as the default sequence of methods for the Enable login. The default is default enable. method-listname Enter a text string (up to 16 characters long) to name the list of enabled authentication methods activated at login. method Enter one of the following methods: ● enable: use the password the enable password command defines in CONFIGURATION mode.
● enable: use the password the enable password command defines in CONFIGURATION mode. ● line: use the password the password command defines in LINE mode. Not available if role-only is in use. ● none: no authentication. Not available if role-only is in use. ● radius: use the RADIUS servers configured with the radius-server host command. ● tacacs+: use the TACACS+ servers configured with the tacacs-server host command. ... method4 Defaults (OPTIONAL) Enter up to four additional methods.
Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced this command. When an operating system enables to change the user authenticators, the users might access resources and perform tasks that they do not have authorization.
enable password Change the password for the enable command. Syntax enable password [level level] [encryption-type] password To delete a password, use the no enable password [encryption-type] password [level level] command. Parameters level level (OPTIONAL) Enter the keyword level then a number as the level of access. The range is from 1 to 15. encryption-type (OPTIONAL) Enter the number 7 or 0 as the encryption type. Enter a 7 then a text string as the hidden password.
password Defaults Enter a text string, up to 32 characters long, as the clear text password. Not configured. Supported Modes All Modes Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Only Dell Networking Technical Support staff use this command. enable secret Change the password for the enable command.
enable sha256-password Configure SHA-256 based password for the enable command. Syntax enable sha256-password [level level] [encryption-type] password To delete a password, use the no enable sha256-password [encryption-type] password [level level] command. Parameters sha256-password Enter the keyword sha256-password then the encryption-type or the password. level level (OPTIONAL) Enter the keyword level then a number as the level of access. The range is from 1 to 15.
Related Commands aaa authentication login — selects the login authentication methods. password Specify a password for users on terminal lines. Syntax password [encryption-type] password To delete a password, use the no password password command. Parameters Defaults encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the password entered. The options are ● 0 is the default and means the password is not encrypted and stored as clear text.
lockout-period minutes (OPTIONAL) Enter the keyword lockout-period then the number of minutes. The range is from 1 to 1440 minutes. The default is 0 minutes and the lockoutperiod is not enabled. This parameter enhances the security of the switch by locking out sessions on the Telnet or SSH sessions for which there has been a consecutive failed login attempts. The console is not locked out.
To keep unauthorized people from viewing passwords in the switch configuration file, use the service password-encryption command. This command encrypts the clear-text passwords created for user name passwords, authentication key passwords, the privileged command password, and console and virtual terminal line access passwords. To view passwords, use the show running-config command. show privilege View your access level.
Example Related Commands Field Description Line Displays the terminal lines currently in use. User Displays the user name of all users logged in. Host(s) Displays the terminal line status. Location Displays the IP address of the user.
If you do not want a specific user to enter a password, use the nopassword option. To delete authentication for a user, use the no username name command. Parameters name Enter a text string for the name of the user up to 63 characters. access-class Enter the keywords access-class then the name of a configured access control access-list-name list (either an IP access control list or MAC access control list). nopassword Enter the keyword nopassword to specify that the user should not enter a password.
RADIUS Commands The following RADIUS commands are supported by Dell Networking operating system. aaa radius auth-method Configure the authentication method to use with RADIUS for user access. Syntax aaa radius auth-method {pap | mschapv2} To undo the RADIUS authentication method configuration, use the no aaa radius auth-method command. Parameters Defaults pap Enter the keyword pap to use the Password Authentication Protocol (PAP) for RADIUS authentication.
● 7 – implies that the key is encrypted and hidden. key Enter a string that is the key to be exchanged between the switch and the dynamic authorization client. The key can be up to 42 characters long. Command Modes ● CONF-DYNAMIC-AUTH Usage Information ● It is possible to configure more than one dynamic authorization clients Duplicate (ipv4-addr or ipv6addr or host-name) configurations are not allowed. Command History This guide is platform-specific.
To remove the port bounce configuration, enter the no coa-bounce-port command. Defaults Enabled. Command Modes ● CONF-DYNAMIC-AUTH Usage Information ● Configure no coa-bounce-port to drop radius CoA port-bounce requests from the DAC. Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command.
Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010–ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL. debug radius View RADIUS transactions to assist with troubleshooting. Syntax debug radius To disable debugging of RADIUS, use the no debug radius command. Defaults Disabled. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Version Description 9.9(0.
To undo this configuration, enter the no disconnect-user command. Defaults Enabled. Command Modes ● CONF-DYNAMIC-AUTH Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.13(0.
● For VLAN interface, enter the keyword vlan then a number from 1 to 4094. Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. port Configures NAS port number to accept CoA or DM requests. Syntax port port-number To remove the NAS port configuration, enter the no port command.
Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010–ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL. radius-server deadtime Configure a time interval during which non-responsive RADIUS servers to authentication requests are skipped. Syntax radius-server deadtime seconds To disable this function or return to the default value, use the no radius-server deadtime command.
● 7 means that the password is encrypted and hidden. Configure this parameter last because leading spaces are ignored. Defaults Not configured. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To configure any number of RADIUS server hosts for each server host that is configured, use this command.
radius-server retransmit Configure the number of times the switch attempts to connect with the configured RADIUS host server before declaring the RADIUS host server unreachable. Syntax radius-server retransmit retries To configure zero retransmit attempts, use the no radius-server retransmit command. To return to the default setting, use the radius-server retransmit 3 command. Parameters Defaults retries Enter a number of attempts that the system tries to locate a RADIUS server.
Parameters mode Enter one of the following keywords as the mode for which you are controlling access: configure for CONFIGURATION mode exec for EXEC mode interface for INTERFACE modes line for LINE mode route-map for Route-map mode router for Router mode Defaults addrole Enter the keyword addrole to add permission to the command. You cannot add or delete rights for the sysadmin role. deleterole Enter the keyword deleterole to remove access to the command.
Command Modes ● CONF-DYNAMIC-AUTH Usage Information ● Packets are dropped after number of packets reaches the configured rate-limit. Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.13(0.
Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010–ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL. TACACS+ Commands The Dell Networking OS supports TACACS+ as an alternate method for login authentication. debug tacacs+ To assist with troubleshooting, view TACACS+ transactions. Syntax debug tacacs+ To disable debugging of TACACS+, use the no debug tacacs+ command. Defaults Disabled.
tacacs-server host Specify a TACACS+ host. Syntax tacacs-server host {hostname | ipv4-address} [port number] [timeout seconds] [key key] Parameters Defaults hostname Enter the name of the TACACS+ server host. ipv4-address Enter the IPv4 address (A.B.C.D) of the TACACS+ server host. port number (OPTIONAL) Enter the keyword port then a number as the port to be used by the TACACS+ server. The range is from zero (0) to 65535. The default is 49.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The key configured with this command must match the key configured on the TACACS+ daemon. SSH Server and SCP Commands The Dell Networking OS supports secure shell (SSH) protocol versions 1.5 and 2.0. SSH is a protocol for secure remote login over an insecure network. SSH sessions are encrypted and use authentication.
debug ip ssh Enables collecting SSH debug information. Syntax debug ip ssh {client | server} To disable debugging, use the no debug ip ssh {client | server} command. Parameters Defaults client Enter the keyword client to enable collecting debug information on the client. server Enter the keyword server to enable collecting debug information on the server. Disabled on both client and server. Command Modes EXEC Supported Modes Full–Switch Command History Usage Information Version Description 9.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command specifies the maximum number of attempts to authenticate a user on an SSH connection with the remote host for password authentication. SSH disconnects when the number of password failures exceeds authentication-retries.
Defaults The default list of ciphers is in the order as shown below: ● aes256-ctr ● aes256-cbc ● aes192-ctr ● aes192-cbc ● aes128-ctr ● aes128-cbc ● 3des-cbc Command Modes CONFIGURATION Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.10(0.
Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If you enable this command, clients can log in without a password prompt. This command provides two levels of authentication: ● rhost-authentication is done with the file specified in the ip ssh rhostfile command. ● checking client host-keys is done with the file specified in the ip ssh pub-key-file command.
● ● ● ● Defaults hmac-sha1 hmac-sha1–96 hmac-md5 hmac-md5-96 The default list of MAC algorithm is in the order as shown below: When FIPS mode is enabled: ● hmac-sha2–256 ● hmac-sha1 ● hmac-sha1–96 When FIPS mode is disabled: ● hmac-sha2-256 ● hmac-sha1 ● hmac-sha1–96 ● hmac-md5 ● hmac-md5-96 Command Modes CONFIGURATION Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide.
ip ssh pub-key-file Specify the file used for host-based authentication. Syntax Parameters Defaults ip ssh pub-key-file {WORD} WORD Enter the file name for the host-based authentication. none Command Modes CONFIGURATION Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command specifies the file used for the host-based authentication.
Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000–ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.
Defaults Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Enabling RSA authentication allows the user to log in without being prompted for a password. In addition, the OpenSSH compatible SSHv2 RSA public key must be added to the list of authorized keys (ip ssh rsa-authentication my-authorized-keys device://filename command).
Parameters enable Enter the keyword enable to start the SSH server. ciphers cipher- Enter the keyword ciphers and then a space-delimited list of ciphers that the SSH server supports. The following ciphers are available. ● 3des-cbc list ● aes128-cbc ● aes192-cbc ● aes256-cbc ● aes128-ctr ● aes192-ctr ● aes256-ctr The default cipher list is used.
When FIPS is not enabled, the default key-exchange-algorithms are the following: ● diffie-hellman-group-exchange-sha1 ● diffie-hellman-group1-sha1, ● diffie-hellman-group14-sha1 port port-number (OPTIONAL) Enter the keyword port then the port number of the listening port of the SSH server. The range is from 1 to 65535. The default is 22. [version {1 | 2}] (OPTIONAL) Enter the keyword version then the SSH version 1 or 2 to specify only SSHv1 or SSHv2.
Usage Information To disable the DNS in SSH server configuration, use the no ip ssh server dns enable command. show accounting Display the active accounting sessions for each online user. Syntax show accounting Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Dell#show crypto key mypubkey rsa1 1024 65537 150477578329696762034442 036788963493870885070479991994 81529207062670596651487238987338851 388872604558748599801007073218 241492903069202754403378383368480816 50517187573884981716247894646 7706560683627207710939806628138071534 8265219018664838324451688712 0415316302457397744496043353643022514 81307373438756957374121 Dell#show crypto key mypubkey rsa ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAAAgQ C9IYgcUcc8wQm+5KUQgW/zAs8V5S TalGq4/+S+6H9axpQnA+A0xweeo5iR5hvPP6
Related Commands ip ssh server — configures an SSH server. show ip ssh client-pub-keys — displays the client-public keys. show ip ssh client-pub-keys Display the client public keys used in host-based authentication. Syntax show ip ssh client-pub-keys Defaults none Command Modes EXEC Supported Modes Full–Switch Command History Usage Information Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Example This command displays the contents of the flash:/ADMIN_DIR/ssh/authorizedkeys.username file. Dell#show ip ssh rsa-authentication my-authorized-keys ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAyB17l4g Fp4r2DRHIvMc1VZd0Sg5GQxRV1y 1X1JOMeO6Nd0WuYyzrQMM4qJAoBwtneOXfL BcHF3V2hcMIqaZN+CRCnw/ zCMlnCf0+qVTd1oofsea5r09kS0xTp0CNfH XZ3NuGCq9Ov33m9+U9tMwhS 8vy8AVxdH4x4km3c3t5Jvc=freedom@poclab4 Dell# Related Commands ip ssh rsa-authentication (Config) — configures the RSA authorized keys.
Examples DellEMC# show role mode configure username Role access: sysadmin DellEMC# show role mode configure management route Role access: netadmin, sysadmin DellEMC# show role mode configure management crypto-policy Role access: secadmin, sysadmin Related Commands ● userrole — create user roles. show users Allows you to view information on all users logged in to the switch. Syntax show users [all] Parameters all (OPTIONAL) Enter the keyword all to view all terminal lines in the switch.
show userroles Display information on all defined user roles. Syntax Example show userroles DellEMC# show userroles Role Inheritance netoperator netadmin secadmin sysadmin netoperator testadmin netadmin Modes Exec Exec Config Interface Line Router IP Route-map Protocol MAC Exec Config Exec Config Interface Line Router IP Route-map Protocol MAC Exec Config Interface Line Router IP Route-map Protocol MAC Command Modes EXEC Privilege Command History Example This guide is platform-specific.
Defaults ipv4 address (OPTIONAL) Enter the IP address in dotted decimal format A.B.C.D. -l username (OPTIONAL) Enter the keyword -l then the user name used in this SSH session. The default is the user name of the user associated with the terminal. -p port-number (OPTIONAL) Enter the keyword -p then the port number. The range is from 1 to 65536. The default is 22. -v {1 | 2} (OPTIONAL) Enter the keyword -v then the SSH version 1 or 2. The default is the version from the protocol negotiation.
ip dhcp relay Enable Option 82. Syntax Parameters Defaults ip dhcp relay information-option [trust-downstream] trustdownstream Configure the system to trust Option 82 when it is received from the previous-hop router. Disabled. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping Enable DHCP Snooping globally.
ip dhcp snooping binding Create a static entry in the DHCP binding table. Syntax [no] ip dhcp snooping binding mac address vlan-id vlan-id ip ip-address interface type slot/port lease number Parameters Defaults mac address Enter the keyword mac then the MAC address of the host to which the server is leasing the IP address. vlan-id vlan-id Enter the keywords vlan-id then the VLAN to which the host belongs. The range is from 2 to 4094.
Defaults Untrusted Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp source-address-validation Enable IP source guard. Syntax [no] ip dhcp source-address-validation Defaults Disabled. Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip dhcp snooping — clears the contents of the DHCP binding table. secure-cli enable Enable the secured CLI mode. Syntax secure-cli enable Command Modes CONFIGURATION Command History Usage Information This guide is platform-specific.
● 8 to indicate that a password encrypted using a sha256 hashing algorithm follows. This encryption type is available with the sha256-password option only, and is the default encryption type for this option. ● 7 to indicate that a password encrypted using a DES hashing algorithm follows. This encryption type is available with the password option only. ● 5 to indicate that a password encrypted using an MD5 hashing algorithm follows.
Usage Information Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000-ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, MXL.
Table 3. Suppressed ICMPv4 message types ICMPv4 Message Types Echo reply (0) All sub types of destination unreachable (3) Source quench (4) Redirect (5) Router advertisement (9) Router solicitation (10) Time exceeded (11) IP header bad (12) Timestamp request (13) Timestamp reply (14) Information request (15) Information reply (16) Address mask request (17) Address mask reply (18) NOTE: The Dell Networking OS does not suppress the ICMPv4 message type Echo request (8). Table 4.
● MLD v2 listener report (143) ● Duplicate Address Request (157) ● Duplicate Address Confirmation (158) drop icmp Drops the ICMPv4 and ICMPv6 packets. Syntax drop {icmp | icmp6} Command Modes CONFIGURATION Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.11.0.
Usage Information Use the generate hash command to generate a hash checksum for your startup configuration, and use the hash to verify using the verified boot hash command. Example DellEMC#generate hash md5 startup-config MD5SUM(/f10/flash/startup-config) : f81812a64eea202c5b2ef782639bafc3 root-access password Configure the root access password. Syntax root-access password [encryption-type] root-password To reset to the default password, use the no root-access password command.
verified boot Enable OS image hash validation during system startup. Syntax verified boot To disable OS image hash validation, use the no verified boot command. Defaults Not configured Command Modes CONFIGURATION Command History Usage Information Example Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.14(0.0) Introduced on the S5048F–ON. 9.13(0.
verified startup-config Enable hash validation for the startup configuration during system startup. Syntax verified startup-config To disable hash validation for the startup configuration, use the no verified startup-config command. Defaults Not configured Command Modes Full–Switch Command History Example Version Description 9.14(1.0) Introduced on the S4810 and S4820T. 9.14(0.0) Introduced on the S5048F–ON. 9.13(0.
50 sFlow sFlow monitoring system includes an sFlow Agent and an sFlow Collector. ● The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector. ● The sFlow Collector analyses the sFlow Datagrams received from the different devices and produces a network-wide view of traffic flows.
To delete a configured collector, use the no sflow collector {ip-address} agent-addr {ipv4-address} [number [max-datagram-size number]] | [max-datagram-size number] command. Parameters sflow collector Enter the IPv4 (A.B.C.D) of the sFlow collector device. ip-address agent-addr ip- Enter the IPv4 (A.B.C.D) of the sFlow agent in the router. address Defaults number (OPTIONAL) Enter the user datagram protocol (UDP) port number. The range is from 0 to 65535. The default is 6343.
Related Commands sflow enable (Global) — enables sFlow on interfaces. sflow ingress-enable Enable sFlow ingress on interfaces. Syntax sflow ingress-enable To disable sFlow, use the no sflow ingress enable command. Defaults Disabled. Command Modes INTERFACE Supported Modes Full–Switch Mode Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide.
sflow max-header-size extended Set the maximum header size of a packet to 256 bytes. Syntax sflow max-header-size extended To reset the maximum header size of a packet, use the[no] sflow max-header-size extended command. Parameters Defaults extended Enter the keyword extended to copy 256 bytes from the sample packets to sFlow datagram. 128 bytes Command Modes CONFIGURATION INTERFACE Supported Modes Full–Switch Mode Command History This guide is platform-specific.
sflow polling-interval (Interface) Set the sFlow polling interval at an interface (overrides the global-level setting). Syntax sflow polling-interval interval value To return to the default, use the no sflow polling-interval interval command. Parameters Defaults interval value Enter the interval value in seconds. The range is from 15 to 86400 seconds. The default is the global counter polling interval. The same value as the current global default counter polling interval.
sflow sample-rate (Interface) Change the interface default sampling rate. Syntax sflow sample-rate value To return to the default sampling rate, use the no sflow sample-rate command. Parameters Defaults value Enter the sampling rate value. The range is from 256 to 8388608 packets. Enter values in powers of 2 only; for example, 4096, 8192, and 16384. The default is the Global default sampling. The Global default sampling.
0 0 0 0 collectors configured UDP packets exported UDP packets dropped sFlow samples collected stack-unit 0 Port set 0 Te 0/1: configured rate 256, actual rate 256 Dell# Dell#show running-config sflow ! sflow enable sflow sample-rate 2048 Dell#show running-config interface tengigabitethernet 0/1 ! interface TenGigabitEthernet 0/1 no ip address sflow enable sflow sample-rate 256 no shutdown show sflow stack-unit Display the sFlow information on a stack unit.
51 Service Provider Bridging Service provider bridging is composed of virtual local area network (VLAN) Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the Dell Networking OS Configuration Guide. This chapter includes commands for the Dell Networking operating software Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel. For more information, see VLAN Stacking, Spanning Tree Protocol (STP), and GARP VLAN Registration (GVRP).
Defaults Debug disabled. Command Modes EXEC Privilege Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. protocol-tunnel Enable protocol tunneling on a stacked (Q-in-Q) VLAN for specified protocol packets. Syntax protocol-tunnel {rate-limit rate| stp} To disable protocol tunneling for a Layer 2 protocol, use the no protocol-tunnel command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enable VLAN-Stacking, no protocol packets are tunneled. Related Command show protocol-tunnel — displays tunneling information for all VLANs. protocol-tunnel enable Enable protocol tunneling globally on the system. Syntax protocol-tunnel enable To disable protocol tunneling, use the no protocol-tunnel enable command. Defaults Disabled.
Related Commands show protocol-tunnel — displays tunneling information for all VLANs. show running-config — displays the current configuration. show protocol-tunnel Display protocol tunnel information for all or a specified VLAN-Stack VLAN. Syntax show protocol-tunnel [vlan vlan-id] Parameters Defaults vlan vlan-id (OPTIONAL) Enter the keyword vlan then the VLAN ID to display information for the one VLAN. The range is from 1 to 4094.
52 Simple Network Management Protocol (SNMP) and Syslog This chapter contains commands to configure and monitor the simple network management protocol (SNMP) v1/v2/v3 and Syslog. The chapter contains the following sections: ● SNMP Commands ● Syslog Commands Topics: • • SNMP Commands Syslog Commands SNMP Commands The following SNMP commands are available in the Dell Networking OS.
Example Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following Example displays a group named ngroup. The ngroup has a security model of version 3 (v3) with authentication (auth), the read and notify name is nview with no write view name specified, and finally the row status is active.
show snmp supported-traps Display the list of SNMP traps supported by the platform. Syntax show snmp supported-traps Command Modes ● EXEC ● EXEC Privilege Command History Example This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.14(0.0) Introduced on the C9010, FN-IOM, MIOA, MXL, S3048–ON, S3100, S4048–ON, S4048T-ON, S5048F-ON, S6000, S6000–ON, S6010–ON, S6100–ON and Z9100– ON.
Authentication Protocol: None Privacy Protocol: None Dell# snmp context Enables you to map a BGP VRF instance within an SNMP context through community mapping in SNMPv2c and SNMPv3. Syntax Parameters Defaults [no] snmp context [context name] context name Enter a unique name for the context. None Command Modes CONFIGURATION Command History Usage Information This guide is platform-specific.
connected to Router2. This is a port connected to Router2. IF-MIB::ifAlias.134792448 = STRING: snmp-server community Configure a new community string access for SNMPv1 v2 and v3. Syntax snmp-server community community-name {ro | rw} [security-name name][accesslist-name] To remove access to a community, use the no snmp-server community community-string {ro | rw} [security-name name [access-list-name] command.
Example Dell(conf)# ip access-list standard snmp-ro-acl Dell(config-std-nacl)#seq 5 permit host 10.10.10.224 Dell(config-std-nacl)#seq 10 deny any count ! Dell(conf)#snmp-server community guest ro snmp-ro-acl Dell(conf)# Related Commands ip access-list standard — names (or selects) a standard access list to filter based on IP address. show running-config — displays the current SNMP configuration and defaults. snmp-server contact Configure contact information for troubleshooting this SNMP node.
notificationoption For the envmon notification-type, enter one of the following optional parameters: ● temperature For the snmp notification-type, enter one of the following optional parameters: ● authentication ● coldstart ● linkdown ● linkup ● syslog-reachable ● syslog-unreachable Defaults Not enabled. Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Usage Information Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.
Usage Information 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Changing the value of the SNMP Engine ID has important side effects. A user’s password (entered on the command line) is converted to a message digest algorithm (MD5) or secure hash algorithm (SHA) security digest. This digest is based on both the password and the local Engine ID. The command line password is then destroyed, as required by RFC 2274.
Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following Example specifies the group named harig as a version 3 user requiring both authentication and encryption and read access limited to the read named rview. NOTE: The number of configurable groups is limited to 16 groups.
NOTE: For version 1 and version 2c security models, this string represents the name of the SNMP community. The string can be set using this command; however, Dell Networking OS recommends setting the community string using the snmp-server community command before executing this command. For version 3 security model, this string is the USM user security name. udp-port port- number (OPTIONAL) Enter the keywords udp-port then the port number of the remote host to use. The range is from 0 to 65535.
1. 2. 3. 4. 5. Related Commands Configure a remote engine ID. Configure a remote user. Configure a group for this user with access rights. Enable traps. Configure a host to receive informs. snmp-server enable traps — enables SNMP traps. snmp-server community — configures a new community SNMPv1 or SNMPv2c. snmp-server location Configure the location of the SNMP server. Syntax snmp-server location text To delete the SNMP location, use the no snmp-server location command.
Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. ● For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. The IP address assigned to the management interface is the default. Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
auth (OPTIONAL) Enter the keyword auth to specify authentication of a packet without encryption. md5 | sha (OPTIONAL) Enter the keyword md5 or sha to designate the authentication level. ● md5 — Message Digest Algorithm ● sha — Secure Hash Algorithm auth-password (OPTIONAL) Enter a text string (up to 20 characters long) password that enables the agent to receive packets from the host and to send packets to the host. Minimum: eight characters long.
Example Related Commands Dell#conf Dell(conf)# snmp-server user n3user ngroup remote 172.31.1.3 udp-port 5009 3 auth md5 authpasswd show snmp user — displays the information configured on each SNMP user name. snmp-server user (for AES128-CFB Encryption) Specify that AES128-CFB encryption algorithm needs to be used for transmission of SNMP information. The Advanced Encryption Standard (AES) Cipher Feedback (CFB) 128-bit encryption algorithm is in compliance with RFC 3826.
Example Related Commands Dell# snmp-server user privuser v3group v3 encrypted auth md5 9fc53d9d908118b2804fe80e3ba8763d priv aes128 d0452401a8c3ce42804fe80e3ba8763d show snmp user — Displays the information configured on each SNMP user name. snmp-server view Configure an SNMPv3 view. Syntax snmp-server view view-name oid-tree {included | excluded} To remove an SNMPv3 view, use the no snmp-server view view-name oid-tree {included | excluded} command.
Syslog Commands The following commands allow you to configure logging functions on all Dell Networking switches. clear logging Clear the messages in the logging buffer. Syntax clear logging Defaults none Command Modes EXEC Privilege Supported Modes Full–Switch Mode Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show logging — displays logging settings and system messages in the internal buffer.
default logging buffered Return to the default setting for messages logged to the internal buffer. Syntax default logging buffered Defaults size = 40960; level = 7 or debugging Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. default logging buffered — sets the logging buffered parameters.
default logging trap Return to the default settings for logging messages to the Syslog servers. Syntax default logging trap Defaults level = 6 or informational Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging trap — limit messages logged to the Syslog servers based on severity.
Examples Related Commands DellEMC(conf)#logging extended ● show logging auditlog — display the audit log. ● clear logging auditlog— clear the audit log. logging Configure an IP address or host name of a Syslog server where logging messages are sent. You can configure multiple logging servers of both IPv4 and/or IPv6. Syntax logging {ip-address | ipv6–address |hostname} {{udp {port}} | {tcp {port}} To disable logging, use the no logging command.
size Defaults (OPTIONAL) Indicate the size, in bytes, of the logging buffer. The number of messages buffered depends on the size of each message. The range is from 40960 to 524288. The default is 40960 bytes. level = 7; size = 40960 bytes Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
● ● ● ● ● ● ● ● ● ● ● ● ● ● ● ● ● ● ● ● ● ● ● ● auth (authorization system) cron (Cron/at facility) deamon (system deamons) kern (kernel) local0 (local use) local1 (local use) local2 (local use) local3 (local use) local4 (local use) local5 (local use) local6 (local use) local7 (local use) lpr (line printer system) mail (mail system) news (USENET news) sys9 (system use) sys10 (system use) sys11 (system use) sys12 (system use) sys13 (system use) sys14 (system use) syslog (Syslog process) user (user process)
Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you configure the snmp-server trap-source command, the system messages logged to the history table are also sent to the SNMP network management station. Related Commands show logging — displays information logged to the history buffer.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. default logging monitor — returns the logging monitor parameters to the default setting. logging on Specify that debug or error messages are asynchronously logged to multiple destinations, such as the logging buffer, Syslog server, or terminal lines. Syntax logging on To disable logging to logging buffer, Syslog server and terminal lines, use the no logging on command. Defaults Enabled.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Syslog messages contain the IP address of the interface used to egress the router. By configuring the logging source-interface command, the Syslog packets contain the IP address of the interface configured. Related Commands logging — enables logging to the Syslog server. logging synchronous Synchronize unsolicited messages and output.
Parameters Defaults level Indicate a value from 0 to 7 or enter one of the following parameters: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging. The default is 6 or informational. 6 or informational Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging — enables the logging to another device.
show logging Display the logging settings and system messages logged to the internal buffer of the switch. Syntax Parameters show logging [number | history [reverse][number] | reverse [number] | summary] number (OPTIONAL) Enter the number of messages displayed in the output. The range is from 1 to 65535. history (OPTIONAL) Enter the keyword history to view only information in the Syslog history table.
Example (History) Dell#show logging history Syslog History Table: 1 maximum table entries, saving level warnings or higher SNMP notifications not Enabled May 22 08:53:09: %STKUNIT0-M:CP %SEC-3-AUTHENTICATION_ENABLE_SUCCESS: Enable password authentication success on vty0 ( 10.11.68.22 ) Dell# show logging driverlog stack-unit Display the driver log for the specified stack member.
Example Related Commands DellEMC(conf)# show logging auditlog ● clear logging auditlog — clear the audit log. terminal monitor Configure the system to display messages on the monitor/terminal. Syntax terminal monitor To return to default settings, use the terminal no monitor command. defaults Disabled. Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Mode Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
53 Stacking For more information about using the Switch stacking feature, see the Stacking FN IOM Switches chapter in the Dell Networking OS Configuration Guide. NOTE: The terms stack-unit-id, unit-id, stack-unit-number, stack-number, and unit-number mentioned in this chapter refers to the stack-unit-number.
redundancy force-failover stack-unit Force the standby unit in the stack to become the management unit. Syntax redundancy force-failover stack-unit Defaults Not enabled. Command Modes EXEC Privilege Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. reset stack-unit Reset any designated stack member except the management unit (master unit).
Dell#reset stack-unit 0 % Error: Reset of master unit is not allowed. Dell(standby)#reset stack-unit 3 % Error: Reset of stack units from standby is not allowed. Dell(standby)# Dell(standby)#reset stack-unit 1 <00:02:50: %STKUNIT4-S:CP %CHMGR-5-STACKUNIT_RESET: Stack unit 4 being reset 00:02:50: %STKUNIT4-S:CP %CHMGR-2-STACKUNIT_DOWN: Stack unit 4 down - reset 00:02:50: %STKUNIT4-S:CP %IFMGR-1-DEL_PORT: Removed port: TenGig 4/1-48 Dell#rebooting U-Boot 1.1.
Dell# Related Commands STP: SPAN: no block sync done no block sync done redundancy disable-auto-reboot — prevents the system from auto-rebooting if it fails. show system stack-ports Display information about the stacking ports on all switches in the switch stack. Syntax Parameters Defaults show system stack-ports [status | topology] status (OPTIONAL) Enter the keyword status to display the command output without the Connection field.
Interface Link Speed (Gb/s) 0/33 40 0/37 40 0/41 40 0/45 40 1/33 40 1/37 40 1/49 40 1/53 40 2/33 40 2/37 40 2/49 40 2/53 40 Example (Topology) Admin Status up up up up up up up up up up up up Link Trunk Status Group up up up up up up up up up up up up Dell# show system stack-ports Topology: Ring Interface Connection Trunk Group 0/33 1/37 0/37 2/33 0/41 1/49 0/45 2/53 1/33 2/37 1/37 0/33 1/49 0/41 1/53 2/49 2/33 0/37 2/37 1/33 2/49 1/53 2/53 0/45 Related Commands ● redundancy disable-auto-reboot — reset
stack-unit stack-group Configure a 40GbE port for stacking mode. Syntax Parameters stack-unit unit number stack-group group number unit number <0– 5> Number of the member stack unit. The valid values are from 0 to 5. group number <0–5> Number of the stacked port on the unit. The valid values are from 0 to 5. Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Related Commands 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters 0–5 Enter a stack member identifier, from 0 to 5, of the switch that you want to add to the stack. MXL-10/40GbE Enter the model identifier of the switch to be added as a stack member. This identifier is also referred to as the provision type. Command Modes CONFIGURATION Supported Modes Full–Switch Mode Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ● reload — reboots the system.
54 Storm Control The Dell Networking Operating System (OS) storm control feature allows you to limit or suppress traffic during a traffic storm. Storm control is supported on the Dell Networking OS. Important Points to Remember ● Interface commands can only be applied on physical interfaces (virtual local area networks [VLANs] and link aggregation group [LAG] interfaces are not supported). ● An INTERFACE-level command only supports storm control configuration on ingress.
Example Dell#show storm-control broadcast tengigabitethernet 3/8 Broadcast storm control configuration Interface Direction Packets/Second ---------------------------------------TenGig 3/8 Ingress 1000 Dell# show storm-control multicast Display the storm control multicast configuration.
Supported Modes Full–Switch Mode Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Dell#show storm-control unknown-unicast tengigabitethernet 3/1 Unknown-unicast storm control configuration Interface Direction Packets/Second ---------------------------------------TenGig 3/1 Ingress 1000 Dell# storm-control broadcast (Configuration) Configure the percentage of broadcast traffic allowed in the network.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. storm-control PFC/LLFC Shut down the port if it receives the PFC/LLFC frames more than the configured rate. Syntax storm-control pfc-llfc [pps]in shutdown Parameters Defaults pfc-llfc in Enter the keyword pfc-llfc to get the flow control traffic. The range is from 0 to 33554368 packets per second.
storm-control multicast (Interface) Configure the percentage of multicast traffic allowed on the switch interface (ingress only). Syntax storm-control multicast packets_per_second in To disable multicast storm control on the interface, use the no storm-control multicast packets_per_second in command. Parameters Defaults packets_per_sec ond Enter the packets per second of broadcast traffic allowed into the network. The range is from 0 to 33554368.
Defaults none Command Modes INTERFACE (conf-if-interface-slot/port) Supported Modes Full–Switch Mode Command History 1102 Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
55 Spanning Tree Protocol (STP) The commands in this chapter configure and monitor the IEEE 802.1d spanning tree protocol (STP). Topics: • • • • • • • • • • • • bridge-priority debug spanning-tree description disable forward-delay hello-time max-age portfast bpdufilter default protocol spanning-tree show config show spanning-tree 0 spanning-tree 0 bridge-priority Set the bridge priority of the switch in an IEEE 802.1D spanning tree.
protocol Enter the keyword for the type of STP to debug, either mstp, pvst, or rstp. all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu (OPTIONAL) Enter the keyword bpdu to debug bridge protocol data units. events (OPTIONAL) Enter the keyword events to debug STP events. Command Modes EXEC Privilege Supported Modes Full–Switch Mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. portfast bpdufilter default — enters SPANNING TREE mode. forward-delay The amount of time the interface waits in the Listening state and the Learning state before transitioning to the Forwarding state. Syntax forward-delay seconds To return to the default setting, use the no forward-delay command.
max-age To maintain configuration information before refreshing that information, set the time interval for the spanning tree bridge. Syntax max-age seconds To return to the default values, use the no max-age command. Parameters Defaults seconds Enter a number of seconds the system waits before refreshing configuration information. The range is from 6 to 40. The default is 20 seconds.
8.3.16.1 Usage Information Example Related Commands Introduced on the MXL 10/40GbE Switch IO Module. STP is not enabled when you enter SPANNING TREE mode. To enable STP globally on the switch, use the no disable command from SPANNING TREE mode. Dell(conf)#protocol spanning-tree 0 Dell(config-stp)# disable — disables spanning tree group 0. To enable spanning tree group 0, use the no disable command. show config Display the current configuration for the mode. Only non-default values display.
summary (OPTIONAL) Enter the keyword summary to only the number of ports in the spanning tree group and their state. Command Modes EXEC Privilege Supported Modes Full–Switch Mode Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Enable spanning tree group 0 prior to using this command. The following describes the show spanning-tree 0 command shown in the example.
Designated root has priority 32768, address 0001.e800.0a56 Designated bridge has priority 32768, address 0001.e800.0a56 Designated port id is 8.26, designated path cost 0 Timers: message age 0, forward_delay 0, hold 0 Number of transitions to forwarding state 1 BPDU: sent:18, received 0 The port is not in the portfast mode Port 3 (TenGigabitEthernet 1/2) is Forwarding Port path cost 4, Port priority 8, Port Identifier 8.27 Designated root has priority 32768, address 0001.e800.
Parameters stp-id Enter the STP instance ID. The range is 0. cost cost Enter the keyword cost then a number as the cost. The range is 1 to 65535. The defaults are: ● 10-Gigabit Ethernet interface = 2. ● Port Channel interface with 10-Gigabit Ethernet = 1. rootguard Enter the keyword rootguard to enable STP root guard on a port or port-channel interface.
56 SupportAssist SupportAssist sends troubleshooting data securely to Dell. SupportAssist in this Dell EMC Networking OS release does not support automated email notification at the time of hardware fault alert, automatic case creation, automatic part dispatch, or reports. SupportAssist requires Dell EMC Networking OS 9.9(0.0) and SmartScripts 9.7 or later to be installed on the Dell EMC Networking device. For more information on SmartScripts, see Dell EMC Networking Open Automation guide.
Usage Information ● When you run the command, the system displays a message with the information directing to the URL for further information. ● Even before you accept or reject the EULA, the configuration data is sent to the default centrally deployed SupportAssist Server. If you reject the EULA, the configuration data is not transmitted to the SupportAssist server. ● If there is an existing SupportAssist configuration, the configuration is not removed and the feature is disabled.
Related Commands ● support-assist — moves to the SupportAssist Configuration mode. support-assist Move to the SupportAssist configuration mode. Syntax support-assist To remove all the configuration of the SupportAssist service, use the no support-assist command. Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.
support-assist activity Trigger an activity event immediately. Syntax support-assist activity {full-transfer | core-transfer} start now Parameters full-transfer Enter the keyword full-transfer to specify transfer of configuration, inventory, logs, and other information. core-transfer Enter the keyword core-transfer to specify transfer of core files. Command Modes EXEC Privilege Command History Usage Information This guide is platform-specific.
Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. Introduced the core-transfer and event-transfer parameters. Usage Information 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. By default, each activity follows a set of default actions using a default schedule.
Parameters first-name (Optional) Enter the first name for the contact person. This is optional provided each contact person name is unique. To include a space, enter a space within double quotes. last-name Enter the last name for the contact person. To include a space, enter a space within double quotes. Command Modes SUPPORTASSIST Command History Usage Information This guide is platform-specific.
server Configure the name of the remote SupportAssist Server and move to SupportAssist Server mode. Syntax server {default | server-name} To delete a server, use the no server server-name command. Parameters Defaults default Enter the keyword default for the default server. server-name Enter the name of the custom server to which the logs would be transferred. To include a space, enter a space within double quotes. Default server has URL stor.g3.ph.dell.
Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
Related Commands ● action-manifest get — copy an action-manifest file for an activity to the system. ● action-manifest show — view the list of action-manifest for a specific activity. ● action-manifest remove — remove the action-manifest file for an activity. action-manifest remove Remove the action-manifest file from Dell EMC Networking OS. Syntax Parameters action-manifest remove } local-file-name Enter the name of the local action-manifest file.
Related Commands Version Description 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. ● action-manifest get — copy an action-manifest file for an activity to the system. ● action-manifest install — configure the action-manifest to use for a specific activity. ● action-manifest remove — remove the action-manifest file for an activity. enable Enable a specific SupportAssist activity.
To remove the complete company contact information, use the no address command. Parameters city company- city province | region | state name (OPTIONAL) Enter the keyword city then the city or town for the company site. To include a space, enter a space within double quotes. (OPTIONAL) Enter the keyword province, region or state then the name of province, region or state for the company site. To include a space, enter a space within double quotes.
Usage Information Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. This command is optional for SupportAssist service configuration. territory Configure the territory and set the coverage for the company site.
Parameters primary email- address alternate emailaddress Enter the keyword primary then the primary email address for the person. Enter the keyword alternate then the alternate email address for the person. Command Modes SUPPORTASSIST PERSON Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM.
Related Commands ● preferred-method — configure the preferred method for contacting the person. preferred-method Configure the preferred method for contacting the person. Syntax preferred-method {email | no-contact | phone] Parameters Defaults email Enter the keyword email to specify email as preferred method. no-contact Enter the keywords no-contact to specify that there is no preferred method. phone Enter the keyword phone to specify phone as preferred method.
Usage Information Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. This command is optional for SupportAssist service configuration. SupportAssist Server Commands Dell EMC Networking OS supports the following SupportAssist Server mode commands. proxy-ip-address Configure a proxy for reaching the SupportAssist remote server.
Usage Information The passwords are stored encrypted in the running configuration. enable Enable communication with the SupportAssist server. Syntax enable To disable communication to a specific SupportAssist server, use the no enable command. Defaults Enabled Command Modes SUPPORTASSIST SERVER Command History Related Commands This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.
Usage Information The URL should be formatted to follow the ISO format. show eula-consent Display the EULA for the feature. Syntax Parameters show eula-consent {support-assist | other feature} support-assist | other feature Enter the keywords support-assist or the text corresponding to other feature. Command Modes EXEC Privilege Command History Example This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide.
allow Dell to transmit and store the Collected Data from SupportAssist in accordance with these terms. You agree that the provision of SupportAssist may involve international transfers of data from you to Dell and/or to Dells affiliates, subcontractors or business partners. When making such transfers, Dell shall ensure appropriate protection is in place to safeguard the Collected Data being transferred in connection with SupportAssist.
preferred-method email time-zone zone +05:30 start-time 12:23 end-time 15:23 ! server Dell enable url http://1.1.1.1:1332 DellEMC# show support-assist status Display information on SupportAssist feature status including any activities, status of communication, last time communication sent, and so on. Syntax show support-assist status Command Modes EXEC Privilege Command History Example This guide is platform-specific.
57 System Time and Date The commands in this chapter configure time values on the system, either using the Dell Networking Operating System (OS), or the hardware, or using the network time protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For more information, refer to the “Network Time Protocol” section of the Management chapter in the Dell Networking OS Configuration Guide.
Usage Information You can change the order of the month and day parameters to enter the time and date as time day month year. You cannot delete the software clock. The software clock runs only when the software is up. The clock restarts, based on the hardware clock, when the switch reboots. Dell Networking OS recommends using an outside time source, such as NTP, to ensure accurate time on the switch.
clock summer-time recurring Set the software clock to convert to daylight saving time on a specific day each year. Syntax clock summer-time time-zone recurring [start-week start-day start-month start-time end-week end-day end-month end-time [offset]] To delete a daylight saving time zone configuration, use the no clock summer-time command. Parameters Defaults time-zone Enter the three-letter name for the time zone. This name is displayed in the show clock output. You can enter up to eight characters.
clock timezone Configure a timezone for the switch. Syntax clock timezone timezone-name offset To delete a timezone configuration, use the no clock timezone command. Parameters Defaults timezone-name Enter the name of the timezone. You cannot use spaces. offset Enter one of the following: ● a number from 1 to 23 as the number of hours in addition to universal time coordinated (UTC) for the timezone. ● a minus sign (-) then a number from 1 to 23 as the number of hours. Not configured.
Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You also must configure an authentication key for NTP traffic using the ntp authentication-key command. Related Commands ntp authentication-key — configures the authentication key for NTP traffic. ntp trusted-key — configures a key to authenticate.
ntp control-key-passwd Configure control key password for NTPQ authentication. NTP control key supports encrypted and unencrypted option. Syntax ntp control-key-passwd [encryption-type] password To delete the control key, use the no ntp control-key-passwd [encryption-type] password command.
Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ntp master Configure the switch as NTP Server. Syntax ntp master Parameters Defaults ntp Enter the keyword stratum number to identify the NTP Server's hierarchy. The master stratum range value is from 2 to 15 and the default value is 8. Not configured.
Usage Information Example The ntp offset-threshold command does not time synchronization. DellEMC(config)# ntp offset-threshold 4 ntp server Configure an NTP time-serving host. Syntax Parameters ntp server[vrf vrf-name] {hostname | ipv4-address | ipv6-address} [key keyid] [prefer] [version number] [minpoll] [maxpoll] vrf vrf-name (Optional) Enter the keyword vrf and then the name of the VRF to configure a NTP time-serving host corresponding to that VRF.
ntp source Specify an interface’s IP address to be included in the NTP packets. Syntax ntp source interface To delete the configuration, use the no ntp source command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For Loopback interfaces, enter the keyword loopback then a number from zero (0) to 16383. ● For a Port Channel interface, enter the keyword lag then a number. The range is from 1 to 128.
show clock Display the current clock settings. Syntax Parameters show clock [detail] detail (OPTIONAL) Enter the keyword detail to view the source information of the clock. Command Modes ● EXEC ● EXEC Privilege Command History Example Example (Detail) Related Commands Version Description 9.9(0.0) Introduced on the FN MXL. 8.3.16.1 Introduced the MXL 10/40GbE Switch IO Module. Dell#show clock 12:30:04.402 pacific Tue May 22 2012 Dell# Dell#show clock detail 12:30:26.
Example (without ntp master configuration) Example (with ntp master configuration) Related Commands Field Description st Displays the peer’s stratum, that is, the number of hops away from the external time source. A in this column means the NTP peer cannot reach the time source. when Displays the last time the switch received an NTP packet. poll Displays the polling interval (in seconds). reach Displays the reachability to the peer (in octal bitstream).
9.4.(0.0) Added support for VRF. show ntp status Display the current NTP status. Syntax show ntp status Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ntp status command shown in the following example. Field Description “Clock is...
58 Tunneling Tunneling is supported on the Dell Networking OS. Topics: • • • • • • • • • • tunnel-mode tunnel source tunnel keepalive tunnel allow-remote tunnel dscp tunnel destination tunnel flow-label tunnel hop-limit ip unnumbered ipv6 unnumbered tunnel-mode Enable a tunnel interface. Syntax tunnel mode {ipip | ipv6 | ipv6ip}[decapsulate-any] To disable an active tunnel interface, use the no tunnel mode command.
tunnel source Set a source address for the tunnel. Syntax tunnel source {ip-address | ipv6–address | interface-type-number} To delete the current tunnel source address, use the no tunnel source command. Parameters Defaults ip-address Enter the source IPv4 address in A.B.C.D format. ipv6–address Enter the source IPv6 address in X:X:X:X::X format. interface-typenumber ● For a Port Channel interface, enter the keywords port-channel then a number from 1 to 128.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL. When configured, the system will send ICMP echo probe packets at the configured interval and expect a response within the configured number of attempts, else the tunnel interface will be declared operational down. tunnel allow-remote Configure an IPv4 or IPv6 address or prefix whose tunneled packets will be accepted for decapsulation.
Class (IPv6) to the tunnel header DSCP (IPv4)/Traffic Class (IPv6) depending on the mode of tunnel. Defaults 0 (Mapped) Command Modes INTERFACE TUNNEL (conf-if-tu) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Defaults 0 (Mapped original packet flow-label value to tunnel header flow-label value) Command Modes INTERFACE TUNNEL (conf-if-tu) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command is only valid for tunnel interfaces with an IPv6 outer header.
9.4(0.0) Usage Information Introduced on the MXL. The ip unnumbered command will fail in two condition: ● If the logical ip address is configured. ● If the tunnel mode is ipv6ip (where ip address over tunnel interface is not possible). To ping the unnumbered tunnels the logical address route information should be present in both the ends. NOTE: The ip unnumbered command can specify an interface name that does not yet exist, or does not yet have a configured IPv6 address.
59 u-Boot All commands in this chapter are in u-Boot mode. These commands are supported on the Dell Networking Operating System (OS) FN IOM platform. To access this mode, press any key when the following line appears on the console during a system boot. Hit any key to stop autoboot: Enter u-Boot immediately, as the BOOT_USER# prompt. NOTE: This chapter describes only a few commands available in u-Boot mode. NOTE: You cannot use the Tab key to complete commands in this mode.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. boot selection Change the ROM bootstrap bootflash partition. Syntax boot selection [a | b] Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. boot show net config retries Show the number of retries for network boot configuration failure.
BOOT_USER # boot zero Clears the primary, secondary, or default boot parameters. Syntax boot zero [primary | secondary | default] Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. default gateway Set the default gateway IP address. Syntax default-gateway Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # help ***** Dell Force10 Boot Interface Help Information ***** Current access level: USER LEVEL Use "syntax help" for more information on syntax.
password Defaults Enter a text string, up to 96 characters long, as the clear text password. No password is configured. level = 15. Command Modes CONFIGURATION Command History Related Commands This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.13(0.0) Changed the maximum length of the password from 32 to 96. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. no interface management ethernet ip address Clear the management port IP address and mask. Syntax no interface management ethernet ip address Command Modes uBoot Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. reload Reload the FN IOM switch.
BOOT_USER # show boot selection Display the ROM bootstrap bootflash partition. Syntax show boot selection Command Modes uBoot Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show boot selection ROM BOOTSTRAP SELECTOR PARMETERS: ================================ Next ROM bootstrap set to occur from Bootflash partition A.
BOOT_USER # show bootvar Show summary of operating system boot parameters. Syntax show bootvar Command Modes uBoot Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show bootvar PRIMARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== boot device : tftp file name : premnath Management Etherenet IP address : 10.16.130.
Gateway IP address: 15.0.0.1 BOOT_USER # show interface management Ethernet Show the management port IP address and mask. Syntax show interface management ethernet Command Modes uBoot Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show interface management ethernet Management ethernet IP address: 10.16.130.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # help ***** Dell Force10 Boot Interface Help Information ***** Current access level: USER LEVEL Use "syntax help" for more information on syntax.
60 Uplink Failure Detection (UFD) Uplink failure detection (UFD) provides detection of the loss of upstream connectivity and, if you use this with network interface controller (NIC) teaming, automatic recovery from a failed link.
debug uplink-state-group Enable debug messages for events related to a specified uplink-state group or all groups. Syntax debug uplink-state-group [group-id] To turn off debugging event messages, enter the no debug uplink-state-group [group-id] command. Parameters Defaults group-id Enables debugging on the specified uplink-state group. The valid group-id values are from 1 to 16. none Command Modes EXEC Privilege Supported Modes Full–Switch Command History Related Commands Version Description 9.
To delete an uplink-state group, enter the no downstream interface command. Parameters interface Enter one of the following interface types: ● 10 Gigabit Ethernet: tengigabitethernet {slot/port | slot/portrange} ● Port channel: port-channel {1-512 | port-channel-range} Where port-range and port-channel-range specify a range of ports separated by a dash (-) and/or individual ports/port channels in any order; for example: gigabitethernet 1/1-2,5,9,11-12 port-channel 1-3,5.
downstream disable links Configure the number of downstream links in the uplink-state group that are disabled if one upstream link in an uplink-state group goes down. Syntax downstream disable links {number |all} To revert to the default setting, use the no downstream disable links command. Parameters Defaults number Enter the number of downstream links to be brought down by UFD. The range is from 1 to 1024. all Brings down all downstream links in the group.
show running-config uplink-state-group Display the current configuration of one or more uplink-state groups. Syntax show running-config uplink-state-group [group-id] Parameters Defaults group-id Displays the current configuration of all uplink-state groups or a specified group. The valid group-id values are from 1 to 16. none Command Modes ● EXEC ● EXEC Privilege Supported Modes Full–Switch Command History Example Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Uplink State Group: 6 Status: Enabled, Up Uplink State Group: 7 Status: Enabled, Up Uplink State Group: 16 Status: Disabled, Up Dell# show uplink-state-group 16 Uplink State Group: 16 Status: Disabled, Up Dell#show uplink-state-group detail (Up): Interface up (Dwn): Interface down (Dis): Interface disabled Uplink State Group : 1 Status: Enabled, Up Upstream Interfaces : Downstream Interfaces : Uplink State Group Upstream Interfaces Downstream Interfaces 13/5(Up) Te 13/6(Up) : 3 Status: Enabled, Up : Gi 0/4
An uplink-state group is considered to be operationally up if at least one upstream interface in the group is in the Link-Up state. An uplink-state group is considered to be operationally down if no upstream interfaces in the group are in the Link-Up state. No uplink-state tracking is performed when a group is disabled or in an operationally down state.
● upstream — assigns a port or port-channel to the uplink-state group as an upstream interface. ● uplink-state-group — creates an uplink-state group and enables the tracking of upstream links.
61 VLAN Stacking With the virtual local area network (VLAN)-stacking feature (also called stackable VLANs and QinQ), you can “stack” VLANs into one tunnel and switch them through the network transparently. For more information about basic VLAN commands, refer to the Virtual LAN (VLAN) Commands section in the Layer 2 chapter.
dei honor Honor the incoming DEI value by mapping it to a system drop precedence. Enter the command once for 0 and once for 1. Syntax Parameters Defaults dei honor {0 | 1} {green | red | yellow} 0|1 Enter the bit value you want to map to a color. green | red | yellow Choose a color: ● Green: High priority packets that are the least preferred to be dropped. ● Yellow: Lower priority packets that are treated as best-effort.
member Assign a stackable VLAN access or trunk port to a VLAN. The VLAN must contain the vlan-stack compatible command in its configuration. Syntax member interface To remove an interface from a Stackable VLAN, use the no member interface command. Parameters Defaults interface Enter the following keywords and slot/port or number information: ● For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Default Drop precedence: Green Interface CFI/DEI Drop precedence --------------------------------------------Te 0/1 0 Green Te 0/1 1 Yellow Te 1/2 1 Red Te 1/3 0 Yellow Related Commands dei honor — honors the incoming DEI value. show interface dei-mark Display the dei mark configuration. Syntax Parameters show interface dei-mark [interface slot/port] interface slot/ port Enter the interface type then the line card slot and port number.
Usage Information Prior to enabling this command, to place the interface in Layer 2 mode, enter the switchport command. To remove the access port designation, remove the port (using the no member interface command) from all stackable VLAN enabled VLANs. vlan-stack compatible Enable the stackable VLAN feature on a VLAN. Syntax vlan-stack compatible To disable the Stackable VLAN feature on a VLAN, use the no vlan-stack compatible command. Defaults Not configured.
Command Modes INTERFACE Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. vlan-stack protocol-type Define the stackable VLAN tag protocol identifier (TPID) for the outer VLAN tag (also called the VMAN tag). If you do not configure this command, the system assigns the value 0x9100. Syntax Parameters vlan-stack protocol-type number number Enter the hexadecimal number as the stackable VLAN tag.
To remove the trunk port designation, first remove the port (using the no member interface command) from all stackable VLAN-enabled VLANs. Starting with the Dell Networking OS version 7.8.1.0, a VLAN-Stack trunk port is also allowed to be configured as a tagged port and as an untagged port for single-tagged VLANs. When the VLAN-Stack trunk port is also a member of an untagged VLAN, the port must be in Hybrid mode. Refer to portmode hybrid.
Dell(config)#interface vlan 20 Dell(conf-if-vlan)#vlan-stack compatible Dell(conf-if-vlan)#member Te 7/0, te 3/8, TenGi 8/0 Dell(conf-if-vlan)#exit Dell(config)#interface vlan 20 Dell(conf-if-vlan)#untagged TenGi 8/0 Dell(conf-if-vlan)#exit Dell(config)# Dell(config)#interface vlan 40 Dell(conf-if-vlan)#tagged TenGi 8/0 Dell(conf-if-vlan)#exit Dell(config)# VLAN Stacking 1173
62 Virtual Link Trunking (VLT) VLT allows physical links between two chassis to appear as a single virtual link to the network core. VLT eliminates the requirement for Spanning Tree protocols by allowing link aggregation group (LAG) terminations on two separate distribution or core switches, and by supporting a loop-free topology.
Usage Information Command History You can only enable either IPv4 or IPv6. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. clear ip mroute Clear learned multicast routes on the multicast forwarding table. To clear the protocol-independent multicast (PIM) tree information base, use the clear ip pim tib command.
delay-restore abort-threshold Increase the Boot Up timer to some value (>60 seconds). Syntax delay-restore abort-threshold To remove use the no delay-restore abort-threshold command. Defaults 60 seconds Command Modes VLT DOMAIN Supported Modes Full–Switch Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide.
Default Not configured. Command Modes VLT DOMAIN (conf-vlt-domain) Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. peer-link port-channel Configure the specified port channel as the chassis interconnect trunk between VLT peers in the domain. Syntax Parameters Defaults peer-link port-channel id-number id-number Enter the port-channel number that acts as the interconnect trunk.
Parameters value Enter the timeout value in seconds. The range is from 1 to 65535. The default value is 0 (no timeout). Command Modes VLT DOMAIN (conf-vlt-domain) Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the IPV6/IPV4 support on the MXL. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When the timer expires, the software checks to see if the VLT peer is now available.
address [ sourceaddress ]] Enter the keyword snooping to display information on the multicast routes PIMSM snooping discovers. Enter a VLAN ID to limit the information displayed to the multicast routes PIM-SM snooping discovers on a specified VLAN. The VLAN ID range is from 1 to 4094. Enter a multicast group address and, optionally, a source multicast address in dotted decimal format (A.B.C.
TenGigabitEthernet 4/3 TenGigabitEthernet 4/4 TenGigabitEthernet 4/5 Example (detail) Dell#show ip mroute IP Multicast Routing Table (*, 224.10.10.1), uptime 00:05:12 Incoming interface: TenGigabitEthernet 3/1 Outgoing interface list: GigabitEthernet 3/2 (1.13.1.100, 224.10.10.1), uptime 00:04:03 Incoming interface: TenGigabitEthernet 3/4 Outgoing interface list: TenGigabitEthernet 3/4 TenGigabitEthernet 3/5 (*, 224.20.20.
Command Modes EXEC Supported Modes Full–Switch Command History Example (Brief) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show vlt inconsistency ip mroute Spanned Multicast Routing IIF Inconsistency Multicast Route --------------(22.22.22.200, 225.1.1.2) (*, 225.1.1.2) Dell# LocalIIF ---------VLAN 5 VLAN 15 PeerIIF --------VLAN 6 te 0/5 show vlt mismatch Configure the time for a VLT node to retain synced multicast routes or synced multicast OIF after VLT peer node failure.
Port-type-config ---------------Codes:: p - PVLAN Promiscuous port, h - PVLAN Host port, t - PVLAN Trunk port, mt - Vlan-stack trunk port, mu - Vlan-stack access port, n Normal port Vlt Lag ------128 Local ----mt Peer ---mu Vlan-stack protocol-type -----------------------Local ----0x4100 Peer ---0x8100 VLT-VLAN config --------------Local Lag Peer Lag ---------------128 128 Local VLANs ----------4094 Peer VLANs ---------100 Dell# show vlt role Displays the VLT peer status, role of the local VLT swit
Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
system-mac Reconfigure the default MAC address for the domain. Syntax Parameters Defaults system-mac mac-address mac-address Enter the system MAC address for the VLT domain. Automatically assigned based on the primary priority and MAC address of each VLT peer. Command Modes VLT DOMAIN Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Parameters domain-id Enter the Domain ID number. Configure the same domain ID on the peer switch. VLT uses the domain ID to automatically create a VLT MAC address for the domain. The range of domain IDs is from 1 to 1000. Command Modes CONFIGURATION Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
10 40 20(C) 30 (I) 50(C) 60 (I) V T V T V (*) T Dell# Virtual Link Trunking (VLT) 1187
63 Virtual Router Redundancy Protocol (VRRP) Virtual router redundancy protocol (VRRP) is supported by the Dell Networking Operating System (OS) for IPv4 and IPv6. The following commands apply to both VRRP IPv4 and IPv6: ● advertise-interval ● description ● disable ● hold-time ● preempt ● priority ● show config ● track ● virtual-address VRRP Ipv6 are in the VRRP for IPv6 Commands section.
centisecs centisecs Defaults Enter the keyword centisecs followed by the number of centisecs in multiple of 25 centisecs. The range is 25 to 4075 centisecs in multiples of 25 centisecs. 1 second or 100 centisecs Command Modes INTERFACE-VRRP Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced the support for centisecs on the MXL 10/40GbE Switch . 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information NOTE: This command also enables you to clear the port configurations corresponding to a range of ports. ● You can specify multiple ports as slot/port-range. For example, if you want to clear the port configurations corresponding to all ports between 1 and 4, specify the port range as clear counters interfaces interface-type 1/1 - 4.
Defaults Not enabled. Command Modes VRRP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable Disable a VRRP group. Syntax disable To re-enable a disabled VRRP group, use the no disable command. Defaults Enabled. Command Modes VRRP Supported Modes Full–Switch Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Usage Information If a switch is a MASTER and you change the hold timer, disable and re-enable VRRP for the new hold timer value to take effect. Related Commands disable — disables a VRRP group. preempt To preempt or become the MASTER router, permit a BACKUP router with a higher priority value. Syntax preempt To prohibit preemption, use the no preempt command. Defaults Enabled (that is, a BACKUP router can preempt the MASTER router).
show config View the non-default VRRP configuration. Syntax Parameters show config [verbose] verbose (OPTIONAL) Enter the keyword verbose to view all VRRP group configuration information, including defaults. Command Modes VRRP Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-vrid-4)#show con vrrp-group 4 virtual-address 119.192.182.
Example (Brief) Item Description Pri Displays the priority value assigned to the interface. If the track command is configured to track that interface and the interface is disabled, the cost is subtracted from the priority value assigned to the interface. Pre States whether preempt is enabled on the interface. ● Y = Preempt is enabled. ● N = Preempt is not enabled. State Displays the operational state of the interface by using one of the following: ● NA/IF (the interface is not available).
Item Description ● Dn or Up states whether the interface is down or up. ● the interface type slot/port information. Example Dell>show vrrp -----------------TenGigabitEthernet 1/3, VRID: 1, Net: 10.1.1.253 VRF: 0 default State: Master, Priority: 105, Master: 10.1.1.253 (local) Hold Down: 0 sec, Preempt: TRUE, AdvInt: 1 sec Adv rcvd: 0, Adv sent: 1862, Gratuitous ARP sent: 0 Virtual MAC address: 00:00:5e:00:01:01 Virtual IP address: 10.1.1.
Usage Information 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If the interface is disabled, the cost value is subtracted from the priority value and forces a new MASTER election if the priority value is lower than the priority value in the BACKUP virtual routers. virtual-address Configure up to 12 IP addresses of virtual routers in the VRRP group. To start sending VRRP packets, set at least one virtual address for the VRRP group.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command applies to a single interface. When used with the vrrp delay reload CLI, the later timer rules the VRRP enabling. For example, if vrrp delay reload is 600 and the vrrp delay minimum is 300: ● When the system reloads, VRRP waits 600 seconds (10 minutes) to bring up VRRP on all interfaces that are up and configured for VRRP.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The VRRP group only becomes active and sends VRRP packets when a virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets. Related Command virtual-address — assigns up to 12 virtual IP addresses per VRRP group. VRRP for IPv6 Commands The following commands apply to IPv6.
all Enter the keyword all to enable debugging of all VRRP groups. packets Enter the keyword packets to enable debugging of VRRP control packets. state Enter the keyword state to enable debugging of VRRP state changes timer Enter the keyword timer to enable debugging of the VRRP timer. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Line Beginning with Description ● backup (BACKUP virtual router). the interface’s priority and the IP address of the MASTER. Hold Down:... This line displays additional VRRP configuration information: ● Hold Down displays the hold down timer interval in seconds. ● Preempt displays TRUE if preempt is configured and FALSE if preempt is not configured. ● AdvInt displays the Advertise Interval in seconds. Adv rcvd:...
Usage Information 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The VRRP group only becomes active and sends VRRP packets when a link-local virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets. ● When VRF microcode is not loaded in CAM, the VRID for a VRRP group is the same as the VRID number configured with the vrrp-group or vrrp-ipv6-group command.
1. Set the switches with the lowest priority to both. 2. Set the switch with the highest priority to version 3. 3. Set all the switches from both to version 3. NOTE: Do not run VRRP version 2 and version 3 in the same group for an extended period of time.
64 ICMP Message Types This chapter lists and describes the possible ICMP message type resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. Table 5. ICMP messages and their definitions Symbol Type Code . 0 U 3 3 Error echo reply . destination unreachable: 0 network unreachable . 1 host unreachable . 2 protocol unreachable . 3 port unreachable .
Table 5. ICMP messages and their definitions (continued) Symbol Type Code Description 0 time-to-live equals 0 during transit . 1 time-to-live equals 0 during reassembly . 12 1204 Query Error parameter problem: 1 IP header bad (catchall error) . 2 required option missing . 13 0 timestamp request . 14 0 timestamp reply . 15 0 information request (obsolete) . 16 0 information reply (obsolete) . 17 0 address mask request . 18 0 address mask reply .
65 SNMP Traps This chapter lists the traps sent by the Dell Networking Operating System (OS). Each trap is listed by the fields Message ID, Trap Type, and Trap Option. Table 6.
Table 6.
Table 6.
Table 6.
66 FC Flex IO Modules This part provides a generic, broad-level description of the operations, capabilities, and configuration commands of the Fiber Channel (FC) Flex IO module. FC Flex IO Module mentioned in this guide refers to FCF Port Combo Card.
Parameters Defaults text Enter a maximum of 32 characters. None Command Modes FCOE MAP Command History Version 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. Usage Information The text description is displayed in show fcoe-map command output. Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric.
fabric-id vlan In an FCoE map, configure the association between the dedicated VLAN used to carry FCoE traffic between servers and a SAN, and the fabric where the desired storage arrays are installed.
To remove a configured FCF priority from an FCoE map, enter the no fcf-priority command. Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show fcoe-map— displays the Fibre Channel and FCoE configuration parameters in FCoE maps. fc-map In an FCoE map, configure the FCoE mapped address prefix (FC-MAP) value which is used to identify FCoE traffic transmitted on the FCoE VLAN for the specified fabric.
● Description: SAN_FABRIC ● Fabric-id: 1002 ● Fcoe-vlan: 1002 ● Fc-map: 0x0efc00 ● Fcf-priority: 128 ● Fka-adv-period: 8000mSec ● Keepalive: enable ● Vlan priority: 3 Command Modes CONFIGURATION INTERFACE Command History Usage Information Version 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. An FCoE map is a template used to map FCoE and FC parameters in a converged fabric.
Usage Information To delete the FIP keepalive time period from an FCoE map, enter the no fka-adv-erpiod command. Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show fcoe-map— displays the Fibre Channel and FCoE configuration parameters in FCoE maps.
Defaults FIP keepalive monitoring is enabled on Ethernet and Fibre Channel interfaces. Command Modes FCOE MAP Command History Usage Information Related Commands Version 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. FIP keepalive (FKA) messaging is used to detect if other FCoE devices are reachable. To remove FIP keepalive monitoring from an FCoE map, enter the no keepalive command.
Field Description Config-State Indicates whether the configured FCoE and FC parameters in the FCoE map are valid: Active (all mandatory FCoE and FC parameters are correctly configured) or Incomplete (either the FC-MAP value, fabric ID, or VLAN ID are not correctly configured).
Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show npiv devices Display the FCoE and FC devices currently logged in to an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway.
Usage Information Example Related Commands 1218 The following table describes the show npiv devices output shown in the example below. Field Description ENode [ number ] A server CNA that has successfully logged in to a fabric over an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Ethernet port in ENode mode. Enode MAC MAC address of a server CNA port. Enode Intf Port number of a server-facing Ethernet port operating in ENode mode.
67 X.509v3 X.509v3 is a standard for public key infrastructure (PKI) to manage digital certificates and public key encryption. This standard specifies a format for public-key certificates or digital certificates. Dell EMC Networking OS supports X.509v3 standards.
crypto ca-cert install Downloads and installs the certificate of a Certificate Authority (CA) on to the device. Syntax crypto ca-cert install path Parameters Defaults path Enter the path where the CA certificate is available for download. The format that you use to specify the location of the CA certificate also includes the protocol that is used to contact the CA.
● secadmin The certificate matching the current FIPS state is deleted. If the system is in FIPS mode, the FIPS certificate is deleted. If the system is in non-FIPS mode, the non-FIPS certificate is deleted. Before deleting the system’s trusted certificate, the system prompts you to specify whether to proceed with deletion. If you proceed, the system deletes the certificate and also the private key.
email email- address Defaults (OPTIONAL) Enter the keyword email followed a valid email address used for communication with the organization. validity days (OPTIONAL) Enter the keyword validity followed by the number of days for which the certificate is valid. NOTE: For CSRs, validity has no effect. For self-signed certificates, if validity is not specified, it defaults to 3650 days, or 10 years. length length (OPTIONAL) Enter the keyword length followed by a bit length value.
Parameters cert-file Enter the keyword cert-file to specify that the certificate needs to be downloaded. cert-path Enter the path where the certificate is locally stored. The path can be a full path or a relative path. If the system accepts this path, a notification is sent indicating the location where the certificate file is stored. Following are example of a path that you can specify: flash://certs/s4810-001-request.crtand usbflash:/certs/s4810-001-cert.
If the system is in non-FIPS mode, the certificate will be installed as the non-FIPS certificate. When FIPS mode is enabled/disabled, the certificates (and keys) are switched by the system. Related Commands ● crypto ca-cert install crypto x509 ocsp Configures the OCSP behavior. Syntax crypto x509 ocsp [nonce] [sign-requests] Parameters Defaults nonce Enter the keyword nonce to use the nonce feature for the OCSP requests to OCSP responder communication.
Command Modes ● CONFIGURATION Mode Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command: Related Commands Version Description 9.11.0.0 Introduced this command.
tcp Enter the keyword tcp to enable TCP. udp Enter the keyword udp to enable UDP. vrf vrf-name Enter the keyword vrf followed by the name of the VRF. sha1 fingerprint Enter the keyword sha1 followed by the finger print. This option is only available when the secure option is configured. This new option enables the Syslog feature to compare the received certificate’s sha-1 fingerprint against this configured sha-1 fingerprint.
Usage Information Version Description 9.11.0.0 Introduced this command. The following RBAC roles are allowed to issue this command: ● sysadmin ● secadmin When you use this command, the device maps the current certificate context in the certificate store to a CA certificate through the subject key identifier field. The subject key identifier field contains the SHA-1 hash of the CA’s public key. This configuration provides a way to uniquely identify a CA and associate it with any CA-specific settings.
Related Commands ● crypto x509 ocsp ocsp-server prefer Configures OCSP responder preference. You can configure the preference or order that the CA or a device should follow while contacting multiple OCSP responders. Syntax ocsp-server prefer Defaults None. Command Modes CERTIFICATE Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide.
show crypto cert Displays the certificate information that is specified. Syntax Parameters Defaults show crypto cert {path} path (OPTIONAL) Enter the path to a local file where a certificate chain is stored in PEM format. If a path is not specified, display the certificate that is currently installed on the system. None. Command Modes EXEC Privilege Command History This guide is platform-specific.