Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Cisco Nexus 5000 Series Command Reference Release 4.0(1a)N2(1) March 2009 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Contents Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Preface This preface describes the audience, organization, and conventions of the Cisco Nexus 5000 Series Command Reference. It also provides information on how to obtain related documentation.
Preface Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Chapter Title Description Chapter 7 System Management Commands Describes the Cisco NX-OS system management commands. Chapter 8 Fibre Channel Commands Describes the Cisco NX-OS Fibre Channel and virtual Fibre Channel commands. Chapter 9 Fibre Channel Show Commands Describes the Cisco NX-OS Fibre Channel show commands.
Preface Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Obtaining Documentation and Submitting a Service Request For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What’s New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at: http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.
Preface Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m CH A P T E R 1 Basic System Commands This chapter describes the basic Cisco NX-OS system commands available on Cisco Nexus 5000 Series switches. These commands allow you to navigate and control the switch.
Chapter 1 Basic System Commands banner motd Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m banner motd To configure the message-of-the-day (MOTD) banner that displays when the user logs in to a Cisco Nexus 5000 Series switch, use the banner motd command. To revert to the default, use the no form of this command.
Chapter 1 Basic System Commands boot Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m boot To configure the boot variable for the Cisco Nexus 5000 Series kickstart or system software image, use the boot command. To clear the boot variable, use the no form of this command. boot {kickstart | system} [bootflash:] [//server/] [directory] filename no boot {kickstart | system} Syntax Description Note kickstart Configures the kickstart image.
Chapter 1 Basic System Commands boot Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to clear the kickstart boot variable: switch(config)# no boot kickstart Related Commands Command Description copy Copies files. show boot Displays boot variable configuration information.
Chapter 1 Basic System Commands cd Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m cd To change the current working directory in the device file system, use the cd command. cd [filesystem:] [//server/] directory Syntax Description Note filesystem: (Optional) Name of the file system. Valid values are bootflash or volatile. //server/ (Optional) Name of the server. Valid values are ///, //module-1/, //sup-1/, //sup-active/, or //sup-local/.
Chapter 1 Basic System Commands clear cli history Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear cli history To clear the command history, use the clear cli history command. clear cli history Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands clear cores Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear cores To clear the core files, use the clear cores command. clear cores Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Usage Guidelines Use the show system cores command to display information about the core files.
Chapter 1 Basic System Commands clear debug-logfile Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear debug-logfile To clear the contents of the debug log file, use the clear debug-logfile command. clear debug-logfile filename Syntax Description filename Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples Name of the debug log file to clear.
Chapter 1 Basic System Commands clear install failure-reason Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear install failure-reason To clear the reason for software installation failures, use the clear install failure-reason command. clear install failure-reason Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands clear license Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear license To uninstall a license, use the clear license command. clear license filename Syntax Description filename Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples Name of the license file to be uninstalled.
Chapter 1 Basic System Commands clear user Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear user To log out a particular user, use the clear user command. clear user username Syntax Description username Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples Name of the user to be logged out.
Chapter 1 Basic System Commands cli var name Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m cli var name To define a command-line interface (CLI) variable for a terminal session, use the cli var name command. To remove the CLI variable, use the no form of this command. cli var name variable-name variable-text no cli var name variable-name Syntax Description variable-name Name of the variable.
Chapter 1 Basic System Commands cli var name Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to reference the TIMESTAMP variable: switch# copy running-config > bootflash:run-config-$(TIMESTAMP).cnfg This example shows how to remove a CLI variable: switch# cli no var name testvar Related Commands Command Description run-script Runs command scripts. show cli variables Displays the CLI variables.
Chapter 1 Basic System Commands clock set Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clock set To manually set the clock on a Cisco Nexus 5000 Series switch, use the clock set command. clock set time day month year Syntax Description time Time of day. The format is HH:MM:SS. day Day of the month. The range is from 1 to 31. month Month of the year.
Chapter 1 Basic System Commands clock summer-time Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clock summer-time To configure the summer-time (daylight saving time) offset, use the clock summer-time command. To revert to the default, use the no form of this command. clock summer-time zone-name start-week start-day start-month start-time end-week end-day end-month end-time offset-minutes no clock summer-time Syntax Description zone-name Time zone string.
Chapter 1 Basic System Commands clock summer-time Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to revert to the default offset for summer-time: switch(config)# no clock summer-time Related Commands Command Description show clock Displays clock summer-time offset configuration.
Chapter 1 Basic System Commands clock timezone Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clock timezone To configure the time zone offset from Coordinated Universal Time (UTC), use the clock timezone command. To revert to the default, use the no form of this command. clock timezone zone-name offset-hours offset-minutes no clock timezone Syntax Description zone-name Zone name. The name is a 3-character string for the time zone acronym (for example, PST or EST).
Chapter 1 Basic System Commands configure session Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m configure session To create or modify a configuration session, use the configure session command. configure session name Syntax Description name Command Default None Command Modes EXEC mode Command History Release Modification 4.0(1a)N1(1) This command was introduced. Examples Name of the session.
Chapter 1 Basic System Commands configure terminal Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m configure terminal To enter configuration mode, use the configure terminal command. configure terminal Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Usage Guidelines Use this command to enter configuration mode.
Chapter 1 Basic System Commands copy Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m copy To copy any file from a source to a destination, use the copy command. copy source-url destination-url Syntax Description source-url Location URL (or variable) of the source file or directory to be copied. The source can be either local or remote, depending upon whether the file is being downloaded or uploaded.
Chapter 1 Basic System Commands copy Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Table 1-2 URL Prefix Keywords for Remote File Systems (continued) Keyword Source or Destination sftp: Source or destination URL for an SSH FTP (SFTP) network server. The syntax for this alias is as follows: sftp:[//[username@]server][/path]/filename tftp: Source or destination URL for a TFTP network server.
Chapter 1 Basic System Commands copy Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m You can enter on the command line all necessary source- and destination-URL information and the username to use, or you can enter the copy command and have the CLI prompt you for any missing information. The entire copying process may take several minutes, depending on the network conditions and the size of the file, and differs from protocol to protocol and from network to network.
Chapter 1 Basic System Commands copy Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to copy a file to another file system: switch# copy file1 bootflash: This example shows how to copy a file to another supervisor module: switch# copy file1 bootflash://sup-1/file1.bak This example shows how to copy a file from a remote server: switch# copy scp://10.10.1.1/image-file.bin bootflash:image-file.
Chapter 1 Basic System Commands copy running-config startup-config Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m copy running-config startup-config To save the running configuration to the startup configuration file so that all current configuration details are available after a reboot, use the copy running-config startup-config command. Once this command is entered, the running and the startup copies of the configuration are identical.
Chapter 1 Basic System Commands databits Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m databits To configure the number of data bits in a character for the terminal port, use the databits command. To revert to the default, use the no form of this command. databits bits no databits bits Syntax Description bits Command Default 8 bits Command Modes Terminal line configuration Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands debug logfile Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m debug logfile To direct the output of the debug commands to a specified file, use the debug logfile command. To revert to the default, use the no form of this command. debug logfile filename [size bytes] no debug logfile filename [size bytes] Syntax Description filename Name of the file for debug command output.
Chapter 1 Basic System Commands debug logging Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m debug logging To enable debug command output logging, use the debug logging command. To disable debug logging, use the no form of this command. debug logging no debug logging Syntax Description This command has no arguments or keywords. Command Default Disabled. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands delete Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m delete To delete a file or directory, use the delete command. delete [filesystem:] [//server/] [directory] filename Syntax Description Note filesystem: (Optional) Name of the file system. Valid values are bootflash, debug, log, modflash, or volatile. //server/ (Optional) Name of the server. Valid values are ///, //module-1/, //sup-1/, //sup-active/, or //sup-local/.
Chapter 1 Basic System Commands delete Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description dir Displays the contents of a directory. save Saves the configuration session to a file.
Chapter 1 Basic System Commands dir Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m dir To display the contents of a directory, use the dir command. dir [filesystem:] [//server/] [directory] Syntax Description Note filesystem: (Optional) Name of the file system. Valid values are bootflash, debug, log, modflash, or volatile. //server/ (Optional) Name of the server. Valid values are ///, //module-1/, //sup-1/, //sup-active/, or //sup-local/.
Chapter 1 Basic System Commands dir Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description cd Changes the current working directory. delete Deletes a file or directory. pwd Displays the name of the current working directory. rmdir Deletes a directory.
Chapter 1 Basic System Commands echo Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m echo To display a text string on the terminal, use the echo command. echo [text] Syntax Description text Command Default Blank line. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. (Optional) Text string to display.
Chapter 1 Basic System Commands end Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m end To end the current configuration session and return to EXEC mode, use the end command in configuration mode. end Syntax Description This command has no arguments or keywords. Command Default None Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands exec-timeout Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m exec-timeout To configure the inactive session timeout on the console port or the virtual terminal, use the exec-timeout command. To revert to the default, use the no form of this command. exec-timeout minutes no exec-timeout Syntax Description minutes Command Default Timeout is disabled. Command Modes Terminal line configuration Command History Release Modification 4.
Chapter 1 Basic System Commands exec-timeout Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description line console Enters the console terminal configuration mode. line vty Enters the virtual terminal configuration mode. show running-config Displays the running configuration.
Chapter 1 Basic System Commands exit (EXEC) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m exit (EXEC) To close an active terminal session by logging off the switch, use the exit command. exit Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands exit (global) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m exit (global) To exit any configuration mode to the next highest mode in the CLI mode hierarchy, use the exit command in any configuration mode. exit Syntax Description This command has no arguments or keywords. Command Default None Command Modes All configuration modes Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands feature fcoe Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m feature fcoe To enable virtual and native Fibre Channel interfaces after installing the FC_FEATURES_PKG license, use the feature fcoe command. To disable Fibre Channel interfaces and return the FC_FEATURES_PKG license to the license manager software, use the no form of the command. feature fcoe no feature fcoe Syntax Description This command has no arguments or keywords.
Chapter 1 Basic System Commands feature interface-vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m feature interface-vlan To enable the creation of VLAN interfaces, use the feature interface-vlan command. To disable the VLAN interface feature, use the no form of this command. feature interface-vlan no feature interface-vlan Syntax Description This command has no arguments or keywords. Command Default VLAN interfaces are disabled.
Chapter 1 Basic System Commands feature lacp Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m feature lacp To enable Link Aggregation Control Protocol (LACP), which bundles a number of physical ports together to form a single logical channel, use the feature lacp command. To disable LACP on the switch, use the no form of this command. feature lacp no feature lacp Syntax Description This command has no arguments or keywords. Command Default LACP is disabled.
Chapter 1 Basic System Commands feature private-vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m feature private-vlan To enable private VLANs, use the feature private-vlan command. To return to the default settings, use the no form of this command. feature private-vlan no feature private-vlan Syntax Description None Command Default Private VLANs are disabled. Command Modes Configuration mode Command History Release Modification 4.
Chapter 1 Basic System Commands feature tacacs+ Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m feature tacacs+ To enable TACACS+, use the feature tacacs+ command. To disable TACACS+, use the no form of this command. feature tacacs+ no feature tacacs+ Syntax Description This command has no arguments or keywords. Command Default Disabled. Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands feature udld Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m feature udld To enable the Cisco-proprietary Unidirectional Link Detection (UDLD) protocol), which allows ports that are connected through fiber optics or copper Ethernet cables to monitor the physical configuration of the cables and detect when a unidirectional link exists, use the feature udld command. To disable UDLD on the switch, use the no form of this command.
Chapter 1 Basic System Commands find Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m find To find filenames beginning with a character string, use the find command. find filename-prefix Syntax Description filename-prefix Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. First part or all of a filename. The filename prefix is case sensitive.
Chapter 1 Basic System Commands format Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m format To format the bootflash device, which erases its contents and restores it to its factory-shipped state, use the format command. format bootflash: Syntax Description bootflash: Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples Name of the bootflash file system.
Chapter 1 Basic System Commands gunzip Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m gunzip To uncompress a compressed file, use the gunzip command. gunzip [filesystem:] [//server/] [directory] filename Syntax Description Note filesystem: (Optional) Name of the file system. Valid values are bootflash, modflash, or volatile. //server/ (Optional) Name of the server. Valid values are ///, //module-1/, //sup-1/, //sup-active/, or //sup-local/.
Chapter 1 Basic System Commands gzip Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m gzip To compress a file, use the gzip command. gzip [filesystem:] [//server/] [directory] filename Syntax Description Note filesystem: (Optional) Name of the file system. Valid values are bootflash, modflash, or volatile. //server/ (Optional) Name of the server. Valid values are ///, //module-1/, //sup-1/, //sup-active/, or //sup-local/. The double slash (//) is required.
Chapter 1 Basic System Commands hostname Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m hostname To configure the hostname for the switch, use the hostname command. To revert to the default, use the no form of this command. hostname name no hostname Syntax Description name Command Default “switch” is the default hostname. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands install all Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m install all To install the kickstart and system images on a Cisco Nexus 5000 Series switch, use the install all command. install all [kickstart kickstart-url] [system system-url] Syntax Description kickstart (Optional) Specifies the kickstart image file. kickstart-url The full address of the kickstart image file. The name is case sensitive.
Chapter 1 Basic System Commands install all Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Table 1-5 URL Prefix Keywords for Remote File Systems Keyword Source or Destination sftp: Source URL for an SSH FTP (SFTP) network server. The syntax is as follows: sftp:[//[username@]server][/path]/filename tftp: Source URL for a TFTP network server.
Chapter 1 Basic System Commands install all Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to install the Cisco NX-OS software from an SCP server: switch# install all kickstart scp://adminuser@10.10.1.1/nx-os_kick.bin system bootflash:scp://adminuser@10.10.1.1/nx-os_sys.bin Related Commands Command Description reload Reloads the device with new Cisco NX-OS software.
Chapter 1 Basic System Commands install license Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m install license To install a license, use the install license command. install license [filesystem:] [//server/] [directory] src-filename [target-filename] Syntax Description Note filesystem: (Optional) Name of the file system. Valid values are bootflash or volatile. //server/ (Optional) Name of the server.
Chapter 1 Basic System Commands line console Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m line console To specify the console port and enter console port configuration mode, use the line console command. line console Syntax Description This command has no arguments or keywords. Command Default None Command Modes Interface configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands line vty Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m line vty To specify the virtual terminal and enter line configuration mode, use the line vty command. line vty Syntax Description This command has no arguments or keywords. Command Default None Command Modes Interface configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands modem in Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m modem in To enable the modem connection on the console port, use the modem in command. To disable the modem connection, use the no form of this command. modem in no modem in Syntax Description This command has no arguments or keywords. Command Default Timeout is disabled. Command Modes Terminal line configuration Command History Release Modification 4.
Chapter 1 Basic System Commands modem init-string Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m modem init-string To download the initialization string to a modem connected to the console port, use the modem init-string command. To revert to the default, use the no form of this command. modem init-string {default | user-input} no modem init-string Syntax Description default Downloads the default initialization string.
Chapter 1 Basic System Commands modem init-string Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 1 Basic System Commands modem set-string user-input Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m modem set-string user-input To configure the user-input initialization string to download to a modem connected to the console port, use the modem set-string user-input command. To revert to the default, use the no form of this command.
Chapter 1 Basic System Commands move Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m move To move a file from one directory to another, use the move command. move {[filesystem:] [//server/] [directory] source-filename} [filesystem:] [//server/] [directory] [destination-filename] Syntax Description filesystem: (Optional) Name of the file system. Valid values are bootflash, debug, modflash, or volatile. //server/ (Optional) Name of the server.
Chapter 1 Basic System Commands move Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description cd Changes the current working directory. copy Makes a copy of a file. delete Deletes a file or directory. dir Displays the directory contents. pwd Displays the name of the current working directory.
Chapter 1 Basic System Commands parity Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m parity To configure the parity for the console port, use the parity command. To revert to the default, use the no form of this command. parity {even | none | odd} no parity {even | none | odd} Syntax Description even Specifies even parity. none Specifies no parity. odd Specifies odd parity. Command Default The none keyword is the default.
Chapter 1 Basic System Commands ping Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ping To determine the network connectivity to another network device, use the ping command. ping {dest-address | hostname} [count {number | unlimited}] [df-bit] [interval seconds] [packet-size bytes] [source src-address] [timeout seconds] [vrf {vrf-name | default | management}] Syntax Description dest-address IPv4 address of destination device. The format is A.B.C.D.
Chapter 1 Basic System Commands ping Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description ping6 Determines connectivity to another device using IPv6 addressing. traceroute Displays the routes that packets take when traveling to an IP address.
Chapter 1 Basic System Commands ping6 Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ping6 To determine the network connectivity to another device using IPv6 addressing, use the ping6 command. ping6 {dest-address | hostname} [count {number | unlimited}] [interface intf-id] [interval seconds] [packet-size bytes] [source address] [timeout seconds] [vrf {vrf-name | default | management}] Syntax Description dest-address Specifies the destination IPv6 address.
Chapter 1 Basic System Commands ping6 Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description ping Determines connectivity to another device using IPv4 addressing. traceroute6 Displays the routes that packets take when traveling to an IPv6 address.
Chapter 1 Basic System Commands reload Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m reload To reload the switch and all attached Fabric Extender chassis or a specific Fabric Extender, use the reload command. reload {all | fex chassis_ID} Syntax Description all Reboot the entire Cisco Nexus 5000 Series switch and all attached Fabric Extender chassis. fex chassis_ID Reboot a specific Fabric Extender chassis. Chassis ID is 100 to 199.
Chapter 1 Basic System Commands rmdir Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m rmdir To remove a directory, use the rmdir command. rmdir [filesystem: [//server/]] directory Syntax Description Note filesystem: (Optional) Name of the file system. Valid values are bootflash, modflash, or volatile. //server/ (Optional) Name of the server. Valid values are ///, //module-1/, //sup-1/, //sup-active/, or //sup-local/. The double slash (//) is required.
Chapter 1 Basic System Commands run-script Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m run-script To run a command script file at the command-line interface (CLI), use the run-script command. run-script [filesystem:[//module/]][directory/]filename Syntax Description Note filesystem: (Optional) Name of a file system. The name is case sensitive. //module/ (Optional) Identifier for a supervisor module.
Chapter 1 Basic System Commands save Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m save To save the current configuration session to a file, use the save command. save location Syntax Description location Command Default None Command Modes Session configuration mode Command History Release Modification 4.0(1a)N1(1) This command was introduced. Examples Location of the file. The location can be in bootflash or volatile.
Chapter 1 Basic System Commands send Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m send To send a message to the active user sessions, use the send command. send [session line] text Syntax Description session line (Optional) Specifies a user session. text Text string. The text string can be up to 80 alphanumeric characters and is case sensitive. Command Default Sends a message to all active user sessions.
Chapter 1 Basic System Commands setup Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m setup To enter the basic device setup dialog, use the setup command. setup [ficon] Syntax Description ficon Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. (Optional) Runs the basic ficon setup command facility.
Chapter 1 Basic System Commands session-limit Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m session-limit To configure the maximum number of the concurrent virtual terminal sessions on a device, use the session-limit command. To revert to the default, use the no form of this command. session-limit sessions no session-limit sessions Syntax Description sessions Command Default 32 sessions.
Chapter 1 Basic System Commands show banner motd Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show banner motd To display the message-of-the-day (MOTD) banner, use the show banner motd command. show banner motd Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show boot Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show boot To display the boot variable configuration, use the show boot command. show boot [variables] Syntax Description variables Command Default Displays all configured boot variables. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples (Optional) Displays a list of boot variables.
Chapter 1 Basic System Commands show cli alias Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show cli alias To display the command alias configuration, use the show cli alias command. show cli alias [name alias-name] Syntax Description name alias-name Command Default Displays all configured command alias variables. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show cli history Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show cli history To display the command history, use the show cli history command. show cli history [lines] [unformatted] Syntax Description lines (Optional) Displays the last number of lines from the end of the command history. unformatted (Optional) Displays the commands without line numbers or time stamps. Command Default Displays the entire formatted history.
Chapter 1 Basic System Commands show cli variables Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show cli variables To display the configuration of the CLI variables, use the show cli variables command. show cli variables Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show clock Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show clock To display the current date and time, use the show clock command. show clock [detail] Syntax Description detail Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples (Optional) Displays the summer-time (daylight saving time) offset configuration.
Chapter 1 Basic System Commands show copyright Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show copyright To display the Cisco NX-OS software copyright information, use the show copyright command. show copyright Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show debug logfile Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show debug logfile To display the contents of the debug logfile, use the show debug logfile command. show debug logfile filename Syntax Description filename Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Name of the debug log file.
Chapter 1 Basic System Commands show environment Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show environment To display information about the hardware environment status, use the show environment command. show environment [fan | power | temperature] Syntax Description fan (Optional) Displays information about the fan environment. power (Optional) Displays information about the power capacity and distribution.
Chapter 1 Basic System Commands show file Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show file To display the contents of a file on the local memory, use the show file command. show file [filesystem:] [//server/] [directory] filename Syntax Description Note filesystem: (Optional) Name of the file system. Valid values are bootflash, modflash, or volatile. //server/ (Optional) Name of the server.
Chapter 1 Basic System Commands show hardware internal Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show hardware internal To display information about the physical device hardware, use the show hardware internal command. show hardware internal Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show hostname Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show hostname To display the hostname for the switch, use the show hostname command. show hostname Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Usage Guidelines The show switchname command also displays the switch hostname.
Chapter 1 Basic System Commands show incompatibility system Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show incompatibility system To display the configuration incompatibilities between the running system image and an earlier system image prior to downgrading the Cisco NX-OS software, use the show incompatibility system command. show incompatibility system {filesystem: //server/ [directory] filename} Syntax Description Note filesystem: Name of the file system.
Chapter 1 Basic System Commands show install all Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show install all To display information related to the operation of the install all command, use the show install all command. show install all {failure-reason | impact [kickstart | system] | status} Syntax Description failure-reason Displays the software installation failure reason. impact Displays the impact of installing the images referred to in the boot variables.
Chapter 1 Basic System Commands show inventory Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show inventory To display the physical inventory information for the switch hardware, use the show inventory command. show inventory [fex chassis_ID] Syntax Description fex chassis_ID Command Default Displays all hardware inventory information. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. 4.
Chapter 1 Basic System Commands show license Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show license To display license information, use the show license command. show license [brief | file filename] Syntax Description brief (Optional) Displays a list of license files installed on a device. file filename (Optional) Displays information for a specific license file. Command Default Displays information about the installed licenses.
Chapter 1 Basic System Commands show license host-id Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show license host-id To display the serial number (host ID) of the switch chassis to use for licensing, use the show license host-id command. show license host-id Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show license usage Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show license usage To display license usage information, use the show license usage command. show license usage [PACKAGE] Syntax Description PACKAGE Command Default Displays license usage for the switch. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show license usage Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Table 1-6 show license usage Columns (continued) Column Description Expiry Date License expiry date. The field is blank if the license is not installed. If the license is installed, the field displays "Never" to indicate that the license has no time limit or displays the date of expiry for the license. Comments Additional information.
Chapter 1 Basic System Commands show line Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show line To display terminal port configuration information, use the show line command. show line [console] Syntax Description console Command Default Displays information about the terminal port configuration. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show module Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show module To display module information, use the show module command. show module [module-number | fex [chassis_ID | all]] Syntax Description module-number (Optional) Number of the module. The valid range is from 1 to 3. fex (Optional) Displays information about the attached Fabric Extender units. chassis_ID (Optional) Specifies a Fabric Extender chassis ID.
Chapter 1 Basic System Commands show processes Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show processes To display the process information for the switch, use the show processes command. show processes [vdc vdc-number] Syntax Description vdc vdc-number Command Default Displays information for all processes running on the switch. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show processes cpu Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show processes cpu To display the CPU utilization information for processes on the device, use the show processes cpu command. show processes cpu Syntax Description This command has no arguments or keywords. Command Default Displays information for all processes in the local device. Command Modes EXEC mode Command History Release Modification 4.
Chapter 1 Basic System Commands show processes log Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show processes log To display the contents of the process log, use the show processes log command. show processes log [details | pid process-id] Syntax Description details (Optional) Displays detailed information from the process log. pid process-id (Optional) Displays detailed information from the process log for a specific process.
Chapter 1 Basic System Commands show processes memory Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show processes memory To display the memory allocation information for processes, use the show processes memory command. show processes memory [shared [detail]] Syntax Description shared (Optional) Displays the shared memory allocation. detail (Optional) Displays the shared memory in bytes instead of the default kilobytes.
Chapter 1 Basic System Commands show running-config Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show running-config To display the running configuration, use the show running-config command. show running-config [all] Syntax Description all Command Default Displays only the configured information. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show running-config diff Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show running-config diff To display the differences between the running configuration and the startup configuration, use the show running-config diff command. show running-config diff Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.
Chapter 1 Basic System Commands show running-config diff Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description copy running-config startup-config Copies the running configuration to the startup configuration. show running-config Displays the differences between the running configuration and the startup configuration. show startup-config Displays the startup configuration.
Chapter 1 Basic System Commands show sprom Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show sprom To display the contents of the serial PROM (SPROM) on the switch, use the show sprom command. show sprom {all | backplane | fex {chassis_ID {all | backplane | powersupply ps-num} | all} | module module-number | powersupply ps-num | sup} Syntax Description all Displays the SPROM contents for all components on the physical device.
Chapter 1 Basic System Commands show sprom Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show hardware internal Displays information about the physical hardware. show inventory Displays hardware inventory information.
Chapter 1 Basic System Commands show startup-config Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show startup-config To display the startup configuration, use the show startup-config command. show startup-config Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show switchname Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show switchname To display the hostname for the device, use the show switchname command. show switchname Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show system cores Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show system cores To display the core filename, use the show system cores command. show system cores Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show system reset-reason Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show system reset-reason To display the reset history for the switch, use the show system reset-reason command. show system reset-reason [fex chassis_ID] Syntax Description fex chassis_ID Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.
Chapter 1 Basic System Commands show system uptime Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show system uptime To display the amount of time since the last system restart, use the show system uptime command. show system uptime Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show tech-support Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show tech-support To display information for Cisco technical support, use the show tech-support command. show tech-support [brief | commands | feature] Syntax Description brief (Optional) Displays information only about the status of the device. commands (Optional) Displays the complete list of commands that are executed by the show tech-support command.
Chapter 1 Basic System Commands show terminal Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show terminal To display information about the terminal configuration for a session, use the show terminal command. show terminal Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands show version Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show version To display information about the software version, use the show version command. show version [fex chassis_ID | image filename] Syntax Description fex chassis_ID (Optional) Specifies the Fabric Extender chassis ID. Chassis ID is 100 to 199. image filename (Optional) Displays the version information for a system or kickstart image file.
Chapter 1 Basic System Commands sleep Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m sleep To cause the command-line interface (CLI) to pause before displaying the prompt, use the sleep command. sleep seconds Syntax Description seconds Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Number of seconds. The range is from 0 to 2147483647.
Chapter 1 Basic System Commands speed Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m speed To configure the transmit and receive speed for the console port, use the speed command. To revert to the default, use the no form of this command. speed speed no speed speed Syntax Description speed Command Default The default console port speed is 9600 bits per second. Command Modes Terminal line configuration Command History Release Modification 4.
Chapter 1 Basic System Commands stopbits Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m stopbits To configure the stop bits for the console port, use the stopbits command. To revert to the default, use the no form of this command. stopbits {1 | 2} no stopbits {1 | 2} Syntax Description 1 Specifies one stop bit. 2 Specifies two stop bits. Command Default 1 stop bit. Command Modes Terminal line configuration Command History Release Modification 4.
Chapter 1 Basic System Commands system cores Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m system cores To configure the destination for the system core, use the system cores command. To revert to the default, use the no form of this command. system cores tftp:tftp_URL [vrf management] no system cores Syntax Description tftp: Specifies a TFTP server. tftp_URL The URL for the destination file system and file.
Chapter 1 Basic System Commands system startup-config unlock Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m system startup-config unlock To unlock the startup configuration file, use the system startup-config unlock command. system startup-config unlock process-id Syntax Description process-id Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands switchname Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m switchname To configure the hostname for the device, use the switchname command. To revert to the default, use the no form of this command. switchname name no switchname Syntax Description name Command Default “switch” is the default hostname. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 1 Basic System Commands tail Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m tail To display the last lines of a file, use the tail command. tail [filesystem: [//server/]] [directory] filename [lines] Syntax Description Note filesystem: (Optional) Name of the file system. Valid values are bootflash, modflash, or volatile. //server/ (Optional) Name of the server. Valid values are ///, //module-1/, //sup-1/, //sup-active/, or //sup-local/.
Chapter 1 Basic System Commands terminal length Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m terminal length To set the number of lines of output to display on the terminal screen for the current session before pausing, use the terminal length command. To revert to the default, use the no form of this command. terminal length lines terminal no length Syntax Description lines Command Default The initial default for the console is 0 (do not pause output).
Chapter 1 Basic System Commands terminal session-timeout Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m terminal session-timeout To set the terminal inactivity timeout for the current session, use the terminal session-timeout command. To revert to the default, use the no form of this command. terminal session-timeout minutes terminal no session-timeout Syntax Description minutes Command Default Terminal session timeout is disabled (0 minutes).
Chapter 1 Basic System Commands terminal terminal-type Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m terminal terminal-type To set the terminal type for the current session, use the terminal terminal-type command. To revert to the default, use the no form of this command. terminal terminal-type type terminal no terminal-type Syntax Description type Command Default For a virtual terminal, the terminal type is set during negotiation with the client software.
Chapter 1 Basic System Commands terminal width Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m terminal width To set the number of character columns on the terminal screen for the current line for a session, use the terminal width command. To revert to the default, use the no form of this command. terminal width columns terminal no width Syntax Description columns Command Default For a virtual terminal, the width is set during negotiation with the client software.
Chapter 1 Basic System Commands traceroute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m traceroute To discover the routes that packets take when traveling to an IP address, use the traceroute command. traceroute {dest-addr | hostname} [vrf {vrf-name | default | management}] [source src-addr] Syntax Description dest-addr IP address of the destination device. The format is A.B.C.D. hostname Name of the destination device. The name is case sensitive.
Chapter 1 Basic System Commands traceroute6 Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m traceroute6 To discover the routes that packets take when traveling to an IPv6 address, use the traceroute6 command. traceroute6 {dest-addr | hostname} [vrf {vrf-name | default | management}] [source src-addr] Syntax Description dest-addr IPv6 address of the destination device. The format is A:B::C:D. hostname Name of the destination device. The name is case sensitive.
Chapter 1 Basic System Commands update license Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m update license To update an existing license, use the update license command. update license [filesystem: [//server/]] [directory] src-filename [target-filename] Syntax Description Note filesystem: (Optional) Name of the file system. Valid values are bootflash or volatile. //server/ (Optional) Name of the server.
Chapter 1 Basic System Commands write erase Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m write erase To erase configurations in persistent memory areas, use the write erase command. write erase [boot | debug] Syntax Description boot (Optional) Erases only the boot configuration. debug (Optional) Erases only the debug configuration. Command Default Erases all configuration in persistent memory.
Chapter 1 Basic System Commands write erase Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m CH A P T E R 2 Ethernet Commands This chapter describes the Cisco NX-OS Ethernet commands available on Cisco Nexus 5000 Series switches.
Chapter 2 Ethernet Commands bandwidth (interface) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m bandwidth (interface) To set the inherited and received bandwidth values for an interface, use the bandwidth command. To restore the default values, use the no form of this command. bandwidth {kbps | inherit [kbps]} no bandwidth {kbps | inherit [kbps]} Syntax Description kbps Informational bandwidth in kilobits per second. Valid values are from 1 to 10000000.
Chapter 2 Ethernet Commands bandwidth (interface) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show interface Displays the interface configuration information.
Chapter 2 Ethernet Commands cdp Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m cdp To enable the Cisco Discovery Protocol (CDP) and configure CDP attributes, use the cdp command. To disable CDP or reset CDP attributes, use the no form of this command.
Chapter 2 Ethernet Commands cdp Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to disable CDP on all Ethernet interfaces: switch# configure terminal switch(config)# no cdp enable Related Commands Command Description show cdp Displays Cisco Discovery Protocol (CDP) information.
Chapter 2 Ethernet Commands cdp enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m cdp enable To enable the Cisco Discovery Protocol (CDP) on an Ethernet interface, use the cdp enable command. To disable CDP on the interface, use the no form of this command. cdp enable no cdp enable Syntax Description This command has no arguments or keywords. Command Default None Command Modes Interface configuration mode Command History Release Modification 4.
Chapter 2 Ethernet Commands channel-group (Ethernet) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m channel-group (Ethernet) To assign and configure a physical interface to a EtherChannel, use the channel-group command. To remove the channel group configuration from the interface, use the no form of this command. channel-group number [mode {active | on | passive}] no channel-group [number] Syntax Description number Number of channel group.
Chapter 2 Ethernet Commands channel-group (Ethernet) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Usage Guidelines Use this command to create a channel group that includes the interface that you are working on and to add or remove specific interfaces from the channel group. Use this command to move a port from one channel group to another.
Chapter 2 Ethernet Commands channel-group (Ethernet) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m • Rate mode • Shutdown • SNMP trap If interfaces are configured for the EtherChannel interface and a member port is removed from the EtherChannel, the configuration of the EtherChannel interface is not propagated to the member ports.
Chapter 2 Ethernet Commands clear mac access-list counters Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear mac access-list counters To clear statistical information from the access list, use the clear mac access-list counters command. clear mac access-list counters [name] Syntax Description name Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 2 Ethernet Commands clear mac dynamic Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear mac dynamic To clear dynamic entries from the forwarding table, use the clear mac dynamic command. clear mac dynamic [address mac-addr] | [interface {type slot/port | port-channel number}] [vlan vlan-id] Syntax Description address mac-addr (Optional) Specifies the MAC address to remove from the table. Use the format EEEE.EEEE.EEEE.
Chapter 2 Ethernet Commands clear mac-address-table dynamic Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear mac-address-table dynamic To clear the dynamic address entries from the MAC address table, use the clear mac-address-table dynamic command.
Chapter 2 Ethernet Commands clear mac-address-table dynamic Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show mac-address-table Displays the information about the MAC address table.
Chapter 2 Ethernet Commands clear spanning-tree counters Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear spanning-tree counters To clear the counters for the Spanning Tree Protocol (STP), use the clear spanning-tree counters command. clear spanning-tree counters [interface {ethernet interface | port-channel channel}] [vlan vlan-id] Syntax Description interface (Optional) Specifies the interface type. ethernet interface Slot and port number.
Chapter 2 Ethernet Commands clear spanning-tree detected-protocol Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear spanning-tree detected-protocol To restart the protocol migration, use the clear spanning-tree detected-protocol command. With no arguments, the command is applied to every port of the switch.
Chapter 2 Ethernet Commands delay (interface) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m delay (interface) To set a delay value for an interface, use the delay command. To restore the default delay value, use the no form of this command. delay tens-of-microseconds no delay Syntax Description tens-of-microseconds Command Default 10 μsec Command Modes Interface configuration mode Command History Release Modification 4.
Chapter 2 Ethernet Commands description (interface) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m description (interface) To add a description to an interface configuration, use the description command. To remove the description, use the no form of this command. description description no description Syntax Description description Command Default No description is added. Command Modes Interface configuration mode Command History Release Modification 4.
Chapter 2 Ethernet Commands instance vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m instance vlan To map a VLAN or a set of VLANs to a Multiple Spanning Tree instance (MSTI), use the instance vlan command. To delete the instance and return the VLANs to the default instance (common and internal spanning tree [CIST]), use the no form of this command.
Chapter 2 Ethernet Commands instance vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show spanning-tree mst configuration Displays information about the MST protocol. spanning-tree mst configuration Enters MST configuration mode.
Chapter 2 Ethernet Commands interface ethernet Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m interface ethernet To enter interface configuration mode for an Ethernet IEEE 802.3 interface, use the interface ethernet command. interface ethernet [chassis_ID/]slot/port Syntax Description chassis_ID (Optional) Specifies the Fabric Extender chassis ID. Chassis ID is 100 to 199.
Chapter 2 Ethernet Commands interface port-channel Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m interface port-channel To create an EtherChannel interface and enter interface configuration mode, use the interface port-channel command. To remove an EtherChannel interface, use the no form of this command.
Chapter 2 Ethernet Commands interface port-channel Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Description show lacp Displays LACP information. show port-channel summary Displays information on the EtherChannels.
Chapter 2 Ethernet Commands ip igmp snooping (EXEC) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ip igmp snooping (EXEC) To enable Internet Group Management Protocol (IGMP), use the ip igmp snooping command. To disable IGMP snooping, use the no form of this command. ip igmp snooping no ip igmp snooping Syntax Description This command has no other arguments or keywords. Command Default IGMP snooping is enabled.
Chapter 2 Ethernet Commands ip igmp snooping (VLAN) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ip igmp snooping (VLAN) To configure Internet Group Management Protocol (IGMP) on a VLAN, use the ip igmp snooping command.
Chapter 2 Ethernet Commands ip igmp snooping (VLAN) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples Keyword and Argument Description report-suppression Limits the membership report traffic sent to multicast-capable routers. When you disable report suppression, all IGMP reports are sent as is to multicast-capable routers. The default is enabled.
Chapter 2 Ethernet Commands lacp port-priority Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m lacp port-priority To set the priority for the physical interfaces for the Link Aggregation Control Protocol (LACP), use the lacp port-priority command. To return the port priority to the default value, use the no form of this command. lacp port-priority priority no lacp port-priority Syntax Description priority Command Default System priority value is 32768.
Chapter 2 Ethernet Commands lacp system-priority Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m lacp system-priority To set the system priority of the switch for the Link Aggregation Control Protocol (LACP), use the lacp system-priority command. To return the system priority to the default value, use the no form of this command. lacp system-priority priority no lacp system-priority Syntax Description priority Command Default System priority value is 32768.
Chapter 2 Ethernet Commands link debounce Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m link debounce To enable the debounce timer on an interface, use the link debounce command. To disable the timer, use the no form of this command. link debounce [time milliseconds] no link debounce Syntax Description time milliseconds Command Default None Command Modes Interface configuration mode Command History Release Modification 4.
Chapter 2 Ethernet Commands mac-address-table aging-time Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m mac-address-table aging-time To configure the aging time for entries in the MAC address table, use the mac-address-table aging-time command. To return to the default settings, use the no form of this command.
Chapter 2 Ethernet Commands mac-address-table aging-time Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples This example shows how to change the length of time an entry remains in the MAC address table to 500 seconds for the entire switch: switch(config)# mac-address-table aging-time 500 Related Commands Command Description show mac-address-table Displays information about the MAC address table.
Chapter 2 Ethernet Commands mac-address-table notification Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m mac-address-table notification To configure log message notification of MAC address table events, use the mac-address-table notification command. To disable log message notifications, use the no form of this command.
Chapter 2 Ethernet Commands mac-address-table static Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m mac-address-table static To configure a static entry for the MAC address table, use the mac-address-table static command. To delete the static entry, use the no form of this command.
Chapter 2 Ethernet Commands mac-address-table static Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show mac-address-table Displays information about MAC address table.
Chapter 2 Ethernet Commands monitor session Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m monitor session Create a new SPAN session configuration or add to an existing session configuration with the monitor session command. To clear SPAN sessions, use the no form of this command. monitor session {number | all} [suspend] no monitor session {number | all} [suspend] Syntax Description number Specifies the SPAN session to create or configure. Select session 1 to 18.
Chapter 2 Ethernet Commands name (VLAN configuration) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m name (VLAN configuration) To set the name for a VLAN, use the name command. To remove the user-configured name from a VLAN, use the no form of this command. name vlan-name no name Syntax Description vlan-name Command Default None Command Modes VLAN configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 2 Ethernet Commands name (MST configuration) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m name (MST configuration) To set the name of a Multiple Spanning Tree (MST) region, use the name command. To return to the default name, use the no form of this command. name name no name name Syntax Description name Command Default None Command Modes MST configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 2 Ethernet Commands port-channel load-balance ethernet Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m port-channel load-balance ethernet To set the load-balancing method among the interfaces in the channel-group bundle, use the port-channel load-balance ethernet command. To return the system priority to the default value, use the no form of this command.
Chapter 2 Ethernet Commands port-channel load-balance ethernet Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show port-channel load-balance Displays information on EtherChannel load balancing.
Chapter 2 Ethernet Commands private-vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m private-vlan To configure private VLANs, use the private-vlan command. To return the specified VLANs to normal VLAN mode, use the no form of this command. private-vlan {isolated | community | primary} no private-vlan {isolated | community | primary} Syntax Description isolated Designates the VLAN as an isolated secondary VLAN.
Chapter 2 Ethernet Commands private-vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m A community VLAN is defined as the VLAN that carries the traffic among community ports and from community ports to the promiscuous ports on the corresponding primary VLAN. A primary VLAN is defined as the VLAN that is used to convey the traffic from the routers to customer end stations on private ports. Multiple community and isolated VLANs are allowed.
Chapter 2 Ethernet Commands private-vlan association Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m private-vlan association To configure the association between a primary VLAN and a secondary VLAN on a private VLAN, use the private-vlan association command. To remove the association, use the no form of this command.
Chapter 2 Ethernet Commands private-vlan association Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Isolated and community VLANs can only be associated with one primary VLAN. You cannot configure a VLAN that is already associated to a primary VLAN as a primary VLAN. Note Examples A PVLAN isolated port on a Cisco Nexus 5000 Series switch running the current release of Cisco NX-OS does not support IEEE 802.1q encapsulation and cannot be used as a trunk port.
Chapter 2 Ethernet Commands private-vlan synchronize Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m private-vlan synchronize To map the secondary VLANs to the same MST instance as the primary VLAN, use the private-vlan synchronize command. private-vlan synchronize Syntax Description This command has no keywords or arguments. Command Default None Command Modes MST configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 2 Ethernet Commands revision Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m revision To set the revision number for the Multiple Spanning Tree (MST) region configuration, use the revision command. To return to the default settings, use the no form of this command. revision version no revision version Syntax Description version Command Default Revision 0. Command Modes MST configuration mode Command History Release Modification 4.
Chapter 2 Ethernet Commands shutdown (VLAN configuration) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m shutdown (VLAN configuration) To shut down the local traffic on a VLAN, use the shutdown command. To return a VLAN to its default operational state, use the no form of this command. shutdown no shutdown Syntax Description This command has no arguments or keywords. Command Default Not shut down.
Chapter 2 Ethernet Commands shutdown (VLAN configuration) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show vlan Displays VLAN information.
Chapter 2 Ethernet Commands spanning-tree bpdufilter Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree bpdufilter To enable BPDU Filtering on the interface, use the spanning-tree bpdufilter command. To return to the default settings, use the no form of this command. spanning-tree bpdufilter {enable | disable} no spanning-tree bpdufilter Syntax Description enable Enables BPDU Filtering on this interface. disable Disables BPDU Filtering on this interface.
Chapter 2 Ethernet Commands spanning-tree bpdufilter Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 2 Ethernet Commands spanning-tree bpduguard Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree bpduguard To enable BPDU Guard on an interface, use the spanning-tree bpduguard command. To return to the default settings, use the no form of this command. spanning-tree bpduguard {enable | disable} no spanning-tree bpduguard Syntax Description enable Enables BPDU Guard on this interface. disable Disables BPDU Guard on this interface.
Chapter 2 Ethernet Commands spanning-tree bpduguard Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples This example shows how to enable BPDU Guard on this interface: switch(config-if)# spanning-tree bpduguard enable Related Commands Command Description show spanning-tree summary Displays information about the spanning tree state.
Chapter 2 Ethernet Commands spanning-tree cost Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree cost To set the path cost of the interface for Spanning Tree Protocol (STP) calculations, use the spanning-tree cost command. To return to the default settings, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree cost Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m The EtherChannel bundle is considered a single port. The port cost is the aggregation of all the configured port costs assigned to that channel. Note Examples Use this command to set the port cost for Rapid PVST+. Use the spanning-tree mst cost command to set the port cost for MST.
Chapter 2 Ethernet Commands spanning-tree guard Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree guard To enable or disable Loop Guard or Root Guard, use the spanning-tree guard command. To return to the default settings, use the no form of this command. spanning-tree guard {loop | none | root} no spanning-tree guard Syntax Description loop Enables Loop Guard on the interface. none Sets the guard mode to none. root Enables Root Guard on the interface.
Chapter 2 Ethernet Commands spanning-tree link-type Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree link-type To configure a link type for a port, use the spanning-tree link-type command. To return to the default settings, use the no form of this command. spanning-tree link-type {auto | point-to-point | shared} no spanning-tree link-type Syntax Description auto Sets the link type based on the duplex setting of the interface.
Chapter 2 Ethernet Commands spanning-tree loopguard default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree loopguard default To enable Loop Guard as a default on all spanning tree normal and network ports, use the spanning-tree loopguard default command. To disable Loop Guard, use the no form of this command. spanning-tree loopguard default no spanning-tree loopguard default Syntax Description This command has no additional arguments or keywords.
Chapter 2 Ethernet Commands spanning-tree mode Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mode To switch between Rapid per VLAN Spanning Tree Plus (Rapid PVST+) and Multiple Spanning Tree (MST) Spanning Tree Protocol (STP) modes, use the spanning-tree mode command. To return to the default settings, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree mst configuration Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mst configuration To enter the Multiple Spanning Tree (MST) configuration mode, use the spanning-tree mst configuration command. To return to the default settings, use the no form of this command. spanning-tree mst configuration no spanning-tree mst configuration Syntax Description This command has no keywords or arguments.
Chapter 2 Ethernet Commands spanning-tree mst configuration Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 2 Ethernet Commands spanning-tree mst cost Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mst cost To set the path-cost parameter for any Multiple Spanning Tree (MST) instance (including the common and internal spanning tree [CIST] with instance ID 0) use the spanning-tree mst cost command. To return to the default settings, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree mst cost Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show spanning-tree mst Displays the information about the MST protocol.
Chapter 2 Ethernet Commands spanning-tree mst forward-time Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mst forward-time To set the forward-delay timer for all the instances on the switch, use the spanning-tree mst forward-time command. To return to the default settings, use the no form of this command. spanning-tree mst forward-time seconds no spanning-tree mst forward-time Syntax Description seconds Command Default 15 seconds.
Chapter 2 Ethernet Commands spanning-tree mst hello-time Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mst hello-time To set the hello-time delay timer for all the instances on the switch, use the spanning-tree mst hello-time command. To return to the default settings, use the no form of this command. spanning-tree mst hello-time seconds no spanning-tree mst hello-time Syntax Description seconds Command Default 2 seconds.
Chapter 2 Ethernet Commands spanning-tree mst max-age Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mst max-age To set the max-age timer for all the instances on the switch, use the spanning-tree mst max-age command. To return to the default settings, use the no form of this command. spanning-tree mst max-age seconds no spanning-tree mst max-age Syntax Description seconds Command Default 20 seconds.
Chapter 2 Ethernet Commands spanning-tree mst max-hops Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mst max-hops To specify the number of possible hops in the region before a bridge protocol data unit (BPDU) is discarded, use the spanning-tree mst max-hops command. To return to the default settings, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree mst port-priority Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mst port-priority To set the port-priority parameters for any Multiple Spanning Tree (MST) instance, including the common and internal spanning tree (CIST) with instance ID 0, use the spanning-tree mst port-priority command. To return to the default settings, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree mst priority Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mst priority To set the bridge priority, use the spanning-tree mst priority command. To return to the default setting, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree mst root Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mst root To designate the primary and secondary root and set the timer value for an instance, use the spanning-tree mst root command. To return to the default settings, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree mst root Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show spanning-tree mst Displays the information about the MST protocol.
Chapter 2 Ethernet Commands spanning-tree mst simulate pvst Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mst simulate pvst To reenable specific interfaces to automatically interoperate between Multiple Spanning Tree (MST) and Rapid per VLAN Spanning Tree (Rapid PVST+), use the spanning-tree mst simulate pvst command.
Chapter 2 Ethernet Commands spanning-tree mst simulate pvst Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples This example shows how to prevent specified ports from automatically interoperating with a connected device running Rapid PVST+: switch(config-if)# spanning-tree mst simulate pvst disable Related Commands Command Description spanning-tree mst simulate pvst global Enables global seamless interoperation between MST and Rapid PVST+.
Chapter 2 Ethernet Commands spanning-tree mst simulate pvst global Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree mst simulate pvst global To prevent the Multiple Spanning Tree (MST) switch from automatically interoperating with a connecting device running Rapid per VLAN Spanning Tree (Rapid PVST+), use the no spanning-tree mst simulate pvst global command.
Chapter 2 Ethernet Commands spanning-tree mst simulate pvst global Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples This example shows how to prevent all ports on the switch from automatically interoperating with a connected device running Rapid PVST+: switch(config)# no spanning-tree mst simulate pvst global Related Commands Command Description spanning-tree mst simulate pvst Enables seamless interoperation between MST and Rapid PVST+ by the interface.
Chapter 2 Ethernet Commands spanning-tree pathcost method Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree pathcost method To set the default path-cost calculation method, use the spanning-tree pathcost method command. To return to the default settings, use the no form of this command. spanning-tree pathcost method {long | short} no spanning-tree pathcost method Syntax Description long Specifies the 32-bit based values for port path costs.
Chapter 2 Ethernet Commands spanning-tree port type edge Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree port type edge To configure an interface connected to a host as an edge port, which automatically transitions the port to the spanning tree forwarding state without passing through the blocking or learning states, use the spanning-tree port type edge command.
Chapter 2 Ethernet Commands spanning-tree port type edge Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m When you use this command without the trunk keyword, the system returns an additional message similar to the following: %Portfast has been configured on Ethernet1/40 but will only have effect when the interface is in a non-trunking mode. To configure trunk interfaces as spanning tree edge ports, use the spanning-tree port type trunk command.
Chapter 2 Ethernet Commands spanning-tree port type edge bpdufilter default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree port type edge bpdufilter default To enable BPDU Filtering by default on all spanning tree edge ports, use the spanning-tree port type edge bpdufilter default command. To disable BPDU Filtering by default on all edge ports, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree port type edge bpdufilter default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples This example shows how to enable BPDU Filtering globally on all spanning tree edge operational ports by default: switch(config)# spanning-tree port type edge bpdufilter default Related Commands Command Description show spanning-tree summary Displays the information about the spanning tree configuration.
Chapter 2 Ethernet Commands spanning-tree port type edge bpduguard default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree port type edge bpduguard default To enable BPDU Guard by default on all spanning tree edge ports, use the spanning-tree port type edge bpduguard default command. To disable BPDU Guard on all edge ports by default, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree port type edge bpduguard default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show spanning-tree summary Displays the information about the spanning tree configuration. spanning-tree bpduguard Enables BPDU guard on the interface. spanning-tree port type edge Configures an interface as a spanning tree edge port.
Chapter 2 Ethernet Commands spanning-tree port type edge default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree port type edge default To configure all access ports that are connected to hosts as edge ports by default, use the spanning-tree port type edge default command. To restore all ports connected to hosts as normal spanning tree ports by default, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree port type edge default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show spanning-tree summary Displays information about the spanning tree configuration. spanning-tree port type edge Configures an interface as a spanning tree edge port.
Chapter 2 Ethernet Commands spanning-tree port type network Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree port type network To configure the interface that connects to a switch as a network spanning tree port, regardless of the global configuration, use the spanning-tree port type network command. To return the port to a normal spanning tree port, use the spanning-tree port type normal command or use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree port type network Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples This example shows how to configure an interface connected to a switch or bridge as a spanning tree network port: switch(config-if)# spanning-tree port type network Related Commands Command Description show spanning-tree interface Displays information about the spanning tree configuration per specified interface.
Chapter 2 Ethernet Commands spanning-tree port type network default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree port type network default To configure all ports as spanning tree network ports by default, use the spanning-tree port type network default command. To restore all ports to normal spanning tree ports by default, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree port type network default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show spanning-tree summary Displays information about the spanning tree configuration.
Chapter 2 Ethernet Commands spanning-tree port-priority Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree port-priority To set an interface priority when two bridges compete for position as the root bridge, use the spanning-tree port-priority command. The priority you set breaks the tie. To return to the default settings, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m spanning-tree vlan To configure Spanning Tree Protocol (STP) parameters on a per-VLAN basis, use the spanning-tree vlan command. To return to the default settings, use the no form of this command.
Chapter 2 Ethernet Commands spanning-tree vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Usage Guidelines Caution When disabling spanning tree on a VLAN using the no spanning-tree vlan vlan-id command, ensure that all switches and bridges in the VLAN have spanning tree disabled.
Chapter 2 Ethernet Commands speed (Ethernet) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m speed (Ethernet) To configure the transmit and receive speed for an Ethernet interface, use the speed command. To reset to the default speed, use the no form of this command. speed {1000 | 10000} no speed Syntax Description 1000 Sets the interface speed to 1-Gigabit. 10000 Sets the interface speed to 10-Gigabit. This is the default speed.
Chapter 2 Ethernet Commands state Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m state To set the operational state for a VLAN, use the state command. To return a VLAN to its default operational state, use the no form of this command. state {active | suspend} no state Syntax Description active Specifies that the VLAN is actively passing traffic. suspend Specifies that the VLAN is not passing any packets. Command Default The VLAN is actively passing traffic.
Chapter 2 Ethernet Commands svi enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m svi enable To enable the creation of VLAN interfaces, use the svi enable command. To disable the VLAN interface feature, use the no form of this command. svi enable no svi enable Syntax Description This command has no arguments or keywords. Command Default VLAN interfaces are disabled. Command Modes Configuration mode Command History Release Modification 4.
Chapter 2 Ethernet Commands switchport access vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m switchport access vlan To set the access VLAN when the interface is in access mode, use the switchport access vlan command. To reset the access-mode VLAN to the appropriate default VLAN for the switch, use the no form of this command. switchport access vlan vlan-id no switchport access vlan Syntax Description vlan-id Command Default VLAN 1.
Chapter 2 Ethernet Commands switchport block Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m switchport block To prevent the unknown multicast or unicast packets from being forwarded, use the switchport block interface configuration command. To allow the unknown multicast or unicast packets to be forwarded, use the no form of this command.
Chapter 2 Ethernet Commands switchport mode private-vlan host Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m switchport mode private-vlan host To set the interface type to be a host port for a private VLAN, use the switchport mode private-vlan host command. switchport mode private-vlan host Syntax Description This command has no arguments or keywords. Command Default None Command Modes Interface configuration mode Command History Release Modification 4.
Chapter 2 Ethernet Commands switchport mode private-vlan promiscuous Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m switchport mode private-vlan promiscuous To set the interface type to be a promiscuous port for a private VLAN, use the switchport mode private-vlan promiscuous command. switchport mode private-vlan promiscuous Syntax Description This command has no keywords or arguments.
Chapter 2 Ethernet Commands switchport private-vlan host-association Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m switchport private-vlan host-association To define a private VLAN association for an isolated or community port, use the switchport private-vlan host-association command. To remove the private VLAN association from the port, use the no form of this command.
Chapter 2 Ethernet Commands switchport private-vlan host-association Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show vlan private-vlan Displays information on private VLANs.
Chapter 2 Ethernet Commands switchport private-vlan mapping Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m switchport private-vlan mapping To define the private VLAN association for a promiscuous port, use the switchport private-vlan mapping command. To clear all mapping from the primary VLAN, use the no form of this command.
Chapter 2 Ethernet Commands switchport private-vlan mapping Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to remove the all private VLAN association from the port: switch(config-if)# no switchport private-vlan mapping Related Commands Command Description show interface switchport Displays information on all interfaces configured as switch ports.
Chapter 2 Ethernet Commands udld (configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m udld (configuration mode) To configure the Unidirectional Link Detection (UDLD) protocol on the switch, use the udld command. To disable UDLD, use the no form of this command. udld {aggressive | message-time timer-time | reset} no udld {aggressive | message-time | reset} Syntax Description aggressive Enables UDLD in aggressive mode on the switch.
Chapter 2 Ethernet Commands udld (configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to reset all ports that were shutdown by UDLD: switch# configure terminal switch(config)# udld reset Related Commands Command Description show udld Displays the administrative and operational UDLD status.
Chapter 2 Ethernet Commands udld (Ethernet) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m udld (Ethernet) To enable and configure the Unidirectional Link Detection (UDLD) protocol on an Ethernet interface, use the udld command. To disable UDLD, use the no form of this command. udld {aggressive | disable | enable} no udld {aggressive | disable | enable} Syntax Description aggressive Enables UDLD in aggressive mode on the interface.
Chapter 2 Ethernet Commands vlan (EXEC mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m vlan (EXEC mode) To add a VLAN or to enter the VLAN configuration mode, use the vlan command. To delete the VLAN and exit the VLAN configuration mode, use the no form of this command. vlan {vlan-id | vlan-range} no vlan {vlan-id | vlan-range} Syntax Description vlan-id Number of the VLAN; the range of valid values is from 1 to 4094.
Chapter 2 Ethernet Commands vlan (EXEC mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to add a range of new VLANs and enter VLAN configuration mode: switch(config)# vlan 2,5,10-12,20,25,4000 switch(config-vlan)# This example shows how to delete a VLAN: switch(config)# no vlan 2 Related Commands Command Description show vlan Displays VLAN information.
Chapter 2 Ethernet Commands vrf context Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m vrf context To create a virtual routing and forwarding instance (VRF) and enter VRF configuration mode, use the vrf context command. To remove a VRF entry, use the no form of this command. vrf context {name | management} no vrf context {name | management} Syntax Description name Name of the VRF. management Specifies a configurable VRF name.
Chapter 2 Ethernet Commands vrf context Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show vrf Displays VRF information.
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m CH A P T E R 3 Ethernet Show Commands This chapter describes the Cisco NX-OS Ethernet show commands available on Cisco Nexus 5000 Series switches.
Chapter 3 Ethernet Show Commands show interface mac-address Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show interface mac-address To display the information about the MAC address, use the show interface mac-address command. show interface [type slot/port] mac-address Syntax Description type slot/port Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 3 Ethernet Show Commands show interface private-vlan mapping Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show interface private-vlan mapping To display information about private VLAN mapping for primary VLAN interfaces, use the show interface private-vlan mapping command. show interface private-vlan mapping Syntax Description This command has no arguments or keywords.
Chapter 3 Ethernet Show Commands show interface switchport Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show interface switchport To display information about all the switch port interfaces, use the show interface switchport command. show interface switchport Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 3 Ethernet Show Commands show interface vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show interface vlan To display brief descriptive information about specified VLANs, use the show interface vlan command. show interface vlan vlan-id [brief | description | private-vlan mapping] Syntax Description vlan-id Number of the VLAN; the range of valid values is from 1 to 4094. brief (Optional) Summary information for the specified VLAN.
Chapter 3 Ethernet Show Commands show interface vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to display the status of the VLAN: switch# show interface vlan 5 status Related Commands Command Description show interface switchport Displays information about the ports, including those in private VLANs. show vlan Displays summary information for all VLANs. show vlan private-vlan Displays summary information for all private VLANs.
Chapter 3 Ethernet Show Commands show ip igmp snooping Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show ip igmp snooping To display the Internet Group Management Protocol (IGMP) snooping configuration of the switch, use the show ip igmp snooping command.
Chapter 3 Ethernet Show Commands show lacp Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show lacp To display Link Aggregation Control Protocol (LACP) information, use the show lacp command. show lacp {counters | interface ethernet slot/port | neighbor [interface port-channel number] | port-channel [interface port-channel number] | system-identifier} Syntax Description counters Displays information about the LACP traffic statistics.
Chapter 3 Ethernet Show Commands show mac-address-table aging-time Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show mac-address-table aging-time To display information about the time-out values for the MAC address table, use the show mac-address-table aging-time command. show mac-address-table aging-time [vlan vlan-id] Syntax Description vlan vlan-id Command Default None Command Modes EXEC mode Command History Release Modification 4.
Chapter 3 Ethernet Show Commands show mac-address-table count Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show mac-address-table count To display the number of entries currently in the MAC address table, use the show mac-address-table count command. show mac-address-table count [address EEEE.EEEE.EEEE] [dynamic | static] [interface {type slot/port | port-channel number}] [vlan vlan-id] Syntax Description address EEEE.EEEE.
Chapter 3 Ethernet Show Commands show mac-address-table notification Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show mac-address-table notification To display notifications about the MAC address table, use the show mac-address-table notification command. show mac-address-table notification {mac-move | threshold} Syntax Description mac-move Shows notification messages about MAC addresses that were moved.
Chapter 3 Ethernet Show Commands show mac-address-table Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show mac-address-table To display the information about the MAC address table, use the show mac-address-table command. show mac-address-table [address mac-address] [dynamic | multicast | static] [interface {type slot/port | port-channel number}] [vlan vlan-id] Syntax Description address mac-address (Optional) Displays information about a specific MAC address.
Chapter 3 Ethernet Show Commands show mac-address-table Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 3 Ethernet Show Commands show monitor session Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show monitor session To display information about the SPAN sessions, use the show monitor session command. show monitor session [session | all [brief] | range range [brief] | status] Syntax Description session (Optional) Number of the session; valid values are from 1 to 18. all (Optional) Displays all sessions.
Chapter 3 Ethernet Show Commands show running-config Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show running-config To display the contents of the currently running configuration file, use the show running-config command. show running-config [all] Syntax Description all Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 3 Ethernet Show Commands show running-config spanning-tree Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show running-config spanning-tree To display the running configuration for the Spanning Tree Protocol (STP), use the show running-config spanning-tree command. show running-config spanning-tree [all] Syntax Description all Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 3 Ethernet Show Commands show running-config vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show running-config vlan To display the running configuration for a specified VLAN, use the show running-config vlan command. show running-config vlan vlan-id Syntax Description vlan-id Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 3 Ethernet Show Commands show spanning-tree Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show spanning-tree To display information about the Spanning Tree Protocol (STP), use the show spanning-tree command. show spanning-tree [blockedports | inconsistentports | pathcost method] Syntax Description blockedports (Optional) Displays the alternate ports blocked by STP. inconsistentports (Optional) Displays the ports that are in an inconsistent STP state.
Chapter 3 Ethernet Show Commands show spanning-tree Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Table 3-1 describes the fields that are displayed in the output of show spanning-tree commands. Table 3-1 Field Definition Role Current port STP role. Valid values are as follows: Sts Type Note Related Commands show spanning-tree Command Output Fields • Desg (designated) • Root • Altn (alternate) • Back (backup) Current port STP state.
Chapter 3 Ethernet Show Commands show spanning-tree Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Description show spanning-tree mst Displays information about MST STP. show spanning-tree root Displays status and configuration of the root bridge for the STP instance to which this switch belongs. show spanning-tree summary Displays summary information about STP. show spanning-tree vlan Displays STP information for specified VLANs.
Chapter 3 Ethernet Show Commands show spanning-tree active Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show spanning-tree active To display STP information on STP-active interfaces only, use the show spanning-tree active command. show spanning-tree active [brief | detail] Syntax Description brief (Optional) Displays a brief summary of STP interface information. detail (Optional) Displays a detailed summary of STP interface information.
Chapter 3 Ethernet Show Commands show spanning-tree bridge Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show spanning-tree bridge To display status and configuration of the local bridge, use the show spanning-tree bridge command. show spanning-tree bridge [address | brief | detail | forward-time | hello-time | id | max-age | priority [system-id] | protocol] Syntax Description address (Optional) Displays the MAC address for the STP local bridge.
Chapter 3 Ethernet Show Commands show spanning-tree bridge Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Description show spanning-tree detail Displays detailed information about STP. show spanning-tree interface Displays STP interface status and configuration of specified interfaces. show spanning-tree mst Displays information about MST STP.
Chapter 3 Ethernet Show Commands show spanning-tree brief Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show spanning-tree brief To display a brief summary of the STP status and configuration on the switch, use the show spanning-tree brief command. show spanning-tree brief [active] Syntax Description active Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 3 Ethernet Show Commands show spanning-tree detail Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show spanning-tree detail To display detailed information on the STP status and configuration on the switch, use the show spanning-tree detail command. show spanning-tree detail [active] Syntax Description active Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 3 Ethernet Show Commands show spanning-tree interface Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show spanning-tree interface To display information on the STP interface status and configuration of specified interfaces, use the show spanning-tree interface command.
Chapter 3 Ethernet Show Commands show spanning-tree interface Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 3 Ethernet Show Commands show spanning-tree mst Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show spanning-tree mst To display information on MST status and configuration, use the show spanning-tree mst command.
Chapter 3 Ethernet Show Commands show spanning-tree mst Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 3 Ethernet Show Commands show spanning-tree root Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show spanning-tree root To display the status and configuration of the root bridge, use the show spanning-tree root command. show spanning-tree root [address | brief | cost | detail | forward-time | hello-time | id | max-age | port | priority [system-id]] Syntax Description address (Optional) Displays the MAC address for the STP root bridge.
Chapter 3 Ethernet Show Commands show spanning-tree root Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Description show spanning-tree brief Displays a brief summary of STP information. show spanning-tree detail Displays detailed information about STP. show spanning-tree interface Displays STP interface status and configuration of specified interfaces. show spanning-tree mst Displays information about MST STP.
Chapter 3 Ethernet Show Commands show spanning-tree summary Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show spanning-tree summary To display summary STP information on the switch, use the show spanning-tree summary command. show spanning-tree summary [totals] Syntax Description totals Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 3 Ethernet Show Commands show spanning-tree vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show spanning-tree vlan To display STP information for specified VLANs, use the show spanning-tree vlan command.
Chapter 3 Ethernet Show Commands show spanning-tree vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m inconsistentports ((Optional) Displays the ports that are in an inconsistent STP state for specified VLANs. interface slot/port | port-channel number (Optional) Specifies the interface. Use either the type of interface and its slot and port number, or the EtherChannel number. cost (Optional) Displays the STP path cost for the specified VLANs.
Chapter 3 Ethernet Show Commands show spanning-tree vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Description show spanning-tree interface Displays STP interface status and configuration of specified interfaces. show spanning-tree mst Displays information about MST STP. show spanning-tree root Displays status and configuration of the root bridge for the STP instance to which this switch belongs.
Chapter 3 Ethernet Show Commands show startup-config Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show startup-config To display the contents of the currently running configuration file, use the show startup-config command. show startup-config Syntax Description This command has no other arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 3 Ethernet Show Commands show vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show vlan To display VLAN information, use the show vlan command. show vlan [brief | name {name} | summary] Syntax Description brief (Optional) Displays only a single line for each VLAN, naming the VLAN, status, and ports. name name (Optional) Displays information about a single VLAN that is identified by VLAN name.
Chapter 3 Ethernet Show Commands show vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 3 Ethernet Show Commands show vlan id Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show vlan id To display information and statistics for an individual VLAN or a range of VLANs, use the show vlan id command. show vlan id {vlan-id} Syntax Description vlan-id Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 3 Ethernet Show Commands show vlan private-vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show vlan private-vlan To display private VLAN information, use the show vlan private-vlan command. show vlan [id {vlan-id}] private-vlan [type] Syntax Description id vlan-id (Optional) Displays private VLAN information for the specified VLAN. type (Optional) Displays the private VLAN type (primary, isolated, or community).
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m CH A P T E R 4 Fabric Extender Commands This chapter describes the Cisco NX-OS commands used to manage a Cisco Nexus 2000 Series Fabric Extender from a Cisco Nexus 5000 Series switch.
Chapter 4 Fabric Extender Commands attach fex Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m attach fex To access the CLI of a connected Fabric Extender to run diagnostic commands, use the attach fex command. attach fex chassis_ID Syntax Description chassis_ID Command Default None Command Modes EXEC mode Command History Release Modification 4.0(1a)N2(1) This command was introduced. Fabric Extender chassis ID. The chassis ID range is from 100 to 199.
Chapter 4 Fabric Extender Commands beacon Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m beacon To turn on the locator beacon LED of a Fabric Extender, use the beacon command. To turn off the locator beacon LED, use the no form of this command. beacon no beacon Syntax Description This command has no arguments or keywords. Command Default None Command Modes Fabric Extender configuration mode Command History Release Modification 4.
Chapter 4 Fabric Extender Commands description (fex) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m description (fex) To specify a description for a Fabric Extender, use the description command. To revert to the default description, use the no form of this command. description description no description Syntax Description description Command Default None Command Modes Fabric Extender configuration mode Command History Release Modification 4.
Chapter 4 Fabric Extender Commands fex Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fex To create a Fabric Extender and enter Fabric Extender configuration mode, use the fex command. To delete the Fabric Extender configuration, use the no form of this command. fex chassis_ID no fex chassis_ID Syntax Description chassis_ID Command Default None Command Modes Configuration mode Command History Release Modification 4.0(1a)N2(1) This command was introduced.
Chapter 4 Fabric Extender Commands fex associate Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fex associate To associate a Fabric Extender to a fabric interface, use the fex associate command. To disassociate the Fabric Extender, use the no form of this command. fex associate chassis_ID no fex associate [chassis_ID] Syntax Description chassis_ID Command Default None Command Modes Interface configuration mode Command History Release Modification 4.
Chapter 4 Fabric Extender Commands fex pinning redistribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fex pinning redistribute To redistribute the host interfaces on a Fabric Extender, use the fex pinning redistribute command. fex pinning redistribute chassis_ID Syntax Description chassis_ID Command Default None Command Modes EXEC mode Command History Release Modification 4.0(1a)N2(1) This command was introduced.
Chapter 4 Fabric Extender Commands logging fex Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging fex To set the logging alert level for Fabric Extender events, use the logging fex command. To reset the logging level, use the no form of this command. logging fex [severity-level] no logging fex [severity-level] Syntax Description severity-level (Optional) Number of the desired severity level at which messages should be logged.
Chapter 4 Fabric Extender Commands pinning max-links Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m pinning max-links To specify the number of statically pinned uplinks, use the pinning max-links command. To reset to the default, use the no form of this command. pinning max-links uplinks no pinning max-links Syntax Description uplinks Number of uplinks. The range is 1 to 4. The default is 1.
Chapter 4 Fabric Extender Commands pinning max-links Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description fex Creates a Fabric Extender and enters Fabric Extender configuration mode. fex pinning redistribute Redistributes the host interfaces on a Fabric Extender. show fex Displays all configured Fabric Extender chassis connected to the switch.
Chapter 4 Fabric Extender Commands serial Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m serial To assign a serial number to a Fabric Extender, use the serial command. To remove the serial number, use the no form of this command. serial serial_string no serial Syntax Description serial_string Command Default None Command Modes Fabric Extender configuration mode Command History Release Modification 4.0(1a)N2(1) This command was introduced.
Chapter 4 Fabric Extender Commands serial Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description fex Creates a Fabric Extender and enters Fabric Extender configuration mode. fex associate Associates a Fabric Extender to an Ethernet or EtherChannel interface. show fex Displays all configured Fabric Extender chassis connected to the switch.
Chapter 4 Fabric Extender Commands show diagnostic result fex Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show diagnostic result fex To display the results from the diagnostic tests for a Fabric Extender chassis, use the show diagnostic result fex command. show diagnostic result fex chassis_ID Syntax Description chassis_ID Command Default None Command Modes EXEC mode Command History Release Modification 4.0(1a)N2(1) This command was introduced.
Chapter 4 Fabric Extender Commands show environment fex Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show environment fex To display the environmental sensor status, use the show environment fex command. show environment fex {all | chassis_ID} [temperature | power | fan] Syntax Description all Show information for all Fabric Extender chassis. chassis_ID Fabric Extender chassis ID. The chassis ID range is from 100 to 199.
Chapter 4 Fabric Extender Commands show fex Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fex To display information about a specific Fabric Extender or all attached chassis, use the show fex command. show fex [chassis_ID [detail]] Syntax Description chassis_ID (Optional) Fabric Extender chassis ID. The chassis ID range is from 100 to 199. detail (Optional) Displays a detailed listing.
Chapter 4 Fabric Extender Commands show fex transceiver Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fex transceiver To display information about the transceiver connecting a Fabric Extender to the Cisco Nexus 5000 Series switch, use the show fex transceiver command. show fex chassis_ID transceiver [calibration | detail] Syntax Description chassis_ID Fabric Extender chassis ID. The chassis ID range is from 100 to 199.
Chapter 4 Fabric Extender Commands show fex version Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fex version To display the version information about a Fabric Extender, use the show fex version command. show fex chassis_ID version Syntax Description chassis_ID Command Default None Command Modes EXEC mode Command History Release Modification 4.0(1a)N2(1) This command was introduced. Examples Fabric Extender chassis ID.
Chapter 4 Fabric Extender Commands show interface fex-fabric Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show interface fex-fabric To display all Fabric Extender fabric interfaces, use the show interface fex-fabric command. show interface fex-fabric Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(1a)N2(1) This command was introduced.
Chapter 4 Fabric Extender Commands show interface fex-intf Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show interface fex-intf To display the host interfaces pinned to a fabric interface, use the show interface fex-intf command. show interface interface fex-intf Syntax Description interface Command Default None Command Modes EXEC mode Command History Release Modification 4.0(1a)N2(1) This command was introduced.
Chapter 4 Fabric Extender Commands show interface transceiver fex-fabric Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show interface transceiver fex-fabric To display information about all transceivers connected to fabric interfaces, use the show interface transceiver fex-fabric command. show interface transceiver fex-fabric [calibration | detail] Syntax Description calibration (Optional) Displays detailed calibration information about the transceiver.
Chapter 4 Fabric Extender Commands switchport mode fex-fabric Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m switchport mode fex-fabric To set the interface type to be an uplink port for a Fabric Extender, use the switchport mode fex-fabric command. switchport mode fex-fabric no switchport mode fex-fabric Syntax Description This command has no arguments or keywords.
Chapter 4 Fabric Extender Commands switchport mode fex-fabric Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m CH A P T E R 5 Quality of Service Commands This chapter describes the Cisco NX-OS quality of service commands available on Cisco Nexus 5000 Series switches.
Chapter 5 Quality of Service Commands class-map Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m class-map To create or modify a class map and enter the class-map configuration mode, use the class-map command. To remove a class map, use the no form of this command. class-map class-map-name no class-map class-map-name Syntax Description class-map-name Command Default None Command Modes Global configuration. Command History Release Modification 4.
Chapter 5 Quality of Service Commands fcoe mode Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcoe mode To force-enable the FCoE mode on an interface, use the fcoe mode command. To disable FCoE mode on the interface, use the no form of this command. fcoe mode {auto | on} no fcoe mode [auto | on] Syntax Description auto The interface negotiates the setting with the connected adapter. on FCoE negotiation result is ignored and FCoE is set to enabled on the interface.
Chapter 5 Quality of Service Commands flowcontrol Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m flowcontrol To enable IEEE 802.3x link-level flow control for the selected interface, use the flow-control command. flowcontrol [receive {on | off}] [transmit {on | off}] Syntax Description receive {on | off} (Optional) Sets flow control in the receive direction. transmit {on | off} (Optional) Sets flow control in the transmit direction.
Chapter 5 Quality of Service Commands match cos Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m match cos To define a traffic class based on the Class of Service (CoS) value in the 802.1Q, use the match cos command. To remove the match cos configuration, use the no form of this command. match cos multi-range-cos-values no match cos multi-range-cos-values Syntax Description multi-range-cos-values Command Default None Command Modes Class-map configuration.
Chapter 5 Quality of Service Commands policy-map Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m policy-map To create or modify a policy map and enter the policy-map configuration mode, use the policy-map command. To remove a policy map, use the no form of this command. policy-map name no policy-map name Syntax Description name Command Default None Command Modes Global configuration. Command History Release Modification 4.
Chapter 5 Quality of Service Commands policy-map Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description class-map Creates or modifies a table map. service-policy Attaches a policy map to an interface. show policy-map Displays policy maps.
Chapter 5 Quality of Service Commands priority-flow-control Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m priority-flow-control To set the (priority-flow-control) PFC mode for the selected interface, use the priority-flow-control command. priority-flow-control mode {auto | on} Syntax Description auto Negotiates PFC capability. on Force-enables PFC. Command Default None Command Modes Interface configuration mode Command History Release Modification 4.
Chapter 5 Quality of Service Commands service-policy Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m service-policy To associate the system class policy-map to the service policy for the system, use the service-policy command. service-policy [policy-map-name] no service-policy To associate the system class policy-map to the interface, use the service-policy command.
Chapter 5 Quality of Service Commands service-policy Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m switch(config-pmap)# class best-effort-drop-class switch(config-pmap-c)# mtu 9216 switch(config)# interface ethernet 1/1 switch(config-if)# service-policy output policy_map1 Related Commands Command Description class-map Creates or modifies a class map. policy-map Creates or modifies a policy map. show policy-map Displays policy maps.
Chapter 5 Quality of Service Commands show class-map Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show class-map To display class maps, use the show class-map command. show class-map [name] Syntax Description name Command Default None Command Modes Global configuration. Command History Release Modification 4.0(0)N1(1a) This command was introduced. (Optional) Specifies the class map to display.
Chapter 5 Quality of Service Commands show policy-map Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show policy-map To display policy maps, use the show policy-map command. show policy-map [name] Syntax Description name Command Default None Command Modes Global configuration. Command History Release Modification 4.0(0)N1(1a) This command was introduced. (Optional) Specifies the policy-map name to display.
Chapter 5 Quality of Service Commands show system qos Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show system qos To display system QoS information, use the show system qos command. show system qos Syntax Description None Command Default None Command Modes Global configuration. Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 5 Quality of Service Commands show interface priority-flow-control Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show interface priority-flow-control To display the priority flow control details for a specified interface, use the show interface priority-flow-control command. show interface [name] priority-flow-control Syntax Description name Command Default None Command Modes Global configuration. Command History Release Modification 4.
Chapter 5 Quality of Service Commands show policy-map interface Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show policy-map interface To display the system policy configured on the system and per class statistics, use the show policy-map interface command. show policy-map interface [name] Syntax Description name Command Default None Command Modes Global configuration. Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 5 Quality of Service Commands system jumbomtu Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m system jumbomtu To define the upper bound of any MTU in the system, use the system jumbomtu command. system jumbomtu [value] Syntax Description value Command Default 9216 bytes Command Modes Global configuration Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples The jumbomtu value. The range is 2240-9216.
Chapter 5 Quality of Service Commands system qos Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m system qos To configure system policy, use the system qos command. system qos Syntax Description None Command Default None Command Modes Global configuration Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 5 Quality of Service Commands untagged cos Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m untagged cos Ethernet frames received with no CoS value are given a CoS value of 0. To override this value for the selected interface, use the untagged cos command. untagged cos cos-value Syntax Description cos-value Command Default None Command Modes Interface configuration mode Command History Release Modification 4.0(1a)N1(1) This command was introduced.
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m CH A P T E R 6 Security Commands This chapter describes the Cisco NX-OS security commands available on Cisco Nexus 5000 Series switches.
Chapter 6 Security Commands aaa accounting default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m aaa accounting default To configure authentication, authorization, and accounting (AAA) methods for accounting, use the aaa accounting default command. To revert to the default, use the no form of this command.
Chapter 6 Security Commands aaa authentication login console Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m aaa authentication login console To configure AAA authentication methods for console logins, use the aaa authentication login console command. To revert to the default, use the no form of this command.
Chapter 6 Security Commands aaa authentication login console Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description aaa group server Configures AAA server groups. radius-server host Configures RADIUS servers. show aaa authentication Displays AAA authentication information. tacacs-server host Configures TACACS+ servers.
Chapter 6 Security Commands aaa authentication login default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m aaa authentication login default To configure the default AAA authentication methods, use the aaa authentication login default command. To revert to the default, use the no form of this command.
Chapter 6 Security Commands aaa authentication login default Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description aaa group server Configures AAA server groups. radius-server host Configures RADIUS servers. show aaa authentication Displays AAA authentication information. tacacs-server host Configures TACACS+ servers.
Chapter 6 Security Commands aaa authentication login error-enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m aaa authentication login error-enable To configure that the AAA authentication failure message displays on the console, use the aaa authentication login error-enable command. To revert to the default, use the no form of this command.
Chapter 6 Security Commands aaa authentication login mschap enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m aaa authentication login mschap enable To enable Microsoft Challenge Handshake Authentication Protocol (MSCHAP) authentication at login, use the aaa authentication login mschap enable command. To revert to the default, use the no form of this command.
Chapter 6 Security Commands aaa group server radius Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m aaa group server radius To create a RADIUS server group and enter RADIUS server group configuration mode, use the aaa group server radius command. To delete a RADIUS server group, use the no form of this command.
Chapter 6 Security Commands action Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m action To specify what the switch does when a packet matches a permit command in a VLAN access control list (VACL), use the action command. To remove an action command, use the no form of this command. action {drop forward} no action {drop forward} Syntax Description drop Specifies that the switch drops the packet.
Chapter 6 Security Commands clear access-list counters Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear access-list counters To clear the counters for all IPv4 access control lists (ACLs) or a single IPv4 ACL, use the clear access-list counters command. clear access-list counters [access-list-name] Syntax Description access-list-name Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands clear accounting log Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear accounting log To clear the accounting log, use the clear accounting log command. clear accounting log Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands deadtime Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m deadtime To configure the dead-time interval for a RADIUS or TACACS+ server group, use the deadtime command. To revert to the default, use the no form of this command. deadtime minutes no deadtime minutes Syntax Description minutes Command Default 0 minutes.
Chapter 6 Security Commands deadtime Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Description show radius-server groups Displays RADIUS server group information. show tacacs-server groups Displays TACACS+ server group information. tacacs-server host Configures a TACACS+ server.
Chapter 6 Security Commands deny (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m deny (IPv4) To create an IPv4 ACL rule that denies traffic matching its conditions, use the deny command. To remove a rule, use the no form of this command.
Chapter 6 Security Commands deny (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Syntax Description sequence-number (Optional) Sequence number of the deny command, which causes the switch to insert the command in that numbered position in the access list. Sequence numbers maintain the order of rules within an ACL. A sequence number can be any integer between 1 and 4294967295. By default, the first rule in an ACL has a sequence number of 10.
Chapter 6 Security Commands deny (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m dscp dscp (Optional) Specifies that the rule matches only those packets with the specified 6-bit differentiated services value in the DSCP field of the IP header. The dscp argument can be one of the following numbers or keywords: • 0–63—The decimal equivalent of the 6 bits of the DSCP field.
Chapter 6 Security Commands deny (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m precedence precedence (Optional) Specifies that the rule matches only packets that have an IP Precedence field with the value specified by the precedence argument. The precedence argument can be a number or a keyword as follows: • 0–7—Decimal equivalent of the 3 bits of the IP Precedence field.
Chapter 6 Security Commands deny (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m operator port [port] (Optional; TCP and UDP only) Rule matches only packets that are from a source port or sent to a destination port that satisfies the conditions of the operator and port arguments. Whether these arguments apply to a source port or a destination port depends upon whether you specify them after the source argument or after the destination argument.
Chapter 6 Security Commands deny (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m If you do not specify a sequence number, the switch assigns the rule a sequence number that is 10 greater than the last rule in the ACL. Command Modes IPv4 ACL configuration Command History Release Modification 4.0(0)N1(1a) This command was introduced. Usage Guidelines When the switch applies an IPv4 ACL to a packet, it evaluates the packet with every rule in the ACL.
Chapter 6 Security Commands deny (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m The following example shows how to specify the source argument with the host keyword and the 192.168.67.132 IPv4 address: switch(config-acl)# deny icmp host 192.168.67.132 any • Any address—You can use the any keyword to specify that a source or destination is any IPv4 address. For examples of the use of the any keyword, see the examples in this section.
Chapter 6 Security Commands deny (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands deny (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands deny (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m syslog—System Logger (514) tacacs—TAC Access Control System (49) talk—Talk (517) tftp—Trivial File Transfer Protocol (69) time—Time (37) who—Who service (rwho, 513) xdmcp—X Display Manager Control Protocol (177) Examples This example shows how to configure an IPv4 ACL named acl-lab-01 with rules that deny all TCP and UDP traffic from the 10.23.0.0 and 192.168.37.
Chapter 6 Security Commands deny (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m deny (IPv6) To create an IPv6 ACL rule that denies traffic matching its conditions, use the deny command. To remove a rule, use the no form of this command.To create an IPv6 ACL rule that denies traffic matching its conditions, use the deny command. To remove a rule, use the no form of this command.
Chapter 6 Security Commands deny (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Syntax Description sequence-number (Optional) Sequence number of the deny command, which causes the device to insert the command in that numbered position in the access list. Sequence numbers maintain the order of rules within an ACL. A sequence number can be any integer between 1 and 4294967295. By default, the first rule in an ACL has a sequence number of 10.
Chapter 6 Security Commands deny (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m dscp dscp (Optional) Specifies that the rule matches only packets with the specified 6-bit differentiated services value in the DSCP field of the IPv6 header. The dscp argument can be one of the following numbers or keywords: • 0–63—The decimal equivalent of the 6 bits of the DSCP field.
Chapter 6 Security Commands deny (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m log (Optional) Specifies that the device generates an informational logging message about each packet that matches the rule.
Chapter 6 Security Commands deny (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m established (TCP only; Optional) Specifies that the rule matches only packets that belong to an established TCP connection. The device considers TCP packets with the ACK or RST bits set to belong to an established connection. flags (TCP only; Optional) Rule matches only packets that have specific TCP control bit flags set.
Chapter 6 Security Commands deny (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m IPv6-address/prefix-len The following example shows how to specify the source argument with the IPv6 address and VLSM for the 2001:0db8:85a3:: network: switch(config-acl)# deny udp 2001:0db8:85a3::/48 any • Host address—You can use the host keyword and an IPv6 address to specify a host as a source or destination.
Chapter 6 Security Commands deny (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands deny (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m talk—Talk (517) telnet—Telnet (23) time—Time (37) uucp—Unix-to-Unix Copy Program (54) whois—WHOIS/NICNAME (43) www—World Wide Web (HTTP, 8) UDP Port Names When you specify the protocol argument as udp, the port argument can be a UDP port number, which is an integer from 0 to 65535.
Chapter 6 Security Commands deny (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands deny (MAC) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m deny (MAC) To create a Media Access Control (MAC) access control list (ACL)+ rule that denies traffic matching its conditions, use the deny command. To remove a rule, use the no form of this command.
Chapter 6 Security Commands deny (MAC) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command History Usage Guidelines Release Modification 4.0(0)N1(1a) This command was introduced. When the switch applies a MAC ACL to a packet, it evaluates the packet with every rule in the ACL. The switch enforces the first rule whose conditions are satisfied by the packet.
Chapter 6 Security Commands deny (MAC) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples This example shows how to configure a MAC ACL named mac-ip-filter with rules that permit any non-IPv4 traffic between two groups of MAC addresses: switch(config)# mac access-list mac-ip-filter switch(config-mac-acl)# deny 00c0.4f00.0000 0000.00ff.ffff 0060.3e00.0000 0000.00ff.
Chapter 6 Security Commands description (user role) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m description (user role) To configure a description for a user role, use the description command. To revert to the default, use the no form of this command. description text no description Syntax Description text Command Default None Command Modes User role configuration Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands feature Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m feature To configure a feature in a user role feature group, use the feature command. To delete a feature in a user role feature group, use the no form of this command. feature feature-name no feature feature-name Syntax Description feature-name Command Default None Command Modes User role feature group configuration Command History Release Modification 4.
Chapter 6 Security Commands interface policy deny Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m interface policy deny To enter interface policy configuration mode for a user role, use the interface policy deny command. To revert to the default interface policy for a user role, use the no form of this command. interface policy deny no interface policy deny Syntax Description This command has no arguments or keywords.
Chapter 6 Security Commands ip access-list Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ip access-list To create an IPv4 access control list (ACL) or to enter IP access list configuration mode for a specific ACL, use the ip access-list command. To remove an IPv4 ACL, use the no form of this command. ip access-list access-list-name no ip access-list access-list-name Syntax Description access-list-name Command Default No IPv4 ACLs are defined by default.
Chapter 6 Security Commands ip access-list Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description access-class Applies an IPv4 ACL to a VTY line. deny (IPv4) Configures a deny rule in an IPv4 ACL. ip access-group Applies an IPv4 ACL to an interface. permit (IPv4) Configures a permit rule in an IPv4 ACL. show ip access-lists Displays all IPv4 ACLs or a specific IPv4 ACL.
Chapter 6 Security Commands ip port access-group Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ip port access-group To apply an IPv4 access control list (ACL) to an interface as a port ACL, use the ip port access-group command. To remove an IPv4 ACL from an interface, use the no form of this command.
Chapter 6 Security Commands ip port access-group Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to remove an IPv4 ACL named ip-acl-01 from Ethernet interface 1/2: switch(config)# interface ethernet 1/2 switch(config-if)# no ip port access-group ip-acl-01 in Related Commands Command Description ip access-list Configures an IPv4 ACL. show access-lists Displays all ACLs. show ip access-lists Shows either a specific IPv4 ACL or all IPv4 ACLs.
Chapter 6 Security Commands ipv6 access-list Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ipv6 access-list To create an IPv6 access control list (ACL) or to enter IP access list configuration mode for a specific ACL, use the ipv6 access-list command. To remove an IPv6 ACL, use the no form of this command. ipv6 access-list access-list-name no ipv6 access-list access-list-name Syntax Description access-list-name Command Default No IPv6 ACLs are defined by default.
Chapter 6 Security Commands ipv6 port traffic-filter Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ipv6 port traffic-filter To apply an IPv6 access control list (ACL) to an interface as a port ACL, use the ipv6 port traffic-filter command. To remove an IPv6 ACL from an interface, use the no form of this command.
Chapter 6 Security Commands ipv6 port traffic-filter Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands mac access-list Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m mac access-list To create a Media Access Control (MAC) access control list (ACL) or to enter MAC access list configuration mode for a specific ACL, use the mac access-list command. To remove a MAC ACL, use the no form of this command.
Chapter 6 Security Commands mac access-list Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Description permit (MAC) Configures a permit rule in a MAC ACL. show mac access-lists Displays all MAC ACLs or a specific MAC ACL.
Chapter 6 Security Commands mac port access-group Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m mac port access-group To apply a MAC access control list (ACL) to an interface, use the mac port access-group command. To remove a MAC ACL from an interface, use the no form of this command.
Chapter 6 Security Commands mac port access-group Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to remove a MAC ACL named mac-acl-01 from Ethernet interface 1/2: switch(config)# interface ethernet 1/2 switch(config-if)# no mac port access-group mac-acl-01 Related Commands Command Description mac access-list Configures a MAC ACL. show access-lists Displays all ACLs. show mac access-lists Shows either a specific MAC ACL or all MAC ACLs.
Chapter 6 Security Commands match Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m match To specify an access control list (ACL) for traffic filtering in a VLAN access map, use the match command. To remove a match command from a VLAN access map, use the no form of this command. match {ip | ipv6 | mac} address access-list-name no match {ip | ipv6 | mac} address access-list-name Syntax Description ip The specified ACL is an IPv4 ACL.
Chapter 6 Security Commands match Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands permit (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m permit (IPv4) To create an IPv4 access control list (ACL) rule that permits traffic matching its conditions, use the permit command. To remove a rule, use the no form of this command.
Chapter 6 Security Commands permit (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Syntax Description sequence-number (Optional) Sequence number of the permit command, which causes the switch to insert the command in that numbered position in the access list. Sequence numbers maintain the order of rules within an ACL. A sequence number can be any integer between 1 and 4294967295. By default, the first rule in an ACL has a sequence number of 10.
Chapter 6 Security Commands permit (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m dscp dscp (Optional) Specifies that the rule matches only those packets with the specified 6-bit differentiated services value in the DSCP field of the IP header. The dscp argument can be one of the following numbers or keywords: • 0–63—The decimal equivalent of the 6 bits of the DSCP field.
Chapter 6 Security Commands permit (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m precedence precedence (Optional) Specifies that the rule matches only packets that have an IP Precedence field with the value specified by the precedence argument. The precedence argument can be a number or a keyword as follows: • 0–7—Decimal equivalent of the 3 bits of the IP Precedence field.
Chapter 6 Security Commands permit (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m operator port [port] (Optional; TCP and UDP only) Rule matches only packets that are from a source port or sent to a destination port that satisfies the conditions of the operator and port arguments. Whether these arguments apply to a source port or a destination port depends upon whether you specify them after the source argument or after the destination argument.
Chapter 6 Security Commands permit (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m If you do not specify a sequence number, the device assigns to the rule a sequence number that is 10 greater than the last rule in the ACL. Command Modes IPv4 ACL configuration Command History Release Modification 4.0(0)N1(1a) This command was introduced. Usage Guidelines When the switch applies an IPv4 ACL to a packet, it evaluates the packet with every rule in the ACL.
Chapter 6 Security Commands permit (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m The following example shows how to specify the source argument with the host keyword and the 192.168.67.132 IPv4 address: switch(config-acl)# permit icmp host 192.168.67.132 any • Any address—You can use the any keyword to specify that a source or destination is any IPv4 address. For examples of the use of the any keyword, see the examples in this section.
Chapter 6 Security Commands permit (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands permit (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands permit (IPv4) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m syslog—System Logger (514) tacacs—TAC Access Control System (49) talk—Talk (517) tftp—Trivial File Transfer Protocol (69) time—Time (37) who—Who service (rwho, 513) xdmcp—X Display Manager Control Protocol (177) Examples This example shows how to configure an IPv4 ACL named acl-lab-01 with rules permitting all TCP and UDP traffic from the 10.23.0.0 and 192.168.37.
Chapter 6 Security Commands permit (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m permit (IPv6) To create an IPv6 ACL rule that permits traffic matching its conditions, use the permit command. To remove a rule, use the no form of this command.
Chapter 6 Security Commands permit (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Syntax Description sequence-number (Optional) Sequence number of the permit command, which causes the device to insert the command in that numbered position in the access list. Sequence numbers maintain the order of rules within an ACL. A sequence number can be any integer between 1 and 4294967295. By default, the first rule in an ACL has a sequence number of 10.
Chapter 6 Security Commands permit (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m dscp dscp (Optional) Specifies that the rule matches only packets with the specified 6-bit differentiated services value in the DSCP field of the IPv6 header. The dscp argument can be one of the following numbers or keywords: • 0–63—The decimal equivalent of the 6 bits of the DSCP field.
Chapter 6 Security Commands permit (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m log (Optional) Specifies that the device generates an informational logging message about each packet that matches the rule.
Chapter 6 Security Commands permit (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m established (TCP only; Optional) Specifies that the rule matches only packets that belong to an established TCP connection. The device considers TCP packets with the ACK or RST bits set to belong to an established connection. flags (TCP only; Optional) Rule matches only packets that have specific TCP control bit flags set.
Chapter 6 Security Commands permit (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m IPv6-address/prefix-len The following example shows how to specify the source argument with the IPv6 address and VLSM for the 2001:0db8:85a3:: network: switch(config-acl)# permit udp 2001:0db8:85a3::/48 any • Host address—You can use the host keyword and an IPv6 address to specify a host as a source or destination.
Chapter 6 Security Commands permit (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands permit (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m talk—Talk (517) telnet—Telnet (23) time—Time (37) uucp—Unix-to-Unix Copy Program (54) whois—WHOIS/NICNAME (43) www—World Wide Web (HTTP, 8) UDP Port Names When you specify the protocol argument as udp, the port argument can be a UDP port number, which is an integer from 0 to 65535.
Chapter 6 Security Commands permit (IPv6) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands permit (MAC) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m permit (MAC) To create a MAC ACL rule that permits traffic matching its conditions, use the permit command. To remove a rule, use the no form of this command.
Chapter 6 Security Commands permit (MAC) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command History Usage Guidelines Release Modification 4.0(0)N1(1a) This command was introduced. When the switch applies a MAC ACL to a packet, it evaluates the packet with every rule in the ACL. The switch enforces the first rule whose conditions are satisfied by the packet.
Chapter 6 Security Commands permit (MAC) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples This example shows how to configure a MAC ACL named mac-ip-filter with a rule that permits all IPv4 traffic between two groups of MAC addresses: switch(config)# mac access-list mac-ip-filter switch(config-mac-acl)# permit 00c0.4f00.0000 0000.00ff.ffff 0060.3e00.0000 0000.00ff.ffff ip Related Commands Command Description deny (MAC) Configures a deny rule in a MAC ACL.
Chapter 6 Security Commands permit interface Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m permit interface To add interfaces for a user role interface policy, use the permit interface command. To remove interfaces, use the no form of this command. permit interface interface-list no permit interface Syntax Description interface-list Command Default All interfaces Command Modes Interface policy configuration Command History Release Modification 4.
Chapter 6 Security Commands permit interface Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Description role name Creates or specifies a user role and enters user role configuration mode. show role Displays user role information.
Chapter 6 Security Commands permit vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m permit vlan To add VLANs for a user role VLAN policy, use the permit vlan command. To remove VLANs, use the no form of this command. permit vlan vlan-list no permit vlan Syntax Description vlan-list Command Default All VLANs Command Modes VLAN policy configuration Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands permit vlan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description vlan policy deny Enters VLAN policy configuration mode for a user role. role name Creates or specifies a user role and enters user role configuration mode. show role Displays user role information.
Chapter 6 Security Commands permit vrf Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m permit vrf To add virtual routing and forwarding instances (VRFs) for a user role VRF policy, use the permit vrf command. To remove VRFs, use the no form of this command. permit vrf vrf-list no permit vrf Syntax Description vrf-list Command Default All VRFs Command Modes VRF policy configuration Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands radius-server deadtime Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m radius-server deadtime To configure the dead-time interval for all RADIUS servers on a Cisco Nexus 5000 Series switch, use the radius-server deadtime command. To revert to the default, use the no form of this command. radius-server deadtime minutes no radius-server deadtime minutes Syntax Description minutes Command Default 0 minutes.
Chapter 6 Security Commands radius-server directed-request Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m radius-server directed-request To allow users to send authentication requests to a specific RADIUS server when logging in, use the radius-server directed request command. To revert to the default, use the no form of this command. radius-server directed-request no radius-server directed-request Syntax Description This command has no arguments or keywords.
Chapter 6 Security Commands radius-server host Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m radius-server host To configure RADIUS server parameters, use the radius-server host command. To revert to the default, use the no form of this command.
Chapter 6 Security Commands radius-server host Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Default username name Specifies a username in the test packets. The maximum size is 32 characters. timeout seconds Specifies the timeout (in seconds) between retransmissions to the RADIUS server. The default is 1 second and the range is from 1 to 60 seconds.
Chapter 6 Security Commands radius-server key Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m radius-server key To configure a RADIUS shared secret key, use the radius-server key command. To remove a configured shared secret, use the no form of this command.
Chapter 6 Security Commands radius-server retransmit Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m radius-server retransmit To specify the number of times that the switch should try a request with a RADIUS server, use the radius-server retransmit command. To revert to the default, use the no form of this command. radius-server retransmit count no radius-server retransmit count Syntax Description count Command Default 1 retransmission.
Chapter 6 Security Commands radius-server timeout Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m radius-server timeout To specify the time between retransmissions to the RADIUS servers, use the radius-server timeout command. To revert to the default, use the no form of this command. radius-server timeout seconds no radius-server timeout seconds Syntax Description seconds Command Default 1 second.
Chapter 6 Security Commands remark Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m remark To enter a comment into an IPv4 or MAC access control list (ACL), use the remark command. To remove a remark command, use the no form of this command.
Chapter 6 Security Commands remark Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description ip access-list Configures an IPv4 ACL. mac access-list Configures a MAC ACL. show access-list Displays all ACLs or one ACL.
Chapter 6 Security Commands resequence Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m resequence To reassign sequence numbers to all rules in an access control list (ACL) or a time range, use the resequence command. resequence access-list-type access-list access-list-name starting-number increment resequence time-range time-range-name starting-number increment Syntax Description access-list-type Type of the ACL.
Chapter 6 Security Commands resequence Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples This example shows how to resequence an IPv4 ACL named ip-acl-01 with a starting sequence number of 100 and an increment of 10, using the show ip access-lists command to verify sequence numbering before and after the use of the resequence command: switch(config)# show ip access-lists ip-acl-01 IP access list ip-acl-01 7 permit tcp 128.0.0/16 any eq www 10 permit udp 128.0.
Chapter 6 Security Commands role feature-group name Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m role feature-group name To create or specify a user role feature group and enter user role feature group configuration mode, use the role feature-group name command. To delete a user role feature group, use the no form of this command.
Chapter 6 Security Commands role name Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m role name To create or specify a user role and enter user role configuration mode, use the role name command. To delete a user role, use the no form of this command. role name role-name no role name role-name Syntax Description role-name Command Default None Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands rule Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m rule To configure rules for a user role, use the rule command. To delete a rule, use the no form of this command. rule number {deny | permit} {command command-string | {read | read-write} [feature feature-name | feature-group group-name]} no rule number Syntax Description number Sequence number for the rule.
Chapter 6 Security Commands rule Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to remove rule from a user role: switch(config)# role MyRole switch(config-role)# no rule 10 Related Commands Command Description role name Creates or specifies a user role name and enters user role configuration mode. show role Displays the user roles.
Chapter 6 Security Commands server Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m server To add a server to a RADIUS or TACACS+ server group, use the server command. To delete a server from a server group, use the no form of this command. server {ipv4-address | ipv6-address | hostname} no server {ipv4-address | ipv6-address | hostname} Syntax Description ipv4-address Server IPv4 address in the A.B.C.D format. ipv6-address Server IPv6 address in the X:X:X::X format.
Chapter 6 Security Commands server Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to add a server to a TACACS+ server group: switch(config)# feature tacacs+ switch(config)# aaa group server tacacs+ TacServer switch(config-tacacs+)# server 10.10.2.2 This example shows how to delete a server from a TACACS+ server group: switch(config)# feature tacacs+ switch(config)# aaa group server tacacs+ TacServer switch(config-tacacs+)# no server 10.10.2.
Chapter 6 Security Commands show aaa accounting Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show aaa accounting To display AAA accounting configuration, use the show aaa accounting command. show aaa accounting Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands show aaa authentication Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show aaa authentication To display AAA authentication configuration information, use the show aaa authentication command. show aaa authentication login [error-enable | mschap] Syntax Description error-enable (Optional) Displays the authentication login error message enable configuration.
Chapter 6 Security Commands show aaa groups Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show aaa groups To display AAA server group configuration, use the show aaa groups command. show aaa groups Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands show access-lists Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show access-lists To display all IPv4 and MAC access control lists (ACLs) or a specific ACL, use the show access-lists command. show access-lists [access-list-name] Syntax Description access-list-name Command Default The switch shows all ACLs, unless you use the access-list-name argument to specify an ACL.
Chapter 6 Security Commands show accounting log Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show accounting log To display the accounting log contents, use the show accounting log command. show accounting log [size] [start-time year month day HH:MM:SS] [end-time year month day HH:MM:SS] Syntax Description size (Optional) The amount of the log to display in bytes. The range is from 0 to 250000. start-time year month day HH:MM:SS (Optional) Specifies a start time.
Chapter 6 Security Commands show ip access-lists Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show ip access-lists To display all IPv4 ACLs or a specific IPv4 ACL, use the show ip access-lists command. show ip access-lists [access-list-name] Syntax Description access-list-name Command Default The switch shows all IPv4 ACLs, unless you use the access-list-name argument to specify an ACL. Command Modes EXEC mode Command History Release Modification 4.
Chapter 6 Security Commands show ipv6 access-lists Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show ipv6 access-lists To display all IPv6 ACLs or a specific IPv6 ACL, use the show ipv6 access-lists command. show ipv6 access-lists [access-list-name] [expanded | summary] Syntax Description access-list-name (Optional) Name of an IPv6 ACL, which can be up to 64 alphanumeric, case-sensitive characters.
Chapter 6 Security Commands show ipv6 access-lists Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description ipv6 access-list Configures an IPv6 ACL.
Chapter 6 Security Commands show mac access-lists Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show mac access-lists To display all Media Access Control (MAC) access control lists (ACLs) or a specific MAC ACL, use the show mac access-lists command. show mac access-lists [access-list-name] Syntax Description access-list-name Command Default The switch shows all MAC ACLs, unless you use the access-list-name argument to specify an ACL.
Chapter 6 Security Commands show radius-server Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show radius-server To display RADIUS server information, use the show radius-server command. show radius-server [hostname | ipv4-address | ipv6-address] [directed-request | groups [group-name] | sorted | statistics hostname | ipv4-address | ipv6-address] Syntax Description hostname (Optional) RADIUS server Domain Name Server (DNS) name. The maximum character size is 256.
Chapter 6 Security Commands show radius-server Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to display information for a specified RADIUS server group: switch# show radius-server groups RadServer This example shows how to display sorted information for all RADIUS servers: switch# show radius-server sorted This example shows how to display statistics for a specified RADIUS servers: switch# show radius-server statistics 10.10.1.
Chapter 6 Security Commands show role Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show role To display the user role configuration, use the show role command. show role [name role-name] Syntax Description name role-name Command Default Displays information for all user roles. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples (Optional) Displays information for a specific user role name.
Chapter 6 Security Commands show role feature Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show role feature To display the user role features, use the show role feature command. show role feature [detail | name feature-name] Syntax Description detail (Optional) Displays detailed information for all features. name feature-name (Optional) Displays detailed information for a specific feature. Command Default Displays a list of user role feature names.
Chapter 6 Security Commands show role feature-group Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show role feature-group To display the user role feature groups, use the show role feature-group command. show role feature-group [detail | name group-name] Syntax Description detail (Optional) Displays detailed information for all feature groups. name group-name (Optional) Displays detailed information for a specific feature group.
Chapter 6 Security Commands show running-config aaa Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show running-config aaa To display authentication, authorization, and accounting (AAA) configuration information in the running configuration, use the show running-config aaa command. show running-config aaa [all] Syntax Description all Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands show running-config radius Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show running-config radius To display RADIUS server information in the running configuration, use the show running-config radius command. show running-config radius [all] Syntax Description all Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands show running-config security Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show running-config security To display user account, SSH server, and Telnet server information in the running configuration, use the show running-config security command. show running-config security [all] Syntax Description all Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands show ssh key Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show ssh key To display the Secure Shell (SSH) server key, use the show ssh key command. show ssh key Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands show ssh server Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show ssh server To display the Secure Shell (SSH) server status, use the show ssh server command. show ssh server Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands show startup-config aaa Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show startup-config aaa To display authentication, authorization, and accounting (AAA) configuration information in the startup configuration, use the show startup-config aaa command. show startup-config aaa Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.
Chapter 6 Security Commands show startup-config radius Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show startup-config radius To display RADIUS configuration information in the startup configuration, use the show startup-config radius command. show startup-config radius Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands show startup-config security Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show startup-config security To display user account, SSH server, and Telnet server configuration information in the startup configuration, use the show startup-config security command. show startup-config security Syntax Description This command has no arguments or keywords.
Chapter 6 Security Commands show tacacs-server Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show tacacs-server To display TACACS+ server information, use the show tacacs-server command. show tacacs-server [hostname | ip4-address | ip6-address] [directed-request | groups | sorted | statistics] Syntax Description hostname (Optional) TACACS+ server Domain Name Server (DNS) name. The maximum character size is 256.
Chapter 6 Security Commands show tacacs-server Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands show telnet server Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show telnet server To display the Telnet server status, use the show telnet server command. show telnet server Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands show user-account Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show user-account To display information about the user accounts on the switch, use the show user-account command. show show user-account [name] Syntax Description name Command Default Displays information about all the user accounts defined on the switch. Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands show users Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show users To display the users currently logged on the switch, use the show users command. show users Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 6 Security Commands show vlan access-list Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show vlan access-list To display the contents of the IPv4 ACL or MAC ACL associated with a specific VLAN access map, use the show vlan access-list command. show vlan access-list map-name Syntax Description map-name Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. VLAN access list to show.
Chapter 6 Security Commands show vlan access-map Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show vlan access-map To display all VLAN access maps or a VLAN access map, use the show vlan access-map command. show vlan access-map [map-name] Syntax Description map-name Command Default The switch shows all VLAN access maps, unless you use the map-name argument to select a specific access map. Command Modes EXEC mode Command History Release Modification 4.
Chapter 6 Security Commands show vlan filter Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show vlan filter To display information about instances of the vlan filter command, including the VLAN access map and the VLAN IDs affected by the command, use the show vlan filter command. show vlan filter [access-map map-name | vlan vlan-id] Syntax Description access-map map-name (Optional) Limits the output to VLANs that the specified access map is applied to.
Chapter 6 Security Commands ssh Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ssh To create a Secure Shell (SSH) session using IPv4, use the ssh command. ssh [username@]{ipv4-address | hostname} [vrf vrf-name] Syntax Description username (Optional) Username for the SSH session. ipv4-address IPv4 address of the remote host. hostname Hostname of the remote host. vrf vrf-name (Optional) Specifies the VRF name to use for the SSH session.
Chapter 6 Security Commands ssh6 Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ssh6 To create a Secure Shell (SSH) session using IPv6, use the ssh6 command. ssh6 [username@]{ipv6-address | hostname} [vrf vrf-name] Syntax Description username (Optional) Username for the SSH session. ipv6-address IPv6 address of the remote host. hostname Hostname of the remote host. vrf vrf-name (Optional) Specifies the VRF name to use for the SSH session.
Chapter 6 Security Commands ssh key Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ssh key To create a Secure Shell (SSH) server key, use the ssh key command. To remove the SSH server key, use the no form of this command. ssh key {dsa [force] | rsa [length [force]]} no ssh key [dsa | rsa] Syntax Description dsa Specifies the Digital System Algrorithm (DSA) SSH server key. force (Optional) Forces the generation of a DSA SSH key even if previous ones are present.
Chapter 6 Security Commands ssh key Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 6 Security Commands ssh server enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ssh server enable To enable the Secure Shell (SSH) server, use the ssh server enable command. To disable the SSH server, use the no form of this command. ssh server enable no ssh server enable Syntax Description This command has no arguments or keywords. Command Default Enabled. Command Modes Configuration mode Command History Release Modification 4.
Chapter 6 Security Commands storm-control level Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m storm-control level To set the suppression level for traffic storm control, use the storm-control level command. To turn off the suppression mode or revert to the default, use the no form of this command. storm-control {broadcast | multicast | unicast} level percentage[.
Chapter 6 Security Commands storm-control level Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to disable the suppression mode for multicast traffic: switch(config-if)# no storm-control multicast level Related Commands Command Description show interface Displays the storm-control suppression counters for an interface. show running-config Displays the configuration of the interface.
Chapter 6 Security Commands tacacs-server deadtime Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m tacacs-server deadtime To set a periodic time interval where a nonreachable (nonresponsive) TACACS+ server is monitored for responsiveness, use the tacacs-server deadtime command. To disable the monitoring of the nonresponsive TACACS+ server, use the no form of this command.
Chapter 6 Security Commands tacacs-server directed-request Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m tacacs-server directed-request To allow users to send authentication requests to a specific TACACS+ server when logging in, use the radius-server directed request command. To revert to the default, use the no form of this command. tacacs-server directed-request no tacacs-server directed-request Syntax Description This command has no arguments or keywords.
Chapter 6 Security Commands tacacs-server host Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m tacacs-server host To configure TACACS+ server host parameters, use the tacacs-server host command. To revert to the defaults, use the no form of this command.
Chapter 6 Security Commands tacacs-server host Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Usage Guidelines You must use the feature tacacs+ command before you configure TACACS+. When the idle time interval is 0 minutes, periodic TACACS+ server monitoring is not performed.
Chapter 6 Security Commands tacacs-server key Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m tacacs-server key To configure a global TACACS+ shared secret key, use the tacacs-server key command. To remove a configured shared secret, use the no form of this command.
Chapter 6 Security Commands tacacs-server timeout Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m tacacs-server timeout To specify the time between retransmissions to the TACACS+ servers, use the tacacs-server timeout command. To revert to the default, use the no form of this command. tacacs-server timeout seconds no tacacs-server timeout seconds Syntax Description seconds Command Default 1 second.
Chapter 6 Security Commands telnet Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m telnet To create a Telnet session using IPv4 on a Cisco Nexus 5000 Series switch, use the telnet command. telnet {ipv4-address | hostname} [port-number] [vrf vrf-name] Syntax Description ipv4-address IPv4 address of the remote switch. hostname Hostname of the remote switch. port-number (Optional) Port number for the Telnet session. The range is from 1 to 65535.
Chapter 6 Security Commands telnet server enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m telnet server enable To enable the Telnet server, use the telnet server enable command. To disable the Telnet server, use the no form of this command. telnet server enable no telnet server enable Syntax Description This command has no arguments or keywords. Command Default Enable. Command Modes Configuration mode Command History Release Modification 4.
Chapter 6 Security Commands telnet6 Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m telnet6 To create a Telnet session using IPv6 on the NX-OS device, use the telnet6 command. telnet6 {ipv6-address | hostname} [port-number] [vrf vrf-name] Syntax Description ipv6-address IPv6 address of the remote device. hostname Hostname of the remote device. The name is alphanumeric, case sensitive, and has a maximum of 64 characters.
Chapter 6 Security Commands use-vrf Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m use-vrf To specify a virtual routing and forwarding instance (VRF) instance for a RADIUS or TACACS+ server group, use the use-vrf command. To remove the VRF instance, use the no form of this command.
Chapter 6 Security Commands use-vrf Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description aaa group server Configures AAA server groups. feature tacacs+ Enables TACACS+. radius-server host Configures a RADIUS server. show radius-server groups Displays RADIUS server information. show tacacs-server groups Displays TACACS+ server information. tacacs-server host Configures a TACACS+ server. vrf Configures a VRF instance.
Chapter 6 Security Commands username Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m username To create and configure a user account, use the username command. To remove a user account, use the no form of this command. username user-id [expire date] [password password] [role role-name] username user-id sshkey {key | filename filename} no username user-id Syntax Description user-id User identifier for the user account.
Chapter 6 Security Commands username Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples This example shows how to create a user account with a password: switch(config)# username user1 password Ci5co321 This example shows how to configure the SSH key for a user account: switch(config)# username user1 sshkey file bootflash:key_file Related Commands Command Description show user-account Displays the user account configuration.
Chapter 6 Security Commands vlan access-map Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m vlan access-map To create a new VLAN access map or to configure an existing VLAN access map, use the vlan access-map command. To remove a VLAN access map, use the no form of this command. vlan access-map map-name no vlan access-map map-name Syntax Description map-name Command Default None Command Modes Configuration mode Command History Release Modification 4.
Chapter 6 Security Commands vlan filter Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m vlan filter To apply a VLAN access map to one or more VLANs, use the vlan filter command. To unapply a VLAN access map, use the no form of this command. vlan filter map-name vlan-list VLAN-list no vlan filter map-name [vlan-list VLAN-list] Syntax Description map-name Name of the VLAN access map that you want to create or configure.
Chapter 6 Security Commands vlan filter Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description action Specifies an action for traffic filtering in a VLAN access map. match Specifies an ACL for traffic filtering in a VLAN access map. show vlan access-map Displays all VLAN access maps or a VLAN access map. show vlan filter Displays information about how a VLAN access map is applied. vlan access-map Configures a VLAN access map.
Chapter 6 Security Commands vlan policy deny Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m vlan policy deny To enter VLAN policy configuration mode for a user role, use the vlan policy deny command. To revert to the default VLAN policy for a user role, use the no form of this command. vlan policy deny no vlan policy deny Syntax Description This command has no arguments or keywords. Command Default All VLANs.
Chapter 6 Security Commands vrf policy deny Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m vrf policy deny To enter virtual forwarding and routing instance (VRF) policy configuration mode for a user role, use the vrf policy deny command. To revert to the default VRF policy for a user role, use the no form of this command. vrf policy deny no vrf policy deny Syntax Description This command has no arguments or keywords.
Chapter 6 Security Commands vrf policy deny Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m CH A P T E R 7 System Management Commands This chapter describes the system management commands available on Cisco Nexus 5000 Series switches.
Chapter 7 System Management Commands clear logging nvram Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear logging nvram Use the clear logging nvram command to clear the NVRAM logs. clear logging nvram Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands clear logging onboard Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear logging onboard To clear the OBFL entries in the persistent log, use the clear logging onboard command. clear logging onboard [environmental-history] [exception-log] [obfl-log] [stack-trace] Syntax Description environmental-history (Optional) Clears the OBFL environmental history. exception-log (Optional) Clears the OBFL exception log entries.
Chapter 7 System Management Commands clear logging session Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear logging session Use the clear logging session command to clear the current logging session. clear logging session Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands clear ntp session Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear ntp session To clear the Network Time Protocol (NTP) session, use the clear ntp session command. clear ntp session Syntax Description This command has no other arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands clear ntp statistics Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear ntp statistics To clear the Network Time Protocol (NTP) session, use the clear ntp session command. clear ntp statistics {all-peers | io | local | memory} Syntax Description all-peers Clears all peer transaction statistics. io Clears I/O statistics. local Clears local statistics. memory Clears memory statistics.
Chapter 7 System Management Commands logging console Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging console Use the logging console command to enable logging messages to the console session. To disable logging messages to the console session, use the no form of this command. logging console [severity-level] no logging console Syntax Description severity-level (Optional) The number of the desired severity level at which messages should be logged.
Chapter 7 System Management Commands logging event Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging event Use the logging event command to log interface events. To disable logging of interface events, use the no form of this command. logging event port {link-status | trunk-status} {default | enable} no logging event port {link-status | trunk-status} {default | enable} Syntax Description link-status Log all UP/DOWN and CHANGE messages.
Chapter 7 System Management Commands logging event port Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging event port Use the logging event port command to log events on an interface. To disable logging of interface events, use the no form of this command. logging event port {link-status | trunk-status} [default] no logging event port {link-status | trunk-status} Syntax Description link-status Log all UP/DOWN and CHANGE messages.
Chapter 7 System Management Commands logging level Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging level Use the logging level command to enable logging messages from the defined facility that have the specified severity level or higher. To disable logging messages from the defined facility, use the no form of this command.
Chapter 7 System Management Commands logging level Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show logging level Displays the facility logging level configuration.
Chapter 7 System Management Commands logging logfile Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging logfile Use the logging logfile command to configure the name of the log file used to store system messages and the minimum severity level to log. To disable logging to the log file, use the no form of this command.
Chapter 7 System Management Commands logging logfile Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show logging logfile Displays the log file.
Chapter 7 System Management Commands logging module Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging module Use the logging module command to enable module log messages. Set a specified severity level or use the default. To disable module log messages, use the no form of this command. logging module [severity-level] no logging module Syntax Description severity-level (Optional) The number of the desired severity level at which messages should be logged.
Chapter 7 System Management Commands logging monitor Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging monitor Use the logging monitor command to enable the device to log messages to the monitor (terminal line). This configuration applies to Telnet and SSH sessions. To disable monitor log messages, use the no form of this command.
Chapter 7 System Management Commands logging server Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging server Use the logging server command to configure a remote syslog server at the specified host name or IPv4/IPv6 address. To disable the remote syslog server, use the no form of this command.
Chapter 7 System Management Commands logging server Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m This example shows how to configure a remote syslog server at a specified host name, with severity level 5 or higher: switch(config)# logging server syslogA 5 Related Commands Command Description show logging server Displays the configured syslog servers.
Chapter 7 System Management Commands logging timestamp Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging timestamp Use the logging timestamp command to set the logging timestamp units. By default, the units are seconds. To reset the logging timestamp units to the default, use the no form of this command.
Chapter 7 System Management Commands ntp Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ntp To configure the NTP peers and servers for the switch, use the ntp command. Use the no form of this command to remove configured peers and servers. ntp {peer hostname | server hostname} [prefer] [use-vrf vrf-name] no ntp {peer hostname | server hostname} Syntax Description peer hostname The hostname or IP address of an NTP peer.
Chapter 7 System Management Commands ntp abort Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ntp abort To discard the Network Time Protocol (NTP) Cisco Fabric Services (CFS) distribution session in progress, use the ntp abort command. ntp abort Syntax Description This command has no other arguments or keywords. Command Default None Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands ntp commit Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ntp commit To apply the pending configuration pertaining to the Network Time Protocol (NTP) Cisco Fabric Services (CFS) distribution session in progress in the fabric, use the ntp commit command. ntp commit Syntax Description This command has no other arguments or keywords. Command Default None Command Modes Configuration mode Command History Release Modification 4.
Chapter 7 System Management Commands ntp distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ntp distribute To enable Cisco Fabric Services (CFS) distribution for Network Time Protocol (NTP), use the ntp distribute command. To disable this feature, use the no form of the command. ntp distribute no ntp distribute Syntax Description This command has no other arguments or keywords. Command Default Disabled.
Chapter 7 System Management Commands ntp sync-retry Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m ntp sync-retry To retry synchronization with the configured NTP servers, use the ntp sync-retry command. ntp sync-retry Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show logging console Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging console Use the show logging console command to display the console logging configuration. show logging console Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show logging info Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging info Use the show logging info command to display the logging configuration. show logging info Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show logging last Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging last Use the show logging last command to display the last number of lines of the logfile. show logging last number Syntax Description number Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples Enters the number of lines to display from 1 to 9999.
Chapter 7 System Management Commands show logging level Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging level Use the show logging level command to display the facility logging severity level configuration. show logging level [facility] Syntax Description facility Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show logging logfile Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging logfile Use the show logging logfile command to display the messages in the log file that were timestamped within the span entered. If you do not enter an end time, the current time is used.
Chapter 7 System Management Commands show logging module Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging module Use the show logging module command to display the module logging configuration. show logging module Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show logging monitor Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging monitor Use the show logging monitor command to display the monitor logging configuration. show logging monitor Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show logging nvram Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging nvram Use the show logging nvram command to display the messages in the NVRAM log. show logging nvram [last number-lines] Syntax Description last number-lines Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples (Optional) Enters the number of lines to display.
Chapter 7 System Management Commands show logging onboard Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging onboard To display the onboard logging information based on the error type, use the show logging onboard command.
Chapter 7 System Management Commands show logging onboard Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m • bootflash: • ftp: • scp: • sftp: • tftp: • volatile: The valid values for type are as follows: • begin [-i] [-x] [word]—Begin with the line that matches the text. – -i—Ignores the case difference when comparing the strings. – -x—Prints only the lines where the match is a whole line. – word—Specifies for the expression.
Chapter 7 System Management Commands show logging onboard Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m – -E—(Optional) Quits at the end of the file. – -d—(Optional) Specifies a dumb terminal. • no-more—Turns-off pagination for command output. • sed command—Stream Editor • wc—Counts words, lines, and characters. – -c—(Optional) Specifies the output character count. – -l—(Optional) Specifies the output line count. – -w—(Optional) Specifies the output word count.
Chapter 7 System Management Commands show logging onboard Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 7 System Management Commands show logging onboard Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m The show logging onboard stack-trace command displays the following information: Related Commands • Time in seconds • Time in microseconds • Error description string • Current process name and identification • Kernel jiffies • Stack trace clear logging onboard Clears the OBFL entries in the persistent log.
Chapter 7 System Management Commands show logging server Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging server Use the show logging server command to display the syslog server configuration. show logging server Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show logging session status Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging session status Use the show logging session status command to display the logging session status. show logging session status Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show logging status Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging status Use the show logging status command to display the logging status. show logging status Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show logging timestamp Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show logging timestamp Use the show logging timestamp command to display the logging timestamp configuration. show logging timestamp Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show ntp peer-status Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show ntp peer-status To do display the status of the Network Time Protocol peers, use the show ntp peer-status command. show ntp peer-status Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show ntp peers Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show ntp peers To display information about Network Time Protocol (NTP) peers, use the show ntp peers command. show ntp peers Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands show ntp statistics Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show ntp statistics To display Network Time Protocol (NTP) statistics, use the show ntp statistics command. show ntp statistics {io | local | memory | peer {ipaddr address | name name1 [..nameN]} Syntax Description io Show the input-output statistics. local Show the counters maintained by the local NTP.
Chapter 7 System Management Commands show ntp timestamp-status Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show ntp timestamp-status To display the Network Time Protocol timestamp information, use the show ntp timestamp-status command. show ntp timestamp-status Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 7 System Management Commands System Message Logging Facilities Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m System Message Logging Facilities Table 7-3 lists the facilities that you can use in system message logging configuration. Table 7-3 System Message Logging Facilities Facility Description aaa Sets level for aaa syslog messages. aclmgr Sets level for aclmgr syslog messages. adjmgr Sets syslog filter level for Adjacency Manager.
Chapter 7 System Management Commands System Message Logging Facilities Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Table 7-3 System Message Logging Facilities (continued) Facility Description feature-mgr Feature manager syslog level. flogi Configure level for flogi syslog messages. fs-daemon fs daemon syslog level. fspf FSPF syslog level. ftp Sets level for File Transfer System. fwm Sets level for fwm syslog messages. gatos Gatos syslog level.
Chapter 7 System Management Commands System Message Logging Facilities Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Table 7-3 System Message Logging Facilities (continued) Facility Description rlir Sets level for RLIR. rscn sets level for RSCN. san-port-channel Sets level for san-port-channel syslog messages. scsi-target scsi target daemon syslog level. security Security syslog level. session Sets level for session-manager syslog messages.
Chapter 7 System Management Commands System Message Logging Facilities Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m CH A P T E R 8 Fibre Channel Commands This chapter describes the Cisco NX-OS Fibre Channel and virtual Fibre Channel commands available on Cisco Nexus 5000 Series switches.
Chapter 8 Fibre Channel Commands cfs distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m cfs distribute To enable or disable Cisco Fabric Services (CFS) distribution on the switch, use the cfs distribute command. To disable this feature, use the no form of the command. cfs distribute no cfs distribute Syntax Description This command has no other arguments or keywords. Command Default CFS distribution is enabled.
Chapter 8 Fibre Channel Commands cfs ipv4 distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m cfs ipv4 distribute To enable Cisco Fabric Services (CFS) distribution over IPv4 for applications that want to use this feature, use the cfs ipv4 command. To disable this feature, use the no form of the command. cfs ipv4 distribute no cfs ipv4 distribute Syntax Description This command has no arguments or keywords. Command Default CFS distribution is enabled.
Chapter 8 Fibre Channel Commands cfs ipv4 distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description cfs ipv4 mcast-address Configures an IPv4 multicast address for Cisco Fabric Services (CFS) distribution over IPv4. show cfs status Displays whether CFS distribution is enabled or disabled.
Chapter 8 Fibre Channel Commands cfs ipv4 mcast-address Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m cfs ipv4 mcast-address To configure an IPv4 multicast address for Cisco Fabric Services (CFS) distribution over IPv4, use the cfs ipv4 mcast-address command. To disable this feature, use the no form of the command.
Chapter 8 Fibre Channel Commands cfs ipv4 mcast-address Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description cfs ipv4 distribute Enables or disables Cisco Fabric Services (CFS) distribution over IPv4. show cfs status Displays whether CFS distribution is enabled or disabled.
Chapter 8 Fibre Channel Commands cfs ipv6 distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m cfs ipv6 distribute To enable Cisco Fabric Services (CFS) distribution over IPv6 for applications using CFS, use the cfs ipv6 distribute command. To disable this feature, use the no form of the command. cfs ipv6 distribute no cfs ipv6 distribute Syntax Description This command has no arguments or keywords. Command Default CFS distribution is enabled.
Chapter 8 Fibre Channel Commands cfs ipv6 distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description cfs ipv6 mcast-address Configures an IPv6 multicast address for Cisco Fabric Services (CFS) distribution over IPv6. show cfs status Displays whether CFS distribution is enabled or disabled.
Chapter 8 Fibre Channel Commands cfs ipv6 mcast-address Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m cfs ipv6 mcast-address To configure an IPv6 multicast address for Cisco Fabric Services (CFS) distribution over IPv6, use the cfs ipv6 mcast-address command. To disable this feature, use the no form of the command.
Chapter 8 Fibre Channel Commands cfs ipv6 mcast-address Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description cfs ipv6 distribute Enables or disables Cisco Fabric Services (CFS) distribution over IPv6. show cfs status Displays whether CFS distribution is enabled or disabled.
Chapter 8 Fibre Channel Commands cfs region Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m cfs region To create a region that restricts the scope of application distribution to the selected switches, use the cfs region command. To disable this feature, use the no form of this command. cfs region region-id no cfs region region-id Syntax Description region-id Command Default The default region identifier is 0.
Chapter 8 Fibre Channel Commands cfs staggered-merge Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m cfs staggered-merge CFS can merge the data from multiple VSANs. To disable this feature, use the no form of this command. cfs staggered-merge enable no cfs staggered-merge enable Syntax Description enable Command Default Staggered merge is disabled. Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 8 Fibre Channel Commands clear device-alias Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear device-alias To clear device alias information, use the clear device-alias command. clear device-alias {database | session | statistics} Syntax Description database Clears the device alias database. session Clears session information. statistics Clears device alias statistics.
Chapter 8 Fibre Channel Commands clear fcdomain Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear fcdomain To clear the entire list of configured hosts, use the clear fcdomain command. clear fcdomain session vsan vsan-id Syntax Description session Clears session information. vsan vsan-id Clears Fibre Channel domains for a specified VSAN ranging from 1 to 4093. Command Default None Command Modes EXEC mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands clear fcflow stats Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear fcflow stats To clear Fibre Channel flow statistics, use the clear fcflow stats command. clear fcflow stats [aggregated] index flow-index Syntax Description aggregated (Optional) Clears the Fibre Channel flow aggregated statistics. index Clears the Fibre Channel flow counters for a specified flow index. flow-index Specifies the flow index number.
Chapter 8 Fibre Channel Commands clear fcns statistics Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear fcns statistics To clear the name server statistics, use the clear fcns statistics command. clear fcns statistics vsan vsan-id Syntax Description vsan vsan-id Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 8 Fibre Channel Commands clear fcsm log Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear fcsm log To clear the FCSM log, use the clear fcsm log command. clear fcsm log Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 8 Fibre Channel Commands clear fcs statistics Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear fcs statistics To clear the fabric configuration server statistics, use the clear fcs statistics command. clear fcs statistics vsan vsan-id Syntax Description vsan vsan-id Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 8 Fibre Channel Commands clear fctimer session Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear fctimer session To clear fctimer Cisco Fabric Services (CFS) session configuration and locks, use the clear fctimer session command. clear fctimer session Syntax Description This command has no other arguments or keywords. Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 8 Fibre Channel Commands clear fspf counters Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear fspf counters To clear the Fabric Shortest Path First (FSPF) statistics, use the clear fspf counters command. clear fspf counters vsan vsan-id [interface type] Syntax Description vsan Indicates that the counters are to be cleared for a VSAN. vsan-id The ID of the VSAN is from 1 to 4093. interface type (Optional).
Chapter 8 Fibre Channel Commands clear port-security Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear port-security To clear the port security information on the switch, use the clear port-security command. clear port-security {database auto-learn {interface fc slot/port | san-port-channel port} | session | statistics} vsan vsan-id Syntax Description database Clears the port security active configuration database.
Chapter 8 Fibre Channel Commands clear rlir Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear rlir To clear Registered Link Incident Report (RLIR) information, use the clear rlir command. clear rlir {history | recent {interface fc slot/port | portnumber port} | statistics vsan vsan-id} Syntax Description history Clears RLIR incident link history.
Chapter 8 Fibre Channel Commands clear rscn session Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear rscn session To clear a Registered State Change Notification (RSCN) session for a specified VSAN, use the clear rscn session command. clear rscn session vsan vsan-id Syntax Description vsan vsan-id Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 8 Fibre Channel Commands clear rscn statistics Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear rscn statistics To clear the registered state change notification statistics for a specified VSAN, use the clear rscn statistics command. clear rscn statistics vsan vsan-id Syntax Description vsan Clears the RSCN statistics for a VSAN. vsan-id The ID of the VSAN is from 1 to 4093.
Chapter 8 Fibre Channel Commands clear zone Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m clear zone To clear all configured information in the zone server for a specified VSAN, use the clear zone command. clear zone {database | lock | statistics} vsan vsan-id Syntax Description database Clears zone server database information. lock Clears a zone server database lock. statistics Clears zone server statistics. vsan Clears zone information for a VSAN.
Chapter 8 Fibre Channel Commands device-alias abort Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m device-alias abort To discard a Distributed Device Alias Services (device alias) Cisco Fabric Services (CFS) distribution session in progress, use the device-alias abort command. device-alias abort Syntax Description This command has no other arguments or keywords.
Chapter 8 Fibre Channel Commands device-alias commit Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m device-alias commit To apply the pending configuration pertaining to the Distributed Device Alias Services (device alias) Cisco Fabric Services (CFS) distribution session in progress in the fabric, use the device-alias commit command. device-alias commit Syntax Description This command has no other arguments or keywords.
Chapter 8 Fibre Channel Commands device-alias database Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m device-alias database To initiate a Distributed Device Alias Services (device alias) session and configure the device alias database, use the device-alias database command. To deactivate the device alias database, use the no form of the command. device-alias database no device-alias database Syntax Description This command has no other arguments or keywords.
Chapter 8 Fibre Channel Commands device-alias distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m device-alias distribute To enable Cisco Fabric Services (CFS) distribution for Distributed Device Alias Services (device alias), use the device-alias distribute command. To disable this feature, use the no form of the command. device-alias distribute no device-alias distribute Syntax Description This command has no other arguments or keywords.
Chapter 8 Fibre Channel Commands device-alias import fcalias Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m device-alias import fcalias To import device alias database information from another VSAN, use the device-alias import fcalias command. To revert to the default configuration or factory defaults, use the no form of the command.
Chapter 8 Fibre Channel Commands device-alias mode Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m device-alias mode To configure device alias enhanced mode, use the device-alias mode command. To remove device alias enhanced mode, use the no form of the command. device-alias mode enhanced no device-alias mode enhanced Syntax Description enhanced Command Default None Command Modes Configuration mode Command History Release Modification Release 4.
Chapter 8 Fibre Channel Commands device-alias name Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m device-alias name To configure device names in the device alias database, use the device-alias name command. To remove device names from the device alias database, use the no form of the command. device-alias name device-name pwwn pwwn-id no device-alias name device-name Syntax Description device-name Specifies the device name. Maximum length is 64 characters.
Chapter 8 Fibre Channel Commands device-alias rename Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m device-alias rename To configure device names in the device alias database, use the device-alias rename command. To remove device names from the device alias database, use the no form of the command. device-alias rename device-name1 device-name2 no device-alias rename device-name Syntax Description device-name1 Specifies the current device name.
Chapter 8 Fibre Channel Commands discover custom-list Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m discover custom-list To selectively initiate discovery for specified domain IDs in a VSAN, use the discover custom-list command. discover custom-list {add | delete} vsan vsan-id domain domain-id Syntax Description add Adds a targets to the customized list. delete Deletes a target from the customized list.
Chapter 8 Fibre Channel Commands discover scsi-target Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m discover scsi-target To discover SCSI targets on local storage to the switch or remote storage across the fabric, use the discover scsi-target command.
Chapter 8 Fibre Channel Commands discover scsi-target Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m The following example shows how to discover SCSI targets for the specified VSAN (1) and FCID (0x9c03d6): switch# discover scsi-target vsan 1 fcid 0x9c03d6 os aix discover scsi-target vsan 1 fcid 0x9c03d6 VSAN: 1 FCID: 0x9c03d6 PWWN: 00:00:00:00:00:00:00:00 PRLI RSP: 0x01 SPARM: 0x0012...
Chapter 8 Fibre Channel Commands fabric profile Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fabric profile To utilize a preset QoS setting, use the fabric profile command. To restore the default, use the no form of the command. fabric profile {reliable-multicast | unicast-optimized} no fabric profile Syntax Description reliable-multicast Optimizes the QoS parameters in the fabric to ensure reliable delivery of multicast traffic.
Chapter 8 Fibre Channel Commands fabric-binding activate Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fabric-binding activate To activate fabric binding in a VSAN, use the fabric-binding activate command. To disable this feature, use the no form of the command. fabric-binding activate vsan vsan-id [force] no fabric-binding activate vsan vsan-id Syntax Description vsan vsan-id Specifies the VSAN. The ID of the VSAN is from 1 to 4093.
Chapter 8 Fibre Channel Commands fabric-binding database copy Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fabric-binding database copy To copy from the active fabric binding database to the configuration fabric binding database, use the fabric-binding database copy command. fabric-binding database copy vsan vsan-id Syntax Description vsan vsan-id Command Default None Command Modes EXEC mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands fabric-binding database diff Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fabric-binding database diff To view the differences between the active database and the configuration database in a VSAN, use the fabric-binding database diff command. fabric-binding database diff {active | config} vsan vsan-id Syntax Description active Provides information about the differences in the active database relating to the configuration database.
Chapter 8 Fibre Channel Commands fabric-binding database vsan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fabric-binding database vsan To configure a user-specified fabric binding list in a VSAN, use the fabric-binding database vsan command. To disable the fabric binding, use the no form of the command.
Chapter 8 Fibre Channel Commands fabric-binding database vsan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description fabric-binding activate Activates fabric-binding. fabric-binding enable Enables fabric-binding.
Chapter 8 Fibre Channel Commands fabric-binding enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fabric-binding enable To enable fabric binding in a VSAN, use the fabric-binding enable command. To disable fabric binding, use the no form of the command. fabric-binding enable no fabric-binding enable Syntax Description This command has no other arguments or keywords. Command Default Disabled.
Chapter 8 Fibre Channel Commands fcalias clone Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcalias clone To clone a Fibre Channel alias, use the fcalias clone command. fcalias clone origFcalias-Name cloneFcalias-Name vsan vsan-id Syntax Description origFcalias-Name cloneFcalias-Name Clones a Fibre Channel alias from the current name to a new name. Maximum length of names is 64 characters. vsan The clone Fibre Channel alias is for a VSAN.
Chapter 8 Fibre Channel Commands fcalias name Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcalias name To configure a Fibre Channel alias, use the fcalias name command. To disable a Fibre Channel alias, use the no form of the command. fcalias name alias-name vsan vsan-id no fcalias name alias-name vsan vsan-id Syntax Description alias-name The name of the fcalias. Maximum length is 64 characters. vsan The fcalias is for a VSAN.
Chapter 8 Fibre Channel Commands fcalias rename Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcalias rename To rename a Fibre Channel alias (fcalias), use the fcalias rename command. fcalias rename current-name new-name vsan vsan-id no fcalias rename current-name new-name vsan vsan-id Syntax Description current-name Specifies the current fcalias name. The maximum length is 64. new-name Specifies the new fcalias name. The maximum length is 64.
Chapter 8 Fibre Channel Commands fcdomain Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcdomain To configure the Fibre Channel domain feature, use the fcdomain command. To disable the Fibre Channel domain, use the no form of the command.
Chapter 8 Fibre Channel Commands fcdomain Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Usage Guidelines You can use this command to select the principal switch, configure domain ID distribution, reconfigure the fabric, and allocate FC IDs. We recommend using the optimize fast-restart option on most fabrics, especially those with a large number of logical ports (3200 or more), where a logical port is an instance of a physical port in a VSAN.
Chapter 8 Fibre Channel Commands fcdomain abort vsan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcdomain abort vsan To flush cached data without committing and release the lock, use the fcdomain abort vsan command. To disable the flushing of cached data, use the no form of the command. fcdomain abort vsan vsan-id no fcdomain abort vsan vsan-id Syntax Description vsan-id Command Default Enabled.
Chapter 8 Fibre Channel Commands fcdomain commit vsan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcdomain commit vsan To commit cached data and release the lock, use the fcdomain commit vsan command. To release the lock without committing the cached data, use the no form of the command. fcdomain commit vsan vsan-id no fcdomain commit vsan vsan-id Syntax Description vsan vsan-id Command Default Enabled.
Chapter 8 Fibre Channel Commands fcdomain distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcdomain distribute To enable fabric distribution using Cisco Fabric Services (CFS), use the fcdomain distribute command. To disable fabric distribution using CFS, us the no form of the command. fcdomain distribute no fcdomain distribute Syntax Description This command has no arguments or keywords. Command Default Disabled.
Chapter 8 Fibre Channel Commands fcdomain rcf-reject Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcdomain rcf-reject To enable the RCF reject flag for a Fibre Channel interface, use the fcdomain option. To disable this feature, use the no form of the command. fcdomain rcf-reject vsan vsan-id no fcdomain rcf-reject vsan vsan-id Syntax Description vsan vsan-id Command Default Enabled.
Chapter 8 Fibre Channel Commands fcdroplatency Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcdroplatency To configure the network and switch Fibre Channel drop latency time, use the fcdroplatency command. To disable the Fibre Channel latency time, use the no form of the command.
Chapter 8 Fibre Channel Commands fcflow stats Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcflow stats To configure fcflow statistics, use the fcflow stats command. To disable the counter, use the no form of the command.
Chapter 8 Fibre Channel Commands fcflow stats Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show fcflow stats Displays the configured Fibre Channel drop latency parameters.
Chapter 8 Fibre Channel Commands fcid-allocation Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcid-allocation Use the fcid-allocation command to manually add a FCID to the default area company ID list. Use the no form of the command to remove a FCID from the default area company ID list. fcid-allocation area company-id company-id no fcid-allocation area company-id company-id Syntax Description area Modifies the auto area list of company IDs.
Chapter 8 Fibre Channel Commands fcinterop fcid-allocation Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcinterop fcid-allocation To allocate FCIDs on the switch, use the fcinterop fcid-allocation command. To disable FCIDs on the switch, use the no form of the command. fcinterop fcid-allocation {auto | flat | none} no fcinterop fcid-allocation {auto | flat | none} Syntax Description auto Assigns single FCID to compatible HBAs. flat Assign single FCID.
Chapter 8 Fibre Channel Commands fcns no-auto-poll Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcns no-auto-poll To enable or disable automatic polling in the name server database, use the fcns no-auto-poll command. fcns no-auto-poll [vsan vsan-id] | [wwn wwn-id] no fcns no-auto-poll [vsan vsan-id] | [wwn wwn-id] Syntax Description vsan vsan-id (Optional) Specifies a VSAN ID. The range is 1 to 4093.
Chapter 8 Fibre Channel Commands fcns proxy-port Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcns proxy-port To register a name server proxy, use the fcns proxy-port command. fcns proxy-port wwn-id vsan vsan-id no fcns proxy-port wwn-id vsan vsan-id Syntax Description wwn-id Specifies the port WWN, with the format hh:hh:hh:hh:hh:hh:hh:hh. vsan vsan-id Specifies a VSAN ID. The range is 1 to 4093.
Chapter 8 Fibre Channel Commands fcns reject-duplicate-pwwn vsan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcns reject-duplicate-pwwn vsan To reject duplicate Fibre Channel name server (FCNS) proxies on a VSAN, use the fcns reject-duplicate-pwwn vsan command. fcns reject-duplicate-pwwn vsan vsan-id no fcns reject-duplicate-pwwn vsan vsan-id Syntax Description vsan vsan-id Command Default Disabled.
Chapter 8 Fibre Channel Commands fcping Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcping To ping an N port, use the fcping command. fcping {device-alias aliasname | fcid {fc-port | domain-controller-id} | pwwn pwwn-id} vsan vsan-id [count number [timeout value [usr-priority priority]]] Syntax Description device-alias aliasname Specifies the device alias name. Maximum length is 64 characters. fcid The FCID of the destination N port.
Chapter 8 Fibre Channel Commands fcping Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m The following example shows the setting of the timeout value. The default period to wait is 5 seconds. The range is from 1 through 10 seconds.
Chapter 8 Fibre Channel Commands fcroute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcroute To configure Fibre Channel routes and to activate policy routing, use the fcroute command. To remove a configuration or revert to factory defaults, use the no form of the command.
Chapter 8 Fibre Channel Commands fcroute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 8 Fibre Channel Commands fcs plat-check-global Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcs plat-check-global To enable FCS platform and node-name checking fabric wide, use the fcs plat-check-global command. To disable this feature, use the no form of the command.
Chapter 8 Fibre Channel Commands fcs register Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcs register To register FCS attributes, use the fcs register command. To disable this feature, use the no form of the command. fcs register no fcs register Syntax Description This command has no arguments or keywords. Command Default None Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 8 Fibre Channel Commands fcs virtual-device-add Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcs virtual-device-add To include a virtual device in a query about zone information from an FCS, use the fcs virtual-device-add command. To remove a virtual device, use the no form of the command. fcs virtual-device-add [vsan-ranges vsan-ids] no fcs virtual-device-add [vsan-ranges vsan-ids] Syntax Description vsan-ranges vsan-ids Command Default Disabled.
Chapter 8 Fibre Channel Commands fcsp Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcsp To configure an Fibre Channel Security Protocol (FC-SP) authentication mode for a specific interface in a FC-SP-enabled switch, use the fcsp command. To disable an FC-SP on the interface, use the no form of the command.
Chapter 8 Fibre Channel Commands fcsp Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description fcsp enable Enables FC-SP. show interface Displays an interface configuration for a specified interface.
Chapter 8 Fibre Channel Commands fcsp dhchap Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcsp dhchap To configure DHCHAP options in a switch, use the fcsp dhchap command. This command is only available when the FC-SP feature is enabled. Use the no form of the command to revert to factory defaults.
Chapter 8 Fibre Channel Commands fcsp dhchap Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 8 Fibre Channel Commands fcsp enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcsp enable To enable the Fibre Channel Security Protocol (FC-SP) in a switch, use the fcsp enable command. Additional FC-SP commands are available when the FC-SP feature is enabled. To disable FC-SP, use the no form of the command. fcsp enable no fcsp enable Syntax Descriptionf fcsp Specifies the FC-SP feature in the switch. enable Enables the FC-SP feature in this switch.
Chapter 8 Fibre Channel Commands fcsp reauthenticate Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcsp reauthenticate To reauthenticate a Fibre Channel or virtual Fibre Channel interface, use the fcsp reauthenticate command. Use the no form of the command to revert to factory defaults.
Chapter 8 Fibre Channel Commands fcsp timeout Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fcsp timeout To configure the timeout value for FC-SP message, use the fcsp timeout command. Use the no form of the command to revert to factory defaults. fcsp timeout timeout-period no fcsp timeout timeout-period Syntax Description timeout-period Command Default 30 seconds. Command Modes Configuration mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands fctimer Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fctimer To change the default Fibre Channel timers, use the fctimer command. To revert to the default values, use the no form of the command.
Chapter 8 Fibre Channel Commands fctimer abort Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fctimer abort To discard a Fibre Channel timer (fctimer) Cisco Fabric Services (CFS) distribution session in progress, use the fctimer abort command. fctimer abort Syntax Description This command has no other arguments or keywords. Command Default None Command Modes Configuration mode Command History Release Modification Release 4.0 This command was introduced.
Chapter 8 Fibre Channel Commands fctimer commit Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fctimer commit To apply the pending configuration pertaining to the Fibre Channel timer (fctimer) Cisco Fabric Services (CFS) distribution session in progress in the fabric, use the fctimer commit command. fctimer commit Syntax Description This command has no other arguments or keywords.
Chapter 8 Fibre Channel Commands fctimer distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fctimer distribute To enable Cisco Fabric Services (CFS) distribution for Fibre Channel timer (fctimer), use the fctimer distribute command. To disable this feature, use the no form of the command. fctimer distribute no fctimer distribute Syntax Description This command has no other arguments or keywords. Command Default Disabled.
Chapter 8 Fibre Channel Commands fctrace Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fctrace To trace the route to an N port, use the fctrace command. fctrace {device-alias aliasname | fcid fcid | pwwn pwwn-id} vsan vsan-id [timeout seconds] Syntax Description device-alias aliasname Specifies the device alias name. Maximum length is 64 characters.
Chapter 8 Fibre Channel Commands fdmi suppress-updates Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fdmi suppress-updates To suppress FDMI updates, use the fdmi suppress-updates command. fdmi suppress-updates vsan vsan-id Syntax Description vsan vsan-id Command Default By default, FDMI updates are not suppressed. Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples Specifies a VSAN ID.
Chapter 8 Fibre Channel Commands fspf config Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fspf config To configure an FSPF feature for an entire VSAN, use the fspf config command. This command enters FSPF configuration mode, which includes four commands (each with a no form). To delete FSPF configuration for the entire VSAN, use the no form of the command.
Chapter 8 Fibre Channel Commands fspf config Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command History Release Modification 4.0(0)N1(1a) This command was introduced. Usage Guidelines The fspf config command enters FSPF configuration mode for the specified VSAN. In FSPF configuration mode, the commands configure FSPF for this VSAN .
Chapter 8 Fibre Channel Commands fspf cost Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fspf cost To configure FSPF link cost for an FCIP interface, use the fspf cost command. To revert to the default value, use the no form of the command. fspf cost link-cost vsan vsan-id no fspf cost link-cost vsan vsan-id Syntax Description Command Default link-cost Enters FSPF link cost in seconds. The range is 1 to 65535. vsan vsan-id Specifies a VSAN ID.
Chapter 8 Fibre Channel Commands fspf dead-interval Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fspf dead-interval To set the maximum interval for which a hello message must be received before the neighbor is considered lost, use the fspf dead-interval command. To revert to the default value, use the no form of the command.
Chapter 8 Fibre Channel Commands fspf enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fspf enable To enable FSPF for a VSAN, use the fspf enable command. To disable FSPF routing protocols, use the no form of the command. fspf enable vsan vsan-id no fspf enable vsan vsan-id Syntax Description vsan vsan-id Command Default Enabled. Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 8 Fibre Channel Commands fspf hello-interval Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fspf hello-interval To verify the health of the link, use the fspf hello-interval command. To revert to the default value, use the no form of the command. fspf hello-interval seconds vsan vsan-id no fspf hello-interval seconds vsan vsan-id Syntax Description hello-interval seconds Specifies the FSPF hello-interval in seconds. The range is 2 to 65535.
Chapter 8 Fibre Channel Commands fspf passive Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fspf passive To disable the FSPF protocol for selected interfaces, use the fspf passive command. To revert to the default state, use the no form of the command. fspf passive vsan vsan-id no fspf passive vsan vsan-id Syntax Description vsan vsan-id Command Default FSPF is enabled. Command Modes Interface configuration mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands fspf retransmit-interval Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m fspf retransmit-interval To specify the time after which an unacknowledged link state update should be transmitted on the interface, use the fspf retransmit-interval command. To revert to the default value, use the no form of the command.
Chapter 8 Fibre Channel Commands in-order-guarantee Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m in-order-guarantee To enable in-order delivery, use the in-order-guarantee command. To disable in-order delivery, use the no form of the command. in-order-guarantee [vsan vsan-id] no in-order-guarantee [vsan vsan-id] [,] [-] Syntax Description vsan vsan-id Specifies a VSAN ID. The range is 1 to 4093.
Chapter 8 Fibre Channel Commands interface fc Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m interface fc To configure a Fibre Channel interface on a Cisco Nexus 5000 Series switch, use the interface fc command. The interface fc command enters interface configuration mode, which includes five commands (each with a no form). To revert to defaults, use the no form of the command.
Chapter 8 Fibre Channel Commands interface fc Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command History Usage Guidelines Release Modification 4.0(0)N1(1a) This command was introduced. You can specify a range of interfaces by entering a command with the following example format: interface fc 1/1 - 5 , fc 2/5 - 7 Refer to the Cisco Nexus 5000 Series CLI Configuration Guide for information on port number allocation.
Chapter 8 Fibre Channel Commands interface san-port-channel Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m interface san-port-channel To configure a SAN port channel interface on a Cisco Nexus 5000 Series switch, use the interface san-port-channel command. The interface san-port-channel command enters interface configuration mode, which includes six commands (each with a no form). To revert to defaults, use the no form of the command.
Chapter 8 Fibre Channel Commands interface san-port-channel Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Examples The following example configures SAN port channel interface 3: switch(config)# interface san-port-channel 3 Related Commands Command Description show interface Displays an interface configuration for a specified interface. shutdown Disables and enables an interface.
Chapter 8 Fibre Channel Commands interface vfc Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m interface vfc To configure a virtual Fibre Channel interface on a Cisco Nexus 5000 Series switch, use the interface vfc command. To revert to defaults, use the no form of the command.
Chapter 8 Fibre Channel Commands interface vfc Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show interface Displays an interface configuration for a specified interface. shutdown Disables and enables an interface.
Chapter 8 Fibre Channel Commands logging abort Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging abort To discard the logging Cisco Fabric Services (CFS) distribution session in progress, use the logging abort command. logging abort Syntax Description This command has no other arguments or keywords. Command Default None Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 8 Fibre Channel Commands logging commit Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging commit To apply the pending configuration pertaining to the logging Cisco Fabric Services (CFS) distribution session in progress in the fabric, use the logging commit command. logging commit Syntax Description This command has no other arguments or keywords. Command Default None Command Modes Configuration mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands logging distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m logging distribute To enable Cisco Fabric Services (CFS) distribution for logging, use the logging distribute command. To disable this feature, use the no form of the command. logging distribute no logging distribute Syntax Description This command has no other arguments or keywords. Command Default Disabled.
Chapter 8 Fibre Channel Commands member (fcalias configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m member (fcalias configuration mode) To add a member name to a Fibre Channel alias on a VSAN, use the member command. To remove a member name from a Fibre Channel alias, use the no form of the command.
Chapter 8 Fibre Channel Commands member (fcalias configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m The following example shows how to delete the specified member: switch(config-fcalias)# no member interface fc3/1 Related Commands Command Description fcalias name Configures an alias. show fcalias Displays the member name information in an alias.
Chapter 8 Fibre Channel Commands member (zone configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m member (zone configuration mode) To add a member name to a Fibre Channel zone, use the member command. To remove a member name from a zone, use the no form of the command.
Chapter 8 Fibre Channel Commands member (zone configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 8 Fibre Channel Commands member (zoneset configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m member (zoneset configuration mode) To configure zone set members, use the member command in zone set configuration mode. To remove a zone set member, use the no form of the command.
Chapter 8 Fibre Channel Commands npiv enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m npiv enable To enable N Port Identifier Virtualization (NPIV) for all VSANs on a switch, use the npiv enable command. To disable NPIV, use the no form of the command. npiv enable no npiv enable Syntax Description This command has no arguments or keywords. Command Default Disabled. Command Modes Configuration mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands npv auto-load-balance disruptive Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m npv auto-load-balance disruptive To enable N Port Virtualization (NPV) disruptive load-balancing, use the npv auto-load-balance disruptive command. To disable this feature, use the no form of the command. npv auto-load-balance disruptive no npv auto-load-balance disruptive Syntax Description This command has no other arguments or keywords.
Chapter 8 Fibre Channel Commands npv enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m npv enable To enable N Port Virtualization (NPV) mode, use the npv enable command. To disable this feature, use the no form of the command. npv enable no npv enable Syntax Description This command has no other arguments or keywords. Command Default None Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 8 Fibre Channel Commands npv traffic-map Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m npv traffic-map To configure a N Port Virtualization (NPV) traffic map, use the npv traffic map command. To disable this feature, use the no form of the command. This command is only available when the switch is operating in NPV mode.
Chapter 8 Fibre Channel Commands port-security Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m port-security To configure port security features and reject intrusion attempts, use the port-security command. Use the no form of the command to negate the command or revert to factory defaults.
Chapter 8 Fibre Channel Commands port-security Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 8 Fibre Channel Commands port-security abort Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m port-security abort To discard the port security Cisco Fabric Services (CFS) distribution session in progress, use the port-security abort command. port-security abort vsan vsan-id Syntax Description vsan vsan-id Command Default None Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 8 Fibre Channel Commands port-security commit Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m port-security commit To apply the pending configuration pertaining to the port security Cisco Fabric Services (CFS) distribution session in progress in the fabric, use the port-security commit command. port-security commit vsan vsan-id Syntax Description vsan vsan-id Command Default None Command Modes Configuration mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands port-security database Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m port-security database To copy the port security database or to view the difference within the port security database, use the port-security database command. port-security database {copy | diff {active | config}} vsan vsan-id Syntax Description copy Copies the active database to the configuration database.
Chapter 8 Fibre Channel Commands port-security database Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description port-security database Copies and provides information on the differences within the port security database. show port-security database Displays configured port security information.
Chapter 8 Fibre Channel Commands port-security distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m port-security distribute To enable Cisco Fabric Services (CFS) distribution for port security, use the port-security distribute command. To disable this feature, use the no form of the command. port-security distribute no port-security distribute Syntax Description This command has no other arguments or keywords. Command Default Disabled.
Chapter 8 Fibre Channel Commands port-security enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m port-security enable To enable port security, use the port-security enable command. To disable port security, use the no form of the command. port-security enable no port-security enable Syntax Description This command has no other arguments or keywords. Command Default Disabled. Command Modes Configuration mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands port-track enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m port-track enable To enable port tracking for indirect errors, use the port-track enable command. To disable this feature, use the no form of the command. port-track enable no port-track enable Syntax Description This command has no other arguments or keywords. Command Default Disabled. Command Modes Configuration mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands port-track force-shut Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m port-track force-shut To force a shutdown of a tracked port, use the port-track force-shut command. To reenable the port tracking, use the no form of the command. port-track force-shut no port-track force-shut Syntax Description This command has no other arguments or keywords.
Chapter 8 Fibre Channel Commands port-track interface Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m port-track interface To enable port tracking for specific interfaces, use the port-track interface command. To disable this feature, use the no form of the command.
Chapter 8 Fibre Channel Commands purge fcdomain fcid Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m purge fcdomain fcid To purge persistent FCIDs, use the purge fcdomain fcid command. purge fcdomain fcid vsan vsan-id Syntax Description vsan vsan-id Command Default None Command Modes EXEC mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples Indicates that FCIDs are to be purged for a VSAN ID. The range is 1 to 4093.
Chapter 8 Fibre Channel Commands rlir preferred-cond fcid Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m rlir preferred-cond fcid To specify a preferred host to receive Registered Link Incident Report (RLIR) frames, use the rlir preferred-cond fcid command. To remove a preferred host, use the no form of the command. rlir preferred-cond fcid fc-id vsan vsan-id no rlir preferred-cond fcid fc-id vsan vsan-id Syntax Description fcid fc-id Specifies the FC ID.
Chapter 8 Fibre Channel Commands rlir preferred-cond fcid Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show rlir Displays information about RLIR, Link Incident Record Registration (LIRR), and Distribute Registered Link Incident Record (DRLIR) frames. clear rlir Clears the RLIRs. debug rlir Enables RLIR debugging.
Chapter 8 Fibre Channel Commands rscn Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m rscn To configure a registered state change notification (RSCN), which is a Fibre Channel service that informs N ports about changes in the fabric, use the rscn command. rscn {multi-pid | suppress domain-swrscn} vsan vsan-id Syntax Description multi-pid Sends RSCNs in multiple port ID (multi-PID) format. suppress domain-swrscn Suppresses transmission of domain format SW-RCSNs.
Chapter 8 Fibre Channel Commands rscn abort Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m rscn abort To cancel a Registered State Change Notification (RSCN) configuration on a VSAN, use the rscn abort command. To reverse the cancellation, use the no form of the command. rscn abort vsan vsan-id no rscn abort vsan vsan-id Syntax Description vsan vsan-id Command Default None Command Modes Configuration mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands rscn commit Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m rscn commit To apply a pending Registered State Change Notification (RSCN) configuration, use the rscn commit command. To discard a pending RSCN configuration, use the no form of the command. rscn commit vsan vsan-id no rscn commit vsan vsan-id Syntax Description vsan vsan-id Command Default None Command Modes Configuration mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands rscn distribute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m rscn distribute To enable distribution of a Registered State Change Notification (RSCN) configuration, use the rscn distribute command. To disable the distribution, use the no form of the command. rscn distribute no rscn distribute Syntax Description This command has no arguments or keywords. Command Default RSCN timer distribution is disabled.
Chapter 8 Fibre Channel Commands rscn event-tov Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m rscn event-tov To configure an event timeout value for a Registered State Change Notification (RSCN) on a specified VSAN, use the rscn event-tov command. To cancel the event timeout value and restore the default value, use the no form of the command.
Chapter 8 Fibre Channel Commands san-port-channel persistent Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m san-port-channel persistent To convert an autocreated SAN port channel to a persistent SAN port channel, use the san-port-channel persistent command. san-port-channel port-channel-id persistent Syntax Description port-channel-id Specifies the port channel ID. The range is 1 to 128.
Chapter 8 Fibre Channel Commands scsi-target Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m scsi-target To configure SCSI target discovery, use the scsi-target command. To remove SCSI target discovery, use the no form of the command.
Chapter 8 Fibre Channel Commands scsi-target Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 8 Fibre Channel Commands switchport Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m switchport To configure a switch port parameter on a Fibre Channel or virtual Fibre Channel interface, use the switchport command. To discard the configuration, use the no form of the command.
Chapter 8 Fibre Channel Commands switchport Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Default vsan-id Specifies the VSAN ID. The range is 1 to 4093. all Adds all the VSANs to allowed VSAN list. mode Configures the trunking mode. auto Configures automatic trunking mode. off Disables the trunking mode. on Enables the trunking mode. The EISL encapsulation is disabled. The default receive data buffer size is 2112 bytes. The port mode is auto.
Chapter 8 Fibre Channel Commands switchport Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 8 Fibre Channel Commands switchport ignore bit-errors Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m switchport ignore bit-errors To prevent the detection of bit error threshold events from disabling the interface on Fibre Channel interfaces, use the switchport ignore bit-errors command. To revert to the default, use the no form of the command.
Chapter 8 Fibre Channel Commands switchport ignore bit-errors Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 8 Fibre Channel Commands system default switchport Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m system default switchport To configure port attributes for Fibre Channel interfaces, use the system default switchport command. To disable port attributes, use the no form of the command.
Chapter 8 Fibre Channel Commands system default switchport Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show system default switchport Displays default values for switch port attributes. show interface brief Displays Fibre Channel port modes.
Chapter 8 Fibre Channel Commands system default zone default-zone permit Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m system default zone default-zone permit To configure default values for a zone, use the system default zone default-zone permit command. To revert to the defaults, use the no form of the command. system default zone default-zone permit no system default zone default-zone permit Syntax Description This command has no arguments or keywords.
Chapter 8 Fibre Channel Commands system default zone distribute full Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m system default zone distribute full To configure default values for distribution to a zone set, use the system default zone distribute full command. To revert to the defaults, use the no form of the command. system default zone distribute full no system default zone distribute full Syntax Description This command has no arguments or keywords.
Chapter 8 Fibre Channel Commands trunk protocol enable Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m trunk protocol enable To configure the trunking protocol for Fibre Channel interfaces, use the trunk protocol enable command. To disable this feature, use the no form of the command. trunk protocol enable no trunk protocol enable Syntax Description This command has no other arguments or keywords. Command Default Enabled.
Chapter 8 Fibre Channel Commands vsan database Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m vsan database To create multiple fabrics sharing the same physical infrastructure, assign ports to VSANs, turn on or off interop mode, load balance either per originator exchange or by source-destination ID, and enter VSAN database mode, use the vsan database command. To remove a configuration, use the no command in VSAN database mode.
Chapter 8 Fibre Channel Commands vsan database Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Usage Guidelines To use this command, change to the VSAN database mode. The interface range must be in ascending order and nonoverlapping.
Chapter 8 Fibre Channel Commands vsan database Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description wwn vsan Configures a WWN for a suspended VSAN that has Interop mode 4 enabled.
Chapter 8 Fibre Channel Commands wwn secondary-mac Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m wwn secondary-mac To allocate a secondary MAC address to a SAN node, use the wwn secondary-mac command. wwn secondary-mac wwn-id range address-range Syntax Description wwn-id The secondary MAC address with the format hh:hh:hh:hh:hh:hh. range address-range The range for the specified WWN. The only valid value is 64.
Chapter 8 Fibre Channel Commands wwn vsan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m wwn vsan To configure a WWN for a suspended VSAN that has interop mode 4 enabled, use the wwn vsan command. To discard the configuration, use the no form of the command. wwn vsan vsan-id vsan-wwn wwn no wwn vsan vsan-id vsan-wwn wwn Syntax Description vsan-id Specifies the VSAN ID. The range is 1 to 4093. vsan-wwn wwn Specifies the WWN for the VSAN.
Chapter 8 Fibre Channel Commands zone clone Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zone clone To clone a zone name, use the zone clone command. zone clone current-zone-name new-zone-name vsan vsan-id Syntax Description current-zone-name new-zone-name Clones a zone attribute group from the current name to a new name. Maximum length of names is 64 characters. vsan vsan-id Specifies the VSAN ID. The range is 1 to 4093.
Chapter 8 Fibre Channel Commands zone commit Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zone commit To commit zoning changes to a VSAN, use the zone commit command. To negate the command, use the no form of the command. zone commit vsan vsan-id [force] no zone commit vsan vsan-id [force] Syntax Description vsan vsan-id Specifies the VSAN ID. The range is 1 to 4093. force (Optional) Forces the commit.
Chapter 8 Fibre Channel Commands zone compact Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zone compact To compact a zone database in a VSAN, use the zone compact command. zone compact vsan vsan-id Syntax Description vsan vsan-id Command Default None Command Modes Configuration mode Command History Release Modification 4.0(0)N1(1a) This command was introduced. Usage Guidelines Specifies the VSAN ID. The range is 1 to 4093.
Chapter 8 Fibre Channel Commands zone copy Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zone copy To copy the active zone set to the full zone set, use the zone copy command. Use the no form of the command to negate the command or revert to the factory defaults.
Chapter 8 Fibre Channel Commands zone default-zone Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zone default-zone To define whether a default zone (assigned to nodes not assigned to a created zone) permits or denies access to all nodes in the default zone, use the zone default-zone command. Use the no form of the command to negate the command or revert to the factory defaults.
Chapter 8 Fibre Channel Commands zone merge-control restrict vsan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zone merge-control restrict vsan To restrict zone database merging, use the zone merge-control restrict vsan command. To disable this feature, use the no form of the command. zone merge-control restrict vsan vsan-id no zone merge-control restrict vsan vsan-id Syntax Description vsan vsan-id Command Default Disabled.
Chapter 8 Fibre Channel Commands zone mode enhanced Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zone mode enhanced To enable enhanced zoning for a VSAN, use the zone mode enhanced command. To disable this feature, use the no form of the command. zone mode enhanced vsan vsan-id no zone mode enhanced vsan vsan-id Syntax Description vsan vsan-id Command Default Disabled. Command Modes Configuration mode Command History Release Modification 4.
Chapter 8 Fibre Channel Commands zone name (configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zone name (configuration mode) To create a zone, use the zone name command. Use the no form of the command to negate the command or revert to the factory defaults. zone name zone-name vsan vsan-id member zone name zone-name vsan vsan-id no member no zone name zone-name vsan vsan-id Syntax Description zone-name Specifies the name of the zone.
Chapter 8 Fibre Channel Commands zone name (configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description show zone Displays zone information. zone rename Renames zones. zone-attribute-group name Configures zone attribute groups.
Chapter 8 Fibre Channel Commands zone name (zone set configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zone name (zone set configuration mode) To configure a zone in a zone set, use the zone name command in zone set configuration mode. To delete the zone from the zone set, use the no form of the command.
Chapter 8 Fibre Channel Commands zone rename Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zone rename To rename a zone, use the zone rename command. zone rename current-name new-name vsan vsan-id Syntax Description current-name Specifies the current fcalias name. Maximum length is 64 characters. new-name Specifies the new fcalias name. Maximum length is 64 characters. vsan vsan-id Specifies the VSAN ID. The range is 1 to 4093.
Chapter 8 Fibre Channel Commands zoneset (configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zoneset (configuration mode) To group zones under one zone set, use the zoneset command. To negate the command or revert to the factory defaults, use the no form of the command.
Chapter 8 Fibre Channel Commands zoneset (configuration mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 8 Fibre Channel Commands zoneset (EXEC mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m zoneset (EXEC mode) To merge zone set databases, use the zoneset command. zoneset {distribute | export | import interface {fc slot/port | san-port-channel port-number}} vsan vsan-id Syntax Description distribute Distributes the full zone set in the fabric. export Exports the zone set database to the adjacent switch on the specified VSAN.
Chapter 8 Fibre Channel Commands zoneset (EXEC mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m The following example distributes the zone set in VSAN 333: switch# zoneset distribute vsan 333 Related Commands Command Description show zone status vsan Displays the distribution status for the specified VSAN. show zoneset Displays zone set information.
Chapter 8 Fibre Channel Commands zoneset (EXEC mode) Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m CH A P T E R 9 Fibre Channel Show Commands This chapter describes the Cisco NX-OS Fibre Channel show commands available on Cisco Nexus 5000 Series switches.
Chapter 9 Fibre Channel Show Commands show cfs Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show cfs To display Cisco Fabric Services (CFS) information, use the show cfs command. show cfs {application [name app-name] | lock [name app-name [vsan vsan-id]] | merge status [name app-name [vsan vsan-id]] | peers [name app-name [vsan vsan-id] | regions | status} Syntax Description application Displays locally registered applications.
Chapter 9 Fibre Channel Show Commands show cfs Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show debug npv Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show debug npv To display the N Port Virtualization (NPV) debug commands configured on the switch, use the show debug npv command. show debug npv Syntax Description This command has no other keywords or arguments. Command Default None Command Modes EXEC mode. Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 9 Fibre Channel Show Commands show device-alias Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show device-alias To display the device name information, use the show device-alias command. show device-alias {database | merge status | name device-name [pending] | pending | pending-diff | pwwn pwwn-id [pending] | session status | statistics | status Syntax Description database Displays the entire device name database.
Chapter 9 Fibre Channel Show Commands show device-alias Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description device-alias name Configures device alias names. device-alias database Configures device alias information. device-alias distribute Enables device alias CFS distribution.
Chapter 9 Fibre Channel Show Commands show fabric-binding Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fabric-binding To display configured fabric binding information, use the show fabric-binding command. show fabric-binding {database [active] [vsan vsan-id] | efmd statistics [vsan vsan-id] | statistics [vsan vsan-id] | status [vsan vsan-id] | violations [last number]} Syntax Description database Displays configured database information.
Chapter 9 Fibre Channel Show Commands show fabric-binding Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show fc2 Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fc2 To display FC2 information, use the show fc2 command. show fc2 {bind | classf | exchange | exchresp | flogi | nport | plogi | plogi_pwwn | port [brief] | socket | sockexch | socknotify | socknport | vsan} Syntax Description bind Displays FC2 socket bindings. classf Displays FC2 classf sessions. exchange Displays FC2 active exchanges.
Chapter 9 Fibre Channel Show Commands show fc2 Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show fcalias Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fcalias To display the member name information in a Fibre Channel alias (fcalias), use the show fcalias command. show fcalias [name fcalias-name] [pending] [vsan vsan-id] Syntax Description name fcalias-name (Optional) Displays fcalias information for a specific name. The maximum length is 64. pending (Optional) Displays pending fcalias information.
Chapter 9 Fibre Channel Show Commands show fcdomain Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fcdomain To display the Fibre Channel domain (fcdomain) information, use the show fcdomain command.
Chapter 9 Fibre Channel Show Commands show fcdomain Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show fcdroplatency Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fcdroplatency To display the configured Fibre Channel latency parameters, use the show fcdroplatency command. show fcdroplatency [network | switch] Syntax Description network (Optional) Network latency in milliseconds. switch (Optional) Switch latency in milliseconds. Command Default None Command Modes EXEC mode.
Chapter 9 Fibre Channel Show Commands show fcflow stats Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fcflow stats To display the configured Fibre Channel flow (fcflow) information, use the show fcflow stats command. show fcflow stats [aggregated | usage] [index flow-index] Syntax Description aggregated (Optional) Displays aggregated fcflow statistics. usage (Optional) Displays flow index usage index flow-index (Optional) Specifies an fcflow index.
Chapter 9 Fibre Channel Show Commands show fcid-allocation Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fcid-allocation Use the show fcid allocation command to display the Fibre Channel area list of company IDs. show fcid-allocation area | company-id-from-wwn wwn [company-id] Syntax Description area Selects the auto area list of company IDs. company-id-from-wwn wwn Selects company ID from the specified world wide name (WWN).
Chapter 9 Fibre Channel Show Commands show fcns database Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fcns database To display the results of the discovery, or to display the name server database for a specified VSAN or for all VSANs, use the show fcns database command.
Chapter 9 Fibre Channel Show Commands show fcns database Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Related Commands Command Description fcns Configuration-mode command for name server configuration.
Chapter 9 Fibre Channel Show Commands show fcns statistics Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fcns statistics To display the statistical information for a specified VSAN or for all VSANs, use the show fcns statistics command. show fcns statistics [detail] [vsan vsan-id] Syntax Description detail (Optional) Displays detailed statistics. vsan vsan-id (Optional) Displays statistics for the specified VSAN ID. The range is 1 to 4093.
Chapter 9 Fibre Channel Show Commands show fcoe Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fcoe To display the status of Fibre Channel over Ethernet (FCoE) on the switch, use the show fcoe command. show fcoe Syntax Description This command has no other keywords or arguments. Command Default None Command Modes EXEC mode. Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 9 Fibre Channel Show Commands show fcroute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fcroute Use the show fcroute command to view specific information about existing Fibre Channel and FSPF configurations. show fcroute {distance | label [label] vsan vsan-id | multicast [fc-id vsan vsan-id | vsan vsan-id] | summary [vsan vsan-id] | unicast [[host] fc-id fc-mask vsan vsan-id | vsan vsan-id]} Syntax Description distance Displays FC route preference.
Chapter 9 Fibre Channel Show Commands show fcroute Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show fcs Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fcs Use the show fcs commands to display the status of the fabric configuration. show fcs {database [vsan vsan-id] | ie [nwwn wwn] vsan vsan-id | platform [name string] vsan vsan-id | port [pwwn wwn] vsan vsan-id] | statistics vsan vsan-id | vsan} Syntax Description database Displays local database of FCS. vsan vsan-id (Optional) Specifies a VSAN ID.
Chapter 9 Fibre Channel Show Commands show fcs Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show fcsp Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fcsp To display the status of the Fibre Channel Security Protocol (FC-SP) configuration, use the show fcsp commands. show fcsp [asciiwwn ascii-wwn | dhchap [database] | interface {fc slot/port | vfc vfc-id} [statistics | wwn]] Syntax Description asciiwwn ascii-wwn (Optional) Displays the ASCII representation of the WWN used with AAA server.
Chapter 9 Fibre Channel Show Commands show fcsp Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m The following example displays he ASCII representation of the device WWN: switch# show fcsp asciiwwn 30:11:bb:cc:dd:33:11:22 Related Commands Command Description fcsp enable Enables the FC-SP feature for this switch.
Chapter 9 Fibre Channel Show Commands show fctimer Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fctimer To view the Fibre Channel timers (fctimer), use the show fctimer command. show fctimer [d_s_tov [vsan vsan-id] | e_d_tov [vsan vsan-id] | f_s_tov [vsan vsan-id] | r_a_tov [vsan vsan-id] | last action status | pending | pending-diff | session status | status | vsan vsan-id] Syntax Description vsan vsan-id (Optional) Displays information for a VSAN.
Chapter 9 Fibre Channel Show Commands show fdmi Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fdmi To display the Fabric-Device Management Interface (FDMI) database information, use the show fdmi command. show fdmi database [detail [hba-id {hba-id vsan vsan-id} | vsan vsan-id] | vsan vsan-id] | suppress-updates Syntax Description database Displays the FDMI database contents. detail (Optional) Specifies detailed FDMI information.
Chapter 9 Fibre Channel Show Commands show flogi Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show flogi To list all the fabric login (FLOGI) sessions through all interfaces across all VSANs, use the show flogi command. show flogi {auto-area-list} | database {fcid fcid-id | interface {fc slot/port | vfc vfc-id} | vsan vsan-id} Syntax Description auto-area-list Displays the list of Organizational Unit Identifiers (OUIs) that are allocated areas.
Chapter 9 Fibre Channel Show Commands show flogi Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show fspf Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show fspf To display global Fibre Shortest Path First (FSPF) routing information, use the show fspf command. show fspf [database [vsan vsan-id] [detail | domain domain-id detail] | interface | vsan vsan-id interface {fc slot/port | san-port-channel port-channel}] Syntax Description database (Optional) Displays the FSPF link state database.
Chapter 9 Fibre Channel Show Commands show in-order-guarantee Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show in-order-guarantee To display the present configured state of the in-order delivery feature, use the show in-order-guarantee command. show in-order-guarantee Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode. Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 9 Fibre Channel Show Commands show loadbalancing Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show loadbalancing To display load-balancing status for specific unicast flows, use the show loadbalancing command. show loadbalancing vsan vsan-id source-fcid dest-fcid [exchange-id] Syntax Description vsan vsan-id Displays FLOGI database entries based on the FCID allocated. The format is 0xhhhhhh.
Chapter 9 Fibre Channel Show Commands show npv flogi-table Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show npv flogi-table To display the information about N port virtualization (NPV) FLOGI session, use the show npv flogi-table command. show npv flogi-table Syntax Description This command has no other keywords or arguments. Command Default None Command Modes EXEC mode. Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 9 Fibre Channel Show Commands show npv status Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show npv status To display the N port virtualization (NPV) current status, use the show npv status command. show npv status Syntax Description This command has no other keywords or arguments. Command Default None Command Modes EXEC mode. Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 9 Fibre Channel Show Commands show npv traffic-map Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show npv traffic-map To display N port virtualization (NPV) traffic maps, use the show npv traffic-map command. show npv traffic-map Syntax Description This command has no other keywords or arguments. Command Default None Command Modes EXEC mode. Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 9 Fibre Channel Show Commands show port index-allocation Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show port index-allocation To display port index allocation information, use the show port index-allocation command. show port index-allocation [startup] Syntax Description startup Command Default None Command Modes EXEC mode. Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 9 Fibre Channel Show Commands show port-security Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show port-security To display configured port security feature information, use the show port-security command.
Chapter 9 Fibre Channel Show Commands show port-security Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show rlir Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show rlir To display Registered Link Incident Report (RLIR) information, use the show rlir command. show rlir {erl [vsan vsan-id] | history | recent {interface fc slot/port | portnumber port} | statistics [vsan vsan-id]} Syntax Description erl Displays the Established Registration List. vsan vsan-id (Optional) Specifies a VSAN ID. The range is 1 to 4093.
Chapter 9 Fibre Channel Show Commands show rscn Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show rscn To display Registered State Change Notification (RSCN) information, use the show rscn command. show rscn {event-tov vsan vsan-id | pending vsan vsan-id | pending-diff vsan vsan-id | scr-table [vsan vsan-id] | session status vsan vsan-id | statistics [vsan vsan-id]} Syntax Description event-tov Displays the event timeout value. vsan vsan-id Specifies a VSAN ID.
Chapter 9 Fibre Channel Show Commands show san-port-channel Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show san-port-channel Use the show san-port-channel command to view information about existing SAN port channel configurations. show san-port-channel {compatibility-parameters | consistency [detail] | database [interface san-port-channel port] | summary | usage} Syntax Description compatibility-parameters Displays compatibility parameters.
Chapter 9 Fibre Channel Show Commands show san-port-channel Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show scsi-target Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show scsi-target To display information about existing SCSI target configurations, use the show scsi-target command.
Chapter 9 Fibre Channel Show Commands show scsi-target Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show topology Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show topology To display topology information for connected SAN switches, use the show topology command. show topology [vsan vsan-id] Syntax Description vsan vsan-id Command Default None Command Modes EXEC mode. Command History Release Modification 4.0(0)N1(1a) This command was introduced. Examples (Optional) Displays information for a VSAN.
Chapter 9 Fibre Channel Show Commands show trunk protocol Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show trunk protocol To display trunk protocol status, use the show trunk protocol command. show trunk protocol Syntax Description This command has no arguments or keywords. Command Default None Command Modes EXEC mode. Command History Release Modification 4.0(0)N1(1a) This command was introduced.
Chapter 9 Fibre Channel Show Commands show vsan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show vsan To display information about configured VSAN, use the show vsan command. show vsan [vsan-id [membership] | membership [interface {fc slot/port | san-port-channel port | vfc vfc-id}] | usage] Syntax Description vsan-id (Optional) Displays information for the specified VSAN ID. The range is 1 to 4093. membership (Optional) Displays membership information.
Chapter 9 Fibre Channel Show Commands show vsan Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show wwn Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show wwn To display the status of the WWN configuration, use the show wwn command. show wwn {status [block-id number] | switch | vsan-wwn} Syntax Description status Displays a summary of WWN usage and alarm status. block-id number (Optional) Displays WWN usage and alarm status for a block ID. The range is 34 to 1793. switch Displays switch WWN.
Chapter 9 Fibre Channel Show Commands show zone Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show zone To display zone information, use the show zone command.
Chapter 9 Fibre Channel Show Commands show zone Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Chapter 9 Fibre Channel Show Commands show zone analysis Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show zone analysis To display detailed analysis and statistical information about the zoning database, use the show zone analysis command. show zone analysis {active vsan vsan-id | vsan vsan-id | zoneset name vsan vsan-id} Syntax Description active Displays analysis information for the active zone set.
Chapter 9 Fibre Channel Show Commands show zone analysis Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Table 9-4 describes the fields displayed in the output of a show zone analysis command for the full zoning database. Table 9-4 show zone analysis Field Descriptions for the Full Zoning Database Field Description Last updated at Displays a time stamp showing when the full zoning database was last updated.
Chapter 9 Fibre Channel Show Commands show zone analysis Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m Table 9-4 show zone analysis Field Descriptions (continued)for the Full Zoning Database Field Description Formatted database size Displays the total size of the full database when formatted to be sent over the wire.
Chapter 9 Fibre Channel Show Commands show zoneset Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o . c o m show zoneset To display the configured zone sets, use the show zoneset command.
Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Index Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Index Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Index Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Index Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Index Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Index Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .
Index Se n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a ck @ c i s c o .