Mellanox MLNX-OS™ Command Reference Guide for SX1018HP Ethernet Managed Blade Switch Rev 1.6.2 Software Ver. 3.3.1000 www.mellanox.
Rev 1.6.
Rev 1.6.2 Table of Contents Table of Contents . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 Document Revision History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12 About this Manual . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 Chapter 1 Using the Command Line Interface . . . . . . . . . . . . . . . . . . . . . . . . . 18 1.1 1.2 1.3 1.4 1.5 1.6 1.7 CLI Modes . . . . . . . . .
Rev 1.6.2 2.2 2.3 2.4 2.5 ipv6 enable . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .59 ping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .61 traceroute. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .62 tcpdump. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .65 clear counters . . . . . . . . . . . . . . . . . . . . . . . . .
Rev 1.6.2 configuration text generate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .106 configuration upload . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .107 write . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .108 show configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .109 show running-config . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .110 2.
Rev 1.6.2 2.9 2.10 2.11 2.12 2.13 2.14 2.15 ldap scope . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .160 ldap ssl . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .161 ldap timeout . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .163 ldap version. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .164 show ldap . . . . . . . . . . . . . . . . . . . . . .
Rev 1.6.2 2.16 2.17 2.18 2.19 web http. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .208 web httpd. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .210 web https . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .211 web session . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .213 web proxy auth . . . . . . . . . . . . . . . . . . . . . . . . . . .
Rev 1.6.2 stats alarm enable. . . . . . . . . . . . . . . . . . . . . . . . . . . . .258 stats alarm event-repeat . . . . . . . . . . . . . . . . . . . . . . . .259 stats alarm {rising | falling} . . . . . . . . . . . . . . . . . . . . .260 stats alarm rate-limit . . . . . . . . . . . . . . . . . . . . . . . . . .261 stats chd clear . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .262 stats chd enable . . . . . . . . . . . . . .
Rev 1.6.2 3.2 3.3 3.4 3.5 3.6 show interfaces ethernet [] status. . . . . . . . . . . . . . . . . . . . . .307 show interfaces ethernet [] transceiver . . . . . . . . . . . . . . . . .308 module-type . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .308 Link Aggregation Group (LAG) and LACP. . . . . . . . . . . . . . . . . . . . . . . 310 interface port-channel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .310 lacp . . . . . . . . . . .
Rev 1.6.2 show ip igmp snooping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .353 show ip igmp snooping groups . . . . . . . . . . . . . . . . . . . . . . . . . . . .354 show ip igmp snooping vlan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .355 show ip igmp snooping mrouter . . . . . . . . . . . . . . . . . . . . . . . . . . .356 show ip igmp snooping interfaces. . . . . . . . . . . . . . . . . . . . . . . . . .357 show ip igmp snooping statistics . . . . . . . . . . . .
Rev 1.6.2 description. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .397 mtu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .398 shutdown . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .399 clear counters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .400 show interfaces vlan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Rev 1.6.2 Document Revision History Table 1 - Document Revision History - Ethernet Document Revision Date Changes Rev. 1.6.2 Jan. 2013 Added command “banner login-local” Added command “banner login-remote” Added “force” option to commands “dcb priority-flow-control mode on”, “flowcontrol”, and “mtu ”. Rev. 1.6.1 Nov. 2012 Updated interface port-channel command with range options Updated interface ethernet command with range option Rev. 1.5.4 Sep. 2012 Added ‘boot next’ command Rev. 1.5.
Rev 1.6.2 About this Manual This manual provides general information concerning MLNX-OS™ Command Line Interface. Intended Audience This manual is intended for network administrators who are responsible for configuring and managing Mellanox Technologies’ MLNX-OS Switch Platforms. Related Documentation The following table lists the documents referenced in this user’s manual. Table 2 - Reference Documents Document Name Description InfiniBand Architecture Specification, Vol. 1, Release 1.2.
Rev 1.6.2 Documentation Conventions Typographical Conventions Table 3 - Typographical Conventions Description Convention Example File names file.
Rev 1.6.2 Glossary Table 4 - Glossary AAA Authentication, Authorization, and Accounting: • • • Authentication - verifies user credentials (username and password) Authorization - grants or refuses privileges to a user/client for accessing specific services Accounting - tracks network resources consumption by users ARP Address Resolution Protocol. A protocol that translates IP addresses into MAC addresses for communication over a local area network (LAN).
Rev 1.6.2 Table 4 - Glossary IB InfiniBand. LACP Link Aggregation Control Protocol (LACP) provides a method to control the bundling of several physical ports together to form a single logical channel. LACP allows a network device to negotiate an automatic bundling of links by sending LACP packets to the peer (directly connected device that also implements LACP). LDAP The Lightweight Directory Access Protocol is an application protocol for reading and editing directories over an IP network.
Rev 1.6.2 Table 4 - Glossary SM (Subnet Manager) An entity that configures and manages the subnet, discovers the network topology, assign LIDs, determines the routing schemes and sets the routing tables. There is only one master SM and possible several slaves (Standby mode) at a given time. The SM administers switch routing tables thereby establishing paths through the fabric. SNMP Simple Network Management Protocol.
Rev 1.6.2 1 Using the Command Line Interface This chapter explains how to use the command line interface (CLI) of MLNX-OS SwitchX®. 1.1 CLI Modes The CLI can be in one of three modes, and each mode makes available a certain group (or level) of commands for execution. The different CLI configuration modes are: Table 5 - CLI Modes and Config Context Mode/Context Description Standard When the CLI is launched, it begins in Standard mode.
Rev 1.6.2 1.2 Syntax Conventions To help you identify the parts of a CLI command, this section uses conventions to show the syntax of commands. Table 6 - Syntax Conventions Syntax Convention Description Example < > Angled brackets Indicates a value/variable that must be replaced. <1...65535> or [ ] Square brackets Encloses optional parameters. However, only one parameter out of the list of parameters listed can be used.
Rev 1.6.
Rev 1.6.2 1.4 Prompt and Response Conventions The prompt always begins with the hostname of the system. What follows depends on what command mode the user is in.
Rev 1.6.2 The following example performs the following: 1. 2. 3. 4. Displays the current CLI session options. Disables auto-logout. Displays the new CLI session options (auto-logout is disabled). Re-enables auto-logout (after 15 minutes). 5. Displays the final CLI session options (auto-logout is enabled). // 1.
Rev 1.6.2 1.7 Parameter Key This section is a key to the meaning and format of all of the angle-bracketed parameters in all the commands that are listed in this document. A domain name, e.g. “mellanox.com”. A hostname, e.g. “switch-1”. An interface name, e.g. “mgmt0”, “mgmt1”, “lo” (loopback), etc. A number to be associated with aliased (secondary) IP addresses. An IPv4 address, e.g. “192.168.0.1”. A syslog logging severity level.
Rev 1.6.2 2 System Management 2.1 Management Interfaces 2.1.1 Interface This chapter describes the commands should be used to configure and monitor the management interface. interface interface {mgmt0 | mgmt1 | lo} Enters a management interface context. Syntax Description mgmt0 Management port 0 (out of band). mgmt1 Management port 1 (out of band). lo Loopback interface. ib0 IP over IB in-band management, relevant only for InfiniBand switch systems.
Rev 1.6.2 ip address ip address no ip address Sets the IP address and netmask of this interface. The no form of the command clears the IP address and netmask of this interface. Syntax Description IP address IPv4 address netmask Subnet mask of IP address Default 0.0.0.0/0 Modes/Context Config Interface Management History 3.1.0000 Role admin Example switch (config) # interface mgmt0 switch (config interface mgmt0) # ip address 10.10.10.10 255.255.255.
Rev 1.6.2 alias alias ip address < IP address> no alias Adds an additional IP address to the specified interface. The secondary address will appear in the output of “show interface” under the data of the primary interface along with the alias. The no form of the command removes the secondary address to the specified interface. Syntax Description index A number that is to be aliased to (associated with) the secondary IP. IP address Additional IP address.
Rev 1.6.
Rev 1.6.2 mtu mtu no mtu Sets the Maximum Transmission Unit (MTU) of this interface. The no form of the command resets the MTU to its default. Syntax Description bytes Default 1500 Modes/Context Config Interface Management History 3.1.0000 Role admin Example switch (config interface mgmt0) # mtu 1500 switch (config interface mgmt0) # show interfaces mgmt0 Interface mgmt0 state Admin up: yes Link up: yes IP address: 172.30.2.2 Netmask: 255.255.0.0 Secondary address: 9.9.9.
Rev 1.6.2 duplex duplex no duplex Sets the interface duplex. The no form of the command resets the duplex setting for this interface to its default value. Syntax Description duplex Sets the duplex mode of the interface. The following are the possible values: • • • half - half duplex full - full duplex auto - auto duplex sensing (half or full) Default auto Modes/Context Config Interface Management History 3.1.
Rev 1.6.
Rev 1.6.2 speed speed no speed Sets the interface speed. The no form of the command resets the speed setting for this interface to its default value. Syntax Description speed Sets the speed of the interface. The following are the possible values: • • • • 10 - fixed to 10Mbps 100 - fixed to 1000Mbps 1000 - fixed to 1000Mbps auto - auto speed sensing (10/100/1000Mbps) Default auto Modes/Context Config Interface Management History 3.1.
Rev 1.6.
Rev 1.6.2 dhcp dhcp [renew] no dhcp Enables DHCP on the specified interface. The no form of the command disables DHCP on the specified interface. Syntax Description renew Forces a renewal of the IP address. A restart on the DHCP client for the specified interface will be issued. Default Could be enabled or disabled (per part number) manufactured with 3.2.0500 Modes/Context Config Interface Management History 3.1.
Rev 1.6.2 shutdown shutdown no shutdown Disables the specified interface. The no form of the command enables the specified interface. Syntax Description N/A Default no shutdown Modes/Context Config Interface Management History 3.1.
Rev 1.6.2 zeroconf zeroconf no zeroconf Enables zeroconf on the specified interface. It randomly chooses a unique link-local IPv4 address from the 169.254.0.0/16 block. This command is an alternative to DHCP. The no form of the command disables the use of zeroconf on the specified interface. Syntax Description N/A Default no zeroconf Modes/Context Config Interface Management History 3.1.
Rev 1.6.2 comment comment no comment Adds a comment for an interface. The no form of the command removes a comment for an interface. Syntax Description comment Default no comment Modes/Context Config Interface Management History 3.1.0000 Role admin Example switch (config interface mgmt0) # comment my-interface switch (config interface mgmt0) # show interfaces mgmt0 Interface mgmt0 state Admin up: yes Link up: yes IP address: 172.30.2.2 Netmask: 255.255.0.
Rev 1.6.2 ipv6 enable ipv6 enable no ipv6 enable Enables all IPv6 addressing for this interface. The no form of the command disables all IPv6 addressing for this interface. Syntax Description N/A Default IPv6 addressing is disabled Modes/Context Config Interface Management History 3.1.0000 Role admin Example switch (config interface mgmt0) # ipv6 enable switch (config interface mgmt0) # show interfaces mgmt0 Interface mgmt0 state Admin up: yes Link up: yes IP address: 172.30.2.2 Netmask: 255.
Rev 1.6.2 Related Commands ipv6 address show interface Note • • • The interface identifier is a 64-bit long modified EUI-64, which is based on the MAC address of the interface If IPv6 is enabled on an interface, the system will automatically add a link-local address to the interface. Link-local addresses can only be used to communicate with other hosts on the same link, and packets with link-local addresses are never forwarded by a router.
Rev 1.6.2 ipv6 address ipv6 address { | autoconfig [default | privacy]} no ipv6 { | autoconfig [default | privacy]} Configures IPv6 address and netmask to this interface, static or autoconfig options are possible. The no form of the command removes the given IPv6 address and netmask or disables the autoconfig options. Syntax Description IPv6 address/netmask Configures a static IPv6 address and netmask. Format example: 2001:db8:1234::5678/64.
Rev 1.6.2 Example switch (config interface mgmt0) # ipv6 fe80::202:c9ff:fe5e:a5d8/64 switch (config interface mgmt0) # show interfaces mgmt0 Interface mgmt0 state Admin up: yes Link up: yes IP address: 172.30.2.2 Netmask: 255.255.0.
Rev 1.6.2 show interface show interface { [configured | brief]} Displays information about the specified interface, configuration status, and counters. Syntax Description ifname The interface name e.g., “mgmt0”, “mgmt1”, “lo” (loopback), etc. configured Displays the interface configuration. brief Displays a brief info on the interface configuration and status. Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.
Rev 1.6.2 2.1.2 Hostname Resolution hostname hostname no hostname Sets a static system hostname. The no form of the command clears the system hostname. Syntax Description hostname A free-form string. Default Default hostname Modes/Context Config History 3.1.0000 Role admin Example switch (config) # hostname my-switch-hostname my-switch-hostname (config) # Related Commands show hosts Note • • • • Hostname may contain letters, numbers, periods ('.
Rev 1.6.2 ip name-server ip name-server no name-server Sets the static name server. The no form of the command clears the name server. Syntax Description IPv4/v6 address IPv4 or IPv6 address. Default No server name Modes/Context Config History 3.1.0000 Role admin Example switch (config) # ip name-server 9.9.9.9 switch (config) # show hosts Hostname: switch Name server: 9.9.9.9 (configured) Name server: 10.211.0.121 (dynamic) Name server: 172.30.0.
Rev 1.6.2 ip domain-list ip domain-list no ip domain-list Sets the static domain name. The no form of the command clears the domain name. Syntax Description domain-name The domain name in a string form. A domain name is an identification string that defines a realm of administrative autonomy, authority, or control in the Internet. Domain names are formed by the rules and procedures of the Domain Name System (DNS).
Rev 1.6.2 ip/ipv6 host {ip | ipv6} host no {ip | ipv6} host Configures the static hostname IPv4 or IPv6 address mappings. The no form of the command clears the static mapping. Syntax Description hostname The hostname in a string form. IP Address The IPv4 or IPv6 address. Default No static domain name. Modes/Context Config History 3.1.0000 Role admin Example switch (config) # ip host my-host 2.2.2.
Rev 1.6.2 ip/ipv6 map-hostname {ip |ipv6} map-hostname no {ip | ipv6} map-hostname Maps between the currently-configured hostname and the loopback address 127.0.0.1. The no form of the command clears the mapping. Syntax Description N/A Default IPv4 mapping is enabled by default IPv6 mapping is disabled by default Modes/Context Config History 3.1.0000 Role admin Example switch (config) # ip map-hostname switch (config) # # show hosts Hostname: switch Name server: 9.9.9.
Rev 1.6.2 show hosts show hosts Displays hostname, DNS configuration, and static host mappings. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show hosts Hostname: my-host-name Name server: 9.9.9.9 (configured) Name server: 10.211.0.121 (dynamic) Name server: 172.30.0.126 (dynamic) Name server: 10.4.0.135 (dynamic) Domain name: mydomain.com (configured) Domain name: lab.mtl.com (dynamic) Domain name: vmlab.mtl.
Rev 1.6.2 Syntax Description network-prefix netmask IPv4 or IPv6 network prefix. IPv4 netmask formats are: • • /24 255.255.255.0 IPv6 netmask format is: • /48 (as a part of the network prefix) nexthop-address The IPv4 or IPv6 address of the next hope router for this route. ifname The interface name (e.g., mgmt0, mgmt1). Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # ip route 20.20.20.0 255.255.255.
Rev 1.6.2 ipv6 default-gateway ipv6 default-gateway { | } no ipv6 default-gateway Sets a static default gateway. The no form of the command deletes the default gateway. Syntax Description ip address The default gateway IP address (IPv4 or IPv6). ifname The interface name (e.g., mgmt0, mgmt1). Default N/A Modes/Context Config History 3.1.0000 Initial version 3.2.
Rev 1.6.2 show ip/ipv6 route show {ip | ipv6} route [static] Displays the routing table in the system. Syntax Description static Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show ip route Destination default 10.10.10.10 20.10.10.10 20.20.20.0 172.30.0.0 Filters the table with the static route entries. Mask 0.0.0.0 255.255.255.255 255.255.255.255 255.255.255.0 255.255.0.0 Gateway 172.30.0.1 0.0.0.0 172.30.0.1 0.0.0.0 0.0.0.
Rev 1.6.2 show ip/ipv6 default-gateway show {ip | ipv6} default-gateway [static] Displays the default gateway. Syntax Description static Displays the static configuration of the default gateway. Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # ip default-gateway 10.10.10.10 switch (config) # show ip default-gateway Active default gateways: 172.30.0.
Rev 1.6.2 Example switch (config interface mgmt0) #ip arp 20.20.20.20 aa:aa:aa:aa:aa:aa switch (config interface mgmt0) # show ip arp ARP Timeout: 1500 Total number of entries: 6 Address 10.209.1.103 10.209.1.168 10.209.1.104 10.209.1.153 10.209.1.105 10.209.0.1 20.20.20.
Rev 1.6.2 show ip arp show ip arp [count] Shows the ARP table Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.2.0500 Role admin Example switch (config) # show ip arp ARP Timeout: 1500 Total number of entries: 9 Address 10.209.1.105 10.209.1.168 10.209.0.1 10.209.1.226 1.1.1.1 1.1.2.1 1.1.3.1 1.1.4.1 1.1.5.
Rev 1.6.2 ipv6 neighbor ipv6 neighbor no ipv6 neighbor Adds a static neighbor entry. The no form of the command deletes the static entry. Syntax Description IPv6 address The IPv6 address. ifname The management interface (i.e. mgmt0, mgmt1). MAC address The MAC address. Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 clear ipv6 neighbors clear ipv6 neighbors Clears the dynamic neighbors cache. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 show ipv6 neighbors show ipv6 neighbors [static] Displays the Neighbor Discovery Protocol (NDP) table. Syntax Description static Filters only the table of the static entries. Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 Syntax Description yield-to-static| Does not allow you to install a default gateway from DHCP if there is already a statically configured one. hostname Specifies the hostname to be sent during DHCP client negotiation if send-hostname is enabled. primary-intf Sets the interface from which a non-interface-specific configuration (resolver and routes) will be accepted via DHCP. send-hostname Enables the DHCP client to send a hostname during negotiation.
Rev 1.6.2 show ip dhcp show ip dhcp Displays the DHCP configuration and status. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show ip dhcp DHCP primary interface: Configured: mgmt0 Active: mgmt0 DHCP: yield default gateway to static configuration: yes DHCP Client Options: Send Hostname: no Client Hostname: switch (using system hostname) switch (config) # Related Commands ip dhcp dhcp [renew] Note 2.1.
Rev 1.6.2 Example switch (config) # ipv6 enable switch (config) # show ipv6 IPv6 summary IPv6 supported: yes IPv6 admin enabled: yes IPv6 interface count: 2 switch (config) # Related Commands ipv6 default-gateway ipv6 host ipv6 map-hostname ipv6 neighbor ipv6 route show ipv6 show ipv6 default-gateway show ipv6 route Note 2.1.
Rev 1.6.2 ping ping [-LRUbdfnqrvVaA] [-c count] [-i interval] [-w deadline] [-p pattern] [-s packetsize] [-t ttl] [-I interface or address] [-M mtu discovery hint] [-S sndbuf] [T timestamp option ] [-Q tos ] [hop1 ...] destination Sends ICMP echo requests to a specified host. Syntax Description Linux Ping options http://linux.about.com/od/commands/l/ blcmdl8_ping.htm Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # ping 172.30.2.2 PING 172.30.2.2 (172.30.2.
Rev 1.6.2 traceroute traceroute [-46dFITUnrAV] [-f first_ttl] [-g gate,...] [-i device] [-m max_ttl] [-N squeries] [-p port] [-t tos] [-l flow_label] [-w waittime] [-q nqueries] [-s src_addr] [-z sendwait] host [packetlen] Traces the route packets take to a destination.
Rev 1.6.2 Syntax Description -4 Uses IPv4. -6 Uses IPv6. -d Enables socket level debugging. -F Sets DF (do not fragment bit) on. -I Uses ICMP ECHO for tracerouting. -T Uses TCP SYN for tracerouting. -U Uses UDP datagram (default) for tracerouting. -n Does not resolve IP addresses to their domain names. -r Bypasses the normal routing and send directly to a host on an attached network.
Rev 1.6.2 Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # traceroute 192.168.10.70 traceroute to 192.168.10.70 (192.168.10.70), 30 hops max, 40 byte packets 1 172.30.0.1 (172.30.0.1) 3.632 ms 2.849 ms 3.544 ms 2 10.222.128.46 (10.222.128.46) 3.176 ms 3.289 ms 3.656 ms 3 10.158.128.30 (10.158.128.30) 15.331 ms 15.819 ms 16.388 ms 4 10.158.128.65 (10.158.128.65) 20.468 ms 7.893 ms 12.27 ms 5 10.7.34.115 (10.7.34.115) 16.405 ms 11.985 ms 12.264 ms 6 192.168.10.
Rev 1.6.2 tcpdump tcpdump [-aAdDeflLnNOpqRStuUvxX] [-c count] [ -C file_size ] [ -E algo:secret ] [ -F file ] [ -i interface ] [ -M secret ] [ -r file ] [ -s snaplen ] [ -T type ] [ -w file ] [ -W filecount ] [ -y datalinktype ] [ -Z user ] [ expression ] Invokes standard binary, passing command line parameters straight through. Runs in foreground, printing packets as they arrive, until the user hits Ctrl+C. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 clear counters clear counters [all | interface ] Clears switch counters. Syntax Description all Clears all switch counters. type A specific interface type (i.e. Ethernet, port-channel, Pkey interface, VLAN interface). number The interface number. Default N/A Modes/Context Config interface ethernet Config Interface Port Channel History 3.2.3000 Role admin Example switch (config) # clear counters switch (config) # Related Commands Note 2.
Rev 1.6.2 Syntax Description delete Uninstalls an existing license key. Note that this has the same effect as the “no license install”, except that you specify the license by its ID instead of by repeating the license key. install Installs a new license key. If the key is invalid (i.e. it could never have been a valid license), an error message is printed and it is not added. If the license is valid but there is something else wrong with it (i. e. it names a nonexistent feature, it is expired, etc.
Rev 1.6.2 show licenses show licenses Displays a list of all installed licenses. For each license, the following is displayed: • • • • • a unique ID which is a small integer the text of the license key as it was added whether or not it is valid and active which feature(s) it is activating a list of all licensable features specifying whether or not it is currently activated by a license Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 2.3 NTP, Clock & Time Zones clock set clock set [] Sets the time and date. Syntax Description hh:mm:ss Time. yyyy/mm/dd Date. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # clock set 23:23:23 2010/08/19 switch (config) # show clock Time: 23:23:26 Date: 2010/08/19 Time zone: UTC (Etc/UTC) UTC offset: same as UTC switch (config) # Related Commands show clock Note If not specified, the date will be left the same.
Rev 1.6.2 clock timezone clock timezone [ [ [] []]] Sets the system time zone. The time zone may be specified in one of three ways: • • • A nearby city whose time zone rules to follow. The system has a large list of cities which can be displayed by the help and completion system. They are organized hierarchically because there are too many of them to display in a flat list.
Rev 1.6.2 ntp ntp {disable | enable | {peer | server} [version | disable]} no ntp {disable | enable | {peer | server} [disable]} Configures NTP. The no form of the command negates NTP options. Syntax Description disable Disables NTP. enable Enables NTP. peer or server Configures an NTP peer or server node. IP address IPv4 or IPv6 address. version Specifies the NTP version number of this peer. Possible values are 3 or 4. Default NTP is enabled.
Rev 1.6.2 ntpdate ntpdate Sets the system clock using the specified SNTP server. Syntax Description IP address IP. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # ntpdate 192.168.10.10 26 Feb 17:25:40 ntpdate[15206]: adjust time server 192.168.10.10 offset -0.000092 sec switch (config) # Related Commands N/A Note This is a one-time operation and does not cause the clock to be kept in sync on an ongoing basis.
Rev 1.6.2 show clock show clock Displays the current system time, date and time zone. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 show ntp show ntp Displays the current NTP settings. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show ntp NTP is enabled. Clock is unsynchronized. No NTP peers or servers configured.
Rev 1.6.2 2.4 Software Management This chapter displays all the relevant commands used to manage the system software image. image boot image boot {location | next} Specifies the default location where the system should be booted from. Syntax Description location ID Specifies the default destination location. There can be up to 2 images on the system. The possible values are 1 or 2.
Rev 1.6.2 boot next boot next fallback-reboot enable no boot next fallback-reboot enable Sets the default setting for next boot. Normally, if the system fails to apply the configuration on startup (after attempting upgrades or downgrades, as appropriate), it will reboot to the other partition as a fallback. The no form of the command tells the system not to do that, only for the next boot. Syntax Description N/A Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 image default-chip-fw image default-chip-fw Sets the default firmware package to be installed. Syntax Description filename Specifies the firmware filename. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # image default-chip-fw image-SX_PPC_M460EX-ppc-m460ex20120122-084759.
Rev 1.6.2 image delete image delete Deletes the specified image file. Syntax Description image name Specifies the image name. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # image delete image-MLXNX-OS-201140526-010145.
Rev 1.6.2 image fetch image fetch [] Downloads an image from the specified URL or via SCP. Syntax Description URL HTTP, HTTPS, FTP, TFTP, SCP and SFTP are supported. Example: scp://username[:password]@hostname/path/filename. filename Specifies a filename for this image to be stored as locally. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # image fetch scp://@192.168.10.125/var/www/ html/ Password ****** 100.
Rev 1.6.2 image install image install [location ] | [progress ] [verify ] Installs the specified image file. Syntax Description image filename Specifies the image name. location ID Specifies the image destination location.
Rev 1.6.2 image move image move Renames the specified image file. Syntax Description src image name Specifies the old image name. dest image name Specifies the new image name. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # image move image1.img image2.
Rev 1.6.2 image options image options require-sig no image options require-sig Requires from all the installed images a valid signature. The no form of the command does not require a signature. However if one is present, it must be valid. Syntax Description require-sig Requires images to be signed by a trusted signature. Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 show bootvar show bootvar Displays the installed system images and the boot parameters. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show bootvar Installed images: Partition 1: SX_PPC_M460EX 3.0.0000-dev-HA 2012-01-22 08:47:59 ppc Last dobincp: 2012/01/23 14:54:23 Partition 2: SX_PPC_M460EX 3.0.
Rev 1.6.2 show images show image Displays information about the system images and boot parameters. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show images Images available to be installed: image-SX_PPC_M460EX-ppc-m460ex-20120122-084759.img SX_PPC_M460EX 3.0.0000-dev-HA 2012-01-22 08:47:59 ppc Installed images: Partition 1: SX_PPC_M460EX 3.0.
Rev 1.6.2 2.5 File Management 2.5.1 File Transfer ftp-server enable ftp-server enable no ftp-server enable Enables the FTP server. The no form of the command disables the FTP server. Syntax Description N/A Default The FTP server is disabled Modes/Context Config History 3.1.
Rev 1.6.2 show ftp-server show ftp-server Displays FTP server settings. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show ftp-server FTP server enabled: yes switch (config) # Related Commands ftp-server enable Note 2.5.2 File System debug generate dump debug generate dump Generates a debug dump. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 file debug-dump file debug-dump {delete | email | upload { | }} Manipulates debug dump files. Syntax Description delete Deletes a debug dump file. email Emails a debug dump file to pre-configured recipients for “informational events”, regardless of whether they have requested to receive “detailed” notifications or not. upload Uploads a debug dump file to a remote host.
Rev 1.6.2 file stats file stats {delete | move { | } | upload } Manipulates statistics report files. Syntax Description delete Deletes a stats report file. move Renames a stats report file. upload Uploads a stats report file. URL - HTTP, HTTPS, FTP, TFTP, SCP and SFTP are supported. Example: scp://username[:password]@hostname/path/filename.
Rev 1.6.2 file tcpdump file tcpdump {delete | upload } Manipulates tcpdump output files. Syntax Description delete Deletes the specified tcpdump output file. upload Uploads the specified tcpdump output file to the specified URL. URL - HTTP, HTTPS, FTP, TFTP, SCP and SFTP are supported. Example: scp://username[:password]@hostname/path/filename. Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 show files debug-dump show files debug-dump [] Displays a list of debug dump files. Syntax Description filename Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show files debug-dump sysdump-switch-112104-20114052091707.tgz System information: Hostname: Version: Date: Uptime: Displays a summary of the contents of a particular debug dump file. switch-112104 SX_PPC 3.1.
Rev 1.6.2 show files stats show files stats Displays a list of statistics report files. Syntax Description filename Display the contents of a particular statistics report file. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show files stats memory-201140524-111745.
Rev 1.6.2 show files system show files system [detail] Displays usage information of the file systems on the system. Syntax Description detail Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show Statistics for /config Bytes Total Bytes Used Bytes Free Bytes Percent Free Bytes Available Inodes Total Inodes Used Inodes Free Inodes Percent Free Displays more detailed information on file-system.
Rev 1.6.2 show files tcpdump show files tcpdump Displays a list of statistics report files. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 2.5.3 Configuration File configuration audit configuration audit max-changes Chooses settings related to configuration change auditing. Syntax Description max-changes Set maximum number of audit messages to log per change. Default 1000 Modes/Context Config History 3.1.
Rev 1.6.2 configuration copy configuration copy Copies a configuration file. Syntax Description source name Name of source file. dest name Name of destination file. If the file of specified filename does not exist a new file will be created with said filename. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # configuration copy initial.
Rev 1.6.2 configuration delete configuration delete Deletes a configuration file. Syntax Description filename Name of file to delete. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show configuration files example initial initial.bak initial.prev switch (config) # configuration delete example switch (config) # show configuration files initial initial.bak initial.
Rev 1.6.2 configuration fetch configuration fetch [] Downloads a configuration file from a remote host. Syntax Description name Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # configuration fetch scp://root:password@ 192.168.10.125/tmp/conf1 switch (config) # Related Commands configuration switch-to Note • • • The configuration file name.
Rev 1.6.2 configuration jump-start configuration jump-start Runs the initial-configuration wizard. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # configuration jump-start Mellanox configuration wizard Step 1: Hostname? [switch-3cc29c] Step 2: Use DHCP on mgmt0 interface? y Step 3: Admin password (Enter to leave unchanged)? You have entered the following information: 1. Hostname: switch-3cc29c 2. Use DHCP on mgmt0 interface: yes 3.
Rev 1.6.2 configuration merge configuration merge Merges the “shared configuration” from one configuration file into the running configuration. Syntax Description filename Name of file from which to merge settings. Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 configuration move configuration move Moves a configuration file. Syntax Description source name Old name of file to move. dest name New name for moved file. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show configuration files example1 initial initial.bak initial.prev switch (config) # configuration move example1 example2 switch (config) # show configuration files example2 initial initial.bak initial.
Rev 1.6.2 configuration new configuration new [factory [keep-basic] [keep-connect]] Creates a new configuration file under the specified name. The parameters specify what configuration, if any, to carry forward from the current running configuration. Syntax Description filename Names for new configuration file. factory Creates new file with only factory defaults. keep-basic Keeps licenses and host keys.
Rev 1.6.2 configuration revert configuration revert {factory [keep-basic | keep-connect]| saved} Reverts the system configuration to a previous state. Syntax Description factory Reverts running and saved configurations to factory defaults. If no parameter is set the default is to keep licenses and host keys. keep-basic Keeps licenses and host keys. keep-connect Keeps configuration necessary for connectivity (interfaces, routes, and ARP).
Rev 1.6.2 configuration switch-to configuration switch-to Loads the configuration from the specified file and makes it the active configuration file. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show configuration files initial (active) newcon initial.prev initial.bak switch (config) # configuration switch-to newcon switch (config) # show configuration files initial newcon (active) initial.prev initial.
Rev 1.6.2 configuration text fetch configuration text fetch [apply [discard | fail-continue | filename | overwrite | verbose] | filename | overwrite [apply | filename ]] Fetches a text configuration file (list of CLI commands) from a specified URL. Syntax Description apply Applies the file to the running configuration (i.e. executes the commands in it).
Rev 1.6.2 configuration text file configuration text file {apply [fail-continue] [verbose] | delete | rename | upload < URL>} Performs operations on text-based configuration files. Syntax Description filename Specifies the filename. apply Applies the configuration on the system. fail-continue Continues execution of the commands even if some commands fail. verbose Displays all commands being executed and their output, instead of just those that get errors.
Rev 1.6.2 configuration text generate configuration text generate {active {running | saved} | file } {save | upload } Generates a new text-based configuration file from this system's configuration. Syntax Description active Generates from currently active configuration. running Uses running configuration. saved Uses saved configuration. file Generates from inactive saved configuration. save Saves new file to local persistent storage.
Rev 1.6.2 configuration upload configuration upload {active | } Uploads a configuration file to a remote host. Syntax Description active Upload the active configuration file. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # configuration upload active scp://root:password@ 192.168.10.
Rev 1.6.2 write write {memory [local] | terminal} Saves or displays the running configuration. Syntax Description memory Saves running configuration to the active configuration file. It is the same as “configuration write”. local Saves the running configuration only on the local node. It is the same as “configuration write local”. terminal Displays commands to recreate current running configuration. It is the same as “show running-config”. Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 show configuration show configuration [audit | | files [] | full | running [full] | text files] Displays a list of CLI commands that will bring the state of a fresh system up to match the current persistent state of this system. Syntax Description audit Displays settings for configuration change auditing. files [] Displays a list of configuration files in persistent storage if no filename is specified.
Rev 1.6.2 show running-config show running-config [full] Displays commands to recreate current running configuration. Syntax Description full Does not exclude commands that set default values. Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 2.6 Local and Remote Logging logging local logging local no logging local Sets the minimum severity of log messages to be saved in log files on local persistent storage. The no form disables the ability to log messages locally and remotely. Syntax Description log-level Default info Modes/Context Config History 3.1.
Rev 1.6.2 logging local override logging local override [class priority ] no logging local override [class priority ] Enables class-specific overrides to the local log level. The no form of the command disables all class-specific overrides to the local log level without deleting them from the configuration, but disables them so that the logging level for all classes is determined solely by the global setting.
Rev 1.6.2 Example switch (config) # logging local override class mgmt-front priority warning switch (config) # show logging Local logging level: info Override for class mgmt-front: warning Default remote logging level: notice No remote syslog servers configured. Allow receiving of messages from remote hosts: no Number of archived log files to keep: 10 Log rotation size threshold: 5.
Rev 1.6.2 logging logging [trap { | override class priority }] no logging [trap { | override class priority }] Enables (by setting the IP address) sending logging messages, with ability to filter the logging messages according to their classes. The no form of the command stops sending messages to the remote syslog server.
Rev 1.6.2 Example switch (config) # logging local info switch (config) # show logging Local logging level: info Default remote logging level: notice No remote syslog servers configured. Allow receiving of messages from remote hosts: no Number of archived log files to keep: 10 Log rotation size threshold: 5.
Rev 1.6.2 logging receive logging receive no logging receive Enables receiving logging messages from a remote host. The no form of the command disables the option of receiving logging messages from a remote host. Syntax Description N/A Default Receiving logging is disabled Modes/Context Config History 3.1.0000 Role admin Example switch (config) # logging receive switch (config) # show logging Local logging level: info Default remote logging level: notice No remote syslog servers configured.
Rev 1.6.2 logging format logging format {standard | welf [fw-name ]} no logging format {standard | welf [fw-name ]} Sets the format of the logging messages. The no form of the command resets the format to its default. Syntax Description standard Standard format. welf WebTrends Enhanced Log file (WELF) format. hostname Specifies the firewall hostname that should be associated with each message logged in WELF format. If no firewall name is set, the hostname is used by default.
Rev 1.6.2 logging fields logging fields seconds {enable | fractional-digits | whole-digits } no logging fields seconds {enable | fractional-digits | whole-digits } Specifies whether to include an additional field in each log message that shows the number of seconds since the Epoch or not. The no form of the command disallows including an additional field in each log message that shows the number of seconds since the Epoch.
Rev 1.6.2 Related Commands show logging Note This is independent of the standard syslog date and time at the beginning of each message in the format of “July 15 18:00:00”. Aside from indicating the year at full precision, its main purpose is to provide subsecond precision.
Rev 1.6.2 logging level logging level {cli commands | audit mgmt } Sets the severity level at which CLI commands or the management audit message that the user executes are logged. This includes auditing of both configuration changes and actions. Syntax Description cli commands Sets the severity level at which CLI commands which the user executes are logged. audit mgmt Sets the severity level at which all network management audit messages are logged.
Rev 1.6.2 logging files delete logging files delete {current | oldest []} Deletes the current or oldest log files. Syntax Description current Deletes current log file. oldest Deletes oldest log file. number of files Sets the number of files to be deleted. Default CLI commands and audit message are set to notice logging level Modes/Context Config History 3.1.
Rev 1.6.2 logging files rotation logging files rotation {criteria { frequency | size | size-pct } | force | max-number } Sets the rotation criteria of the logging files. Syntax Description freq Sets rotation criteria according to time. Possible options are: • • • Daily Weekly Monthly size-mb Sets rotation criteria according to size in mega bytes. The range is 1-9999.
Rev 1.6.2 Example switch (config) # logging files rotation criteria size-pct 6 switch (config) # show logging Local logging level: info Override for class mgmt-front: warning Default remote logging level: notice No remote syslog servers configured. Allow receiving of messages from remote hosts: no Number of archived log files to keep: 10 Log rotation size threshold: 6.000% of partition (51.
Rev 1.6.2 logging files upload logging files upload {current | } Uploads a log file to a remote host. Syntax Description current The current log file. The current log file will have the name “messages” if you do not specify a new name for it in the upload URL. file-number An archived log file. The archived log file will have the name “messages.gz” (while “n” is the file number) if you do not specify a new name for it in the upload URL. The file will be compressed with gzip.
Rev 1.6.2 show logging show logging Displays the logging configurations. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show logging Local logging level: info Override for class mgmt-front: warning Default remote logging level: notice No remote syslog servers configured. Allow receiving of messages from remote hosts: no Number of archived log files to keep: 10 Log rotation size threshold: 5.
Rev 1.6.2 show log show log [continues | files [] ] [ [not] matching ] Displays the log file with optional filter criteria. Syntax Description continues Displays the last few lines of the current log file and then continues to display new lines as they come in until the user hits Ctrl+C, similar to LINUX “tail” utility. files Displays the list of log files.
Rev 1.6.2 Related Commands logging fields logging files rotation logging level logging local logging receive logging show logging Note 2.7 Maintenance Tools reload reload [force | halt [noconfirm] | noconfirm] Reboots or shuts down the system. Syntax Description force Forces an immediate reboot of the system even if the system is busy. halt Shuts down the system. noconfirm Reboots the system without asking about unsaved changes. Default N/A Modes/Context Config History 3.
Rev 1.6.2 reset factory reset factory [keep-all-config | keep-basic | only-config] [halt] Clears the system and resets it entirely to its factory state. Syntax Description keep-all-cofig Preserves everything in the running configuration file. The user will be prompted for confirmation before honoring this command, unless confirmation is disabled with the command: “no cli default prompt confirmreset”. keep-basic Preserves licenses in the running configuration file.
Rev 1.6.2 Syntax Description Default username Specifies a username and creates a user account. New users are created initially with admin privileges but is disabled.
Rev 1.6.2 show usernames show usernames Displays list of users and their capabilities. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show users show users [history] Displays logged in users and related information such as idle time and what host they have connected from. Syntax Description history Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show users USERNAME FULL NAME LINE admin System Administrator pts/0 admin System Administrator pts/1 admin System Administrator pts/3 switch (config) #show users history admin pts/3 172.22.237.34 Wed Feb 1 admin pts/3 172.22.
Rev 1.6.2 show whoami show whoami Displays username and capabilities of user currently logged in. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show whoami Current user: admin Capabilities: admin switch (config) # Related Commands username show usernames show users Note 2.8.
Rev 1.6.
Rev 1.6.2 aaa authentication login aaa authentication login default [ [ [ []]]] no aaa authentication login Sets a sequence of authentication methods. Up to four methods can be configured. The no form of the command resets the configuration to its default. Syntax Description auth-method Default local Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 aaa authentication attempts track enable aaa authentication attempts track enable no aaa authentication attempts track enable Enables tracking of authentication failures. The no form of the command disables tracking of authentication failures. Syntax Description N/A Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 aaa authentication attempts lockout aaa authentication attempts lockout {enable | lock-time | max-fail | unlock-time} no aaa authentication attempts lockout {enable | lock-time | max-fail | unlocktime} Configures lockout of accounts based on failed authentication attempts. The no form of the command clears configuration for lockout of accounts based on failed authentication attempts.
Rev 1.6.2 Syntax Description enable Enables locking out of user accounts based on authentication failures. This both suspends enforcement of any existing lockouts, and prevents any new lockouts from being recorded. If lockouts are later re-enabled, any lockouts that had been recorded previously resume being enforced; but accounts which have passed the max-fail limit in the meantime are NOT automatically locked at this time.
Rev 1.6.2 Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 aaa authentication attempts class-override aaa authentication attempts class-override {admin [no-lockout] | unknown {notrack | hash-username}} no aaa authentication attempts class-override {admin | unknown {no-track | hash-username}} Overrides the global settings for tracking and lockouts for a type of account. The no form of the command removes this override and lets the admin be handled according to the global settings.
Rev 1.6.2 aaa authentication attempts reset aaa authentication attempts reset {all | user } [{no-clear-history | nounlock}] Clears the authentication history for and/or unlocks specified users. Syntax Description all Applies function to all users. user Applies function to specified user. no-clear-history Leaves the history of login failures but unlocks the account. no-unlock Leaves the account locked but clears the history of login failures.
Rev 1.6.2 clear aaa authentication attempts clear aaa authentication attempts {all | user } [no-clear-history | nounlock] Clears the authentication history for and/or unlocks specified users Syntax Description all Applies function to all users. user Applies function to specified user. no-clear-history Clears the history of login failures. no-unlock Unlocks the account. Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 aaa authorization aaa authorization map [default-user | order ] no aaa authorization map [default-user | order] Sets the mapping permissions of a user in case a remote authentication is done. The no form of the command resets the attributes to default. Syntax Description username Specifies what local account the authenticated user will be logged on as when a user is authenticated (via RADIUS or TACACS+) and does not have a local account.
Rev 1.6.2 Related Commands show aaa username Note If, for example, the user is locally defined to have admin permission, but in a remote server such as RADIUS the user is authenticated as monitor and the order is remotefirst, then the user will be given monitor permissions.
Rev 1.6.2 show aaa show aaa Displays the AAA configuration. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show aaa authentication attempts show aaa authentication attempts [configured | status user ]] Shows the current authentication, authorization and accounting settings. Syntax Description authentication attempts Displays configuration and history of authentication failures. configured Displays configuration of authentication failure tracking. status user Displays status of authentication failure tracking and lockouts for specific user.
Rev 1.6.2 2.8.3 RADIUS radius-server radius-server {key | retransmit | timeout } no radius-server {key | retransmit | timeout} Sets global RADIUS server attributes. The no form of the command resets the attributes to their default values. Syntax Description secret Sets a secret key (shared hidden text string), known to the system and to the RADIUS server. retries Number of retries (0-5) before exhausting from the authentication.
Rev 1.6.2 radius-server host radius-server host {enable | auth-port | key | retransmit | timeout } no radius-server host {enable | auth-port } Configures RADIUS server attributes. The no form of the command resets the attributes to their default values and deletes the RADIUS server. Syntax Description IP address RADIUS server IP address. enable Administrative enable of the RADIUS server. port RADIUS server UDP port number.
Rev 1.6.2 show radius show radius Displays RADIUS configurations. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show radius RADIUS defaults: Key: 3333 Timeout: 3 Retransmit: 1 RADIUS servers: 40.40.40.
Rev 1.6.2 2.8.4 TACACS+ tacacs-server tacacs-server {key | retransmit | timeout } no tacacs-server {key | retransmit | timeout} Sets global TACACS+ server attributes. The no form of the command resets the attributes to default values. Syntax Description secret Set a secret key (shared hidden text string), known to the system and to the TACACS+ server. retries Number of retries (0-5) before exhausting from the authentication.
Rev 1.6.2 tacacs-server host tacacs-server host {enable | auth-port | auth-type | key | retransmit | timeout } no tacacs-server host {enable | auth-port} Configures TACACS+ server attributes. The no form of the command resets the attributes to their default values and deletes the TACACS+ server. Syntax Description IP address TACACS+ server IP address. enable Administrative enable for the TACACS+ server.
Rev 1.6.2 Related Commands aaa authorization show tacacs tacacs-server Note • • • TACACS+ servers are tried in the order they are configured A PAP auth-type similar to an ASCII login, except that the username and password arrive at the network access server in a PAP protocol packet instead of being typed in by the user, so the user is not prompted If the user does not specify a parameter for this configured TACACS+ server, the configuration will be taken from the global TACACS+ server configuration.
Rev 1.6.2 show tacacs show tacacs Displays TACACS+ configurations. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show tacacs TACACS+ defaults: Key: 3333 Timeout: 3 Retransmit: 1 TACACS+ servers: 40.40.40.
Rev 1.6.2 2.8.5 LDAP ldap base-dn ldap base-dn no ldap base-dn Sets the base distinguished name (location) of the user information in the schema of the LDAP server. The no form of the command resets the attribute to its default values. Syntax Description string A case-sensitive string that specifies the location in the LDAP hierarchy where the server should begin searching when it receives an authorization request. For example: “ou=users,dc=example,dc=com”, with no spaces.
Rev 1.6.2 ldap bind-dn/bind-password ldap {bind-dn | bind-password} no ldap {bind-dn | bind-password} Gives the distinguished name or password to bind to on the LDAP server. This can be left empty for anonymous login (the default). The no form of the command resets the attribute to its default values. Syntax Description string Default “” Modes/Context Config History 3.1.
Rev 1.6.2 ldap group-attribute/group-dn ldap {group-attribute { |member | uniqueMember} | group-dn } no ldap {group-attribute | group-dn} Sets the distinguished name or attribute name of a group on the LDAP server. The no form of the command resets the attribute to its default values. Syntax Description group-att Specifies a custom attribute name. member groupOfNames or group membership attribute. uniqueMember groupOfUniqueNames membership attribute.
Rev 1.6.2 ldap host ldap host [order last] no ldap host Adds an LDAP server to the set of servers used for authentication. The no form of the command deletes the LDAP host. Syntax Description IP Address IPv4 or IPv6 address. number The order of the LDAP server. last The LDAP server will be added in the last location. Default No hosts configured Modes/Context Config History 3.1.
Rev 1.6.2 ldap login-attribute ldap login-attribute { | uid | sAMAccountName} no ldap login-attribute Sets the attribute name which contains the login name of the user. The no form of the command resets this attribute to its default. Syntax Description string Custom attribute name. uid LDAP login name is taken from the user login username. sAMAccountName SAM Account name, active directory login name. Default sAMAccountName Modes/Context Config History 3.1.
Rev 1.6.2 ldap port ldap port no ldap port Sets the TCP port on the LDAP server to connect to for authentication. The no form of the command resets this attribute to its default value. Syntax Description port Default 389 Modes/Context Config History 3.1.
Rev 1.6.2 ldap referrals ldap referrals no ldap referrals Enables LDAP referrals. The no form of the command disables LDAP referrals. Syntax Description N/A Default LDAP referrals are enabled Modes/Context Config History 3.1.
Rev 1.6.2 ldap scope ldap scope no ldap scope Specifies the extent of the search in the LDAP hierarchy that the server should make when it receives an authorization request. The no form of the command resets the attribute to its default value. Syntax Description scope Default subtree Modes/Context Config History 3.1.
Rev 1.6.2 ldap ssl ldap ssl {ca-list | cert-verify | mode | port } no ldap ssl {cert-verify | mode | port} Sets SSL parameter for LDAP. The no form of the command resets the attribute to its default value. Syntax Description options This command specifies the list of supplemental certificates of authority (CAs) from the certificate configuration database that is to be used by LDAP for authentication of servers when in TLS or SSL mode.
Rev 1.6.2 History 3.1.0000 Initial version 3.2.3000 Added ca-list argument.
Rev 1.6.2 ldap timeout ldap {timeout-bind | timeout-search} no ldap {timeout-bind | timeout-search} Sets a global communication timeout in seconds for all LDAP servers to specify the extent of the search in the LDAP hierarchy that the server should make when it receives an authorization request. The no form of the command resets the attribute to its default value. Syntax Description timeout-bind Sets the global LDAP bind timeout for all LDAP servers.
Rev 1.6.2 ldap version ldap version no ldap version Sets the LDAP version. The no form of the command resets the attribute to its default value. Syntax Description version Default 3 Modes/Context Config History 3.1.
Rev 1.6.2 show ldap show ldap Displays LDAP configurations. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 crypto ipsec peer local crypto ipsec peer local {enable | keying {ike [auth {hmac-md5 | hmac-sha1 | hmac-sha256 | null} | dh-group | disable | encrypt | exchange-mode | lifetime | local | mode | peer-identity | pfs-group | preshared-key | prompt-preshared-key | transform-set] | manual [auth | disable | encrypt | local-spi | mode | remote-spi]}} Configures ipsec in the system. Syntax Description enable Enables IPSec peering.
Rev 1.6.2 Default N/A Modes/Context Config History 3.2.3000 Role admin Example switch (config)# crypto ipsec peer 10.10.10.10 local 10.7.34.
Rev 1.6.2 crypto certificate ca-list crypto certificate ca-list [default-ca-list name { | system-selfsigned}] no crypto certificate ca-list [default-ca-list name { | system-selfsigned}] Adds the specified CA certificate to the default CA certificate list. The no form of the command removes the certificate from the default CA certificate list. Syntax Description cert-name Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 crypto certificate default-cert crypto certificate default-cert name { | system-self-signed} no crypto certificate default-cert name { | system-self-signed} Designates the named certificate as the global default certificate role for authentication of this system to clients. The no form of the command reverts the default-cert name to “system-self-signed” (the “cert-name” value is optional and ignored). Syntax Description cert-name The name of the certificate.
Rev 1.6.2 crypto certificate generation crypto certificate generation default {country-code | days-valid | email-addr | key-size-bits | locality | org-unit | organization | state-or-prov} Configures default values for certificate generation. Syntax Description country-code Configures the default certificate value for country code with a two-alphanumeric-character code or -- for none. days-valid Configures the default certificate value for days valid.
Rev 1.6.2 crypto certificate name crypto certificate name { | system-self-signed} {comment | generate self-signed | private-key pem | public-cert [comment | pem ] | regenerate days-valid | rename } no crypto certificate name Configures default values for certificate generation. The no form of the command clears/deletes certain certificate settings.
Rev 1.6.2 Example switch (config) # crypto certificate name system-self-signed comment test Related Commands N/A Note The certificate parameter of the no form of this command deletes the comment on the certificate.
Rev 1.6.2 crypto certificate system-self-signed crypto certificate system-self-signed regenerate [days-valid ] Configures default values for certificate generation. Syntax Description days-valid Specifies the number of days the certificate is valid Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 show crypto certificate show crypto certificate [detail | public-pem | default-cert [detail | public-pem] | [name [detail | public-pem] | ca-list [default-ca-list]] Displays information about all certificates in the certificate database. Syntax Description ca-list Displays the list of supplemental certificates configured for the global default system CA certificate role. default-ca-list Displays information about the currently configured default certificates of the CA list.
Rev 1.6.
Rev 1.6.2 show crypto ipsec show crypto ipsec [brief | configured | ike | policy | sa ] Displays information ipsec configuration. Syntax Description N/A Default N/A Modes/Context Config History 3.2.1000 Role admin Example switch (config)# show crypto ipsec IPSec Summary ------------Crypto IKE is using pluto (Openswan) daemon. Daemon process state is stopped. No IPSec peers configured. IPSec IKE Peering State ----------------------Crypto IKE is using pluto (Openswan) daemon.
Rev 1.6.2 cli clear-history cli clear-history Clears the command history of the current user. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 cli default cli default {auto-logout | paging enable | prefix-modes {enable | showconfig} | progress enable | prompt {confirm-reload | confirm-reset | confirmunsaved | empty-password} no cli default {auto-logout | paging enable | prefix-modes {enable | show-config} | progress enable prompt {confirm-reload | confirm-reset | confirm-unsaved | empty-password} Configures default CLI options for all future sessions. The no form of the command deletes or disables the default CLI options.
Rev 1.6.
Rev 1.6.2 cli session cli session {auto-logout | paging enable | prefix-modes {enable | showconfig} | progress enable | terminal {length | resize | type | width} | x-display full } no cli session {auto-logout | paging enable | prefix-modes {enable | show-config} | progress enable | terminal type | x-display} Configures default CLI options for all future sessions. The no form of the command deletes or disables the CLI sessions.
Rev 1.6.
Rev 1.6.2 show cli show cli Displays the CLI configuration and status. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 2.11 Banner banner login banner {login | login-remote | login-local} no banner login Sets the CLI welcome banner message. The login-remote refers to the SSH connections banner, while the login-local refers to the serial connection banner. The no form of the command resets the system login banner to its default. Syntax Description string Text string. Default “Mellanox MLNX-OS Switch Management” Modes/Context Config History 3.1.
Rev 1.6.2 banner login-local banner login-local no banner login-local Sets system login local banner. The no form of the command resets the banner. Syntax Description string Text string. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # banner login-local Testing switch (config) # Related Commands show banner Note If more then one word is used (there is a space) quotation marks should be added (i.e. “xxxx xxxx”).
Rev 1.6.2 banner motd banner motd no banner motd Sets the contents of the /etc/motd file. The no form of the command resets the system Message of the Day banner. Syntax Description string Text string. Default “Mellanox Switch” Modes/Context Config History 3.1.
Rev 1.6.2 show banner show banner Displays configured banners. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role unpriv/monitor/admin Example switch (config) # show banner Banners: MOTD: Testing Login: Mellanox MLNX-OS Switch Management switch (config) # Related Commands banner login banner motd Note 2.12 SSH ssh server enable ssh server enable no ssh server enable Enables the SSH server. The no form of the command disables the SSH server.
Rev 1.6.2 Example switch (config) # ssh server enable switch (config) # show ssh server SSH server configuration: SSH server enabled: yes Minimum protocol version: 2 X11 forwarding enabled: no SSH server ports: 22 Interface listen enabled: yes No Listen Interfaces.
Rev 1.6.2 ssh server host-key ssh server host-key { {private-key | public-key } | generate} Manipulates host keys for SSH. Syntax Description key type • • • private-key Sets new private-key for the host keys of the specified type. public-key Sets new public-key for the host keys of the specified type. generate Generates new RSA and DSA host keys for SSH. Default SSH keys are locally generated Modes/Context Config History 3.1.
Rev 1.6.2 Example switch (config) # ssh server host-key dsa2 private-key Key: *********************************************** Confirm: *********************************************** switch (config) # show ssh server host-keys SSH server configuration: SSH server enabled: yes Minimum protocol version: 2 X11 forwarding enabled: no SSH server ports: 22 Interface listen enabled: yes No Listen Interfaces.
Rev 1.6.2 ssh server listen ssh server listen {enable | interface } no ssh server listen {enable | interface } Enables the listen interface restricted list for SSH. If enabled, and at least one nonDHCP interface is specified in the list, the SSH connections are only accepted on those specified interfaces. The no form of the command disables the listen interface restricted list for SSH. When disabled, SSH connections are not accepted on any interface.
Rev 1.6.2 ssh server min-version ssh server min-version no ssh server min-version Sets the minimum version of the SSH protocol that the server supports. The no form of the command resets the minimum version of SSH protocol supported. Syntax Description version Possible versions are 1 and 2. Default 2 Modes/Context Config History 3.1.
Rev 1.6.2 ssh server ports ssh server ports { [...]} Specifies which ports the SSH server listens on. Syntax Description port Port number in [1...65535]. Default 22. Modes/Context Config History 3.1.0000 Role admin Example switch (config) # ssh server ports 22 switch (config) # show ssh server SSH server configuration: SSH server enabled: yes Minimum protocol version: 2 X11 forwarding enabled: no SSH server ports: 22 Interface listen enabled: yes No Listen Interfaces.
Rev 1.6.2 ssh server x11-forwarding ssh server x11-forwarding enable no ssh server x11-forwarding enable Enables X11 forwarding on the SSH server. The no form of the command disables X11 forwarding. Syntax Description N/A Default X11-forwarding is disabled. Modes/Context Config History 3.1.
Rev 1.6.2 ssh client global ssh client global {host-key-check } | known-host } no ssh client global {host-key-check | known-host localhost} Configures global SSH client settings. The no form of the command negates global SSH client settings. Syntax Description host-key-check Sets SSH client configuration to control how host key checking is performed. This parameter may be set in 3 ways.
Rev 1.6.
Rev 1.6.2 ssh client user ssh client user {authorized-key sshv2 | identity {generate | private-key [] | public-key []} | known-host remove} no ssh client user admin {authorized-key sshv2 | identity } Adds an entry to the global known-hosts configuration file, either by generating new key, or by adding manually a public or private key.
Rev 1.6.2 slogin slogin [] Invokes the SSH client. The user is returned to the CLI when SSH finishes. Syntax Description slogin options usage: slogin [-1246AaCfgkNnqsTtVvXxY] [-b bind_address] [-c cipher_spec] [-D port] [-e escape_char] [-F configfile] [-i identity_file] [-L port:host:hostport] [-l login_name] [-m mac_spec] [-o option] [-p port] [-R port:host:hostport] [user@]hostname [command] Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 show ssh client show ssh client Displays the client configuration of the SSH server. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show ssh client SSH client Strict Hostkey Checking: ask SSH Global Known Hosts: Entry 1: 72.30.2.2 Finger Print: 1e:b7:8b:ec:ab:35:98:be:6b:d6:12:c2:18:72:12:d6 No SSH user identities configured. No SSH authorized keys configured.
Rev 1.6.2 show ssh server show ssh server Displays SSH server configuration. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show ssh server SSH server configuration: SSH server enabled: yes Minimum protocol version: 2 X11 forwarding enabled: no SSH server ports: 22 Interface listen enabled: yes No Listen Interfaces.
Rev 1.6.2 2.13 Remote Login telnet-server enable telnet-server enable no telnet-server enable Enables the telnet server. The no form of the command disables the telnet server. Syntax Description N/A Default Telnet server is disabled Modes/Context Config History 3.1.
Rev 1.6.2 show telnet-server show telnet-server Displays telnet server settings. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 2.14 XML Gateway xml-gw enable xml-gw enable no xml-gw enable Enables the XML gateway. The no form of the command disables the XML gateway. Syntax Description N/A Default XML Gateway is enabled Modes/Context Config History 3.1.
Rev 1.6.2 show xml-gw show xml-gw Displays the XML gateway setting. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show xml-gw XML Gateway enabled: yes switch (config) # Related Commands xml-gw enable Note 2.
Rev 1.6.2 web auto-logout web auto-logout no web auto-logout Configures length of user inactivity before auto-logout of a web session. The no form of the command disables the web auto-logout (web sessions will never logged out due to inactivity). Syntax Description number of minutes The length of user inactivity in minutes. 0 will disable the inactivity timer (same as a “no web auto-logout” command). Default 60 minutes Modes/Context Config History 3.1.
Rev 1.6.2 web client cert-verify web client cert-verify no web client cert-verify Enables verification of server certificates during HTTPS file transfers. The no form of the command disables verification of server certificates during HTTPS file transfers. Syntax Description N/A Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 web client ca-list web client ca-list { | default-ca-list | none} no web client ca-list Configures supplemental CA certificates for verification of server certificates during HTTPS file transfers. The no form of the command uses no supplemental certificates. Syntax Description ca-list-name Specifies CA list to configure. default-ca-list Configures default supplemental CA certificate list. none Uses no supplemental certificates.
Rev 1.6.2 web enable web enable no web enable Enables the web-based management console. The no form of the command disables the web-based management console. Syntax Description N/A Default enable Modes/Context Config History 3.1.0000 Role admin Example switch (config) # web enable switch (config) # show web Web-based management console enabled: yes HTTP enabled: yes HTTP port: 80 HTTP redirect to HTTPS: no HTTPS enabled: yes HTTPS port: 443 Listen enabled: No Listen Interfaces.
Rev 1.6.2 web http web http {enable | port | redirect} no web http {enable | port | redirect} Configures HTTP access to the web-based management console. The no form of the command negates HTTP settings for the web-based management console. Syntax Description enable Enables HTTP access to the web-based management console. port number Sets a port for HTTP access. redirect Enables redirection to HTTPS.
Rev 1.6.2 Related Commands show web web enable Note Enabling HTTP is meaningful if the WebUI as a whole is enabled.
Rev 1.6.2 web httpd web httpd listen {enable | interface } no web httpd listen {enable | interface } Enables the listen interface restricted list for HTTP and HTTPS. The no form of the command disables the HTTP server listen ability. Syntax Description enable Enables Web interface restrictions on access to this system. interface Adds interface to Web server access restriction list (i.e. mgmt0, mgmt1) Default Listening is enabled. all interfaces are permitted.
Rev 1.6.2 web https web https {certificate {regenerate | name | default-cert} | enable | port } no web https {enable | port } Configures HTTPS access to the web-based management console. The no form of the command negates HTTPS settings for the web-based management console. Syntax Description certificate regenerate Re-generates certificate to use for HTTPS connections.
Rev 1.6.2 Related Commands show web web enable Note • • Enabling HTTPS is meaningful if the WebUI as a whole is enabled.
Rev 1.6.2 web session web session {renewal | timeout } no web session {renewal | timeout} Configures session settings. The no form of the command resets session settings to default. Syntax Description renewal Configures time before expiration to renew a session. timeout Configures time after which a session expires. Default timeout - 2.5 hours renewal - 30 min Modes/Context Config History 3.1.
Rev 1.6.2 web proxy auth web proxy auth {authtype | basic [password | username ]} no web proxy auth {authtype | basic {password | username } Configures authentication settings for web proxy authentication. The no form of the command resets the attributes to their default values. Syntax Description type Configures the type of authentication to use with web proxy.
Rev 1.6.
Rev 1.6.2 web proxy host web proxy host [port ] no web proxy Adds and enables a proxy to be used for any HTTP or FTP downloads. The no form of the command disables the web proxy. Syntax Description IP address IPv4 or IPv6 address. port number Sets the web proxy default port. Default 1080 Modes/Context Config History 3.1.0000 Role admin Example switch (config) # web proxy host 10.10.10.
Rev 1.6.2 show web show web Displays the web configuration. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show web Web-based management console enabled: yes HTTP enabled: yes HTTP port: 80 HTTP redirect to HTTPS: no HTTPS enabled: yes HTTPS port: 443 Listen enabled: No Listen Interfaces.
Rev 1.6.2 2.16 SNMP The commands in this section are used to manage the SNMP server. snmp-server community snmp-server community [ ro | rw] no snmp-server community Sets a community name for either read-only or read-write SNMP requests. The no form of the command sets the community string to default. Syntax Description community Community name. ro Sets the read-only community string. rw Sets the read-write community string.
Rev 1.6.2 snmp-server contact snmp-server contact no snmp-server contact Sets a value for the sysContact variable in MIB-II. The no form of the command resets the parameter to its default value. Syntax Description contact name Contact name. Default “” Modes/Context Config History 3.1.
Rev 1.6.2 snmp-server enable snmp-server enable [communities | mult-communities | notify] no snmp-server enable [communities | mult-communities | notify] Enables SNMP-related functionality. The no form of the command disables the SNMP server. Syntax Description enable Enables SNMP-related functionality: • • SNMP engine SNMP traps communities Enables community-based authentication on this system. mult-communities Enables multiple communities to be configured.
Rev 1.6.2 snmp-server host snmp-server host {disable | {traps | informs} [ | | version ]} no snmp-server host {disable | {traps| informs} [ | ]} Configures hosts to which to send SNMP traps. The no form of the commands removes a host from which SNMP traps should be sent. Syntax Description IP address IPv4 or IPv6 address. disable Temporarily disables sending of traps to this host.
Rev 1.6.2 Example switch (config) # snmp-server host 10.10.10.10 traps version 1 switch (config) # show snmp SNMP enabled: yes SNMP port: 161 System contact: System location: Read-only communities: public Read-write communities: (none) Interface listen enabled: yes No Listen Interfaces. Traps enabled: Default trap community: Default trap port: yes public 162 Trap sinks: 10.10.10.
Rev 1.6.2 snmp-server listen snmp-server listen {enable | interface } no snmp-server listen {enable | interface } Configures SNMP server interface access restrictions. The no form of the command disables the listen interface restricted list for SNMP server. Syntax Description enable Enables SNMP interface restrictions on access to this system. ifName Adds an interface to the “listen” list for SNMP server. For example: “mgmt0”, “mgmt1”. Default N/A Modes/Context Config History 3.
Rev 1.6.2 snmp-server location snmp-server location no snmp-server location Sets a value for the sysLocation variable in MIB-II. The no form of the command clears the contents of the sysLocation variable. Syntax Description system location String. Default “” Modes/Context Config History 3.1.
Rev 1.6.2 snmp-server notify snmp-server notify {community | event | port | send-test} no snmp-server notify {community | event | port} Configures SNMP notifications (traps and informs). The no form of the commands negate the SNMP notifications. Syntax Description community Sets the default community for traps sent to hosts which do not have a custom community string set. event Specifies which events will be sent as traps.
Rev 1.6.2 snmp-server port snmp-server port no snmp-server port Sets the UDP listening port for the SNMP agent. The no form of the command resets the parameter to its default value. Syntax Description port UDP port. Default 161 Modes/Context Config History 3.1.
Rev 1.6.2 snmp-server user snmp-server user {admin | } v3 {[encrypted] auth [priv []] | capability | enable | prompt auth [priv ]} no snmp-server user {admin | } v3 {[encrypted] auth [priv []] | capability | enable | prompt auth [priv ]} Specifies an existing username, or a new one to be added.
Rev 1.6.2 show snmp show snmp [engineID | events | user] Displays SNMP-server configuration and status. Syntax Description engineID SNMP Engine ID. events SNMP events. user SNMP users. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show snmp SNMP enabled: yes SNMP port: 161 System contact: System location: Read-only community: public Read-write community: private Interface listen enabled: yes No Listen Interfaces.
Rev 1.6.2 2.17 Scheduled Jobs Use the commands in this section to manage and schedule the execution of jobs.
Rev 1.6.2 job job no job Creates a job. The no form of the command deletes the job. Syntax Description job ID An integer. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # job 100 switch (config job 100) # Related Commands show jobs Note Job state is lost on reboot.
Rev 1.6.2 command command | no command Adds a CLI command to the job. The no form of the command deletes the command from the job. Syntax Description sequence # An integer that controls the order the command is executed relative to other commands in this job. The commands are executed in an ascending order. command A CLI command. Default N/A Modes/Context Config job History 3.1.
Rev 1.6.2 comment comment no comment Adds a comment to the job. The no form of the command deletes the comment. Syntax Description comment The comment to be added (string). Default “” Modes/Context Config job History 3.1.
Rev 1.6.2 enable enable no enable Enables the specified job. The no form of the command disables the specified job. Syntax Description N/A Default N/A Modes/Context Config job History 3.1.0000 Role admin Example switch (config)# job 100 switch (config job 100) # enable switch (config job 100) # Related Commands show jobs Note If a job is disabled, it will not be executed automatically according to its schedule; nor can it be executed manually.
Rev 1.6.2 execute execute Forces an immediate execution of the job. Syntax Description N/A Default N/A Modes/Context Config job History 3.1.0000 Role admin Example switch (config)# job 100 switch (config job 100) # execute switch (config job 100) # Related Commands show jobs Note • • The job timer (if set) is not canceled and the job state is not changed: i.e.
Rev 1.6.2 fail-continue fail-continue no fail-continue Continues the job execution regardless of any job failures. The no form of the command returns fail-continue to its default. Syntax Description N/A Default A job will halt execution as soon as any of its commands fails Modes/Context Config job History 3.1.
Rev 1.6.2 name name no name Configures a name for this job. The no form of the command resets the name to its default. Syntax Description name Specifies a name for the job (string). Default “”. Modes/Context Config job History 3.1.
Rev 1.6.2 schedule type schedule type no schedule type Sets the type of schedule the job will automatically execute on. The no form of the command resets the schedule type to its default.
Rev 1.6.2 schedule schedule no schedule Sets the type of schedule the job will automatically execute on. The no form of the command resets the schedule type to its default.
Rev 1.6.2 show jobs show jobs [] Displays configuration and state (including results of last execution, if any exist) of all jobs, or of one job if a job ID is specified. Syntax Description job-id Job ID. Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 2.18 Event Notification email autosupport email autosupport {enable | event } no email autosupport enable Enables the support of the email notification and specifies which events will be sent as email notifications. The no form of the command disables sending of email notifications globally or per event. Syntax Description enable Enables the sending of email to vendor autosupport when certain failures occur.
Rev 1.6.2 email autosupport ssl mode email autosupport ssl mode {none | tls | tls-none} no email autosupport ssl mode Configures type of security to use for auto-support email. The no form of the command resets auto-support email security mode to its default. Syntax Description none Does not use TLS to secure auto-support email. tls Uses TLS over the default server port to secure autosupport email and does not send an email if TLS fails.
Rev 1.6.2 email autosupport ssl cert-verify email autosupport ssl cert-verify no email autosupport ssl cert-verify Verifies server certificates. The no form of the command does not verify server certificates. Syntax Description N/A Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 email autosupport ssl ca-list email autosupport ssl ca-list { | default_ca_list | none} no email autosupport ssl ca-list Configures supplemental CA certificates for verification of server certificates. The no form of the command removes supplemental CA certificate list. Syntax Description default_ca_list Default supplemental CA certificate list. none No supplemental list; uses built-in list only. Default default_ca_list Modes/Context Config History 3.2.
Rev 1.6.2 email dead-letter email dead-letter {cleanup max-age | enable} no email dead-letter Configures settings for saving undeliverable emails. The no form of the command disables sending of emails to vendor auto-support upon certain failures. Syntax Description duration Example: “5d4h3m2s” for 5 days, 4 hours, 3 minutes, 2 seconds. enable Saves dead-letter files for undeliverable emails.
Rev 1.6.2 email domain email domain no email domain Sets the domain name from which the emails will appear to come from (provided that the return address is not already fully-qualified). This is used in conjunction with the system hostname to form the full name of the host from which the email appears to come. The no form of the command clears email domain override. Syntax Description hostname or IP address IP address. Default No email domain Modes/Context Config History 3.
Rev 1.6.2 email mailhub email mailhub no email mailhub Sets the mail relay to be used to send notification emails. The no form of the command clears the mail relay to be used to send notification emails. Syntax Description hostname or IP address Hostname or IP address. Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # email mailhub 10.0.8.11 switch (config) # show email Mail hub: 10.0.8.
Rev 1.6.2 email mailhub-port email mailhub-port no email mailhub-port Sets the mail relay port to be used to send notification emails. The no form of the command resets the port to its default. Syntax Description hostname or IP address hostname or IP address. Default 25 Modes/Context Config History 3.1.0000 Role admin Example switch (config) # email mailhub-port 125 switch (config) # show email Mail hub: 10.0.8.
Rev 1.6.2 email notify event email notify event no email notify event Enables sending email notifications for the specified event type. The no form of the command disables sending email notifications for the specified event type. Syntax Description event name Example event names would include “process-crash” and “cpu-util-high”. Default No events are enabled Modes/Context Config History 3.1.
Rev 1.6.2 email notify recipient email notify recipient [class {info | failure} | detail] no email notify recipient [class {info | failure} | detail] Adds an email address from the list of addresses to which to send email notifications of events. The no form of the command removes an email address from the list of addresses to which to send email notifications of events. Syntax Description email addr Email address of intended recipient.
Rev 1.6.2 email return-addr email return-addr no email domain Sets the username or fully-qualified return address from which email notifications are sent. • • If the string provided contains an “@” character, it is considered to be fully-qualified and used as-is. Otherwise, it is considered to be just the username, and we append “@.”.
Rev 1.6.2 email return-host email return-host no email return-host Includes the hostname in the return address for emails. The no form of the command does not include the hostname in the return address for emails. Syntax Description N/A Default No return host Modes/Context Config History 3.1.
Rev 1.6.2 email send-test email send-test Sends test-email to all configured event and failure recipients. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 email ssl mode email ssl mode {none | tls | tls-none} no email ssl mode Sets the security mode(s) to try for sending email. The no form of the command resets the email SSL mode to its default. Syntax Description none No security mode, operates in plaintext. tls Attempts to use TLS on the regular mailhub port, with STARTTLS. If this fails, it gives up. tls-none Attempts to use TLS on the regular mailhub port, with STARTTLS. If this fails, it falls back on plaintext.
Rev 1.6.2 email ssl cert-verify email ssl cert-verify no email ssl cert-verify Enables verification of SSL/TLS server certificates for email. The no form of the command disables verification of SSL/TLS server certificates for email. Syntax Description N/A Default N/A Modes/Context Config History 3.2.3000 Role admin Example switch (config) # email ssl cert-verify Related Commands N/A Note This command has no impact unless TLS is used.
Rev 1.6.2 email ssl ca-list email ssl ca-list { | default-ca-list | none} no email ssl ca-list Specifies the list of supplemental certificates of authority (CA) from the certificate configuration database that is to be used for verification of server certificates when sending email using TLS, if any. The no form of the command uses no list of supplemental certificates. Syntax Description ca-list-name Specifies CA list name. default-ca-list Uses default supplemental CA certificate list.
Rev 1.6.2 show email show email [events] Shows email configuration or events for which email should be sent upon. Syntax Description events show event list Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show email Mail hub: Mail hub port: 25 Domain: (system domain name) Return address: my-address Include hostname in return address: no Current reply address: host@localdomain Dead letter settings: Save dead.
Rev 1.6.2 2.19 Statistics and Alarms stats alarm clear stats alarm clear Clears alarm state.
Rev 1.6.2 stats alarm enable stats alarm enable no stats alarm enable Enables the alarm. The no form of the command disables the alarm, notifications will not be received.
Rev 1.6.2 stats alarm event-repeat stats alarm event-repeat {single | while-not-cleared} no stats alarm event-repeat Configures repetition of events from this alarm.
Rev 1.6.2 stats alarm {rising | falling} stats alarm {rising | falling} {clear-threshold | error-threshold} Configure alarms thresholds.
Rev 1.6.2 stats alarm rate-limit stats alarm rate-limit {count | reset | window } Configures alarms rate limit.
Rev 1.6.2 stats chd clear stats chd clear Clears CHD counters.
Rev 1.6.2 stats chd enable stats chd enable no stats chd enable Enables the CHD. The no form of the command disables the CHD.
Rev 1.6.2 stats chd compute time stats chd compute time {interval | range} Sets parameters for when this CHD is computed.
Rev 1.6.
Rev 1.6.2 stats sample clear stats sample clear Clears sample history.
Rev 1.6.2 stats sample enable stats sample enable no states sample enable Enables the sample. The no form of the command disables the sample.
Rev 1.6.2 stats sample interval stats sample interval Sets the amount of time between samples for the specified group of sample data.
Rev 1.6.2 stats clear-all stats clear all Clears data for all samples, CHDs, and status for all alarms. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 stats export stats export [{after | before} ] [filename ] Exports statistics to a file. Syntax Description format Currently the only supported value for is “csv” (comma-separated value). report name Determines dataset to be exported. Possible report names are: • • • memory - Memory utilization paging - Paging I/O cpu_util - CPU utilization after | before Only includes stats collected after or before a specific time.
Rev 1.6.2 show stats alarm show stats alarm [ [rate-limit]] Displays status of all alarms or the specified alarm.
Rev 1.6.2 show stats chd show stats chd [] Displays configuration of all statistics CHDs.
Rev 1.6.2 show stats cpu show stats cpu Displays some basic stats about CPU utilization: • • • the current level the peak over the past hour the average over the past hour Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show stats cpu CPU 0 Utilization: 6% Peak Utilization Last Hour: 16% at 2012/02/28 08:47:32 Avg.
Rev 1.6.2 show stats sample show stats sample [] Displays sampling interval for all samples, or the specified one.
Rev 1.6.2 Syntax Description max-report-len Sets the length of the health report - number of line entries. Possible values: 10-2048. re-notif-cntr Health control changes notification counter, in seconds. Possible values: 120-7200 seconds. report-clear Clears the health report. Default max-report-len: 50 re-notif-cntr: Modes/Context Config History 3.1.
Rev 1.6.2 power enable power enable no power enable Powers on the module. The no form of the command shuts down the module. Syntax Description module name Enables power for selected module. Default Power is enabled on all modules. Modes/Context Config History 3.1.0000 Role admin Example switch (config) # power enable L01 switch (config) # Related Commands show power show power consumers Note This command is not applicable for 1U systems.
Rev 1.6.2 usb eject usb eject Gracefully turns off the USB interface. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # usb eject switch (config) # Related Commands N/A Note Applicable only for systems with USB interface.
Rev 1.6.2 system profile system profile [force] Sets the profile of the system to either InfiniBand, Ethernet or VPI. In ib-single-switch profile, all network interfaces link protocol set to InfiniBand. In eth-single-switch profile, all network interfaces link protocol set to Ethernet. In vpi-single-switch profile, some ports can be defined as Ethernet while some other as InfiniBand. Syntax Description profile • • • force Force operation, without the need for user confirmation.
Rev 1.6.2 show fan show fan Displays fans status. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show fan switch (config) # show fan ===================================================== Module Device Fan Speed Status (RPM) ===================================================== FAN FAN F1 5340.00 OK FAN FAN F2 5340.00 OK FAN FAN F3 5640.00 OK FAN FAN F4 5640.00 OK PS1 FAN F1 5730.
Rev 1.6.2 show version show version [concise] Displays version information for the currently running system image. Syntax Description concise Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show version Product name: SX_PPC_M460EX Product release: 3.0.0000-dev-HA Build ID: #1-dev Build date: 2012-02-26 08:47:51 Target arch: ppc Target hw: m460ex Built by: root@r-fit16 Related Commands The concise variant fits the description onto one line.
Rev 1.6.2 show inventory show inventory Displays system inventory. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 show module show module Displays modules status. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Initial version 3.3.
Rev 1.6.2 show memory show memory Displays memory status. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 show asic-version show asic-version Displays firmware ASIC version. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show asic-version =========================== SX module Version =========================== SX 9.1.
Rev 1.6.2 show power show power Displays power supplies and power usage. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show power ================================================================= Module Power Voltage Current Capacity Grid Status (Watts) (Amp) (Watts) Group ================================================================= PS1 0.00 47.11 0.00 1008 A OK PS2 248.82 48.05 5.18 1008 A OK PS3 0.00 46.88 0.
Rev 1.6.2 show power consumers show power consumers Displays power consumers. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show power consumers ================================================ Module Power Voltage Current Status (Watts) (Amp) ================================================ MGMT 17.47 48.00 0.36 OK S01 33.26 48.00 0.69 OK S02 33.50 48.00 0.70 OK L01 31.73 48.00 0.66 OK L02 29.76 48.00 0.62 OK L30 28.61 48.00 0.
Rev 1.6.2 show temperature show temperature Displays the system's temperature sensors status. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show temperature ============================================ Module Sensor CurTemp Status (Celsius) ============================================ MGMT SX 32.00 OK MGMT QSFP_TEMP1 22.50 OK MGMT QSFP_TEMP2 25.50 OK MGMT QSFP_TEMP3 24.50 OK MGMT BOARD_MONITOR 28.00 OK MGMT CPU_BOARD_MONITOR 31.
Rev 1.6.2 show voltage show voltage Displays power supplies voltage level. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show voltage ======================================================================= Module Power Meter Reg Expected Actual Status High Low Voltage Voltage Range Range ======================================================================= MGMT BOARD_MONITOR V1 5.00 5.15 OK 5.55 4.45 MGMT BOARD_MONITOR V2 2.27 2.
Rev 1.6.2 show health-report show health-report Displays health report. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Initial version 3.3.
Rev 1.6.2 show resources show resources Displays system resources. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # show resources Total Used Free Physical 2027 MB 761 MB 1266 MB Swap 0 MB 0 MB 0 MB Number of CPUs: 1 CPU load averages: 0.11 / 0.23 / 0.23 CPU 1 Utilization: 5% Peak Utilization Last Hour: 19% at 2012/02/15 13:26:19 Avg.
Rev 1.6.2 show system profile show system profile Displays system profile. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.2.
Rev 1.6.2 show system capabilities show system capabilities Displays system capabilities. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0000 Initial version 3.3.
Rev 1.6.2 show system mac show system mac Displays system MAC address. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 show protocols show protocols Displays all protocols enabled in the system. Syntax Description N/A Default N/A Modes/Context Config History 3.2.
Rev 1.6.
Rev 1.6.
Rev 1.6.2 3 Ethernet Switching 3.1 Interface interface ethernet interface ethernet /[/]-[/[/]] Enters the Ethernet interface or Ethernet interface range configuration mode. Syntax Description / Ethernet port number. subport Ethernet subport number. to be used in case of split port. Default N/A Modes/Context Config History 3.1.0000 Initial version. 3.2.1100 Added range support.
Rev 1.6.2 flowcontrol flowcontrol {receive | send} {off | on} [force] Enables or disables IEEE 802.3x link-level flow control per direction for the specified interface. Syntax Description receive | send receive - ingresses direction send - egresses direction off | on on - enables IEEE 802.3x link-level flow control for the specified interface on receive or send. off - disables IEEE 802.3x link-level flow control for the specified interface on receive or send force Forces command implementation.
Rev 1.6.2 mtu mtu Configures the Maximum Transmission Unit (MTU) frame size for the interface. Syntax Description frame-size This value may be 1518-9216 bytes. Default 1522 bytes Modes/Context Config interface ethernet Config Interface Port Channel History 3.1.
Rev 1.6.2 shutdown shutdown no shutdown Disables the interface. The no form of the command enables the interface. Syntax Description N/A Default The interface is enabled. Modes/Context Config interface ethernet Config Interface Port Channel History 3.1.
Rev 1.6.2 description description no description Sets an interface description. The no form of the command returns the interface description to its default value. Syntax Description string 40 bytes Default “” Modes/Context Config interface ethernet Config Interface Port Channel History 3.1.
Rev 1.6.2 speed speed [force] no speed Sets the speed of the interface. The no form of the command sets the speed of the interface to its default value. Syntax Description port speed 1000 10000 40000 56000 - 1Gbps 10Gbps 40Gbps 56Gbps force force changing the speed. Default Depends on the port module type, see “Notes” section below. Modes/Context Config interface ethernet History 3.1.
Rev 1.6.2 clear counters clear counters Clears the interface counters. Syntax Description N/A Default N/A Modes/Context Config interface ethernet Config Interface Port Channel History 3.1.
Rev 1.6.2 show interfaces ethernet show interfaces ethernet [counters [priority]] Displays the configuration and status for the interface. Syntax Description inf Interface number: /. counters Displays interface extended counters. priority Displays interface extended counters, per priority (0-7). Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show interfaces ethernet [] capabilities show interfaces ethernet [] capabilities Displays the interface capabilities. Syntax Description inf shows only one interface capabilities. Interface number: /. Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show interfaces ethernet [] description show interfaces ethernet [] description Displays the admin status and protocol status for the specified interface. Syntax Description inf Interface number: /. Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show interfaces ethernet [] status show interfaces ethernet [] status Displays the status, speed and negotiation mode of the specified interface. Syntax Description inf Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show interfaces ethernet status Port Interface number: /. Operational state Eth1/1 Up Eth1/2 Up Eth1/3 Up ...
Rev 1.6.2 show interfaces ethernet [] transceiver show interfaces ethernet [] transceiver Displays the transceiver info. Syntax Description inf interface number: / Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 Example switch (config interface ethernet 1/4) # module-type qsfp-split-4 the following interfaces will be unmapped: 1/4 1/1 Type 'yes' to confirm split: yes switch (config interface ethernet 1/4) # Related Commands switchport mode switchport [trunk | hybrid] allowed-vlan show vlan Note • • • The affected interfaces should be disabled prior to the operation in order to un-split the interface - used the command with “qsfp”, the speed is set to 40Gbps “module-type qsfp”.
Rev 1.6.2 3.2 Link Aggregation Group (LAG) and LACP interface port-channel interface port-channel <1-4096>[-<2-4096>] no interface port-channel <1-4096>[-<2-4096>] Creates a port channel and enters the port-channel configuration mode. There is an option to create a range of port-channel interfaces. The no form of the command deletes the port-channels, or range of port-channels. Syntax Description 1-4096 / 2-4096 Default Port channels are not created by default. Modes/Context Config History 3.1.
Rev 1.6.2 lacp lacp no lacp Enables LACP in the switch. The no form of the command disables LACP in the switch. Syntax Description N/A Default LACP is disabled. Modes/Context Config History 3.1.
Rev 1.6.2 lacp system-priority lacp system-priority <1-65535> no lacp system-priority Configures the LACP system priority. The no form of the command sets the LACP system-priority to default. Syntax Description 1-65535 LACP system-priority. Default 32768 Modes/Context Config History 3.1.
Rev 1.6.2 lacp (interface) lacp {rate fast | port-priority <1-65535>} no lacp {rate fast | port-priority} Configures the LACP interface parameters. The no form of the command sets the LACP interface configuration to default. Syntax Description rate fast Sets LACP PDUs on the port to be in fast (1 second) or slow rate. (30 seconds). 1-65535 LACP port-priority. Default rate - slow (30 seconds) port-priority 32768 Modes/Context Config History 3.1.
Rev 1.6.2 port-channel load-balance lacp port-channel load-balance no lacp port-channel load-balance Configures the port channel load balancing distribution function method. The no form of the command sets the distribution function method to default.
Rev 1.6.2 channel-group channel-group <1-4096> [mode {on | active | passive}] no channel-group Assigns and configures a physical interface to a port channel. The no form of the command removes a physical interface from the port-channel. Syntax Description 1-4096 The port channel number. mode on Static assignment the port to LAG. LACP will not be enabled on this port. mode active/passive Dynamic assignment of the port to LAG. LACP will be enabled in either passive or active mode.
Rev 1.6.2 show lacp system-identifier show lacp system-identifier Displays the system identifier of LACP. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show lacp counters show lacp counters Displays the LACP PDUs counters. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show lacp interface ethernet show lacp interface etherent Displays the LACP interface configuration and status. Syntax Description inf Default N/A Modes/Context Any Command Mode History 3.1.1400 Role admin Example switch (config) # show lacp interfaces ethernet 1/4 Port : 1/4 ------------- Interface number, for example “1/1”.
Rev 1.6.
Rev 1.6.2 show lacp interface neighbor show lacp interface neighbor Displays the LACP interface neighbor status. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show lacp interfaces port-channel show lacp interfaces port-channel Displays the LACP global parameters. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 3.3 VLANs vlan vlan { | } no vlan { | } Creates a VLAN or range of VLANs, and enters a VLAN context. The no form of the command deletes the VLAN or VLAN range. Syntax Description vlan-id 1-4094. vlan-range Any range of VLANs. Default VLAN 1 is enabled by default. Modes/Context Config History 3.1.
Rev 1.6.2 name name no name Adds VLAN name. The no form of the command deletes the VLAN name. Syntax Description vlan-name Default No name available. Modes/Context Config Vlan History 3.1.1400 Role admin Example switch (config) # vlan 10 switch (config vlan 10) # name my-vlan-name switch (config vlan 10) # show vlan VLAN ---1 5, Name ----------default 40-character long string.
Rev 1.6.2 show vlan show vlan [id ] Displays the VLAN table. Syntax Description vlan-id Default N/A Modes/Context Any Command Mode History 3.1.1400 Role admin Example switch (config vlan 10) # show vlan VLAN ---1 10 Related Commands 1-4094. Name ----------default my-vlan-name Ports -------------------------------------Eth1/2, Eth1/3, Eth1/4/1, Eth1/4/2 ...
Rev 1.6.2 switchport mode switchport mode {access | trunk | hybrid | access-dcb} no switchport mode Sets the switch port mode. The no form of the command sets the switch port mode to access. Syntax Description access Un-tagged port. 802.1q tagged traffic will be filtered. egress traffic is un-tagged. trunk 802.1q tagged port, un-tagged traffic will be filtered. hybrid Both 802.1q tagged and un-tagged traffic is allowed on the port. access-dcb Un-tagged port, egress traffic is priority tagged.
Rev 1.6.2 switchport access switchport access vlan no switchport access vlan Sets the port access VLAN. The no form of the command sets the port access VLAN to 1. Syntax Description vlan-id 1-4094. Default 1 Modes/Context Config interface ethernet Config Interface Port Channel History 3.1.1400 Initial version 3.2.0500 Format change (removed hybrid and access-dcb options).
Rev 1.6.2 switchport {hybrid, trunk} allowed vlan switchport {hybrid, trunk} allowed vlan { | add | remove all | except | none} Sets the port allowed VLANs. Syntax Description vlan VLAN ID (1-4094) or VLAN range. add Add VLAN or range of VLANs. remove Remove VLANs or range of VLANs. all Add all VLANs in available in the VLAN table. New vlans that will be added to the vlan table will be added automatically. except Add all VLANs expect this VLAN or VLAN range.
Rev 1.6.2 show interface switchport show interface switchport Displays all interface switch port configurations. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.1400 Role admin Example switch (config) #show interfaces switchport Interface | Mode | Access vlan | Allowed vlans -----------|------------|-------------|--------------------------Eth1/2 access 1 Eth1/3 access 1 Eth1/4/1 access 1 Eth1/4/2 access 1 Eth1/5 access 1 Eth1/6 access 1 Eth1/7 hybrid 1 1, 10 ....
Rev 1.6.2 Default 300 Modes/Context Config History 3.1.
Rev 1.6.2 mac-address-table static mac-address-table static vlan interface no mac-address-table static vlan interface Configures a static MAC address in the forwarding database. The no form of the command deletes a configured static MAC address from the forwarding database. Syntax Description mac address Destination MAC address. vlan VLAN ID or VLAN range. if-type Ethernet or port-channel interface type.
Rev 1.6.2 clear mac-address-table dynamic clear mac-address-table dynamic Clear the dynamic entries in the MAC address table. Syntax Description N/A Default N/A Modes/Context Config History 3.1.0600 Role admin Example switch (config) # clear mac-address-table dynamic switch (config) # Related Commands mac-address-table aging-time mac-address-table static show mac-address-table Note This command does not clear the MAC addresses learned on the mgmt0 port.
Rev 1.6.2 show mac-address-table show mac-address-table [address | interface ethernet | vlan [ | range ] | unicast | multicast] Displays the static and dynamic unicast and multicast MAC addresses for the switch. Various of filter options available. Syntax Description mac-address Filter the table to a specific MAC address. if-number Filter the table to a specific interface. vlan Filter the table to a specific VLAN number (1-4094).
Rev 1.6.2 show mac-address-table aging-time show mac-address-table aging-time Displays the MAC address table aging time. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 3.5 Spanning Tree spanning-tree spanning-tree no spanning-tree Globally enables the spanning tree feature. The no form disables the spanning tree feature. Syntax Description N/A Default Spanning tree is enabled. Modes/Context Config History 3.1.
Rev 1.6.2 spanning-tree (timers) spanning-tree [forward-time
Rev 1.6.2 spanning-tree port type (default global) spanning-tree port type default no spanning-tree port type default Configures all switch interfaces as edge/network/normal ports. These ports can be connected to any type of device. The no form of the command disables the spanning tree operation. Syntax Description port-type • • • Edge - Assumes all ports are connected to hosts/servers. Network - Assumes all ports are connected to switches and bridges.
Rev 1.6.2 spanning-tree priority spanning-tree priority no spanning-tree priority Sets the spanning tree bridge priority. The no form of the command sets the bridge priority to default. Syntax Description bridge-priority Sets the bridge priority for the spanning tree. Its value must be in steps of 4096, starting from 0. Only the following values are applicable: 0, 4096, 8192, 12288, 16384, 20480, 24576, 28672, 32768, 36864, 40960, 45056, 49152, 53248, 57344, 61440.
Rev 1.6.2 spanning-tree port-priority spanning-tree port-priority no spanning-tree port-priority Configures the spanning-tree interface priority. The no form of the command returns configuration to its default. Syntax Description priority Spanning tree interface priority. The possible values are: 0, 16, 32,48, 64, 80, 96, 112, 128,144, 160, 176, 192, 208, 224, 240. Default 128 Modes/Context Config interface ethernet History 3.1.
Rev 1.6.2 spanning-tree cost spanning-tree cost no spanning-tree cost Configures the interface cost of the spanning tree. The no form of the command returns configuration to its default. Syntax Description port cost Default The default cost is derived from the speed. 1Gbps 20000 10Gbps 2000 40Gbps 500 56Gbps 357 Modes/Context Config interface ethernet History 3.1.
Rev 1.6.2 spanning-tree port type spanning-tree port type no spanning-tree port type Configures spanning-tree port type The no form of the command returns configuration to default. Syntax Description port type Sets the spanning-tree port type. The port type parameter has four options: • • • • Default (globally defined) Edge Normal Network In case there is no change of this parameter, the configuration will be taken from the global default port type.
Rev 1.6.2 spanning-tree guard spanning-tree guard {loop | root} no spanning-tree guard {loop | root} Configures spanning-tree guard. The no form of the command returns configuration to default. Syntax Description loop Enables loop-guard on the interface. If the loop-guard is enabled, upon a situation where the interface fails to receive BPDUs the switch will not egress data traffic on this interface. root Enables root-guard on the interface.
Rev 1.6.2 spanning-tree bpdufilter spanning tree bpdufilter {disable | enable} no spanning tree bpdufilter Configures spanning-tree BPDU filter on the interface. The interface will ignore any BPDU that it receives and will not send PDBUs, The STP state on the port will move to the forwarding state. The no form of the command returns the configuration to default. Syntax Description disable Disables the BPDU filter on this port. enable Enables the BPDU filter on this port.
Rev 1.6.2 clear spanning-tree counters clear spanning-tree counters Clears the spanning-tree counters. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 show spanning-tree show spanning-tree [detail | interface ] Displays spanning tree information. Syntax Description detail Displays detailed spanning-tree configuration and statistics. interface Displays the running state for a specific interface. Options for “type”: ethernet or port-channel. Options for “number”: or . Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 3.6 IGMP Snooping ip igmp snooping (admin) ip igmp snooping no ip igmp snooping Enables IGMP snooping globally or per VLAN. The no form of the command disables IGMP snooping globally or per VLAN. Syntax Description N/A Default IGMP snooping is disabled, globally and per VLAN. Modes/Context Config Config Vlan History 3.1.
Rev 1.6.2 ip igmp snooping (config) ip igmp snooping {last-member-query-interval <1-25> | proxy reporting mrouter-timeout <60-600> | port-purge-timeout <130-1225> | report-suppression-interval <1-25>} no ip igmp snooping {last-member-query-interval | proxy reporting | mroutertimeout | report-suppression-interval} Configures IGMP global parameters. The no form of the command resets the IGMP global parameters to default.
Rev 1.6.
Rev 1.6.2 ip igmp snooping fast-leave ip igmp snooping fast-leave no ip igmp snooping fast-leave Enables fast leave processing on a specific interface. The no form of the command disables fast leave processing on a specific interface. Syntax Description N/A Default Normal-leave is enabled. Modes/Context Config interface ethernet Config Interface Port Channel History 3.1.
Rev 1.6.2 ip igmp snooping static-group ip igmp snooping static-group interface no ip igmp snooping static-group interface Creates a static multicast group and attaches a port to a specified group. The no form of the command deletes the interface from the multicast group. Syntax Description Ip address Multicast IP address <224.x.x.x - 239.255.255.255> interface Attach the group to a specific interface.
Rev 1.6.
Rev 1.6.2 ip igmp snooping mrouter ip igmp snooping mrouter interface no ip igmp snooping mrouter interface Creates a static multicast router port on a specific VLAN, on a specific interface. The no form of the command removes the static multicast router port from a specific VLAN. Syntax Description interface Attaches the group to a specific interface. type - ethernet or port-channel. Default No static mrouters are configured.
Rev 1.6.2 ip igmp snooping unregistered multicast ip igmp snooping unregistered multicast no ip igmp snooping unregistered multicast Sets the behavior of the snooping switch for unregistered multicast traffic. The no form of the command sets it default. Syntax Description options Default flood Modes/Context Config History 3.2.
Rev 1.6.2 show ip igmp snooping show ip igmp snooping Displays IGMP snooping information for all VLANs or a specific VLAN. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show ip igmp snooping groups show ip igmp snooping groups Displays per VLAN the list of multicast groups attached (static or dynamic allocated) per port. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.1400 Role admin Example switch (config) # show ip igmp snooping groups Vlan ID Group St/Dyn Ports ------------------------------1 230.0.0.
Rev 1.6.2 show ip igmp snooping vlan show ip igmp snooping vlan { | all} Displays IGMP configuration per VLAN or VLAN range. Syntax Description vlan/vlan range Displays IGMP VLAN configuration per specific VLAN or VLAN range. all Display IGMP VLAN configuration on all VLAN. Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show ip igmp snooping mrouter show ip igmp snooping mrouter Displays IGMP snooping multicast router information. Syntax Description Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show ip igmp snooping interfaces show ip igmp snooping interfaces Displays IGMP snooping interface information. Syntax Description Default N/A Modes/Context Any Command Mode History 3.1.1400 Role admin Example switch (config) # show ip igmp snooping interfaces interface leave-mode ---------------------1/1 Normal 1/2 Normal 1/3 Normal 1/4 Fast ...
Rev 1.6.2 show ip igmp snooping statistics show ip igmp snooping statistics Displays IGMP snooping statistical counters. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 3.7 Link Layer Discovery Protocol (LLDP) lldp lldp no lldp Enables LLDP globally. The no form of the command disables the LLDP. Syntax Description N/A Default Disabled Modes/Context Config History 3.2.
Rev 1.6.2 lldp reinit lldp reinit no lldp reinit Sets the delay in seconds from enabling the LLDP on the port until re-initialization will be attempted. The no form of the command sets the parameter to default. Syntax Description seconds 1-10 Default 2 Modes/Context Config History 3.2.
Rev 1.6.2 lldp timer lldp timer no lldp timer Sets the LLDP interval at which LLDP frames are transmitted. (lldpMessageTxInterval) The no form of the command sets the parameter to default. Syntax Description seconds 5-32768 Default 30 Modes/Context Config History 3.2.
Rev 1.6.2 lldp tx-delay lldp tx-delay no lldp tx-delay Indicates the delay in seconds between successive LLDP frame transmissions The no form of the command sets the parameter to default. Syntax Description seconds 1-8192 Default 2 Modes/Context Config History 3.2.0300 Role admin Example switch (config)# lldp tx-delay 10 switch (config)# Related Commands show lldp timers Note The recommended value for the tx-delay is set by the following formula: 1 <= lldp tx-delay <= (0.
Rev 1.6.2 lldp tx-hold-multiplier lldp tx-hold-multiplier no lldp tx-hold-multiplier The time-to-live value expressed as a multiple of the lldpMessageTxInterval object. The no form of the command sets the parameter to default. Syntax Description seconds 1-8192 Default 2 Modes/Context Config History 3.2.
Rev 1.6.2 lldp {receive | transmit} lldp {receive | transmit} no lldp {receive | transmit} Enables LLDP to be received or transmitted on this port. The no form of the command disables the LLDP to be received or transmitted on this port. Syntax Description N/A Default Enabled for receive and Trasmit. Modes/Context Config interface ethernet History 3.2.
Rev 1.6.2 lldp tlv-select lldp tlv-select { [port-description] [sys-name] [sys-description] [sys-capababilities] [management-address] [none] all} Sets the LLDP basic TLVs to be transmitted on this port.
Rev 1.6.2 show lldp local show lldp local Shows LLDP local information. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.2.
Rev 1.6.2 show lldp interface show lldp interface [ethernet ] Shows LLDP local interface table information. Syntax Description inf Interface number, for example 1/1. Default N/A Modes/Context Any Command Mode History 3.2.
Rev 1.6.2 show lldp interface ethernet remote show lldp interface ethernet remote Shows LLDP remote interface table information. Syntax Description inf local interface number, for example 1/1. Default N/A Modes/Context Any Command Mode History 3.2.
Rev 1.6.2 show lldp timers show lldp timers Shows LLDP timers configuration Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.2.
Rev 1.6.2 show lldp statistics global show lldp statistics global Shows LLDP global statistics Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.2.
Rev 1.6.2 show lldp statistics [interface ethernet ] show lldp statistics [interface ethernet ] Shows LLDP interface statistics Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.2.
Rev 1.6.2 3.8 Quality of Service 3.8.1 Enhanced Transmission Selection (ETS) dcb ets enable dcb ets enable no dcb ets enable Sets the switch egress scheduling mode to be weighted round robin. The no form of the command sets the switch egress scheduling mode to be strict priority. Syntax Description N/A Default ETS is enabled. Modes/Context Config History 3.1.
Rev 1.6.2 dcb ets tc bandwidth dcb ets tc bandwidth no dcb ets tc bandwidth Configures the bandwidth limit of the traffic class. The no form of the command sets the bandwidths per traffic class back to its default. 0-100. Syntax Description tc-i Default 25% per traffic class. Modes/Context Config History 3.1.
Rev 1.6.2 vlan map-priority vlan map priority traffic-class no vlan map priority Maps an VLAN user priority to a traffic class. The no form of the command sets the mapping back to default. Syntax Description N/A Default Priority 0,1 mapped to tc 0. Priority 2,3 mapped to tc 1. Priority 4,5 mapped to tc 2. Priority 6,7 mapped to tc 3. Modes/Context Config interface ethernet History 3.1.
Rev 1.6.2 show dcb ets show dcb ets Displays ETS configuration and operational data. Syntax Description Default ETS is enabled. Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show dcb ets interface show dcb ets interface Displays ETS configuration and operational data, per interface. Syntax Description type ethernet or port-channel number interface number, i.e. 1/1 Default ETS is enabled. Modes/Context Any Command Mode History 3.1.
Rev 1.6.
Rev 1.6.2 3.8.2 Priority Flow Control (PFC) dcb priority-flow-control enable dcb priority-flow-control enable no dcb priority-flow-control enable Enables PFC globally on the switch. The no form of the command globally disables PFC on the switch. Syntax Description N/A Default PFC is disabled. Modes/Context Config History 3.1.0000 Initial revision 3.3.
Rev 1.6.2 dcb priority-flow-control priority dcb priority-flow-control priority enable no dcb priority-flow-control priority enable Enables PFC per priority on the switch. The no form of the command disables PFC per priority on the switch. Syntax Description prio 0-7. Default PFC is disabled for all priorities. Modes/Context Config History 3.1.
Rev 1.6.2 dcb priority-flow-control mode on dcb priority-flow-control mode on [force] no dcb priority-flow-control mode Enables PFC per interface. The no form of the command disables PFC per interface. Syntax Description force Force command implementation. Default PFC is disabled for all interfaces. Modes/Context Config interface ethernet Config Interface Port Channel History 3.1.
Rev 1.6.2 show dcb priority-flow-control show dcb priority-flow-control [interface ] [detail] Displays DCB priority flow control configuration and status. Syntax Description type • • inf The interface number. detail Adds details information to the show output. ethernet port-channel Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 3.9 Access Control List ipv4/mac access-list {ipv4 | mac} access-list no {ipv4 | mac} access-list Creates a MAC or IPv4 ACL and enter the ACL configuration mode. The no form of the command deletes the ACL. Syntax Description ipv4 | mac IPv4 or MAC - access list. acl-name User defined string for the ACL. Default No ACL available by default. Modes/Context Config History 3.1.
Rev 1.6.2 ipv4/mac port access-group {ipv4 | mac} port access-list no {ipv4 | mac} port access-list Binds an ACL to the interface. The no form of the command unbinds the ACL from the interface. Syntax Description ipv4 | mac IPv4 or MAC - access list. acl-name ACL name. Default No ACL is bind by default. Modes/Context Config interface ethernet Config Interface Port Channel History 3.1.
Rev 1.6.2 deny/permit (MAC ACL rule) [seq-number ] {deny|permit } {any | [mask ]} {any | [mask ]} [protocol ] [cos ] [vlan ] [action ] no Creates a rule for MAC ACL. The no form of the command deletes a rule from the MAC ACL. Syntax Description sequence-number Optional parameter to set a specific sequence number for the rule. The range is:1-500.
Rev 1.6.2 deny/permit (IPv4 ACL rule) [seq-number ] {permit | deny} ip { [mask ] | [any]} { [mask ] | [any]} [action ] no Creates a rule for IPv4 ACL. The no form of the command deletes a rule from the IPv4 ACL. Syntax Description sequence-number Optional parameter to set a specific sequence number for the rule. The range is:1-500. deny | permit Determines the type of the rule, deny or permit action.
Rev 1.6.2 deny/permit (IPv4 TCP/UDP ACL rule) [seq-number ] {permit | deny} {tcp | udp} { [mask ] | [any]} { [mask ]| [any]} [eq-source ] [eq-destination ] [action ] no Creates a rule for IPv4 UDP/TCP ACL. The no form of the command deletes a rule from the ACL. Syntax Description sequence-number Optional parameter to set a specific sequence number for the rule. The range is:1-500.
Rev 1.6.2 access-list action access-list action no access-list action Creates access-list action profile and entering the action profile configuration mode. The no form of the command deletes the action profile. Syntax Description action-profile-name given name for the profile. Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 vlan-map vlan-map no vlan-map Adds action to map a new VLAN to the packet (in the ingress port or VLAN). The no form of the command removes the action to map a new VLAN. Syntax Description vlan-id 0-4095. Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 show access-list action show access-list action { | summary} Displays the access-list action profiles summary. Syntax Description action-profile-name Filter the table according to the action profile name. summary Display summary of the action list. Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 show mac/ipv4 access-lists show [mac |ipv4 |] access-lists Displays the list of rules for the MAC/IPv4 ACL. Syntax Description ipv4 | mac IPv4 or MAC - access list. access-list-name ACL name. Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 show mac/ipv4 access-lists summary show [mac |ipv4 |] access-lists summary Displays the summary of number of rules per ACL, and the interfaces attached. Syntax Description ipv4 | mac IPv4 or MAC - Access list access-list-name ACL name Default N/A Modes/Context Any Command Mode History 3.1.
Rev 1.6.2 4 IP Routing 4.1 General ip routing ip routing no ip routing Enables L3 capabilities: IP router interfaces, static routing and routing protocols. The no form of the command disables L3 capabilities, however does not delete the L3 configuration. Syntax Description N/A Default IP routing is disabled Modes/Context Config History 3.2.
Rev 1.6.2 show ip routing show ip routing Displays IP routing admin state. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.2.0230 Role admin Example switch (config) # show ip routing IP routing: enabled switch (config) # Related Commands ip routing Note 4.1.1 IP Interface interface vlan interface vlan no interface vlan Creates a VLAN interface and enters the interface VLAN configuration mode.
Rev 1.6.2 Related Commands ip routing vlan switchport mode switchport access show interfaces vlan Note • • • Make sure the VLAN was created, using the command “vlan ” in the global configuration mode The VLAN must be assigned to one of the L2 interfaces. To do so, run the command “swichport ...
Rev 1.6.2 ip address ip address no ip address Enters user-defined description for the interface. Syntax Description ip-address IPv4 address mask There are two possible ways to the mask: • • /length (i.e. /24) Network address (i.e. 255.255.255.0) Default 0.0.0.0/0 Modes/Context Config vlan interface History 3.2.0230 Role admin Example switch (config interface vlan 10) # ip address 10.10.10.
Rev 1.6.2 counters counters no counters Enables counters gathering on the IP interface. The no form of the command disables counters gathering on the IP interface. Syntax Description N/A Default counters are disabled. Modes/Context Config vlan interface History 3.2.
Rev 1.6.2 description description no description Enters a description for the interface. The no form of the command sets the description to default. Syntax Description string user defined string Default “” Modes/Context Config vlan interface History 3.2.
Rev 1.6.2 mtu mtu [force] no mtu Sets the MTU for the interface. The no form of the command sets the MTU to default. Syntax Description size 1518-9216. force Forces command implementation. Default 1522 Modes/Context Config vlan interface History 3.2.
Rev 1.6.2 shutdown shutdown no shutdown Disables the interface. The no form of the command enables the interface. Syntax Description N/A Default The interface is enabled. Modes/Context Config vlan interface History 3.1.0000 Role admin Example switch (config interface vlan 20) # shutdown switch (config interface vlan 20) # show interfaces vlan 20 Vlan 20 Admin state: Disabled Operational state: Down (admin down) Mac Address: 00:02:c9:5d:e0:f0 Internet Address: 0.0.0.0/0 Broadcast address: 255.
Rev 1.6.2 clear counters clear counters Clears the interface counters. Syntax Description N/A Default N/A Modes/Context Config vlan interface History 3.2.
Rev 1.6.2 show interfaces vlan show interfaces vlan [ | status] Displays the interface VLAN configuration and status per VLAN or as a summarized list. Syntax Description vlan-id A numeric range of 1-4094 status Displays a summarized status table. Default N/A Modes/Context Any Command Mode History 3.2.
Rev 1.6.2 4.1.2 Loopback Interface interface loopback interface loopback no interface vlan Creates a loopback interface and enters the interface configuration mode. The no form of the command deletes the interface. Syntax Description id A numeric range of 1-32 Default N/A Modes/Context Config History 3.2.3000 Role admin Example switch (config) # interface loopback 10 switch (config interface loopback 10) # Related Commands Note • • • Up to 32 loopback interfaces can be configured.
Rev 1.6.2 Related Commands Note • 4.1.4 Routing and ECMP ip route ip route no ip route Sets a static route. The no form of the command deletes the static route Syntax Description IP address IPv4 address netmask There are two possible ways to the mask: • • next hop IP address /length (i.e. /24) Network address (i.e. 255.255.255.0) IPv4 address of the next hop. Default N/A Modes/Context Config History 3.1.
Rev 1.6.2 ip load-sharing ip load-sharing no ip load-sharing This command sets the ECMP load sharing mode. The no form of the command sets the load-sharing to default. Syntax Description type Default all Modes/Context Config History 3.2.
Rev 1.6.2 show ip route show ip route Displays the route table. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.1.0000 Role admin Example switch (config) # show ip route Destination Mask default 0.0.0.0 10.10.10.0 255.255.255.0 172.28.0.0 255.255.0.0 1.0.0.0 255.255.255.0 2.0.0.0 255.255.255.0 3.0.0.0 255.255.255.0 4.0.0.0 255.255.255.0 8.8.8.0 255.255.255.0 7.7.7.0 255.255.255.0 Gateway 172.28.0.1 172.28.2.4 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 1.0.0.2 2.
Rev 1.6.2 show ip load-sharing show ip load-sharing Displays ECMP hash attribute. Syntax Description N/A Default N/A Modes/Context Any Command Mode History 3.2.
Rev 1.6.2 4.1.5 Network to Media Resolution (ARP) ip arp ip arp no ip arp Adds static ARP entry for the defined interface. The no form of the command deletes the static ARP entry from the interface. Syntax Description IP address IPv4 Address Mac-address Mac address (format XX:XX:XX:XX:XX:XX) Default No static ARP entries Modes/Context Config vlan interface History 3.2.0230 Role admin Example switch (config interface vlan 11) # ip arp 1.0.0.
Rev 1.6.2 ip arp timeout ip arp timeout no ip arp timeout Sets the dynamic arp cache timeout. The no form of the command sets the timeout to default. Syntax Description timeout-value Time (in seconds) that an entry remains in the ARP cache. Valid values are from 60 to 28800. Default 1500 seconds Modes/Context Config History 3.2.
Rev 1.6.2 clear ip arp clear ip arp {[vlan ] | []} Clears dynamic arp entries from the ARP table with possible filters. Syntax Description vlan-id Clears dynamic ARP entries only for a specific VLAN, range1-4094 IP address Clears dynamic ARP entries for a specific IP address. Default N/A Modes/Context Config History 3.2.
Rev 1.6.2 show ip arp show ip arp [count] Displays the ARP table. Syntax Description count show ARP table size (inband and out or band) Default N/A Modes/Context Any Command Mode History 3.2.0230 Role admin Example switch (config) # show ip arp ARP Timeout: 1500 Total number of entries: 9 Address 10.209.1.105 10.209.1.168 10.209.0.1 10.209.1.226 1.1.1.1 1.1.2.1 1.1.3.1 1.1.4.1 1.1.5.
Rev 1.6.2 4.1.6 IP Diagnostic Tools ping ping [-LRUbdfnqrvVaA] [-c count] [-i interval] [-w deadline] [-p pattern] [-s packetsize] [-t ttl] [-I interface or address] [-M mtu discovery hint] [-S sndbuf] [T timestamp option ] [-Q tos ] [hop1 ...] destination Sends ICMP echo requests to a specified host. Syntax Description Linux Ping options Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # ping 172.30.2.2 PING 172.30.2.2 (172.30.2.2) 56(84) bytes of data.
Rev 1.6.2 traceroute traceroute [-46dFITUnrAV] [-f first_ttl] [-g gate,...] [-i device] [-m max_ttl] [-N squeries] [-p port] [-t tos] [-l flow_label] [-w waittime] [-q nqueries] [-s src_addr] [-z sendwait] host [packetlen] Traces the route packets take to a destination.
Rev 1.6.2 Syntax Description -4 Uses IPv4. -6 Uses IPv6 -d Enables socket level debugging. -F Sets DF (don't fragment bit) on. -I Uses ICMP ECHO for tracerouting. -T Uses TCP SYN for tracerouting. -U Uses UDP datagram (default) for tracerouting. -n Does not resolve IP addresses to their domain names. -r Bypasses the normal routing and send directly to a host on an attached network.
Rev 1.6.2 Default N/A Modes/Context Config History 3.1.0000 Role admin Example switch (config) # traceroute 192.168.10.70 traceroute to 192.168.10.70 (192.168.10.70), 30 hops max, 40 byte packets 1 172.30.0.1 (172.30.0.1) 3.632 ms 2.849 ms 3.544 ms 2 10.222.128.46 (10.222.128.46) 3.176 ms 3.289 ms 3.656 ms 3 10.158.128.30 (10.158.128.30) 15.331 ms 15.819 ms 16.388 ms 4 10.158.128.65 (10.158.128.65) 20.468 ms 7.893 ms 12.27 ms 5 10.7.34.115 (10.7.34.115) 16.405 ms 11.985 ms 12.264 ms 6 192.168.10.
Rev 1.6.2 tcpdump tcpdump [-aAdeflLnNOpqRStuUvxX] [-c count] [ -C file_size ] [ -E algo:secret ] [ -F file ] [ -i interface ] [ -M secret ] [ -r file ] [ -s snaplen ] [ -T type ] [ -w file ] [ -W filecount ] [ -y datalinktype ] [ -Z user ] [ expression ] Invokes standard binary, passing command line parameters straight through. Runs in foreground, printing packets as they arrive, until the user hits Ctrl+C. Syntax Description N/A Default N/A Modes/Context Config History 3.1.
