FTOS Command Line Reference Guide for the Z9000 System FTOS 9.0.0.
Notes, Cautions, and Warnings NOTE: A NOTE indicates important information that helps you make better use of your computer. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. Information in this publication is subject to change without notice. © 2012 Dell Force10. All rights reserved.
1 About this Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
www.dell.com | support.dell.com Basic File Management Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .25 Upgrading the C-Series FPGA . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .57 4 Control and Monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .61 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
10 Content Addressable Memory (CAM) . . . . . . . . . . . . . . . . . . . . . . . . . . .477 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 477 CAM Profile Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .477 Important Points to Remember . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .477 11 Control Plane Policing (CoPP) . . . . . . . . . .
www.dell.com | support.dell.com 18 Interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .559 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 559 Basic Interface Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .559 Port Channel Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
27 Open Shortest Path First (OSPFv2) . . . . . . . . . . . . . . . . . . . . . . . . . . . .829 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 829 OSPFv2 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .829 28 PIM-Sparse Mode (PIM-SM). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .889 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . .
www.dell.com | support.dell.com 36 Rapid Spanning Tree Protocol (RSTP) . . . . . . . . . . . . . . . . . . . . . . . . .1013 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1013 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1013 37 Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1023 Overview . .
43 System Time and Date . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1143 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1143 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1143 44 VLAN Stacking . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1159 Overview . . . . . . . . . . . . . . . .
| www.dell.com | support.dell.
1 About this Guide This book provides information on the FTOS Command Line Interface (CLI). It includes some information on the protocols and features found in FTOS and on the Dell Force10 systems supported by FTOS (E-Series e, C-Series c, S-Series s, S4810 series , and Z-Series z.
www.dell.com | support.dell.com Information Symbols Table 1-1 describes symbols contained in this guide. Table 1-1. Information Symbols Symbol Brief Description c C-Series This symbol indicates that the selected feature is supported on the C-Series. e E-Series This symbol indicates that the selected feature is supported on the E-Series TeraScale AND E-Series ExaScale. et E-Series TeraScale This symbol indicates that the selected feature is supported on the E-Series TeraScale platform only.
2 CLI Basics This chapter describes the command structure and command modes. FTOS commands are in a text-based interface that allows you to use launch commands, change the command modes, and configure interfaces and protocols.
www.dell.com | support.dell.com Multiple Configuration Users When a user enters the CONFIGURATION mode and another user(s) is already in that configuration mode, FTOS generates an alert warning message similar to the following: FTOS#conf % Warning: The following users are currently configuring the system: User User User User "" on line "admin" on "admin" on "Irene" on console0 line vty0 ( 123.12.1.123 ) line vty1 ( 123.12.1.123 ) line vty3 ( 123.12.1.
Table 2-1.
www.dell.com | support.dell.com Figure 2-1.
Use the left and right arrow keys to navigate left or right in the FTOS command line. Table 2-2 defines the key combinations valid at the FTOS command line. Table 2-2. Short-cut Keys and their Actions Key Combination Action CNTL-A Moves the cursor to the beginning of the command line. CNTL-B Moves the cursor back one character. CNTL-D Deletes character at cursor. CNTL-E Moves the cursor to the end of the line. CNTL-F Moves the cursor forward one character. CNTL-I Completes a keyword.
www.dell.com | support.dell.com • • • • • except— display only text that does not match the pattern (or regular expression) find — search for the first occurrence of a pattern grep — display text that matches a pattern no-more — do not paginate the display output save - copy output to a file for future use Note: FTOS accepts a space before or after the pipe, no space before or after the pipe, or any combination.
EXEC Mode When you initially log in to the switch, by default, you are logged into the EXEC mode. This mode allows you to view settings and to enter the EXEC Privilege mode to configure the device. While you are in the EXEC mode, the > prompt is displayed following the “hostname” prompt, as described above. which is “FTOS” by default. You can change it with the hostname command. See the command hostname. Each mode prompt is preceded by the hostname.
www.dell.com | support.dell.com Table 2-3. Interface prompts Prompt Interface Type FTOS(conf-if-lo-0)# Loopback interface number FTOS(conf-if-nu-0)# Null interface followed by zero FTOS(conf-if-po-0)# Port-channel interface number FTOS(conf-if-vl-0)# VLAN interface followed by VLAN number (range 1 to 4094) FTOS(conf-if-so-0/0)# SONET interface followed by slot/port information.
IP ACCESS LIST Mode While in the CONFIGURATION mode, use the ip access-list standard or ip access-list extended command to enter the IP ACCESS LIST mode and configure either standard or extended access control lists (ACL). To enter IP ACCESS LIST mode: 1. 2. Verify that you are logged in to the CONFIGURATION mode. Use the ip access-list standard or ip access-list extended command. You must include a name for the ACL.The prompt changes to include (conf-std-nacl) or (conf-ext-nacl).
www.dell.com | support.dell.com IP COMMUNITY LIST Mode Use the IP COMMUNITY LIST mode to configure an IP Community ACL on the E-Series. See Chapter 6, Access Control Lists (ACL). To enter IP COMMUNITY LIST mode: 1. 2. Verify that you are logged in to the CONFIGURATION mode. Enter the ip community-list command. You must include a name for the Community list.The prompt changes to include (config-community-list). You can return to the CONFIGURATION mode by entering the exit command.
RAPID SPANNING TREE Mode Use PVST+ mode to enable and configure the RSTP protocol, as described in Chapter 36, Rapid Spanning Tree Protocol (RSTP). To enter RSTP mode: 1. 2. Verify that you are logged into the CONFIGURATION mode. Enter the protocol spanning-tree rstp command. You can return to the CONFIGURATION mode by entering the exit command.
www.dell.com | support.dell.com ROUTER RIP Mode Use the ROUTER RIP mode to configure RIP on the C-Series or E-Series, as described in Chapter 34, Router Information Protocol (RIP). To enter ROUTER RIP mode: 1. 2. Verify that you are logged into the CONFIGURATION mode. Enter the router rip command.The prompt changes to include (conf-router_rip). You can switch to the INTERFACE mode by using the interface command or you can switch to the ROUTER OSPF mode by using the router ospf command.
3 File Management Overview This chapter contains commands needed to manage the configuration files and includes other file management commands found in FTOS. The commands in this chapter are supported by FTOS on Dell Force10 platforms, as indicated by the characters that appear under each of the command headings: e , and z Z-Series.
www.dell.com | support.dell.
The write memory command always saves the running-configuration to the file labeled startup-configuration. When using a LOCAL CONFIG FILE other than the startup-config, use the copy command to save any running-configuration changes to that local file. The following text is an example of output for show bootvar with no boot configuration: FTOS#show bootvar PRIMARY IMAGE FILE = flash://FTOS-EF-8.2.1.0.bin SECONDARY IMAGE FILE = flash://FTOS-EF-7.6.1.0.bin DEFAULT IMAGE FILE = flash://FTOS-EF-7.5.1.0.
www.dell.com | support.dell.com Command Modes CONFIGURATION Command History Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information To display these changes in the show bootvar command output, you must save the running configuration to the startup configuration (using the copy command). Related Commands Display the variable settings for the E-Series boot parameters. show bootvar boot network ce Set the location of the configuration file in a remote network.
default After entering rpm0 or rpm1, enter the keyword default to specify the parameters to be used if those specified by primary or secondary fail. The default location should always be the internal flash device (flash:), so that you can be sure that a verified image is available there. primary After entering rpm0 or rpm1, enter the keyword primary to configure the boot parameters used in the first attempt to boot FTOS.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information Related Commands tftp: Enter TFTP: to retrieve the image from a TFTP server. tftp://hostip/filepath A: | B: Enter A: or B: to boot one of the system partitions. Not configured. CONFIGURATION Version 8.3.12.0 Deprecated command Version 8.3.11.1 Introduced on the Z9000 Version 8.3.7.
Command Modes Command History EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command change bootflash-image ce Change boot flash image from which to boot. Syntax change bootflash-image {cp | linecard linecard-slot | rp} Parameters cp Enter the keyword cp to change the bootflash image on the Control Processor on the RPM.
www.dell.com | support.dell.com Parameters file-url Enter the following location keywords and information: • • • • • • • • • • • To copy a file from the internal FLASH, enter flash:// followed by the filename.
The following text is an example of the output when the running-configuration is copied: FTOS#copy running-config scp:/ Address or name of remote host []: 10.10.10.1 Destination file name [startup-config]? old_running User name to login remote host? ****** Password to login remote host? ****** In this example — copy scp: flash: — specifying SCP in the first position indicates that the target is to be specified in the ensuing prompts.
www.dell.com | support.dell.com Usage Information In this streamline copy command, the source image is copied to the primary RPM and then, if specified, to the standby RPM. After the copy is complete, the new image file path on each RPM is automatically configured as the primary image path for the next boot. The current system image (the one from which the RPM booted) is automatically configured as the secondary image path. FTOS supports IPv4 and IPv6 addressing for FTP, TFTP, and SCP.
dir ces Syntax Parameters Display the files in a file system. The default is the current directory. dir [filename | directory name:] filename | directory name: (OPTIONAL) Enter one of the following: • • Command Modes Command History For a file or directory on the internal Flash, enter flash:// followed by the filename or directory name. For a file or directory on the external Flash, enter slot0:// followed by the filename or directory name: EXEC Privilege Version 7.6.1.
www.dell.com | support.dell.com download alt-full-image e Syntax Command Modes Command History Usage Information Download an alternate FTOS image to the chassis. download alt-full-image file-url EXEC Privilege Version 7.7.1.0 Removed form E-Series Version 6.5.1.0 Introduced Starting with FTOS 7.7.1.0, the functions of this command are incorporated into the upgrade command. For software upgrade details, see the FTOS Release Notes.
Default Command Modes Command History dosFs1.0 Enter the keyword dosFs1.0 to format in DOS 1.0 (the default) dosFs2.0 Enter the keyword dosFs2.0 to format in DOS 2.0 DOS 1.0 (dosFs1.0) EXEC Privilege Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information When you format flash: 1 The startup-config is erased. 2 All cacheboot data files are erased and you must reconfigure cacheboot to regain it. 3 All generated SSH keys are erased and you must recreate them.
www.dell.com | support.dell.com Related Commands copy Copy the current configuration to either the startup-configuration file or the terminal. show file Display contents of a text file in the local filesystem. show file-systems Display information about the file systems on the system. format flash (Z9000) z Syntax Parameters Default Erase all existing files and reformat the file system in the internal flash memory or the USB drive. Once the file system is formatted, files cannot be restored.
rename ces Syntax Parameters Rename a file in the local file system. rename url url url Enter the following keywords and a filename: • • Command Modes Command History For a file on the internal Flash, enter flash:// followed by the filename. For a file on the external Flash, enter slot0:// followed by the filename. EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com show bootvar cez Syntax Display the variable settings for the system boot parameters. show bootvar Command Modes EXEC Privilege Command History Version 8.3.11.4 Output expanded to display current reload mode (normal or Jumpstart). Version 8.3.11.1 Introduced on the Z9000 Version 7.5.1.0 Introduced on C-Series E-Series original Command Example Figure 3-3. Command Output example: show bootvar FTOS#show bootvar PRIMARY IMAGE FILE = ftp://box:password@10.31.1.
Command History Version 8.3.11.1 Introduced on the Z9000 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Example Command output example (Partial): show file FTOS# show file flash://startup-config ! boot system rpm0 primary ftp://test:server@10.16.1.144//home/images/ E1200_405-3.1.2b1.86.bin boot system rpm0 secondary flash://FTOS-ED-6.1.1.0.bin boot system rpm0 default ftp://:@/\ ! redundancy auto-synchronize persistent-data redundancy primary
www.dell.com | support.dell.com Example Figure 3-4. Command output example (Partial): show file FTOS#show file flash://startup-config ! boot system rpm0 primary ftp://test:server@10.16.1.144//home/images/ E1200_405-3.1.2b1.86.bin boot system rpm0 secondary flash://FTOS-ED-6.1.1.0.bin boot system rpm0 default ftp://:@/\ ! redundancy auto-synchronize persistent-data redundancy primary rpm0 ! hostname E1200-20 ! enable password 7 94849d8482d5c3 ! username test password 7 93e1e7e2ef ! enable restricted 7 94
Table 3-1. show file-systems Command Output Fields Field Description size(b) Lists the size in bytes of the storage location. If the location is remote, no size is listed. Free(b) Lists the available size in bytes of the storage location. If the location is remote, no size is listed. Feature Displays the formatted DOS version of the device. Type Displays the type of storage. If the location is remote, the word network is listed. Flags Displays the access available to the storage location.
www.dell.com | support.dell.com Example Figure 3-6. Command output example (E-Series): show linecard boot-information FTOS#show linecard boot-information -- Line cards -Serial Booted Next Cache Boot # Status CurType number from boot boot flash -------------------------------------------------------------------------------------------------------------0 1 2 3 online E48TF FX000032632 4.7.7.171 4.7.7.171 A: invalid B: invalid A: 2.3.2.1 [b] B: 2.3.2.
Example (E-Series) Figure 3-7. Command output example (E-Series): show os-version FTOS#show os-version RELEASE IMAGE INFORMATION : --------------------------------------------------------------------Platform Version Size ReleaseTime E-series: EF 7.5.1.0 27676168 Aug 15 2007 10:06:21 TARGET IMAGE INFORMATION : --------------------------------------------------------------------Type Version Target checksum runtime 7.5.1.0 control processor passed runtime 7.5.1.0 route processor passed runtime 7.5.1.
www.dell.com | support.dell.com show running-config cesZ Syntax Parameters Display the current configuration and display changes from the default values. show running-config [entity] [configured] [status] entity (OPTIONAL) Enter one of the keywords listed below to display that entity’s current (non-default) configuration.
• • • • • • • • • Command Modes Command History Example snmp for the current SNMP configuration spanning-tree for the current spanning tree configuration static for the current static route configuration tacacs+ for the current TACACS+ configuration tftp for the current TFTP configuration trace-group for the current trace-group configuration trace-list for the current trace-list configuration users for the current users configuration wred-profile for the current wred-profile configuration configured (O
www.dell.com | support.dell.com Parameters number Enter a number to view information on that SFM. Range: 0 to 8. all (OPTIONAL) Enter the keyword all to view a table with information on all present SFMs. brief (OPTIONAL) Enter the keyword brief to view a list with SFM status. Note: The brief option is not available on C-Series. Command Modes EXEC EXEC Privilege Command History Version 7.5.1.0 Introduced on C-Series E-Series original Command E-Series Example Figure 3-11.
Figure 3-12. Command output example: show sfm all FTOS#show sfm all Switch Fabric State: up -- Switch Fabric Modules -Slot Status --------------------------------------------------------------------------0 active 1 active 2 active 3 active 4 active 5 active 6 active 7 active 8 active FTOS# show startup-config ces Syntax Command Modes Command History Example Display the startup configuration. show startup-config EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com Command History Version 9.0.0.0 Introduced on Z9000. Version 8.3.12.0 Introduced on S4810. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Example (E-Series) FTOS#show version Dell Force10 Networks Real Time Operating System SoftwareDe Dell Force10 Operating System Version: 1.0 Dell Force10 Application Software Version: 5.3.1.0 Copyright (c) 1999-2004 by Dell Force10 Networks, Inc.
Dell Force10 Operating System Version: 1.0 Dell Force10 Application Software Version: Z9K-ICC-PRIM-SYNC-8-3-11-173 Copyright (c) 1999-2012 by Dell Inc. All Rights Reserved. Build Time: Mon Jul 16 22:19:01 PDT 2012 Build Path: /local/local/build/build15/8.3.12.0/SW/SRC/Radius FTOS uptime is 1 minute(s) System image file is "s4810-14" System Type: S4810 Control Processor: Freescale QorIQ P2020 with 2147483648 bytes of memory. 128M bytes of boot flash memory.
www.dell.com | support.dell.com Table 3-3. show version Command Fields Lines beginning with Description Copyright (c)... Copyright information Build Time... Software build’s date stamp Build Path... Location of the software build files loaded on the system Dell Force10 uptime is... Amount of time the system has been up System image... Image file name Chassis Type: Chassis type (E1200, E600, E600i, E300, C300, C150) Control Processor:...
booted Enter this keyword to upgrade using the image packed with the currently running FTOS image.
www.dell.com | support.dell.com all Enter the keyword all to upgrade the bootflash or boot selector image on all processors. This keyword does not upgrade the bootflash on the standby RPM. Enter the keyword all after the keyword linecard to upgrade the bootflash or boot selector image on all linecards. linecard number Enter the keyword linecard followed by the line card slot number.
Once the URL is specified, the same downloaded image can be used for upgrading an individual RPM, line cards, SFM FPGA, and system-image for cache-boot without specifying the file-url again using the command upgrade {bootflash-image | bootselector-image | system-image} {all | linecard linecard-slot | rpm}. After 20 minutes, the cached memory is released and returned for general use, but the URL is maintained and you do not have to specify it for subsequent upgrades.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information No configuration or default values EXEC Privilege Version 9.0.0.0 Added support for IPv6 for file-url parameter Version 8.3.11.1 Introduced on the Z9000, adding support for the SSD on the Z9000 only Version 7.7.1.0 Added support for TFTP and SCP. Version 7.6.1.
Enter the path to the upgrade source. Entering updates the FPGA from the flash. file-url Enter the following location keywords and information to upgrade using an FTOS image other than the one currently running: • • • • Defaults Command Modes No default values or behavior EXEC Privilege Command History Example To specify an FTOS image on the internal flash, enter: • flash:// file-path/filename.
www.dell.com | support.dell.com restore fpga-image c Syntax Parameters Defaults Command Mode Command History Example Copy the backup C-Series FPGA image to the primary FPGA image. restore fpga-image {rpm | linecard} number rpm Enter rpm to upgrade an RPM FPGA. linecard Enter linecard to upgrade a line card FPGA. number Enter the line card or RPM slot number. C-Series Line Card Range: 0-7, RPM Range: 0-1 None. EXEC Privilege Version 7.7.1.0 Renamed keyword primary-fpga-flash to fpga-image.
Parameters rpm number Enter rpm followed by the RPM slot number to upgrade an RPM FPGA Range: 0-1 linecard number Enter linecard followed by the line card slot number to upgrade a linecard FPGA. Range: 0-7 on the C300, 0-3 on the C150 all Enter the keyword all to upgrade all RPM and linecard FPGAs. Enter the keyword all after the keyword rpm to upgrade all FPGAs on all RPMs. Enter the keyword all after the keyword linecard to upgrade all FPGAs on all linecards.
| File Management www.dell.com | support.dell.
4 Control and Monitoring Overview This chapter contains the following commands to configure and monitor the system, including Telnet, FTP, and TFTP as they apply to the following Dell Force10 platforms e E-Series, c C-Series, s S-Series, z Z-Series or . Note: Beginning in release 8.3.11.4, the enable xfp-power-updates command was deprecated for the Z9000. It was replaced by the enable optic-info-update interval command to update information on temperature and power monitoring in the SNMP MIB.
www.dell.com | support.dell.
Parameters unit-id Enter the stack member unit identifier of the stack member to reset. S4810 range: 0 - 11 Z9000 range: 0 - 7 Note: The S4810 commands accept Unit ID numbers 0-11, though S4810 supports stacking up to 6 units only with FTOS version 8.3.12.0 Note: The Z9000 commands accept Unit ID numbers 0-7 but stacking is not supported in 8.3.11.4 queue size Defaults Command Modes Not configured. CONFIGURATION Command History Usage Information Enter the queue size of the stack member.
www.dell.com | support.dell.com Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information Optionally, use the banner exec command to create a text string that is displayed when the user accesses the EXEC mode. The exec-banner command toggles that display.
Parameters Defaults Command Modes Command History keyboard-interactive Enter this keyword to require a carriage return (CR) to get the message banner prompt. c Enter a delineator character to specify the limits of the text banner. In the Example, the % character is the delineator character. line Enter a text string for your text banner message ending the message with your delineator. In the Example, the delineator is a percent character (%).
www.dell.com | support.dell.com This is the banner FTOS> banner motd cesz Syntax Set a Message of the Day (MOTD) banner. banner motd c line c To delete a Message of the Day banner, enter no banner motd. Parameters Defaults Command Modes Command History c Enter a delineator character to specify the limits of the text banner. In the above figures, the % character is the delineator character. line Enter a text string for your message of the day banner message ending the message with your delineator.
Parameters Defaults Command Modes Enter the keyword all to enable CAM audit on all line cards. ipv4-fib Enter the keyword ipv4-fib to designate the CAM audit on the IPv4 forwarding entries. interval time-in-minutes Enter the keyword interval followed by the frequency in minutes of the CAM audit. Range: 5 to 1440 minutes (24 hours) Default: 60 minutes Disabled CONFIGURATION Command History Usage Information all Version 7.4.1.
www.dell.com | support.dell.com Version 7.5.1.0 Introduced on C-Series E-Series original Command Related Commands show command-history Display a buffered log of all commands entered by all users along with a time stamp. clear line cesz Syntax Parameters Reset a terminal line. clear line {line-number | aux 0 | console 0 | vty number} line-number Enter a number for one of the 12 terminal lines on the system. Range: 0 to 11. aux 0 Enter the keywords aux 0 to reset the Auxiliary port.
Version 7.5.1.0 Introduced on C-Series E-Series original Command Example FTOS#configure FTOS(conf)# debug cpu-traffic-stats cesz Syntax Enable the collection of CPU traffic statistics. debug cpu-traffic-stats To disable the debugging, execute the no debug cpu-traffic-stats command. Defaults Disabled Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.2.1.
www.dell.com | support.dell.com Command History Version 8.3.11.1 Introduced on the Z9000 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command disable cez Syntax Return to the EXEC mode. disable [level] Parameters Defaults level (OPTIONAL) Enter a number for a privilege level of the FTOS. Range: 0 to 15. Default: 1 1 Command Modes EXEC Privilege Command History Version 8.3.11.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.1.1.
www.dell.com | support.dell.com Usage Information Related Commands Users entering the EXEC Privilege mode or any other configured privilege level can access configuration commands. To protect against unauthorized access, use the enable password command to configure a password for the enable command at a specific privilege level. If no privilege level is specified, the default is privilege level 15. enable password Configure a password for the enable command and to access a privilege level.
Command Modes Command History Usage Information CONFIGURATION Version 8.3.11.4 Deprecated command for Z9000 only. Replaced by the enable optic-info-update interval command to update information on temperature and power monitoring in the SNMP MIB. Version 8.3.11.1 Introduced on the Z9000 Version 8.3.10.0 Deprecated command for S4810. Replaced by the enable optic-info-update interval command to update information on temperature and power monitoring in the SNMP MIB. Version 8.1.1.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information 2.4 Enter the keyword 2.4 to set the epoch to 2.4 micro-seconds and lower the latency. This option is available on the E600i and E1200i E-Series ExaScale systems only. 3.2 Enter the keyword 3.2 to set the epoch to 3.2 micro-seconds and lower the latency. This option is available on the E600/E600i and E1200/E1200i only. ExaScale does not supports this setting with FTOS 8.3.1.0 and later. 10.
Command Modes Command History LINE Version 8.3.11.1 Introduced on the Z9000 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Related Commands Optionally, use the banner exec command to create a text string that is displayed when the user accesses the EXEC mode. This command toggles that display. banner exec Configure a banner to display when entering the EXEC mode.
www.dell.com | support.dell.com Figure 4-1. Example FTOS time-out display FTOS con0 is now available Press RETURN to get started. FTOS> exit ce s z Syntax Command Modes Command History Return to the lower command mode. exit EXEC Privilege, CONFIGURATION, LINE, INTERFACE, TRACE-LIST, PROTOCOL GVRP, SPANNING TREE, MULTIPLE SPANNING TREE, MAC ACCESS LIST, ACCESS-LIST, AS-PATH ACL, COMMUNITY-LIST, PREFIX-LIST, ROUTER OSPF, ROUTER RIP, ROUTER ISIS, ROUTER BGP Version 8.3.11.
Figure 4-2. Example Example of Logging on to an FTP Server morpheus% ftp 10.31.1.111 Connected to 10.31.1.111. 220 Dell Force10 (1.0) FTP server ready Name (10.31.1.
www.dell.com | support.dell.com Related Commands ftp-server enable Enables FTP server functions on the E-Series. ftp-server username Set a username and password for incoming FTP connections to the E-Series. ftp-server username cesz Syntax Create a user name and associated password for incoming FTP server sessions. ftp-server username username password [encryption-type] password To delete a user name and its password, use the no ftp-server username username command.
Command Modes Command History CONFIGURATION Version 8.3.12.0 Changed default from “Force10” to “FTOS” Version 8.3.11.1 Introduced on the Z9000 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information The hostname is used in the prompt. ip ftp password cesz Syntax Specify a password for outgoing FTP connections.
www.dell.com | support.dell.com ip ftp source-interface cesz Syntax Specify an interface’s IP address as the source IP address for FTP connections. ip ftp source-interface interface To delete an interface, use the no ip ftp source-interface interface command. Parameters Defaults Command Modes Command History interface Enter the following keywords and slot/port or number information: • For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Syntax ip ftp username username To return to anonymous FTP connections, use the no ip ftp username [username] command. Parameters Defaults Command Modes Command History username Enter a text string as the user name up to 40 characters long. No user name is configured. CONFIGURATION Version 8.3.11.1 Introduced on the Z9000 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com ip telnet source-interface cesz Syntax Set an interface’s IP address as the source address in outgoing packets for Telnet sessions. ip telnet source-interface interface To return to the default setting, use the no ip telnet source-interface [interface] command.
Parameters Defaults Command Modes Command History interface Enter the following keywords and slot/port or number information: • For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For Loopback interfaces, enter the keyword loopback followed by a number from zero (0) to 16383.
www.dell.com | support.dell.com Defaults Command Modes Command History Not configured CONFIGURATION Version 8.3.11.1 Introduced on the Z9000 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information Related Commands You cannot delete a terminal connection. access-class Restrict incoming connections to a particular IP address in an IP access control list (ACL).
Usage Information Example (C-Series) Use this command only for empty slots or a slot where you have hot-swapped a different line card type. Before inserting a card of a different type into the pre-configured slot, execute the no linecard number command. The following screenshot shows the current supported C-Series line cards, along with their “card types” (card-type IDs).
www.dell.com | support.dell.com port-set0 port-number [port-number] Enter the port number(s) used to specify the active ports on port pipe 0. Port-number range: 0 - 2. On port pipe 0, 0 - 2 corresponds to ports 0, 1, and 2 on the line card. If you configure linerate mode, enter one port number for port pipe 0. If you configure oversubscribed mode, enter two port numbers (separated by a space). port-set1 port-number [port-number] Enter the port number(s) used to specify the active ports on port pipe 1.
module power-off ce Turn off power to a line card at next reboot. Syntax module power-off linecard number To remove the command from the running configuration, use the no module power-off linecard number command. Parameters Defaults Command Modes Command History linecard number Enter the keyword line card followed by the line card slot number C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. Not configured. CONFIGURATION Version 8.1.1.
www.dell.com | support.dell.com Syntax 88 Parameter | ping [vrf ] [host | ip-address | ipv6-address] [count {number | continuous}] [datagram-size] [timeout] [source (ip src-ipv4-address) | interface] [tos] [df-bit (y|n)] [validate-reply(y|n)] [outgoing-interface] [pattern pattern] [sweep-min-size] [sweep-max-size] [sweep-interval] [ointerface (ip src-ipv4-address) | interface] vrf (OPTIONAL) E-Series Only: Enter the VRF Instance name of the device to which you are testing connectivity.
Defaults Command Modes outgoing-interface (IPv6 link-local address) Enter outgoing interface for ping packets to a destination link-local address. validate-reply (IPv4 only) Enter Y or N for reply validation. N: Do not validate reply data Y: Do validate reply data Default is No. pattern pattern (IPv4 only) Enter the IPv4 data pattern. Range: 0-FFFF Default: 0xABCD sweep-min-size Enter the minimum size of datagram in sweep range.
www.dell.com | support.dell.com Usage Information Version 7.5.1.0 Introduced support for C-Series Version 7.4.1.0 Added support for IPv6 address on E-Series When you enter the ping command without specifying an IP/IPv6 address (Extended Ping), you are prompted for a target IP/IPv6 address, a repeat count, a datagram size (up to 1500 bytes), a timeout in seconds, and for Extended Commands. See Appendix , for information on the ICMP message codes that return from a ping command. Figure 4-3.
power-off ce Turn off power to a selected line card or the standby (extra) Switch Fabric Module (SFM). Syntax power-off {linecard number | sfm sfm-slot-id} Parameters Defaults Command Modes Command History linecard number Enter the keyword linecard and a number for the line card slot number. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/E1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300.
www.dell.com | support.dell.com Related Commands power-off Power off a line card or standby SFM. reload cesz Syntax Reboot FTOS. reload Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information If there is a change in the configuration, FTOS will prompt you to save the new configuration.
sfm standby Enter the keyword sfm standby to reset the standby SFM. Note: This option is supported on E-Series EtherScale only. sfm slot number Enter the keyword sfm followed by the failed or powered-off SFM slot number. Note: Supported on E-Series only Defaults Command Modes Command History Disabled. EXEC Privilege Version 7.5.1.
www.dell.com | support.dell.com send cesz Syntax Parameters Defaults Command Modes Command History Usage Information Send messages to one or all terminal line users. send [*] | [line ] | [aux] | [console] | [vty] * Enter the asterisk character * to send a message to all tty lines. line Send a message to a specific line. Range: 0 to 11 aux Enter the keyword aux to send a message to an Auxiliary line. Note: This option is supported on E-Series only.
Defaults Command Modes Command History localtime (OPTIONAL) Enter the keyword localtime to include the localtime in the timestamp. msec (OPTIONAL) Enter the keyword msec to include milliseconds in the timestamp. show-timezone (OPTIONAL) Enter the keyword show-timezone to include the time zone information in the timestamp. uptime (OPTIONAL) Enter the keyword uptime to have the timestamp based on time elapsed since system reboot. Not configured. CONFIGURATION Version 8.3.11.
www.dell.com | support.dell.com Figure 4-5.
Example Figure 4-6. Command Example: show chassis brief on E-Series FTOS#show chassis brief Chassis Type : E1200 Chassis Mode : TeraScale Chassis Epoch : 3.2 micro-seconds -- Line cards -Slot Status NxtBoot ReqTyp CurTyp Version Ports -------------------------------------------------------------------------0 not present 1 not present 2 not present 3 not present 4 not present 5 not present 6 not present 7 not present 8 not present 9 not present 10 not present 11 online online E48PF E48PF 6.1.1.
www.dell.com | support.dell.com Defaults None. Command Mode EXEC EXEC Privilege Command History Usage Information H Version 8.3.11.1 Introduced on the Z9000 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and E-Series One trace log message is generated for each command. No password information is saved to this file. A command-history trace log is saved to a file upon an RPM failover.
show command-tree cesz Syntax Display the entire CLI command tree, and optionally, display the utilization count for each commands and its options. show command-tree [count | no] Parameters Defaults Command Mode count Display the command tree with a usage counter for each command. no Display all of the commands that may be preceded by the keyword no, which is the keyword used to remove a command from the running-configuration.
www.dell.com | support.dell.com Parameters Defaults Command Mode number Enter the line card slot number. Range: 0–7 for the C300 Range: 0–13 for the E1200 Range: 0–6 for the E600 Range: 0–5 for the E300 None EXEC EXEC Privilege Command History Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information Caution: Use this command only when you are working directly with a technical support representative to troubleshoot a problem.
Command History E-Series Example Version 8.3.11.1 Introduced on the Z9000 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.2.1.1 Introduced on E-Series Figure 4-8.
www.dell.com | support.dell.com Version 7.5.1.0 Introduced on C-Series E-Series original Command Figure 4-9. Example Command Example: show debugging FTOS#show debug Generic IP: IP packet debugging is on for ManagementEthernet 0/0 Port-channel 1-2 Port-channel 5 GigabitEthernet 4/0-3,5-6,10-11,20 GigabitEthernet 5/0-1,5-6,10-11,15,17,19,21 ICMP packet debugging is on for show environment (C-Series and E-Series) ce View the system component status (for example, temperature, voltage).
Usage Information Examples Fan speed is controlled by temperatures measured at the sensor located on the fan itself. The fan temperatures shown with this command may not accurately reflect the temperature and fan speed. Refer to your hardware installation guide for fan speed and temperature information. Figure 4-10.
www.dell.com | support.dell.com Figure 4-12. Command Example: show environment fan on the C300 FTOS#show env fan -- Fan Status ------------------------------------------------------------------Tray 0 -----------------------------------------------------------------FanNumber Speed Status 0 4170 up 1 4140 up show environment (S-Series) sz View S-Series system component status (for example, temperature, voltage).
Example Figure 4-13.
www.dell.com | support.dell.com Figure 4-17. Example Command Example: show environment thermal-sensor FTOS#show environment thermal-sensor -- Thermal Sensor Readings (deg C) -Unit Sensor0 Sensor1 Sensor2 Sensor3 Sensor4 Sensor5 -------------------------------------------------------------------------0 30 33 36 30 30 32 show inventory (C-Series and E-Series) ce Display the chassis type, components (including media), and FTOS version, including hardware identification numbers and configured protocols.
If there are no fiber ports in the line card, then just the header under show inventory media will be displayed. If there are fiber ports but no optics inserted, then the output will display “Media not present or accessible”. C300 Example Figure 4-18. Example output of show inventory for C300 (C-Series) FTOS# show inventory Chassis Type : C300 Chassis Mode : 1.0 Software Version : FTOS-EF-7.6.1.
Figure 4-20. www.dell.com | support.dell.com Example Example output of show inventory media slot (partial) FTOS#show inventory media 3 Slot Port Type Media Serial Number F10Qualified --------------------------------------------------------------------------... Figure 4-21.
Usage Example 1 If there are no fiber ports in the unit, then just the header under show inventory media will be displayed. If there are fiber ports but no optics inserted, then the output will display "Media not present or accessible". Figure 4-22. Example output of show inventory for S-Series FTOS#show inventory System Name system Mode Software Version : S50v : 1.0 : 7.6.1.
www.dell.com | support.dell.com 0 Z9000-FAN Z5FX113300160 MY-08R4VK-75412-1BA-0474 A00 ABC1234 0 Z9000-FAN Z5FX113300136 MY-08R4VK-75412-1BA-0474 A00 ABC1234 7520051702 A 7520051702 A * - Management Unit Related Commands show interfaces interface configuration. show interfaces transceiver Display the physical status and operational status of an installed transceiver. The output also displays the transceiver’s serial number. show linecard ce Display the line card(s) status.
Figure 4-24. E-Series Example Command Example: show linecard on E-Series FTOS#show linecard 11 -- Line card Status Next Boot Required Type (EF) Current Type (EF) Hardware Rev Num Ports Up Time FTOS Version Jumbo Capable Boot Flash Memory Size Temperature Power Status Voltage Figure 4-25. C-Series Example 11 -: online : online : E48PF - 48-port GE line card with SFP optics : E48PF - 48-port GE line card with SFP optics : : : : : : : : : : Base - 1.0 PP0 - n/a PP1 - n/a 48 12 hr, 37 min 6.2.1.
www.dell.com | support.dell.com Table 4-1. Descriptions for show linecard output Field Description Required Type Displays the line card type configured for the slot. The Required Type and Current Type must match. Use the linecard command to reconfigure the line card type if they do not match. Current Type Displays the line card type installed in the slot. The Required Type and Current Type must match. Use the linecard command to reconfigure the line card type if they do not match.
Related Commands linecard Pre-configure a line card in a currently empty slot of the system or a different line card type for the slot. show interfaces linecard Display information on all interfaces on a specific line card. show chassis View information on all elements of the system. show rpm View information on the RPM. show sfm View information on the SFM. show linecard boot-information e Syntax Command Modes View the line card status and boot information.
www.dell.com | support.dell.com Table 4-2 defines the fields in Figure 4-27. Table 4-2. Usage Information Related Commands Descriptions for show linecard boot-information output Field Description # Displays the line card slot numbers, beginning with slot 0. The number of slots listed is dependent on your chassis: E-Series: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. Status Indicates if a line card is online, offline, or booting.
Parameters cp (OPTIONAL) Enter the keyword cp to view information on the Control Processor on the RPM. lp slot-number (OPTIONAL) Enter the keyword lp and the slot number to view information on the line-card processor in that slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/E1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. rp1 (OPTIONAL) Enter the keyword rp1 to view information on Route Processor 1 on the RPM. Note: This option is supported on the E-Series only.
www.dell.com | support.dell.com Table 4-3 defines the fields displayed in Figure 4-28. Table 4-3. Descriptions for show memory output Field Description Lowest Displays the memory usage the system went to in the lifetime of the system. Indirectly, it indicates the maximum usage in the lifetime of the system: Total minus Lowest. Largest The current largest available. This relates to block size and is not related to the amount of memory on the system.
Parameters Command Modes cp (OPTIONAL) Enter the keyword cp to view CPU usage of the Control Processor. rp1 (OPTIONAL) Enter the keyword rp1 to view CPU usage of the Route Processor 1. Note: This option is supported on the E-Series only. rp2 (OPTIONAL) Enter the keyword rp2 to view CPU usage of the Route Processor 2. Note: This option is supported on the E-Series only. lp linecard [1-99] (OPTIONAL) Enter the keyword lp followed by the line card number to display the CPU usage of that line card.
Figure 4-31. www.dell.com | support.dell.com Example 2 Command Example: show processes cpu rp1 FTOS#show processes cpu rp1 CPU utilization for five seconds: 0%/0%; one minute: 0%; five minutes: 0% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 0x0000007c ospf 0x00000077 dsm 0x00000074 ipm1 0x0000006e rtm 0x0000006b rip 0x00000068 acl 0x00000064 sysd1 60 6 10000 0.00% 0.00% 460 46 10000 0.00% 0.00% 100 10 10000 0.00% 180 18 10000 0.00% 0.00% 0.00% 0 100 10 10000 0.
show processes cpu (S-Series) sz Display CPU usage information based on processes running in an S-Series. Syntax show processes cpu [management-unit 1-99 [details] | stack-unit id | summary | ipc | memory [stack-unit id]] Parameters Command Modes management-unit1-99 [details] (OPTIONAL) Display processes running in the control processor. The 1-99 variable sets the number of tasks to display in order of the highest CPU usage in the past five (5) seconds.
www.dell.com | support.dell.com S-Series FTOS#show processes cpu management-unit 0 CPU utilization for five seconds: 1%/0%; one minute: 10%; five minutes: 2% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 272 20 2 10000 0.00% 0.00% 0.00% 0 topoDPC 271 0 0 0 0.00% 0.00% 0.00% 0 bcmNHOP 270 0 0 0 0.00% 0.00% 0.00% 0 bcmDISC 269 0 0 0 0.00% 0.00% 0.00% 0 bcmATP-RX 268 0 0 0 0.00% 0.00% 0.00% 0 bcmATP-TX Example 3 Figure 4-35.
Example 4 Figure 4-36.
www.dell.com | support.dell.com show hardware stack-unit Display the data plane or management plane input and output statistics of the designated component of the designated stack member. show hardware system-flow Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe. show interfaces stack-unit Display information on all interfaces on a specific S-Series stack member.
C-Series FTOS# show processes ipc flow-control cp Q Statistics on CP Processor TxProcess RxProcess Aval Max Retra Retra ACL0 RTM0 0 ACL0 DIFFSERV0 10 10 ACL0 IGMP0 10 10 ACL0 PIM0 10 10 ACL0 ACL20 50 50 CFG0 CFGDATASYNC0 255 255 Figure 4-39.
www.dell.com | support.dell.com Table 4-4. Description of show processes ipc flow-control cp output Field Description Retr /Available Retra Number of retries left Total/ Max Retra Number of retries allowed Figure 4-40.
Example 4 Figure 4-42.
www.dell.com | support.dell.com Parameters Command Modes cp (OPTIONAL) Enter the keyword cp to view memory usage of the Control Processor. lp slot-number (OPTIONAL) Enter the keyword lp and the slot number to view information on the line-card processor in that slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/E1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. lp all (OPTIONAL) Enter the keyword lp all to view CP memory usage on all active line cards.
Example Figure 4-43.
Figure 4-45. www.dell.com | support.dell.
show processes memory (S-Series) sz Display memory usage information based on processes running in the S-Series system. Syntax show processes memory {management-unit | stack unit {unit-id | all | summary}} Parameters Command Modes management-unit Enter the keyword management-unit for CPU memory usage of the stack management unit. stack unit unit-id Enter the keyword stack unit followed by a stack unit ID of the member unit for which to display memory usage on the forwarding processor.
Figure 4-47. www.dell.com | support.dell.
show processes switch-utilization e Syntax Command Mode Show switch fabric utilization. show processes switch-utilization EXEC EXEC Privilege Command History Version 8.1.1.0 Introduced on E-Series ExaScale E-Series original Command Figure 4-48.
www.dell.com | support.dell.com Figure 4-49. E-Series Example Command Example: show rpm on E-Series FTOS#show RPM 0 -- RPM card 0 -Status : active Next Boot : online Card Type : RPM - Route Processor Module (LC-EF-RPM) Hardware Rev : 2.0 Num Ports : 1 Up Time : 36 min, 51 sec Last Restart : reset FTOS Version : 6.2.1.0 Jumbo Capable : yes CP Boot Flash : A: 2.4.0.6 B: 2.4.0.7 [booted] RP1 Boot Flash: A: 2.4.0.7 [booted] B: 2.4.0.5 RP2 Boot Flash: A: 2.4.0.7 [booted] B: 2.4.0.
Table 4-7. Related Commands Descriptions of show rpm output Field Description Jumbo Capable Displays a Yes or No indicating if the RPM is capable of sending and receiving Jumbo frames. This field does not indicate if the chassis is in Jumbo mode; for that determination, use the show chassis brief command. CP Boot Flash Displays the two possible Boot Flash versions for the Control Processor. The [Booted] keyword next to the version states which version was used at system boot.
www.dell.com | support.dell.com Parameters Defaults Command Mode clients Enter the keyword clients to display IFM client information. summary (OPTIONAL) Enter the keyword summary to display brief information about IFM clients. ifagt number Enter the keyword ifagt followed by the number of an interface agent to display software pipe and IPC statistics.
Figure 4-50.
Figure 4-51. www.dell.com | support.dell.
Usage Figure 4-52 shows the output from the show system brief command. Figure 4-53 shows the output from the show system stack-unit command on a Z9000 system. Figure 4-52shows the output from the show system stack-unit command on an S4810. Example Figure 4-52.
www.dell.com | support.dell.com Example Figure 4-53.
Example Figure 4-54.
www.dell.com | support.dell.com Syntax Parameters Command Modes Command History 140 | show tech-support [linecard 0-6 | page] | {display | except | find | grep | no-more | save} linecard 0-6 (OPTIONAL) Enter the keyword linecard followed by the linecard number to view information relating to a specific linecard. page (OPTIONAL) Enter the keyword page to view 24 lines of text at a time. Press the SPACE BAR to view the next 24 lines. Press the ENTER key to view the next line of text.
Figure 4-55. C-Series Example Command Example: show tech-support (partial) on C-Series FTOS#show tech-support page ----------------------------------- show version ------------------------------Dell Force10 Networks Real Time Operating System Software Dell Force10 Operating System Version: 1.0 Dell Force10 Application Software Version: FTOS 7.5.1.0 Copyright (c) 1999-2007 by Dell Force10 Networks, Inc.
www.dell.com | support.dell.com Figure 4-56.
• • • • • • • • • • • • • • Related Commands show environment show file-system show interface show inventory show ip management-route show ip protocols show ip route summary show processes cpu show processes memory show redundancy show rpm show running-conf show sfm show version show version Display the FTOS version. show linecard Display the line card(s) status. show environment (C-Series and E-Series) Display system component status.
www.dell.com | support.dell.com Command History Version 8.3.11.1 Introduced on the Z9000 Version 7.8.1.0 Introduced save to file options Version 7.6.1.0 Expanded to support S-Series switches S-Series Examples Figure 4-57.
Figure 4-58. Command Example: show tech-support (partial) on S-Series FTOS#show tech-support stack-unit 0 ----------------------------------- show version ------------------------------Dell Force10 Networks Real Time Operating System Software Dell Force10 Operating System Version: 1.0 Dell Force10 Application Software Version: FTOS 7.6.1.0 Copyright (c) 1999-2007 by Dell Force10 Networks, Inc.
www.dell.com | support.dell.com • • • • • • • • • Related Commands show interfaces show inventory show ip protocols show ip route summary show processes cpu show processes memory show redundancy show running-conf show version show version Display the FTOS version. show system (S-Series and Z-Series) Display the current switch status. show environment (S-Series) Display system component status. show processes memory (S-Series) Display memory usage based on running processes.
Parameters Defaults Command Modes -l username (OPTIONAL) Enter the keyword -l followed by your user name. Default: The user name associated with the terminal Not configured. EXEC EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000 Version 8.3.11.1 Introduced on S-Series telnet cesz Syntax Connect through Telnet to a server. telnet {host | ip-address | ipv6-address prefix-length | vrf vrf instance name } [/ source-interface] Parameters host Enter the name of a server.
www.dell.com | support.dell.com Defaults Command Modes Not configured. EXEC EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000 Version 8.2.1.0 Introduced on E-Series ExaScale (IPv6) Increased number of VLANs on ExaScale to 4094 (was 2094) Version 8.1.1.0 Introduced on E-Series ExaScale (IPv4) Version 7.9.1.0 Introduced VRF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
Defaults Command Modes Not configured. EXEC EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000 Version 8.3.11.1 Introduced on S-Series terminal length cesz Syntax Configure the number of lines displayed on the terminal screen. terminal length screen-length To return to the default values, enter terminal no length. Parameters screen-length Defaults Command Modes Enter a number of lines. Entering zero will cause the terminal to display without pausing. Range: 0 to 512.
www.dell.com | support.dell.com EXEC Privilege Command History Usage Information Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on C-Series Version 6.5.1.0 Introduced for E-Series This command enables the XML input mode where you can either cut and paste XML requests or enter the XML requests line-by-line. For more information on using the XML feature, refer to the XML chapter in the FTOS Configuration Guide.
For IPv6, you are prompted for a minimum hop count (default is 1) and a maximum hop count (default is 64). Figure 4-59. Example Command Example: traceroute (IPv4) FTOS#traceroute www.force10networks.com Translating "www.force10networks.com"...domain server (10.11.0.1) [OK] Type Ctrl-C to abort. ----------------------------------------------------------------------------------------Tracing the route to www.force10networks.com (10.11.84.
www.dell.com | support.dell.com Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
Syntax virtual-ip {ipv4-address | ipv6-address} To return to the default, use the no virtual-ip {ipv4-address | ipv6-address} command. Parameters Defaults Command Modes Usage Information Command History ipv4- address Enter the IP address of the active management interface in a dotted decimal format (A.B.C.D.) ipv6-address Enter an IPv6 address of the active management interface, in the x:x:x:x::x format. Note: The :: notation specifies successive hexadecimal fields of zeros.
www.dell.com | support.dell.com 154 Version 7.5.1.0 Introduced on C-Series E-Series original Command Related Commands Usage Information | save_env Save configurations created in GRUB. The write memory command saves the running-configuration to the file labeled startup-configuration.
5 802.1X The 802.
www.dell.com | support.dell.com Important Points to Remember FTOS limits network access for certain users by using VLAN assignments. 802.1X with VLAN assignment has these characteristics when configured on the switch and the RADIUS server. 802.1X is supported on c C-Series, e E-Series, s S-Series (S25/S50), and E-Series Terascale e t. 802.1X is not supported on the LAG or the channel members of a LAG. If no VLAN is supplied by the RADIUS server or if 802.
Defaults Disabled Command Modes Command History EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Version 8.4.1.0 Introduced on C-Series and S-Series dot1x auth-fail-vlan ces Configure an authentication failure VLAN for users and devices that fail 802.1X authentication. dot1x auth-fail-vlan vlan-id [max-attempts number] Syntax To delete the authentication failure VLAN, use the no dot1x auth-fail-vlan vlan-id [max-attempts number] command.
www.dell.com | support.dell.com dot1x auth-server ces Syntax Defaults Command Modes Command History Configure the authentication server to RADIUS. dot1x auth-server radius No default behavior or values CONFIGURATION Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series dot1x auth-type mab-only Use only the host MAC address to authenticate a device with MAC authentication bypass (MAB).
dot1x authentication (Configuration) cets Syntax Enable dot1x globally; dot1x must be enabled both globally and at the interface level. dot1x authentication To disable dot1x on an globally, use the no dot1x authentication command. Defaults Command Modes Command History Related Commands Disabled CONFIGURATION Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
www.dell.com | support.dell.com To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command. Parameters Defaults Command Modes Command History Usage Information vlan-id Enter the VLAN Identifier. Range: 1 to 4094 Not configured CONFIGURATION (conf-if-interface-slot/port) Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.0 Introduced on C-Series, E-Series, and S-Series 802.1X authentication is enabled when an interface is connected to the switch.
Defaults Command Modes Command History Usage Information single-host INTERFACE Version 8.3.12.0 Introduced on the S4810. Version 8.4.1.0 The multi-auth option was introduced on the C-Series and S-Series. Version 8.3.2.0 The single-host and multi-host options were introduced on the C-Series, E-Series, and S-Series • • • Single-host mode authenticates only one host per authenticator port, and drops all other traffic on the port.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History number Enter the number of times an EAP request is transmitted before a session time-out. Range: 1 to 10 Default: 2 2 INTERFACE Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
Parameters Defaults Command Modes Command History Usage Information force-authorized Enter the keyword force-authorized to forcibly authorize a port. auto Enter the keyword auto to authorize a port based on the 802.1X operation result. force-unauthorized Enter the keyword force-unauthorized to forcibly de-authorize a port. No default behavior or values Auto Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History (Optional) Enter the keyword interval followed by the interval time, in seconds, after which re-authentication will be initiated. Range: 1 to 31536000 (1 year) Default: 3600 (1 hour) interval seconds 3600 seconds (1 hour) INTERFACE Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
Defaults Command Modes Command History Usage Information 30 seconds INTERFACE Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series When you configure the dot1x server-timeout value, you must take into account the communication medium used to communicate with an authentication server and the number of RADIUS servers configured.
www.dell.com | support.dell.com dot1x tx-period ces Syntax Configure the intervals at which EAPOL PDUs are transmitted by the Authenticator PAE. dot1x tx-period seconds To return to the default, use the no dot1x tx-period command. Parameters Defaults Command Modes Command History seconds Enter the interval time, in seconds, that EAPOL PDUs are transmitted. Range: 1 to 65535 Default: 30 30 seconds INTERFACE Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.
You can display the CoS mapping information applied to traffic from authenticated supplicants on 802.1X-enabled ports that are in single-host, multi-host, and multi-supplicant authentication modes. Example FTOS#show dot1x cos-mapping interface gigabitethernet 2/21 802.1p CoS re-map table on Gi 2/21: ---------------------------------Dot1p Remapped Dot1p 0 7 1 6 2 5 3 4 4 3 5 2 6 1 7 0 FTOS#show dot1x cos-mapping int g 2/21 mac-address 00:00:01:00:07:00 802.
www.dell.com | support.dell.com EXEC privilege Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 8.4.2.1 Introduced mac-address option on the C-Series and S-Series Version 7.6.1.0 Introduced on C-Series, E-Series, and S-Series C-Series and S-Series only: Enter a supplicant’s MAC address using the mac-address option to display information only on the 802.1X-enabled port to which the supplicant is connected. If 802.
ReAuth Max: Supplicant Timeout: Server Timeout: Re-Auth Interval: Max-EAP-Req: Host Mode: Max-Supplicants: 1 30 seconds 30 seconds 60 seconds 2 MULTI_AUTH 128 Port status and State info for Supplicant: 00:00:01:00:07:00 Port Auth Status: Untagged VLAN id: Auth PAE State: Backend State: FTOS# Example (Multi-Supplicant Authentication enabled) AUTHORIZED(MAC-AUTH-BYPASS) 4094 Authenticated Idle FTOS#show dot1x interface g 0/21 802.
| 802.1X www.dell.com | support.dell.
6 Access Control Lists (ACL) Overview Access Control Lists (ACLs) are supported on platforms e c s z The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Parameters Defaults Command Modes text Enter a text string up to 80 characters long. Not enabled. CONFIGURATION-STANDARD-ACCESS-LIST CONFIGURATION-EXTENDED-ACCESS-LIST CONFIGURATION-MAC ACCESS LIST-STANDARD CONFIGURATION-MAC ACCESS LIST-EXTENDED Command History Version 8.3.11.1 Introduced on the Z9000 Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
Usage Information The remark command is available in each ACL mode. You can configure up to 4294967290 remarks in a given ACL. The following example shows the use of the remark command twice within the CONFIGURATION-STANDARD-ACCESS-LIST mode. Here, the same sequence number was used for the remark and for an associated ACL rule.
www.dell.com | support.dell.com Common IP ACL Commands The following commands are available within both IP ACL modes (Standard and Extended) and do not have mode-specific options. When an access-list (ACL) is created without any rule and then applied to an interface, ACL behavior reflects an implicit permit. c and s (non-S4810) platforms support Ingress IP ACLs only. and z support both Ingress and Egress IP ACLs. The The following commands allow you to clear, display, and assign IP ACL configurations.
Parameters access-list-name (OPTIONAL) Enter the name of a configured access-list, up to 140 characters. Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.
www.dell.com | support.dell.com Usage Information You can assign one ACL (standard or extended ACL) to an interface. Note: This command is supported on the loopback interfaces of EE3, and EF series RPMs. It is not supported on loopback interfaces ED series RPM, or on C-Series or S-Series loopback interfaces.
cam_count List the count of the CAM rules for this ACL. interface interface Enter the keyword interface followed by the interface type and slot/port or number information: • • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and ExaScale.
www.dell.com | support.dell.com c and s platforms (except the S4810) support Ingress IP ACLs only. The and Z9000 support both Ingress and Egress IP ACLs. The commands needed to configure a Standard IP ACL are: • • • • • • deny ip access-list standard permit resequence access-list resequence prefix-list ipv4 seq Note: See also Commands Common to all ACL Types and Common IP ACL Commands. deny cesz Syntax Configure a filter to drop packets with a certain IP address.
Defaults Command Modes Command History Usage Information monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule will be applied to the monitored interface. For details, see the section “Flow-based Monitoring” in the Port Monitoring chapter of the FTOS Configuration Guide. fragments Enter the keyword fragments to use ACLs to control packet fragments. Not configured.
www.dell.com | support.dell.com Defaults Command Modes All IP access lists contain an implicit “deny any,” that is, if no match occurs, the packet is dropped. CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Added support for S-Series Version 7.5.1.
Defaults Command Modes Command History Usage Information dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to enter ACL matches in the log. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
www.dell.com | support.dell.com resequence access-list cesz Syntax Parameters Defaults Command Modes Re-assign sequence numbers to entries of an existing access-list. resequence access-list {ipv4 | ipv6 | mac} {access-list-name StartingSeqNum Step-to-Increment} ipv4 | ipv6 | mac Enter the keyword ipv4, or mac to identify the access list type to resequence. access-list-name Enter the name of a configured IP access list. StartingSeqNum Enter the starting sequence number to resequence.
Command Modes EXEC EXEC Privilege Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.
www.dell.com | support.dell.com Defaults Command Modes (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
permit Configure a filter to forward packets. seq Assign a sequence number to a deny or permit filter in an IP access list while creating the filter. Extended IP ACL Commands When an ACL is created without any rule and then applied to an interface, ACL behavior reflects an implicit permit. The following commands configure extended IP ACLs, which in addition to the IP address also examine the packet’s protocol type. c and s platforms (except the S4810) support Ingress IP ACLs only.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information 186 Use the no deny {ip | ip-protocol-number} {source mask | any | host ip-address} {destination mask | any | host ip-address} command. • | ip Enter the keyword ip to configure a generic IP access list. The keyword ip specifies that the access list will deny all IP protocols. ip-protocol-number Enter a number from 0 to 255 to deny based on the protocol identified in the IP protocol header.
When you use the log option, CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. The C-Series and S-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. The monitor option is relevant in the context of flow-based monitoring only. See the Chapter 30, Port Monitoring.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to have the information kept in an ACL log file. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
To remove this filter, use one of the following: • • Parameters Defaults Command Modes Command History Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny ether-type protocol-type-number {destination-mac-address mac-address-mask | any} vlan vlan-id {source-mac-address mac-address-mask | any} command. protocol-type-number Enter a number from 600 to FFFF as the specific Ethernet type traffic to drop.
www.dell.com | support.dell.com Usage Information Version 7.4.1.0 Added monitor option Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Service” chapter of the FTOS Configuration Guide for more information. When you use the log option, CP processor logs details about the packets that match.
Defaults Command Modes Command History Usage Information log (OPTIONAL, E-Series only) Enter the keyword log to have the information kept in an ACL log file. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
www.dell.com | support.dell.com Table 6-2.
Table 6-2. ICMP Message Type Keywords Keyword ICMP Message Type Name ttl-exceeded TTL exceeded unreachable All unreachables deny tcp cesz Syntax Configure a filter that drops TCP packets meeting the filter criteria.
www.dell.com | support.dell.com port port Enter the application layer port number. Enter two port numbers if using the range logical operand. Range: 0 to 65535. The following list includes some common TCP port numbers: • • • • Defaults Command Modes Command History Usage Information 23 = Telnet 20 and 21 = FTP 25 = SMTP 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D.
The C-Series and S-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. The monitor option is relevant in the context of flow-based monitoring only. See Chapter 30, Port Monitoring. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Most ACL rules require one entry in the CAM.
www.dell.com | support.dell.com Parameters Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host followed by the IP address to specify a host IP address.
Usage Information Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Service” chapter of the FTOS Configuration Guide for more information. When you use the log option, CP processor logs details about the packets that match.
www.dell.com | support.dell.com ip access-list extended cesz Syntax Name (or select) an extended IP access list (IP ACL) based on IP addresses or protocols. ip access-list extended access-list-name [cpu-qos] To delete an access list, use the no ip access-list extended access-list-name command. Parameters Defaults Command Modes Enter a string up to 140 characters long as the access list name. cpu-qos Enter the cpu-qos keyword to assign this ACL to control plane traffic only (CoPP).
Parameters Defaults Command Modes Command History Usage Information ip Enter the keyword ip to configure a generic IP access list. The keyword ip specifies that the access list will permit all IP protocols. ip-protocol-number Enter a number from 0 to 255 to permit based on the protocol identified in the IP protocol header. source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.
www.dell.com | support.dell.com When you use the log option, CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. The C-Series and S-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. The monitor option is relevant in the context of flow-based monitoring only. See the Chapter 30, Port Monitoring.
Defaults Command Modes Command History Usage Information byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to have the information kept in an ACL log file. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
www.dell.com | support.dell.com To remove this filter, use one of the following: Parameters Defaults Command Modes Command History 202 Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no permit ether-type protocol-type-number {destination-mac-address mac-address-mask | any} vlan vlan-id {source-mac-address mac-address-mask | any} command. • • | protocol-type-number Enter a number from 600 to FFF as the specific Ethernet type traffic to drop.
Usage Information Version 7.4.1.0 Added monitor option Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Service” chapter of the FTOS Configuration Guide for more information. When you use the log option, CP processor logs details about the packets that match.
www.dell.com | support.dell.com Defaults Command Modes (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host followed by the IP address to specify a host IP address.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information Not configured. CONFIGURATION-EXTENDED-ACCESS-LIST Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Added dscp keyword. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.
But an ACL rule with TCP port lt 1023 takes only one entry in the CAM: Rule# 1 Data Mask From 0000000000000000 1111110000000000 0 To #Covered 1023 1024 Total Ports: 1024 Related Commands ip access-list extended Create an extended ACL. permit Assign a permit filter for IP packets. permit udp Assign a permit filter for UDP packets. permit udp cesz Syntax Configure a filter to pass UDP packets meeting the filter criteria.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
For example, an ACL rule with TCP port range 4000 - 8000 uses 8 entries in the CAM: Rule# 1 2 3 4 5 6 7 8 Data Mask From To #Covered 0000111110100000 0000111111000000 0001000000000000 0001100000000000 0001110000000000 0001111000000000 0001111100000000 0001111101000000 1111111111100000 1111111111000000 1111100000000000 1111110000000000 1111111000000000 1111111100000000 1111111111000000 1111111111111111 4000 4032 4096 6144 7168 7680 7936 8000 4031 4095 6143 7167 7679 7935 7999 8000 32 64 2048 1024 5
www.dell.com | support.dell.com Usage Information Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 Introduced for E-Series When all sequence numbers have been exhausted, this feature permits re-assigning new sequence number to entries of an existing access-list. Prior to 7.8.1.0, names are up to 16 characters long.
seq arp e Syntax Configure an egress filter with a sequence number that filters ARP packets meeting this criteria. This command is supported only on 12-port GE line cards with SFP optics; refer to your line card documentation for specifications. seq sequence-number {deny | permit} arp {destination-mac-address mac-address-mask | any} vlan vlan-id {ip-address | any | opcode code-number} [count [byte] | log] [order] [monitor] To remove this filter, use the no seq sequence-number command.
www.dell.com | support.dell.com Command History Usage Information Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Added monitor option Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The monitor option is relevant in the context of the flow-based monitoring feature only. See Chapter 30, Port Monitoring.
Defaults Command Modes Command History Usage Information destination-mac-address mac-address-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match. The MAC ACL supports an inverse mask, therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly. any Enter the keyword any to match and drop specific Ethernet traffic on the interface.
www.dell.com | support.dell.com The order option is relevant in the context of the Policy QoS feature only. The following applies: • • • • • The seq sequence-number is applicable only in an ACL group. The order option works across ACL groups that have been applied on an interface via QoS policy framework. The order option takes precedence over the seq sequence-number. If sequence-number is not configured, then rules with the same order value are ordered according to their configuration order.
operator (OPTIONAL) Enter one of the following logical operands: • • • • • eq = equal to neq = not equal to gt = greater than lt = less than range = inclusive range of ports (you must specify two ports for the port parameter.) port port (OPTIONAL) Enter the application layer port number. Enter two port numbers if using the range logical operand.
www.dell.com | support.dell.com Usage Information Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Deprecated established keyword Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The monitor option is relevant in the context of the flow-based monitoring feature only. See Chapter 30, Port Monitoring. When you use the log option, CP processor logs details about the packets that match.
clear counters mac access-group cesz Syntax Parameters Clear counters for all or a specific MAC ACL. clear counters mac access-group [mac-list-name] mac-list-name (OPTIONAL) Enter the name of a configured MAC access list. Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.
www.dell.com | support.dell.com Related Commands mac access-list standard Configure a standard MAC ACL. mac access-list extended Configure an extended MAC ACL. show mac accounting access-list cesz Syntax Parameters Display MAC access list configurations and counters (if configured). show mac accounting access-list access-list-name interface interface in | out access-list-name Enter the name of a configured MAC ACL, up to 140 characters.
Example Figure 6-6.
www.dell.com | support.dell.com Defaults Command Modes Command History mac-source-address-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter.
Defaults Command Modes Not configured CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series FTOS supports one ingress and one egress MAC ACL per interface.
www.dell.com | support.dell.com Defaults Command Modes Command History count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to log the packets.
Defaults Command Modes mac-source-address-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to log the packets.
www.dell.com | support.dell.com • • • mac access-list extended permit seq Note: See also Commands Common to all ACL Types and Common MAC Access List Commands. deny cesz Syntax Configure a filter to drop packets that match the filter criteria.
Defaults Command Modes Command History log (OPTIONAL, E-Series only) Enter the keyword log to log the packets. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule will be applied to the monitored interface. For details, see the section “Flow-based Monitoring” in the Port Monitoring chapter of the FTOS Configuration Guide. Not configured. CONFIGURATION-MAC ACCESS LIST-EXTENDED Version 8.3.11.
www.dell.com | support.dell.com Usage Information Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series The number of entries allowed per ACL is hardware-dependent. Refer to your line card documentation for detailed specification on entries allowed per ACL. Prior to 7.8.1.
mac-source-address-mask Specify which bits in the MAC address must be matched. The MAC ACL supports an inverse mask, therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly. mac-destination-address Enter the destination MAC address and mask in nn:nn:nn:nn:nn:nn format. mac-destination-address-mask Specify which bits in the MAC address must be matched.
www.dell.com | support.dell.com seq cesz Syntax Configure a filter with a specific sequence number. seq sequence-number {deny | permit} {any | host mac-address | mac-source-address mac-source-address-mask} {any | host mac-address | mac-destination-address mac-destination-address-mask} [ethertype operator] [count [byte]] [log] [monitor] To delete a filter, use the no seq sequence-number command. Parameters sequence-number Enter a number as the filter sequence number. Range: zero (0) to 65535.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.0 Added monitor option pre-Version 6.1.1.0 Introduced for E-Series Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead.
www.dell.com | support.dell.com Command History Default Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Clears “hit” counters for all prefix lists unless a prefix list is specified.
ip prefix-list cesz Syntax Enter the PREFIX-LIST mode and configure a prefix list. ip prefix-list prefix-name To delete a prefix list, use the no ip prefix-list prefix-name command. Parameters Command Modes Command History Usage Information prefix-name Enter a string up to 16 characters long as the name of the prefix list, up to 140 characters long. CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.
www.dell.com | support.dell.com Usage Information Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Sequence numbers for this filter are automatically assigned starting at sequence number 5. If the options ge or le are not used, only packets with an exact match to the prefix are filtered. Related Commands deny Configure a filter to drop packets. seq Configure a drop or permit filter with a specified sequence number.
Usage Information If the options ge or le are not used, only packets with an exact match to the prefix are filtered. Related Commands deny Configure a filter to drop packets. permit Configure a filter to pass packets. show config cesz Display the current PREFIX-LIST configurations. Syntax show config Command Modes PREFIX-LIST Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.
www.dell.com | support.dell.com Example Figure 6-10. Command Example: show ip prefix-list detail FTOS#show ip prefix-list detail Prefix-list with the last deletion/insertion: filter_ospf ip prefix-list filter_in: count: 3, range entries: 3, sequences: 5 - 10 seq 5 deny 1.102.0.0/16 le 32 (hit count: 0) seq 6 deny 2.1.0.0/16 ge 23 (hit count: 0) seq 10 permit 0.0.0.0/0 le 32 (hit count: 0) ip prefix-list filter_ospf: count: 4, range entries: 1, sequences: 5 - 10 seq 5 deny 100.100.1.
Route Map Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. The following commands allow you to configure route maps and their redistribution criteria.
www.dell.com | support.dell.com Command Modes ROUTE-MAP Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.0 Introduced The continue feature allows movement from one route-map entry to a specific route-map entry (the sequence number).
To remove the description, use the no description {description} command. Parameters Defaults Command Modes Command History Related Commands description Enter a description to identify the route map (80 characters maximum). No default behavior or values ROUTE-MAP Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale pre-Version 7.7.1.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Related Commands community-list-name Enter the name of a configured community list. exact (OPTIONAL) Enter the keywords exact to process only those routes with this community list name. Not configured. ROUTE-MAP Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.
Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series match ip address Redistribute routes that match an IP address. match ip next-hop Redistribute routes that match the next-hop IP address. match ip route-source Redistribute routes that match routes advertised by other routers.
www.dell.com | support.dell.com match ip next-hop cesz Syntax Configure a filter to match based on the next-hop IP addresses specified in an IP access list or IP prefix list. match ip next-hop {prefix-list prefix-list-name} To delete a match, use the no match ip next-hop {prefix-list prefix-list-name} command. Parameters Defaults Command Modes Command History Related Commands prefix-list prefix-list-name Enter the keywords prefix-list followed by the name of configured prefix list. Not configured.
Related Commands Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series match interface Redistribute routes that match the next-hop interface. match ip address Redistribute routes that match an IP address. match ip next-hop Redistribute routes that match the next-hop IP address.
www.dell.com | support.dell.com match origin cesz Syntax Configure a filter to match routes based on the value found in the BGP path ORIGIN attribute. match origin {egp | igp | incomplete} To disable matching filter, use the no match origin {igp | egp | incomplete} command. Parameters Defaults Command Modes Command History egp Enter the keyword egp to match routes originating outside the AS. igp Enter the keyword igp to match routes originating within the same AS.
Related Commands match interface Redistribute routes that match the next-hop interface. match ip address Redistribute routes that match an IP address. match ip next-hop Redistribute routes that match the next-hop IP address. match ip route-source Redistribute routes that match routes advertised by other routers. match metric Redistribute routes that match a specific metric. match tag Redistribute routes that match a tag.
www.dell.com | support.dell.com Parameters map-name Enter a text string of up to 140 characters to name the route map for easy identification. permit (OPTIONAL) Enter the keyword permit to set the route map default as permit. If no keyword is specified, the default is permit. Defaults deny (OPTIONAL) Enter the keyword deny to set the route map default as deny. sequence-number (OPTIONAL) Enter a number to identify the route map for editing and sequencing with other route maps.
Defaults Not configured Command Modes ROUTE-MAP Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series You can prepend up to eight AS numbers to a BGP route. This command influences best path selection in BGP by inserting a tag or AS number into the AS_PATH attribute.
www.dell.com | support.dell.com set comm-list delete cesz Syntax Configure a filter to remove the specified community list from the BGP route’s COMMUNITY attribute. set comm-list community-list-name delete To insert the community list into the COMMUNITY attribute, use the no set comm-list community-list-name delete command. Parameters Defaults Command Modes Command History Usage Information community-list-name Enter the name of an established Community list, up to 140 characters. Not configured.
Parameters community-number Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system. local-AS Enter the keywords local-AS to drop all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED. All routes with the NO_EXPORT_SUBCONFED (0xFFFFFF03) community attribute must not be advertised to external BGP peers.
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands level-1-2 Enter the keyword level-1-2 to redistribute matched routes to IS-IS Level 1 and Level 2. level-2 Enter the keyword level-2 to redistribute matched routes to IS-IS Level 2. stub-area Enter the keyword stub to redistributed matched routes to OSPF stub areas. Not configured. ROUTE-MAP Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.
set metric cesz Syntax Configure a filter to assign a new metric to redistributed routes. set metric [+ | -] metric-value To delete a setting, enter no set metric. Parameters + (OPTIONAL) Enter + to add a metric-value to the redistributed routes. - (OPTIONAL) Enter - to subtract a metric-value from the redistributed routes. metric-value Defaults Not configured Command Modes ROUTE-MAP Command History Related Commands Enter a number as the new metric value.
www.dell.com | support.dell.com Related Commands Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series set automatic-tag Compute the tag value of the route. set level Specify the OSPF area for route redistribution. set metric Specify the metric value assigned to redistributed routes. set tag Specify the tag assigned to redistributed routes.
Parameters Defaults Command Modes Command History egp Enter the keyword egp to set routes originating from outside the local AS. igp Enter the keyword igp to set routes originating within the same AS. incomplete Enter the keyword incomplete to set routes with incomplete routing information. Not configured. ROUTE-MAP Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.
www.dell.com | support.dell.com set weight cesz Syntax Configure a filter to add a non-RFC compliant attribute to the BGP route to assist with route selection. set weight weight To delete a weight specification, use the no set weight weight command. Parameters Defaults Command Modes weight router-originated = 32768; all other routes = 0 ROUTE-MAP Command History Usage Information Enter a number as the weight to be used by the route meeting the route map specification.
show route-map cesz Syntax Display the current route map configurations. show route-map [map-name] Parameters Command Modes map-name (OPTIONAL) Enter the name of a configured route map, up to 140 characters. EXEC EXEC Privilege Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.
www.dell.com | support.dell.com deny e Syntax Create a filter to drop routes that match the route’s AS-PATH attribute. Use regular expressions to identify which routes are affected by the filter. deny as-regular-expression To remove this filter, use the no deny as-regular-expression command. Parameters as-regular-expression Enter a regular expression to match BGP AS-PATH attributes.
Example Figure 6-15. Command Example: ip as-path access-list FTOS(conf)#ip as-path access-list TestPath FTOS(config-as-path)# Usage Information Command History Related Commands Use the match as-path or neighbor filter-list commands to apply the AS-PATH ACL to BGP routes. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. pre-Version 6.1.1.
www.dell.com | support.dell.com Command History Version 8.1.1.0 Introduced on E-Series ExaScale pre-Version 6.1.1.0 Introduced for E-Series show config e Syntax Display the current configuration. show config Command Mode AS-PATH ACL Command History Version 8.1.1.0 Introduced on E-Series ExaScale pre-Version 6.1.1.0 Introduced for E-Series Example Figure 6-16. Command Example: show config (AS-PATH ACL) FTOS(config-as-path)#show config ! ip as-path access-list snickers deny .
IP Community List Commands IP Community List commands are supported on E-Series only, as indicated by this character under each command heading: e The commands in this section are. • • • • • deny ip community-list permit show config show ip community-lists deny e Syntax Create a filter to drop routes matching a BGP COMMUNITY number.
www.dell.com | support.dell.com no-export Enter the keywords no-export to drop all routes containing the well-known community attribute of NO_EXPORT. All routes with the NO_EXPORT (0xFFFFFF01) community attribute must not be advertised outside a BGP confederation boundary. regexp regular-expression Enter the keyword regexp followed by a regular expression. Use one or a combination of the following: • • • • • • • • • Defaults Command Modes Command History .
permit e Syntax Configure a filter to forward routes that match the route’s COMMUNITY attribute. permit {community-number | local-AS | no-advertise | no-export | quote-regexp regular-expressions-list | regexp regular-expression} To remove this filter, use the no permit {community-number | local-AS | no-advertise | no-export | quote-regexp regular-expressions-list | regexp regular-expression} command.
www.dell.com | support.dell.com show config e Syntax Command Mode Command History Example Display the non-default information in the current configuration. show config COMMUNITY-LIST Version 8.1.1.0 Introduced on E-Series ExaScale pre-Version 6.1.1.0 Introduced for E-Series Figure 6-19.
Example Figure 6-20.
| Access Control Lists (ACL) www.dell.com | support.dell.
7 Bidirectional Forwarding Detection (BFD) Overview Bidirectional Forwarding Detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The FTOS implementation is based on the standards specified in the IETF Draft draft-ietf-bfd-base-03 and supports BFD on all Layer 3 physical interfaces including VLAN interfaces and port-channels. BFD is supported on the following platforms c e z characters that appear under each of the command headings.
www.dell.com | support.dell.com bfd all-neighbors cez Syntax Parameters Defaults Command Modes Enable BFD sessions with all neighbors discovered by Layer 3 protocols IS-IS, OSPF, or BGP on router interfaces, and (optionally) reconfigure the default timer values. bfd all-neighbors [interval interval min_rx min_rx multiplier value role {active | passive}] interval milliseconds (OPTIONAL) Enter this keyword to specify non-default BFD session parameters beginning with the transmission interval.
Usage Information All neighbors inherit the timer values configured with the bfd neighbor command except in the following cases: • • Related Commands Timer values configured with the isis bfd all-neighbors or ip ospf bfd all-neighbors commands in INTERFACE mode override timer values configured with the bfd neighbor command. Likewise, using the no bfd neighbor command does not disable BFD on an interface if BFD is explicitly enabled using the command isis bfd all-neighbors.
www.dell.com | support.dell.com Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series bfd enable (Interface) ce Enable BFD on an interface. Syntax bfd enable Disable the BFD on an interface using the no bfd enable command. Defaults Command Modes Command History BFD is enabled on all interfaces when you enable BFD from CONFIGURATION mode. INTERFACE Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.
multiplier value Enter this keyword to specify the number of packets that must be missed in order to declare a session down. Range:3-50 Default:3 role [active | passive] Enter the role that the local system assumes: • Active—The active system initiates the BFD session. Both systems can be active for the same session. • Passive—The passive system does not initiate a session. It only responds to a request for session initialization from the active system.
www.dell.com | support.dell.com Related Commands Display BFD neighbor information on all interfaces or a specified interface. show bfd neighbors bfd protocol-liveness e Syntax Enable the BFD protocol liveness feature. bfd protocol-liveness Disable the protocol liveness feature using the command no bfd protocol-liveness. Defaults Command Modes Command History Usage Information Disabled CONFIGURATION Version 7.4.1.
Command History Related Commands Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on C-Series Version 7.5.1.0 Added support for VLAN and port-channel interfaces on E-Series Version 7.4.1.0 Introduced on E-Series Display BFD counter information. show bfd counters debug bfd ce Enable BFD debugging.
www.dell.com | support.dell.com Command Modes Command History Usage Information EXEC Privilege Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on C-Series Version 7.5.1.0 Added support for VLAN and port-channel interfaces on E-Series Version 7.4.1.0 Introduced on E-Series Since BFD can potentially transmit 20 packets per interface, debugging information should be restricted. ip route bfd ce Enable BFD for all neighbors configured through static routes.
isis bfd all-neighbors e Syntax Enable BFD on all IS-IS neighbors discovered on an interface. isis bfd all-neighbors [disable | [interval interval min_rx min_rx multiplier value role {active | passive}]] Remove all BFD sessions with IS-IS neighbors discovered on this interface using the command no isis bfd all-neighbors [disable | [interval interval min_rx min_rx multiplier value role {active | passive}]]. Parameters disable (OPTIONAL) Enter the keyword disable to disable BFD on this interface.
www.dell.com | support.dell.com neighbor bfd ex z Syntax Parameters Defaults Command Modes Command History Usage Information Explicitly enable a BFD session with a BGP neighbor or a BGP peer group. neighbor {ip-address | peer-group-name} bfd ip-address Enter the IP address of the BGP neighbor that you want to explicitly enable for BFD sessions in dotted decimal format (A.B.C.D). peer-group-name Enter the name of the peer group that you want to explicitly enable for BFD sessions.
neighbor bfd disable ex z Syntax Parameters Defaults Command Modes Command History Usage Information Explicitly disable a BFD session with a BGP neighbor or a BGP peer group. neighbor {ip-address | peer-group-name} bfd disable ip-address Enter the IP address of the BGP neighbor that you want to explicitly disable for BFD sessions in dotted decimal format (A.B.C.D). peer-group-name Enter the name of the peer group that you want to explicitly disable for BFD sessions. None ROUTER BGP Version 9.0.0.
www.dell.com | support.dell.com show bfd counters ce Display BFD counter information. Syntax show bfd counters [isis | ospf | vrrp | static-route] [interface] Parameters interface Enter one of the following keywords and slot/port or number information: • • • • • Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
show bfd neighbors ce Display BFD neighbor information on all interfaces or a specified interface. Syntax show bfd neighbors interface [detail] Parameters interface Enter one of the following keywords and slot/port or number information: • • • • • detail Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by the slot/port information.
www.dell.com | support.dell.com Example Figure 7-4. show bfd neighbors detail Command Example FTOS# show bfd neighbors detail Session Discriminator: 1 Neighbor Discriminator: 1 Local Addr: 10.1.3.2 Local MAC Addr: 00:01:e8:02:15:0e Remote Addr: 10.1.3.
multiplier Enter this keyword to specify the number of packets that must be missed in order to declare a session down. Range:3-50 Default:3 role [active | passive] Enter the role that the local system assumes: • Active—The active system initiates the BFD session. Both systems can be active for the same session. • Passive—The passive system does not initiate a session. It only responds to a request for session initialization from the active system.
www.dell.com | support.dell.
8 Border Gateway Protocol Overview BGP is supported as shown in the following table. FTOS version Platform support 9.0.0.0 Z9000 8.3.7.0 S4810 8.1.1.0 E-Series ExaScale ex 7.8.1.0 S-Series s 7.7.1.0. C-Series c pre-7.7.1.0 E-Series TeraScale et z For detailed information on configuring BGP, refer to the BGP chapter in the FTOS Configuration Guide.
www.dell.com | support.dell.com BGP IPv4 Commands Border Gateway Protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between Autonomous Systems (AS). BGP version 4 (BGPv4) supports Classless InterDomain Routing (CIDR) and the aggregation of routes and AS paths. Basically, two routers (called neighbors or peers) exchange information including full routing tables and periodically send messages to update those routing tables. Note: FTOS Version 7.7.
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • clear ip bgp clear ip bgp dampening clear ip bgp flap-statistics debug ip bgp debug ip bgp dampening debug ip bgp events debug ip bgp keepalives debug ip bgp notifications debug ip bgp soft-reconfiguration debug ip bgp updates default-metric description distance bgp max-paths neighbor activate neighbor add-path neighbor advertisement-interval neighbor advertisement-start neighbor allowas-in neighbor default-originat
www.dell.com | support.dell.
aggregate-address cesz Syntax Summarize a range of prefixes to minimize the number of entries in the routing table. aggregate-address ip-address mask [advertise-map map-name] [as-set] [attribute-map map-name] [summary-only] [suppress-map map-name] Parameters Defaults Command Modes ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.D) and mask in /prefix format (/x).
www.dell.com | support.dell.com bgp add-path Allow the advertisement of multiple paths for the same address prefix without the new paths replacing any previous ones. eZ Syntax bgp add-path [send | receive | both] path-count Parameters Defaults Command Modes send Enter this keyword to indicate that the system will send multiple paths to peers. receive Enter this keyword to indicate that the system will accept multiple paths from peers.
bgp asnotation cesz Syntax Enables you to implement a method for AS Number representation in the CLI. bgp asnotation [asplain | asdot+ | asdot] To disable a dot or dot+ representation and return to ASPLAIN, enter no bgp asnotation. Defaults Command Modes Usage Information asplain ROUTER BGP You must enable bgp four-octet-as-support before enabling this feature. If you disable four-octect-support after using dot or dot+ format, the AS Numbers revert to asplain text.
www.dell.com | support.dell.com bgp bestpath as-path ignore cesz Syntax Include prefixes received from different AS paths during multipath calculations. bgp bestpath as-path ignore To return to the default, enter no bgp bestpath as-path ignore. Defaults Command Modes Usage Information Command History Disabled (that is, the software considers the AS_PATH when choosing a route as best). ROUTER BGP If you enable this command, use the clear ip bgp * command to recompute the best path. Version 8.3.11.
Command Modes Usage Information Command History ROUTER BGP The software compares the MEDs only if the path contains no external autonomous system numbers. If you enable this command, use the clear ip bgp * command to recompute the best path. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
www.dell.com | support.dell.com bgp client-to-client reflection cesz Syntax Enables you to enable route reflection between clients in a cluster. bgp client-to-client reflection To disable client-to-client reflection, enter no bgp client-to-client reflection. Defaults Command Modes Usage Information Related Commands Command History Enabled when a route reflector is configured. ROUTER BGP Route reflection to clients is not necessary if all client routers are fully meshed.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series bgp confederation identifier cesz Syntax Configure an identifier for a BGP confederation. bgp confederation identifier as-number To delete a BGP confederation identifier, use the no bgp confederation identifier as-number command. Parameters as-number Enter the AS number. Range: 0-65535 (2-Byte) or 1-4294967295 (4-Byte) or 0.1-65535.
www.dell.com | support.dell.com Parameters as-number Enter the AS number. Range: 0-65535 (2-Byte) or 1-4294967295 (4-Byte) or 0.1-65535.65535 (Dotted format) ...as-number (OPTIONAL) Enter up to 16 confederation numbers. Range: 0-65535 (2-Byte) or 1-4294967295 (4-Byte) or 0.1-65535.65535 (Dotted format) Defaults Not configured. Command Modes ROUTER BGP Usage Information All the routers in the Confederation must be 4 or 2 byte identified routers. You cannot mix them.
Defaults Command Modes suppress (OPTIONAL) Enter a number as the suppress value, which is compared to the flapping route’s Penalty value. If the Penalty value is greater than the suppress value, the flapping route is no longer advertised (that is, it is suppressed). Range: 1 to 20000. Default: 2000 max-suppress-time (OPTIONAL) Enter the maximum number of minutes a route can be suppressed. The default is four times the half-life value. Range: 1 to 255. Default: 60 minutes.
www.dell.com | support.dell.com Usage Information Related Commands Command History The bgp default local-preference command setting is applied by all routers within the AS. To set the local preference for a specific route, use the set local-preference command in the ROUTE-MAP mode. set local-preference Assign a local preference value for a specific route. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
Usage Information Command History The bgp fast-external-fallover command appears in the show config command output. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support for C-Series bgp four-octet-as-support cesz Syntax Enable 4-byte support for the BGP process. bgp four-octet-as-support To disable fast external fallover, enter no bgp four-octet-as-support.
www.dell.com | support.dell.com Defaults Command Modes Usage Information stale-path-time seconds Enter the keyword stale-path-time followed by the maximum number of seconds to wait before restarting a peer’s stale paths. Default: 360 seconds. role receiver-only Enter the keyword role receiver-only to designate the local router to support graceful restart as a receiver only. as above ROUTER-BGP This feature is advertised to BGP neighbors through a capability advertisement.
bgp non-deterministic-med cesz Syntax Compare MEDs of paths from different Autonomous Systems. bgp non-deterministic-med To return to the default, enter no bgp non-deterministic-med. Defaults Command Modes Usage Information Disabled (that is, paths/routes for the same destination but from different ASs will not have their MEDs compared). ROUTER BGP In non-deterministic mode, paths are compared in the order in which they arrive.
www.dell.com | support.dell.com Version 7.2.1.0 Introduced bgp regex-eval-optz-disable cesz Syntax Disables the Regex Performance engine that optimizes complex regular expression with BGP. bgp regex-eval-optz-disable To re-enable optimization engine, use the no bgp regex-eval-optz-disable command. Defaults Command Modes Usage Information Enabled by default ROUTER BGP (conf-router_bgp) BGP uses regular expressions (regex) to filter route information.
bgp router-id cesz Syntax Assign a user-given ID to a BGP router. bgp router-id ip-address To delete a user-assigned IP address, enter no bgp router-id. Parameters Defaults Command Modes Usage Information Command History ip-address Enter an IP address in dotted decimal format to reset only that BGP neighbor. The router ID is the highest IP address of the Loopback interface or, if no Loopback interfaces are configured, the highest IP address of a physical interface on the router.
www.dell.com | support.dell.com Version 7.2.1.0 Introduced capture bgp-pdu neighbor cesz Syntax Enable capture of an IPv4 BGP neighbor packet. capture bgp-pdu neighbor ipv4-address direction {both | rx | tx} To disable capture of the IPv4 BGP neighbor packet, use the no capture bgp-pdu neighbor ipv4-address command. Parameters ipv4-address Enter the IPv4 address of the target BGP neighbor.
Version 7.7.1.0 Introduced support on C-Series Version 7.5.1.0 Introduced clear ip bgp cesz Syntax Parameters Reset BGP sessions on the E-Series. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection. clear ip bgp * | as-number | ip-address [flap-statistics | soft [in | out]] * Enter an asterisk ( * ) to reset all BGP sessions. as-number Enter the AS number to reset all neighbors belonging to that AS.
www.dell.com | support.dell.com Version 6.5.1.0 Expanded to include the as-number option clear ip bgp peer-group cesz Syntax Parameters Reset a peer-group’s BGP sessions. clear ip bgp peer-group peer-group-name peer-group-name Enter the peer group name to reset the BGP sessions within that peer group. Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
regexp regular-expression (OPTIONAL) Enter the keyword regexp followed by regular expressions. Use one or a combination of the following: • • • • • • • • • Command Modes Usage Information Related Commands Command History . = (period) any single character (including a white space) * = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences).
www.dell.com | support.dell.com Command Modes Usage Information events Enter the keyword events to view BGP protocol events. ipv4 Enter the ipv4 IP address to view the IPV4 route information. ipv6 Enter the ipv6 IP address to view the IPV6 route information. keepalives Enter the keyword keepalives to view BGP keepalives. notifications Enter the keyword notifications to view BGP notifications.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series debug ip bgp events cesz Syntax Display information on local BGP state changes and other BGP events. debug ip bgp [ip-address | peer-group peer-group-name] events [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] events command.
www.dell.com | support.dell.com Command Modes Usage Information Command History EXEC Privilege Enter no debug ip bgp command to remove all configured debug commands for BGP. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series debug ip bgp notifications cesz Syntax Enables you to view information about BGP notifications received from neighbors.
Defaults Command Modes Usage Information Command History Disabled EXEC Privilege This command turns on BGP soft-reconfiguration inbound debugging. If no neighbor is specified, debug is turned on for all neighbors. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced debug ip bgp updates cesz Syntax Enables you to view information about BGP updates.
www.dell.com | support.dell.com Parameters Defaults Command Modes Usage Information Related Commands Command History number Enter a number as the metric to be assigned to routes from other protocols. Range: 1 to 4294967295. 0 ROUTER BGP The default-metric command in BGP sets the value of the BGP MULTI_EXIT_DISC (MED) attribute for redistributed routes only. bgp always-compare-med Enable comparison of all BGP MED attributes. redistribute Redistribute routes from other routing protocols into BGP.
Parameters Defaults Command Modes external-distance Enter a number to assign to routes learned from a neighbor external to the AS. Range: 1 to 255. Default: 20 internal-distance Enter a number to assign to routes learned from a router within the AS. Range: 1 to 255. Default: 200 local-distance Enter a number to assign to routes learned from networks listed in the network command. Range: 1 to 255. Default: 200 external-distance = 20; internal-distance = 200; local-distance = 200.
www.dell.com | support.dell.com Usage Information If you enable this command, use the clear ip bgp * command to recompute the best path. For optimal configuration, set the number variable to the highest possible value. Dell Force10 recommends maintaining the default setting or the next highest value. Command History Version 8.3.8.0 Command syntax changed to max-path (was maximum-paths). Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
Defaults Command Modes Related Commands Command History receive Enter this keyword to indicate that the system will accept multiple paths from peers. both Enter this keyword to indicate that the system will send and accept multiple paths from peers. path-count Enter the number paths supported. Range: 2-64 none CONFIGURATION-ROUTER-BGP-ADDRESS FAMILY bgp add-path Version 8.3.8.
www.dell.com | support.dell.com Parameters Defaults ip-address Enter the IP address of the neighbor in dotted decimal format. seconds Enter a number as the time interval, in seconds, before BGP route updates are sent. Range: 0 to 3600 seconds. none Command Modes ROUTER BGP Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group. route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of a configured route map. Defaults Not configured.
www.dell.com | support.dell.com Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to apply the distribute list filter to all routers in the peer group. prefix-list-name Enter the name of an established prefix list. If the prefix list is not configured, the default is permit (to allow all routes). in Enter the keyword in to distribute only inbound traffic.
Version 7.7.1.0 Introduced support on C-Series neighbor fall-over ecs Syntax Enable or disable fast fall-over for BGP neighbors. neighbor {ipv4-address | peer-group-name} fall-over To disable, use the no neighbor {ipv4-address | peer-group-name} fall-over command. Parameters Defaults Command Modes Usage Information Related Commands Command History ipv4-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group.
www.dell.com | support.dell.com Defaults Not configured. Command Modes ROUTER BGP ROUTER BGP-address-family Usage Information Related Commands Command History Use the ip as-path access-list command syntax in the CONFIGURATION mode to enter the AS-PATH ACL mode and configure AS-PATH filters to deny or permit BGP routes based on information in their AS-PATH attribute. ip as-path access-list Enter AS-PATH ACL mode and configure AS-PATH filters. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.
Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor local-as cesz Syntax Configure Internal BGP (IBGP) routers to accept external routes from neighbors with a local AS number in the AS number path neighbor {ip-address | peer-group-name} local-as as-number [no-prepend] To return to the default value, use the no neighbor {ip-address | peer-group-name} local-as command.
www.dell.com | support.dell.com maximum Enter a number as the maximum number of prefixes allowed for this BGP router. Range: 1 to 4294967295. threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the E-Series software sends a message. Range: 1 to 100 percent. Default: 75 warning-only (OPTIONAL) Enter the keyword warning-only to set the router to send a log message when the maximum value is reached.
Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor password cesz Syntax Enable Message Digest 5 (MD5) authentication on the TCP connection between two neighbors. neighbor {ip-address | peer-group-name} password [encryption-type] password To delete a password, use the no neighbor {ip-address | peer-group-name} password command. Parameters ip-address Enter the IP address of the router to be included in the peer group.
www.dell.com | support.dell.com neighbor peer-group (assigning peers) cesz Syntax Enables you to assign one peer to a existing peer group. neighbor ip-address peer-group peer-group-name To delete a peer from a peer group, use the no neighbor ip-address peer-group peer-group-name command. Parameters ip-address Enter the IP address of the router to be included in the peer group. peer-group-name Enter the name of a configured peer group. Defaults Not configured.
neighbor peer-group (creating group) cesz Syntax Enables you to create a peer group and assign it a name. neighbor peer-group-name peer-group To delete a peer group, use the no neighbor peer-group-name peer-group command. Parameters peer-group-name Defaults Not configured. Command Modes ROUTER BGP Usage Information Related Commands Command History Enter a text string up to 16 characters long as the name of the peer group. When a peer group is created, it is disabled (shut mode).
www.dell.com | support.dell.com Related Commands Command History neighbor soft-reconfiguration inbound Assign a subnet to a dynamically-configured BGP neighbor. neighbor remote-as Create and specify the remote peer to the BGP neighbor Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor remote-as cesz Syntax Create and specify the remote peer to the BGP neighbor.
neighbor remove-private-as cesz Syntax Remove private AS numbers from the AS-PATH of outgoing updates. neighbor {ip-address | peer-group-name} remove-private-as To return to the default, use the no neighbor {ip-address | peer-group-name} remove-private-as command. Parameters Defaults Command Modes Usage Information ip-address Enter the IP address of the neighbor to remove the private AS numbers.
www.dell.com | support.dell.com Defaults Not configured. Command Modes ROUTER BGP Usage Information When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. Command History Version 8.3.
neighbor send-community cesz Syntax Send a COMMUNITY attribute to a BGP neighbor or peer group. A COMMUNITY attribute indicates that all routes with that attribute belong to the same community grouping. neighbor {ip-address | peer-group-name} send-community To disable sending a COMMUNITY attribute, use the no neighbor {ip-address | peer-group-name} send-community command.
www.dell.com | support.dell.com Related Commands Command History show ip bgp summary Displays the current BGP configuration. show ip bgp neighbors Displays the current BGP neighbors. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor soft-reconfiguration inbound cesz Syntax Enable soft-reconfiguration for BGP.
neighbor subnet cesz Syntax Enable passive peering so that the members of the peer group are dynamic neighbor peer-group-name subnet subnet-number mask To remove passive peering, use the no neighbor peer-group-name subnet subnet-number mask command. Parameters subnet-number Enter a subnet number in dotted decimal format (A.B.C.D.) as the allowable range of addresses included in the Peer group. To allow all addresses, enter 0.0.0.0/0. mask Enter a prefix mask in / prefix-length format (/x).
www.dell.com | support.dell.com When two neighbors, configured with different keepalive and holdtime values, negotiate for new values, the resulting values will be as follows: • • Command History the lower of the holdtime values is the new holdtime value, and whichever is the lower value; one-third of the new holdtime value, or the configured keepalive value is the new keepalive value. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
weight Defaults Command Modes Usage Information Enter a number as the weight. Range: 0 to 65535 Default: 0 0 ROUTER BGP In the FTOS best path selection process, the path with the highest weight value is preferred. Note: Reset the neighbor connection (clear ip bgp * command) to apply the weight to the connection and recompute the best path.
www.dell.com | support.dell.com Usage Information Related Commands Command History FTOS software resolves the network address configured by the network command with the routes in the main routing table to ensure that the networks are reachable via non-BGP routes and non-default routes. redistribute Redistribute routes into BGP. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ip address • set community • set local-preference • set metric • set next-hop • set origin • set weight If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGP Usage Information With FTOS version 8.3.1.
www.dell.com | support.dell.com level-1-2 (OPTIONAL) Enter the keyword level-1-2 to independently redistributed into Level 1 and Level 2 routes. This is the default. level-2 (OPTIONAL) Enter the keyword level-2 to independently redistributed into Level 2 routes only metric metric-value (OPTIONAL) Enter the keyword metric followed by the metric value used for the redistributed route. Use a metric value that is consistent with the destination protocol.
Parameters process-id Enter the number of the OSPF process. Range: 1 to 65535 match external {1 | 2} (OPTIONAL) Enter the keywords match external to redistribute OSPF external routes. You can specify 1 or 2 to redistribute those routes only. match internal (OPTIONAL) Enter the keywords match internal to redistribute OSPF internal routes only. route-map map-name (OPTIONAL) Enter the keywords route-map followed by the name of a configured Route map. Defaults Not configured.
www.dell.com | support.dell.com Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series At least one interface must be in Layer 3 mode for the router bgp command to be accepted. If no interfaces are enabled for Layer 3, an error message appears: % Error: No router id configured.
show config cesz Syntax Command Modes Example View the current ROUTER BGP configuration. show config ROUTER BGP Figure 8-6. show config Command Example FTOS(conf-router_bgp)#show confi ! router bgp 45 neighbor suzanne peer-group neighbor suzanne no shutdown neighbor sara peer-group neighbor sara shutdown neighbor 13.14.15.20 peer-group suzanne neighbor 13.14.15.20 shutdown neighbor 123.34.55.123 peer-group suzanne neighbor 123.34.55.123 shutdown FTOS(conf-router_bgp)# Command History Version 8.3.11.
www.dell.com | support.dell.com Example Figure 8-7. show ip bgp Command Example (Partial) FTOS>show ip bgp BGP table version is 847562, local router ID is 63.114.8.131 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete *> * *> *> Network 0.0.0.0/0 3.0.0.0/8 Next Hop 63.114.8.33 63.114.8.33 63.114.8.33 0.0.0.0 63.114.8.35 63.114.8.33 63.114.8.33 63.
show ip bgp cluster-list cesz Syntax Parameters Command Modes View BGP neighbors in a specific cluster. show ip bgp [ipv4 unicast] cluster-list [cluster-id] ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. cluster-id (OPTIONAL) Enter the cluster id in dotted decimal format. EXEC EXEC Privilege Example Figure 8-8.
www.dell.com | support.dell.com Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series show ip bgp community cesz Syntax Parameters Command Modes View information on all routes with Community attributes or view specific BGP community groups.
Example Figure 8-9. show ip bgp community Command Example (Partial) FTOS>show ip bgp community BGP table version is 3762622, local router ID is 63.114.8.48 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network * i 3.0.0.0/8 *>i 4.2.49.12/30 * i 4.21.132.0/23 *>i 4.24.118.16/30 *>i 4.24.145.0/30 *>i 4.24.187.12/30 *>i 4.24.202.0/30 *>i 4.25.88.
www.dell.com | support.dell.com Parameters Command Modes ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. community-list-name Enter the name of a configured IP community list. (max 16 chars) exact-match Enter the keyword for an exact match of the communities. EXEC EXEC Privilege Example Figure 8-10. Command Example: show ip bgp community-list FTOS#show ip bgp community-list pass BGP table version is 0, local router ID is 10.101.15.
Example Figure 8-11. Command Example: show ip bgp dampened-paths FTOS>show ip bgp damp BGP table version is 210708, local router ID is 63.114.8.2 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network From Reuse Path FTOS> Table 8-5 defines the information displayed in Figure 8-11. Table 8-5.
www.dell.com | support.dell.
show ip bgp extcommunity-list cesz Syntax Parameters Command Modes View information on all routes with Extended Community attributes. show ip bgp [ipv4 unicast] extcommunity-list [list name] ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. list name Enter the extended community list name you wish to view. EXEC EXEC Privilege Usage Information To view the total number of COMMUNITY attributes found, use the show ip bgp summary command.
www.dell.com | support.dell.com Example Figure 8-13. Command Example: show ip bgp filter-list FTOS#show ip bgp filter-list hello BGP table version is 80227, local router ID is 120.1.1.1 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n network Origin codes: i - IGP, e - EGP, ? - incomplete Network * I 6.1.5.0/24 * I * I * I *>I * I * I * I 6.1.6.0/24 * I * I * I *>I * I * I * I 6.1.20.
show ip bgp flap-statistics cesz Syntax Parameters View flap statistics on BGP routes. show ip bgp [ipv4 unicast] flap-statistics [ip-address [mask]] [filter-list as-path-name] [regexp regular-expression] ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. ip-address (OPTIONAL) Enter the IP address (in dotted decimal format) of the BGP network to view information only on that network.
www.dell.com | support.dell.com Table 8-7 defines the information displayed in Figure 8-14. Table 8-7. show ip bgp flap-statistics Command Example Fields Command History Field Description Network Displays the network ID to which the route is flapping. From Displays the IP address of the neighbor advertising the flapping route. Flaps Displays the number of times the route flapped. Duration Displays the hours:minutes:seconds since the route first flapped.
Table 8-8. show ip bgp inconsistent-as Command Example Fields Command History Fields Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route.
www.dell.com | support.dell.com denied-routes [network [network-mask] Command Modes (OPTIONAL) Enter the keywords denied-routes followed by either the network address (in dotted decimal format) or the network mask (in slash prefix format) to view all information on routes denied via neighbor inbound filters. EXEC EXEC Privilege Usage Information Command History Example After a peer reset, the contents of the notification log messages will be displayed in hex values for debugging. Version 8.3.11.
FTOS# FTOS# Example 1 Figure 8-17. Command Example:show ip bgp neighbors (Partial) FTOS#show ip bgp neighbors BGP neighbor is 100.10.10.2, remote AS 200, external link BGP version 4, remote router ID 192.168.2.
www.dell.com | support.dell.com Example 3 Figure 8-19. Command Example: show ip bgp neighbors received-routes FTOS#show ip bgp neighbors 100.10.10.2 received-routes BGP table version is 13, local router ID is 120.10.10.1 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed n - network, D - denied, S - stale Origin codes: i - IGP, e - EGP, ? - incomplete Network D 70.70.21.0/24 D 70.70.22.0/24 D 70.70.
Table 8-9. Command Example fields: show ip bgp neighbors Related Commands Lines beginning with Description Sent messages The line displays the number of BGP messages sent, the number of notifications (error messages) and the number of messages waiting in a queue for processing. Received updates This line displays the number of BGP updates received and sent. Soft reconfiguration This line indicates that soft reconfiguration inbound is configured.
www.dell.com | support.dell.com Example Figure 8-21. Command Example: show ip bgp next-hop FTOS>show ip bgp next-hop Next-hop Via 63.114.8.33 63.114.8.33, 63.114.8.34 63.114.8.34, 63.114.8.35 63.114.8.35, 63.114.8.60 63.114.8.60, FTOS> Gi Gi Gi Gi 12/22 12/22 12/22 12/22 RefCount 240984 135152 1 135155 Cost 0 0 0 0 Flaps 0 0 0 0 Time Elapsed 00:18:25 00:18:13 00:18:07 00:18:11 Table 8-10.
Example Figure 8-22.
www.dell.com | support.dell.com Example Figure 8-23. Command Example: show ip bgp paths as-path (Partial) FTOS#show ip bgp paths as-path Total 13 AS-Paths Address Hash Refcount AS-Path 0x1ea3c1ec 251 1 42 0x1ea3c25c 251 1 22 0x1ea3c1b4 507 1 13 0x1ea3c304 507 1 33 0x1ea3c10c 763 1 {92 93} 0x1ea3c144 763 1 {102 103} 0x1ea3c17c 763 1 12 0x1ea3c2cc 763 1 32 0x1ea3c09c 764 1 {72 73} 0x1ea3c0d4 764 1 {82 83} 0x1ea3c224 1019 1 43 0x1ea3c294 1019 1 23 0x1ea3c02c 1021 4 FTOS# Table 8-12.
Example Figure 8-24.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Example Figure 8-25. Command Example: show ip bgp peer-group on the S4810 (Partial) FTOS#show ip bgp peer-group Peer-group pg1 BGP version 4 Minimum time between advertisement runs is 30 seconds For address family: IPv4 Unicast BGP neighbor is pg1 Number of peers in this group 4 Update packing has 4_OCTECT_AS support enabled Add-path support enabled Peer-group members (* - outbound optimized): 1.1.1.5 1.1.1.6 10.10.10.2* 20.20.20.
Table 8-14. Command Example fields: show ip bgp peer-group Line beginning with Description Related Commands Command History Minimum time Displays the time interval between BGP advertisements. For address family Displays IPv4 Unicast as the address family. BGP neighbor Displays the name of the BGP neighbor. Number of peers Displays the number of peers currently configured for this peer group. Peer-group members: Lists the IP addresses of the peers in the peer group.
www.dell.com | support.dell.com Example Figure 8-27. Command Example: show ip bgp regexp (Partial) FTOS#show ip bgp regexp ^2914+ BGP table version is 3700481, local router ID is 63.114.8.35 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *>I 3.0.0.0/8 1.1.1.2 0 100 0 2914 1239 80 i *>I 4.0.0.
Example Figure 8-28. Command Example: show ip bgp summary FTOS#show ip bgp summary BGP router identifier 120.10.10.
www.dell.com | support.dell.com Table 8-16. Command Example fields: show ip bgp summary Command History Field Description Up/Down Displays the amount of time that the neighbor is in the Established stage. If the neighbor has never moved into the Established stage, the word never is displayed.
Parameters Defaults keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. Range: 1 to 65535 Default: 60 seconds holdtime Enter a number for the time interval, in seconds, between the last keepalive message and declaring the router dead. Range: 3 to 65535 Default: 180 seconds No default values or behavior Command Modes ROUTER BGP Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.
www.dell.com | support.dell.
aggregate-address c et s Syntax Parameters Defaults Command Modes Usage Information Summarize a range of prefixes to minimize the number of entries in the routing table. aggregate-address ip-address mask [advertise-map map-name] [as-set] [attribute-map map-name] [summary-only] [suppress-map map-name] ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.D) and mask in / prefix format (/x).
www.dell.com | support.dell.com bgp dampening c et s Syntax Enable MBGP route dampening. bgp dampening [half-life time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life time] [route-map map-name] command. Parameters half-life time (OPTIONAL) Enter the number of minutes after which the Penalty is decreased. After the router assigns a Penalty of 1024 to a route, the Penalty is decreased by half, after the half-life period expires. Range: 1 to 45.
clear ip bgp dampening c et s Syntax Parameters Command Modes Command History Clear information on route dampening. clear ip bgp dampening ipv4 multicast network network-mask dampening Enter the keyword dampening to clear route flap dampening information. network (OPTIONAL) Enter the network address in dotted decimal format (A.B.C.D). network-mask (OPTIONAL) Enter the network mask in slash prefix format (/x). EXEC Privilege Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
www.dell.com | support.dell.com debug ip bgp dampening c et s Syntax View information on routes being dampened. debug ip bgp ipv4 multicast dampening To disable debugging, enter no debug ip bgp ipv4 multicast dampening Parameters Command Modes Command History dampening Enter the keyword dampening to clear route flap dampening information. EXEC Privilege Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.
Parameters Command Modes Defaults Command History updates Enter the keyword updates to view BGP update information. in (OPTIONAL) Enter the keyword in to view only BGP updates received from neighbors. out (OPTIONAL) Enter the keyword out to view only BGP updates sent to neighbors. EXEC Privilege Disabled. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.
www.dell.com | support.dell.com neighbor activate c et s Syntax This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI. neighbor [ip-address | peer-group-name] activate To disable, use the no neighbor [ip-address | peer-group-name] activate command. Parameters Defaults Command Modes Usage Information Related Commands Command History ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format.
Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series neighbor default-originate c et s Syntax Inject the default route to a BGP peer or neighbor. neighbor {ip-address | peer-group-name} default-originate [route-map map-name] To remove a default route, use the no neighbor {ip-address | peer-group-name} default-originate command.
www.dell.com | support.dell.com Usage Information Related Commands Command History Other BGP filtering commands include: neighbor filter-list, ip as-path access-list, and neighbor route-map. ip as-path access-list Configure IP AS-Path ACL. neighbor filter-list Assign a AS-PATH list to a neighbor or peer group. neighbor route-map Assign a route map to a neighbor or peer group. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.
neighbor maximum-prefix c et s Syntax Control the number of network prefixes received. neighbor ip-address | peer-group-name maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor ip-address | peer-group-name maximum-prefix maximum command. Parameters Defaults Command Modes Command History ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name (OPTIONAL) Enter the name of the peer group.
www.dell.com | support.dell.com Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series neighbor remove-private-as c et s Syntax Remove private AS numbers from the AS-PATH of outgoing updates. neighbor ip-address | peer-group-name remove-private-as To return to the default, use the no neighbor ip-address | peer-group-name remove-private-as command.
Usage Information When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
www.dell.com | support.dell.com mask Enter the mask of the IP address in the slash prefix length format (for example, /24). The mask appears in command outputs in dotted decimal format (A.B.C.D). route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of an established route map.
route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ip address • set community • set local-preference • set metric • set next-hop • set origin • set weight If the route map is not configured, the default is deny (to drop all routes). Defaults Command Modes Usage Information Not configured.
www.dell.com | support.dell.com Usage Information When you enter redistribute ospf process-id command without any other parameters, FTOS redistributes all OSPF internal routes, external type 1 routes, and external type 2 routes. This feature is not supported by an RFC. Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.
Table 8-17. show ip bgp Command Example Fields Related Commands Command History Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route.
www.dell.com | support.dell.com Parameters Command Modes community-number Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system. You can specify up to eight community numbers to view information on those community groups. local-AS Enter the keywords local-AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED.
show ip bgp dampened-paths c et s Syntax Command Modes View BGP routes that are dampened (non-active). show ip bgp ipv4 multicast dampened-paths EXEC EXEC Privilege Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series show ip bgp filter-list c et s Syntax Parameters Command Modes View the routes that match the filter lists.
www.dell.com | support.dell.com regexp regular-expression Enter a regular expression then use one or a combination of the following characters to match: • • • • • • • • • Command Modes . = (period) any single character (including a white space) * = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences).
Command Modes advertised-routes (OPTIONAL) Enter the keywords advertised-routes to view only the routes the neighbor sent. dampened-routes (OPTIONAL) Enter the keyword dampened-routes to view information on dampened routes from the BGP neighbor. detail (OPTIONAL) Display detailed neighbor information. flap-statistics (OPTIONAL) Enter the keyword flap-statistics to view flap statistics on the neighbor’s routes. routes (OPTIONAL) Enter the keywords routes to view only the neighbor’s feasible routes.
www.dell.com | support.dell.com Table 8-18. Command Example fields: show ip bgp ipv4 multicast neighbors Lines beginning with Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one. If they are located in the same AS, then the link is internal; otherwise the link is external.
Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series show ip bgp peer-group c et s Syntax Parameters Command Modes Enables you to view information on the BGP peers in a peer group. show ip bgp ipv4 multicast peer-group [peer-group-name [detail | summary]] peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. detail (OPTIONAL) Enter the keyword detail to view detailed status information of the peers in that peer group.
www.dell.com | support.dell.com Example 382 Figure 8-31. Command Example: show ip bgp ipv4 multicast summary FTOS#show ip bgp ipv4 multicast summary BGP router identifier 100.10.10.1, local AS number 6400 BGP table version is 14, main routing table version 14 7 network entrie(s) and 7 paths using 972 bytes of memory 2 BGP path attribute entrie(s) using 112 bytes of memory 1 BGP AS-PATH entrie(s) using 35 bytes of memory Neighbor AS 25.25.25.25 211.1.1.
Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series BGP Extended Communities (RFC 4360) BGP Extended Communities, as defined in RFC 4360, is an optional transitive BGP attribute. It provides two major advantages over Standard Communities: • The range is extended from 4-octet (AA:NN) to 8-octet (Type:Value) to provide enough number communities.
www.dell.com | support.dell.com Defaults Command Modes Related Commands Command History ASN:NNNN Enter the 2-octet AS specific extended community number in the format ASN:NNNN (2-byte AS number:4-byte community value).
description cesz Syntax Use this feature to designate a meaningful description to the extended community. description {line} To remove the description, use the no description {line} command. Parameters Defaults Command Modes Command History line Enter a description (maximum 80 characters). Not configured CONFIGURATION (conf-ext-community-list) Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.
www.dell.com | support.dell.com match extcommunity cesz Syntax Use this feature to match an extended community in the Route Map mode. match extcommunity {extended community list name} To change the match, use the no match extcommunity {extended community list name} command. Parameters Defaults Command Modes Usage Information Example extended community list name Enter the name of the extended community list.
Related Commands Command History deny Configure to delete (deny) rules show ip extcommunity-list Display the Extended Community list Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series permit regex cesz Syntax This features enables you specify an extended communities to forward (permit) using a regular expressions (regex). permit regex {regex} To remove, use the no permit regex {regex} command.
www.dell.com | support.dell.com Parameters Defaults Command Modes Usage Information as4 ASN4:NN Enter the keyword as4 followed by the 4-octet AS specific extended community number in the format ASN4:NN (4-byte AS number:2-byte community value). ASN:NNNN Enter the 2-octet AS specific extended community number in the format ASN:NNNN (2-byte AS number:4-byte community value).
Command Modes Usage Information ROUTE MAP (config-route-map) If the set community rt and soo are in the same route-map entry, we can define the behavior as: • • • Related Commands Command History If rt option comes before soo, with or without additive option, then soo overrides the communities set by rt If rt options comes after soo, without the additive option, then rt overrides the communities set by soo If rt with additive option comes after soo, then rt adds the communities set by soo set extcommunit
www.dell.com | support.dell.com Example Figure 8-36. Command Example: show ip bgp ipv4 multicast extcommunity-list FTOS#show ip bgp ipv4 multicast extcommunity-list BGP routing table entry for 192.168.1.0/24, version 2 Paths: (1 available, table Default-IP-Routing-Table.) Not advertised to any peer Received from : 100.100.1.2 (2.4.0.1) Best AS_PATH : 200 Next-Hop : 100.100.1.
Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series show ip extcommunity-list cesz Syntax Parameters Defaults Command Modes Display the IP extended community list. show ip extcommunity-list [word] word Enter the name of the extended community list you want to view. Defaults. EXEC EXEC Privilege Example Figure 8-38.
www.dell.com | support.dell.com Command History 392 | Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.
IPv6 BGP Commands IPv6 Border Gateway Protocol (IPv6 BGP) is supported on platforms cez This chapter includes the following commands: • • BGP IPv4 Commands MBGP Commands Border Gateway Protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between Autonomous Systems (AS). BGP version 4 (BGPv4) supports classless interdomain routing and the aggregation of routes and AS paths.
www.dell.com | support.dell.
• • • • • • • • • • • • • • show ip bgp extcommunity-list show ip bgp filter-list show ip bgp ipv6 unicast flap-statistics show ip bgp inconsistent-as show ip bgp neighbors show ip bgp peer-group show ip bgp summary show ip bgp next-hop show ip bgp paths show ip bgp paths as-path show ip bgp paths community show ip bgp paths extcommunity show ip bgp regexp timers bgp address-family ces Syntax Enable the IPv4 multicast or the IPv6 address family.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information as-set (OPTIONAL) Enter the keyword as-set to generate path attribute information and include it in the aggregate. AS_SET includes AS_PATH and community information from the routes included in the aggregated route. attribute-map map-name (OPTIONAL) Enter the keywords attribute-map followed by the name of a configured route map to modify attributes of the aggregate, excluding AS_PATH and NEXT_HOP attributes.
Command History Usage Information Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced Any update without a MED attribute is the least preferred route. If you enable this command, use the clear ip bgp * command to recompute the best path. bgp bestpath as-path ignore ce Ignore the AS PATH in BGP best path calculations. Syntax bgp bestpath as-path ignore To return to the default, enter no bgp bestpath as-path ignore.
www.dell.com | support.dell.com bgp bestpath med missing-as-best ce During path selection, indicate preference to paths with missing MED (MULTI_EXIT_DISC) over those paths with an advertised MED attribute. Syntax bgp bestpath med missing-as-best To return to the default selection, use the no bgp bestpath med missing-as-best command. Defaults Disabled Command Modes ROUTER BGP Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.
Parameters ip-address Enter an IP address as the route reflector cluster ID. number Enter a route reflector cluster ID as a number from 1 to 4294967295. Defaults Not configured. Command Modes ROUTER BGP Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced Usage Information When a BGP cluster contains only one route reflector, the cluster ID is the route reflector’s router ID.
www.dell.com | support.dell.com bgp confederation peers ce Specify the Autonomous Systems (ASs) that belong to the BGP confederation. Syntax bgp confederation peers as-number [...as-number] To enter no bgp confederation peer. Parameters as-number Enter the AS number. Range: 1 to 65535 ...as-number (OPTIONAL) Enter up to 16 confederation numbers. Range: 1 to 65535. Defaults Not configured. Command Modes ROUTER BGP Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.
Defaults Command Modes (OPTIONAL) Enter a number as the suppress value, which is compared to the flapping route’s Penalty value. If the Penalty value is greater than the suppress value, the flapping route is no longer advertised (that is, it is suppressed). Range: 1 to 20000. Default: 2000 max-suppress-time (OPTIONAL) Enter the maximum number of minutes a route can be suppressed. The default is four times the half-life value. Range: 1 to 255. Default: 60 minutes.
www.dell.com | support.dell.com bgp enforce-first-as ce Disable (or enable) enforce-first-as check for udates received from EBGP peers. Syntax bgp enforce-first-as To turn off the default, use the no bgp enforce-first-as command. Defaults Command Modes Usage Information Enabled ROUTER BGP This is enabled by default, that is for all updates received from EBGP peers, BGP ensures that the first AS of the first AS segment is always the AS of the peer.
bgp four-octet-as-support ce Syntax Enable 4-byte support for the BGP process bgp four-octet-as-support To disable fast external fallover, enter no bgp four-octet-as-support. Defaults Command Modes Usage Information Disabled (supports 2-Byte format) ROUTER BGP Routers supporting 4-Byte ASNs advertise that function in the OPEN message. The behavior of a 4-Byte router will be slightly different depending on whether it is speaking to a 2-Byte router or a 4-Byte router.
www.dell.com | support.dell.com Command Modes ROUTER BGP Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced Usage Information This feature is advertised to BGP neighbors through a capability advertisement. In receiver only mode, BGP saves the advertised routes of peers that support this capability when they restart. bgp log-neighbor-changes ce Enable logging of BGP neighbor resets.
Usage Information In non-deterministic mode, paths are compared in the order in which they arrive. This method can lead to FTOS choosing different best paths from a set of paths, depending on the order in which they are received from the neighbors since MED may or may not get compared between adjacent paths. In deterministic mode (no bgp non-deterministic-med), FTOS compares MED between adjacent paths within an AS group since all paths in the AS group are from the same AS.
www.dell.com | support.dell.com BGP policies, containing regular expressions to match as-path and communities, tend to use a lot of CPU processing time, which in turn affects the BGP routing convergence. Additionally, the show bgp commands, which are filtered through regular expressions, use up CPU cycles particularly with large databases. The Regex Engine Performance Enhancement feature optimizes the CPU usage by caching and reusing regular expression evaluation results.
Command Modes EXEC EXEC Privilege Command History Related Commands Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.5.1.0 Introduced clear ip bgp Enable route reflection between route reflector and clients. show capture bgp-pdu neighbor Configure a route reflector and clients. capture bgp-pdu neighbor Enable capture of an IPv4 BGP neighbor packet. capture bgp-pdu max-buffer-size ce Set the size of the BGP packet capture buffer.
www.dell.com | support.dell.com soft (OPTIONAL) Enter the keyword soft to configure and activate policies without resetting the BGP TCP session, that is, BGP Soft Reconfiguration. Note: If you enter clear ip bgp ip6-address soft, both inbound and outbound policies are reset. Command Modes Command History in (OPTIONAL) Enter the keyword in to activate only inbound policies. out (OPTIONAL) Enter the keyword out to activate only outbound policies. EXEC Privilege Version 8.2.1.
clear ip bgp ipv6-address ce Reset BGP sessions specific to an IPv6 address on the E-Series. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection. Syntax clear ip bgp ipv6-address [flap-statistics | ipv4 {multicast {flap-statistics | soft {in | out}} | unicast {flap-statistics | soft {in | out}} | ipv6 unicast {flap-statistics | soft {in | out}| soft [in | out] Parameters ipv6-address Enter an IPv6 address to reset neighbors belonging to that IP.
www.dell.com | support.dell.com clear ip bgp ipv6 dampening ce Clear information on route dampening and return suppressed route to active state. Syntax clear ip bgp ipv6 unicast dampening [ipv6-address] Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zeros Command Modes Command History Usage Information EXEC Privilege Version 8.2.1.
Usage Information Related Commands If you enter clear ip bgp flap-statistics without any parameters, all statistics are cleared. show ip bgp ipv6 unicast flap-statistics View BGP flap statistics. debug ip bgp ce Allows you to view all information on BGP, including BGP events, keepalives, notifications, and updates. Syntax debug ip bgp [ipv6-address | peer-group peer-group-name] [in | out] To disable all BGP debugging, enter no debug ip bgp.
www.dell.com | support.dell.com Parameters Command Modes Command History Usage Information Related Commands in (OPTIONAL) Enter the keyword in to view only inbound dampened routes. out (OPTIONAL) Enter the keyword out to view only outbound dampened routes. EXEC Privilege Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced Enter no debug ip bgp command to remove all configured debug commands for BGP. show ip bgp dampened-paths View BGP dampened routes.
To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] keepalives [in | out] command. Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History Usage Information peer-group peer-group-name (OPTIONAL) Enter the keyword peer-group followed by the name of the peer group.
www.dell.com | support.dell.com debug ip bgp updates ce Allows you to view information about BGP updates. Syntax debug ip bgp [ipv6-address | peer-group peer-group-name | ipv6 unicast [ipv6-address]] updates [in | out | prefix-list prefix-list-name] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name | ipv6 unicast [ipv6-address]] updates [in | out] command.
Usage Information Related Commands The default-metric command in BGP sets the value of the BGP MULTI_EXIT_DISC (MED) attribute for redistributed routes only. bgp always-compare-med Enable comparison of all BGP MED attributes. redistribute Redistribute routes from other routing protocols into BGP. description ce Enter a description of the BGP routing protocol Syntax description {description} To remove the description, use the no description {description} command.
www.dell.com | support.dell.com Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced Caution: Dell Force10 recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. Usage Information The higher the administrative distance assigned to a route means that your confidence in that route is low.
Command Modes Command History Usage Information ROUTER BGPV6-ADDRESS FAMILY Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced If you enable this command, use the clear ip bgp command to recompute the best path. neighbor activate ce This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI. Syntax neighbor {ipv6-address | peer-group-name} activate To disable, use the no neighbor {ipv6-address | peer-group-name} activate command.
www.dell.com | support.dell.com seconds Defaults Command Modes Command History Enter a number as the time interval, in seconds, between BGP advertisements. Range: 0 to 600 seconds. Default: 5 seconds for internal BGP peers; 30 seconds for external BGP peers. seconds = 5 seconds (internal peers); seconds = 30 seconds (external peers) ROUTER BGPV6-ADDRESS FAMILY Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros. Defaults Command Modes Command History Usage Information peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group. route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of a configured route map. Not configured. ROUTER BGPV6-ADDRESS FAMILY Version 8.2.1.
www.dell.com | support.dell.com Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros. Defaults Command Modes Command History Usage Information Related Commands peer-group-name Enter the name of the peer group. prefix-list-name Enter the name of an established prefix list. If the prefix list is not configured, the default is permit (to allow all routes). in Enter the keyword in to distribute only inbound traffic.
neighbor fall-over ce Enable or disable fast fall-over for BGP neighbors. Syntax neighbor {ipv6-address | peer-group-name} fall-over To disable, use the no neighbor {ipv6-address | peer-group-name} fall-over command. Parameters Enter the IPv6 address in the x:x:x:x::x format. ipv6-address The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Defaults Enter the name of the peer group. Disabled Command Modes ROUTER BGP Command History Version 8.2.1.
www.dell.com | support.dell.com Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced neighbor maximum-prefix ce Control the number of network prefixes received. Syntax neighbor {ipv6-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor {ipv6-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] command.
neighbor X:X:X::X password ce Enable TCP MD5 Authentication for an IPv6 BGP peer session. Syntax neighbor x:x:x::x password {7 |
www.dell.com | support.dell.com neighbor peer-group (assigning peers) ce Allows you to assign one peer to a existing peer group. Syntax neighbor ipv6-address peer-group peer-group-name To delete a peer from a peer group, use the no neighbor ipv6-address peer-group peer-group-name command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros.
neighbor peer-group (creating group) ce Allows you to create a peer group and assign it a name. Syntax neighbor peer-group-name peer-group To delete a peer group, use the no neighbor peer-group-name peer-group command. Parameters peer-group-name Enter a text string up to 16 characters long as the name of the peer group. Defaults Not configured. Command Modes ROUTER BGP Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.
www.dell.com | support.dell.com neighbor remote-as ce Create and specify the remote peer to the BGP neighbor. Syntax neighbor {ipv6-address | peer-group-name} remote-as number To delete a remote AS entry, use the no neighbor {ipv6-address | peer-group-name} remote-as numbercommand. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros.
Version 7.4.1.0 Usage Information Introduced Applies to EBGP neighbors only. If the AS-PATH contains both public and private AS number or contains AS numbers of an EBGP neighbor, the private AS numbers are not removed. If a confederation contains private AS numbers in its AS-PATH, the software removes the private AS numbers only if they follow the confederation numbers in the AS path. Private AS numbers are 64512 to 65535.
www.dell.com | support.dell.com neighbor route-reflector-client ce Configure a neighbor as a member of a route reflector cluster. Syntax neighbor {ipv6-address | peer-group-name} route-reflector-client To indicate that the neighbor is not a route reflector client or to delete a route reflector configuration, use the no neighbor {ipv6-address | peer-group-name} route-reflector-client command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format.
neighbor shutdown ce Disable a BGP neighbor or peer group. Syntax neighbor {ipv6-address | peer-group-name} shutdown To enable a disabled neighbor or peer group, use the no neighbor {ipv6-address | peer-group-name} shutdown command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Defaults Enter the name of the peer group to disable or enable all routers within the peer group.
www.dell.com | support.dell.com Version 7.4.1.0 Introduced neighbor timers ce Set keepalive and hold time timers for a BGP neighbor or a peer group. Syntax neighbor {ipv6-address | peer-group-name} timers keepalive holdtime To return to the default values, use the no neighbor {ipv6-address | peer-group-name} timers command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros.
neighbor update-source ce Enable the E-Series software to use Loopback interfaces for TCP connections for BGP sessions. Syntax neighbor {ipv6-address | peer-group-name} update-source loopback interface To use the closest interface, use the no neighbor {ipv6-address | peer-group-name} update-source loopback interface command. Parameters Enter the IPv6 address in the x:x:x:x::x format. ipv6-address The :: notation specifies successive hexadecimal fields of zeros.
www.dell.com | support.dell.com Command History Usage Information Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced In the FTOS best path selection process, the path with the highest weight value is preferred. Note: Reset the neighbor connection (clear ip bgp * command) to apply the weight to the connection and recompute the best path. network ce Specify the networks for the BGP process and enter them in the BGP routing table.
network backdoor ce Specify this IGP route as the preferred route. Syntax network ipv6-address prefix-length backdoor To remove a network, use the no network ipv6-address prefix-length backdoor command. Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zeros. Defaults Command Modes Command History Usage Information Not configured.
www.dell.com | support.dell.com Command History Usage Information Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced If you do not configure default-metric command, in addition to the redistribute command, or there is no route map to set the metric, the metric for redistributed static and connected is “0”. To redistribute the default route (0::0/0) configure the neighbor default-originate command. Related Commands neighbor default-originate Inject the default route.
redistribute ospf e Syntax Redistribute OSPFv3 routes into BGP. redistribute ospf process-id [[match external {1 | 2}] [match internal]] [route-map map-name] To stop redistribution of OSPF routes, use the no redistribute ospf process-id command. Parameters process-id Enter the number of the OSPFv3 process. Range: 1 to 65535 match external (OPTIONAL) Enter the keywords match external to redistribute OSPF external routes. You can specify 1 or 2 to redistribute those routes only.
www.dell.com | support.dell.com Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced show capture bgp-pdu neighbor ce Display BGP packet capture information for an IPv6 address on the E-Series. Syntax show capture bgp-pdu neighbor ipv6-address Parameters Command Modes ipv6-address Enter the IPv6 address (X:X:X:X::X) of a BGP neighbor. EXEC EXEC Privilege Command History Related Commands Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.5.1.
show ip bgp ipv6 unicast ce View the current BGP routing table for the E-Series. Syntax show ip bgp ipv6 unicast [network [network-mask] [longer-prefixes]] Parameters Command Modes network (OPTIONAL) Enter the network address (in dotted decimal format) of the BGP network to view information only on that network. network-mask (OPTIONAL) Enter the network mask (in slash prefix format) of the BGP network address.
www.dell.com | support.dell.com Parameters Command Modes community-number Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system. You can specify up to eight community numbers to view information on those community groups. local-AS Enter the keywords local-AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED.
show ip bgp ipv6 unicast dampened-paths ce View BGP routes that are dampened (non-active). Syntax show ip bgp ipv6 unicast dampened-paths Command Modes EXEC EXEC Privilege Command History Version 7.4.1.0 Introduced show ip bgp ipv6 unicast detail ce Display BGP internal information for IPv6 Unicast address family. Syntax show ip bgp ipv6 unicast detail Defaults Command Modes none EXEC EXEC Privilege Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.
www.dell.com | support.dell.com show ip bgp ipv6 unicast filter-list ce View the routes that match the filter lists. Syntax show ip bgp ipv6 unicast filter-list as-path-name Parameters Command Modes as-path-name Enter the name of an AS-PATH. EXEC EXEC Privilege Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced show ip bgp ipv6 unicast flap-statistics ce View flap statistics on BGP routes.
show ip bgp ipv6 unicast inconsistent-as ce View routes with inconsistent originating Autonomous System (AS) numbers, that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. Syntax show ip bgp ipv6 unicast inconsistent-as Command Modes EXEC EXEC Privilege Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced show ip bgp ipv6 unicast neighbors ce Allows you to view the information exchanged by BGP neighbors.
www.dell.com | support.dell.com show ip bgp ipv6 unicast peer-group ce Allows you to view information on the BGP peers in a peer group. Syntax show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] Parameters Command Modes peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. detail (OPTIONAL) Enter the keyword detail to view peer-group-specific information for the IPv6 address family.
Version 7.4.1.0 Example Introduced Figure 3 show ip bgp summary Command Example FTOS# show ip bgp summary BGP router identifier 55.55.55.
www.dell.com | support.dell.com show ip bgp paths ce View all the BGP path attributes in the BGP database. Syntax show ip bgp paths [regexp regular-expression] Parameters regexp regular-expression Enter a regular expression then use one or a combination of the following characters to match: • • • • • • • Command Modes .
Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced show ip bgp paths extcommunity ce View all unique Extended community information in the BGP database. Syntax show ip bgp paths extcommunity Command Modes EXEC EXEC Privilege Command History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced show ip bgp regexp ce Allows you to view the subset of BGP routing table matching the regular expressions specified.
www.dell.com | support.dell.com show ipv6 prefix-list z Syntax Parameters Command Modes Command History Related Commands Displays the specified IPv6 prefix list. show ipv6 prefix-list detail {prefix-list name} | summary detail Display a detailed description of the selected IPv6 prefix list. prefix-list name Enter the name of the prefix list. Maximum 140 characters. summary Display a summary of RPF routes. EXEC Version 9.0.0.0 Introduced on the Z9000. Version 8.3.10.
IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). FTOS MBGP is implemented as per IETF RFC 1858.
www.dell.com | support.dell.com address family ipv6 unicast e Syntax This command changes the context to SAFI (Subsequent Address Family Identifier). address family ipv6 unicast To remove SAFI context, use the no address family ipv6 unicast command. Parameters Defaults Command Modes Command History Usage Information ipv6 Enter the keyword ipv6 to specify the address family as IPv6. unicast Enter the keyword unicast to specify multicast as SAFI. IPv6 Unicast ROUTER BGPV6-ADDRESS FAMILY Version 7.4.
Command Modes Command History Usage Information ROUTER BGPV6-ADDRESS FAMILY Version 7.4.1.0 Introduced At least one of the routes included in the aggregate address must be in the BGP routing table for the configured aggregate to become active. Do not add the as-set parameter to the aggregate. If routes within the aggregate are constantly changing, the aggregate will flap to keep track of the changes in the AS_PATH.
www.dell.com | support.dell.com clear ip bgp ipv6 unicast e Syntax Parameters Reset MBGP sessions. clear ip bgp ipv6 unicast * ipv6-address prefix-length [dampening | flap-statistics] peer-group] * Enter the character * to clear all peers. ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format.
regexp regexp Command Modes Command History (OPTIONAL) Enter the keyword regexp followed by regular expressions. Use one or a combination of the following: . (period) matches on any single character, including white space * (asterisk) matches on sequences in a pattern (zero or more sequences) + (plus sign) matches on sequences in a pattern (one or more sequences) ? (question mark) matches sequences in a pattern (0 or 1 sequences) [ ] (brackets) matches a range of single-character patterns.
www.dell.com | support.dell.com Command History Version 7.4.1.0 Introduced debug ip bgp ipv6 unicast updates e Syntax View information about BGP updates. debug ip bgp ipv6 unicast ipv6-address prefix-length updates [in | out] To disable debugging, enter no debug ip bgp ipv6 unicast ipv6-address prefix-length updates [in | out] command. Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format.
Defaults Command Modes Command History external-distance = 20; internal-distance = 200; local-distance = 200. ROUTER BGPV6-ADDRESS FAMILY Version 7.4.1.0 Introduced Caution: Dell Force10 recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. Usage Information The higher the administrative distance assigned to a route means that your confidence in that route is low.
www.dell.com | support.dell.com neighbor advertisement-interval e Set the advertisement interval between BGP neighbors or within a BGP peer group. Syntax neighbor {ipv6-address | peer-group-name} advertisement-interval seconds To return to the default value, use the no neighbor {ipv6-address | peer-group-name} advertisement-interval command. Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros.
neighbor distribute-list e Syntax Distribute BGP information via an established prefix list. neighbor [ipv6-address | peer-group-name] distribute-list prefix-list-name [in | out] To delete a neighbor distribution list, use the no neighbor [ipv6-address | peer-group-name] distribute-list prefix-list-name [in | out] command. Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros.
www.dell.com | support.dell.com Defaults Command Modes Command History Not configured. ROUTER BGPV6-ADDRESS FAMILY Version 7.4.1.0 Introduced neighbor maximum-prefix e Syntax Control the number of network prefixes received. neighbor ipv6-address | peer-group-name maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor ipv6-address | peer-group-name maximum-prefix maximum command.
peer-group-name Defaults Command Modes Command History Usage Information (OPTIONAL) Enter the name of the peer group. Disabled. ROUTER BGPV6-ADDRESS FAMILY Version 7.4.1.0 Introduced If the set ipv6 next-hop command in the ROUTE-MAP mode is configured, its configuration takes precedence over the neighbor next-hop-self (C-, E-, and S-Series) command. neighbor remove-private-as e Syntax Remove private AS numbers from the AS-PATH of outgoing updates.
www.dell.com | support.dell.com out Defaults Command Modes Command History Usage Information Enter the keyword out to filter outbound routes. Not configured. ROUTER BGPV6-ADDRESS FAMILY Version 7.4.1.0 Introduced When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command.
network e Syntax Specify the networks for the BGP process and enter them in the BGP routing table. network ipv6-address [route-map map-name] To remove a network, use the no network ipv6-address [route-map map-name] command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros. route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of an established route map.
www.dell.com | support.dell.com route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ipv6 address • match ipv6 next-hop • match ipv6 route-source • set ipv6 next-hop If the route map is not configured, the default is deny (to drop all routes). Defaults Command Modes Command History Usage Information Not configured. ROUTER BGPV6-ADDRESS FAMILY Version 7.4.1.
Example Figure 5 show ip bgp ipv6 unicast FTOS#show ip bgp ipv6 unicast BGP table version is 8, local router ID is 5.5.10.
www.dell.com | support.dell.com show ip bgp ipv6 unicast cluster-list e Syntax Parameters Command Modes View BGP neighbors in a specific cluster. show ip bgp ipv6 unicast cluster-list [cluster-id] cluster-id (OPTIONAL) Enter the cluster id in dotted decimal format. EXEC EXEC Privilege Command History Version 7.4.1.0 Introduced show ip bgp ipv6 unicast community e Syntax Parameters Command Modes View information on all routes with Community attributes or view specific BGP community groups.
show ip bgp ipv6 unicast community-list e Syntax Parameters Command Modes View routes that are affected by a specific community list. show ip bgp ipv6 unicast community-list community-list-name community-list-name Enter the name of a configured IP community list. EXEC EXEC Privilege Command History Version 7.4.1.0 Introduced show ip bgp ipv6 unicast dampened-paths e Syntax Command Modes View BGP routes that are dampened (non-active).
www.dell.com | support.dell.
regexp regular-expression Enter a regular expression then use one or a combination of the following characters to match: • • • • • • • Command Modes . = (period) any single character (including a white space) * = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences). You must enter an escape sequence (CTRL+v) prior to entering the ? regular expression.
www.dell.com | support.dell.com show ip bgp ipv6 unicast neighbors e Syntax Parameters Allows you to view the information exchanged by BGP neighbors. show ip bgp ipv6 unicast neighbors [ipv6-address prefix-length [advertised-routes | dampened-routes | detail | flap-statistics | routes]] ipv6-address prefix-length (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zeros.
Example Figure 8 show ip bgp ipv6 unicast neighbors Command Example (Partial) FTOS#show ip bgp ipv6 unicast neighbors BGP neighbor is 5ffe:10::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
www.dell.com | support.dell.com Table 2 show ip bgp neighbors Command Fields Lines beginning with Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one. If they are located in the same AS, then the link is internal; otherwise the link is external. BGP version Displays the BGP version (always version 4) and the remote router ID.
Related Commands show ip bgp View the current BGP routing table. show ip bgp ipv6 unicast peer-group e Syntax Parameters Command Modes Allows you to view information on the BGP peers in a peer group. show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group.
www.dell.com | support.dell.com Example 470 Figure 9 show ip bgp summary Command Example FTOS#show ip bgp ipv6 unicast summary BGP router identifier 5.5.10.4, local AS number 100 BGP table version is 12, main routing table version 12 2 network entrie(s) and 4 paths using 536 bytes of memory 1 BGP path attribute entrie(s) using 112 bytes of memory 1 BGP AS-PATH entrie(s) using 39 bytes of memory Dampening enabled.
Table 3 show ip bgp summary Command Fields Field Description Up/Down Displays the amount of time (in hours:minutes:seconds) that the neighbor is in the Established stage. If the neighbor has never moved into the Established stage, the word never is displayed. State/Pfx If the neighbor is in Established stage, the number of network prefixes received. If a maximum limit was configured with the neighbor maximum-prefix command, (prfxd) appears in this column.
| Border Gateway Protocol www.dell.com | support.dell.
9 Bare Metal Provisioning Overview Bare Metal Provisioning is supported on platforms: z Bare Metal Provisioning version 2.0 is supported on S4810 and Z9000 switches. In a data center network, Bare Metal Provisioning (BMP) automates the configuration and updating of switches, ensuring standard configurations across installed devices. You can configure auto-configuration on a single switch or on multiple switches.
www.dell.com | support.dell.com reload-type BMP 2.0 auto-configuration mode: Configure a switch to reload in normal mode or in Jumpstart mode (as a DHCP client with all ports configured for Layer 3 traffic). z Syntax Parameters reload-type {normal-reload | jump-start [config-download {enable | disable}] [dhcp-timeout minutes]} normal-reload The switch reloads in normal mode using the FTOS image and startup configuration file stored in the local flash.
If a switch enters a loop while reloading in Jumpstart mode because the switch continuously tries to contact a DHCP server and a DHCP server is not found, enter the stop jump-start command to interrupt the reload and boot up in normal mode. The startup configuration is then loaded from the local flash on the switch. Use the reload-type command in BMP 2.0 to toggle between Normal and Jumpstart (BMP) auto-configuration modes.
www.dell.com | support.dell.com stop jump-start Stop the switch from reloading in Jumpstart (BMP) mode to prevent an infinite loop. z stop jump-start Syntax Defaults None Command Modes Command History Related Commands EXEC Privilege Version 8.3.11.4 Introduced on the Z9000. Version 8.3.10.1 Introduced on S4810. reload-type Usage Information 476 | Bare Metal Provisioning Configure the reload mode as Normal or jumpstart. Use the stop jump-start command on a switch running BMP 2.
10 Content Addressable Memory (CAM) Overview Content Addressable Memory (CAM) commands are supported E-Series TeraScale, C-Series, S-Series and Z-Series, as indicated by the symbols under each command heading: et c s z. Note: Not all CAM commands are supported on all platforms. Be sure to note the platform symbol when looking for a command. Warning: If you are using these features for the first time, contact Dell Force10 Technical Assistance Center (TAC) for guidance.
www.dell.com | support.dell.com • • • • The CAM configuration is applied to entire system when you use CONFIGURATION mode commands. You must save the running-configuration to affect the change. When budgeting your CAM allocations for ACLs and QoS configurations, remember that ACL and QoS rules might consume more than one CAM entry depending on complexity. For example, TCP and UDP rules with port range options might require more than one CAM entry.
The total amount of space allowed is 16 FP Blocks. System flow requires 3 blocks and these cannot be reallocated. When configuring space for IPv6 ACLs, the total number of Blocks must equal 13. Ranges for the CAM profiles are 1-10, except for the ipv6acl profile which is 0-10. The ipv6acl allocation must be a factor of 2 (2, 4, 6, 8, 10).
www.dell.com | support.dell.com cam-profile e Syntax Parameters Set the default CAM profile and the required microcode. cam-profile profile microcode microcode profile Choose one of the following CAM profiles: • • • • • • • • • • microcode microcode Enter the keyword default to specify the default CAM profile. Enter the keyword eg-default to specify the default CAM profile for EG (dual-CAM) line cards.
Usage Information Version 7.4.2.0 Added the unified-default CAM profile and lag-hash-align microcode Version 7.4.1.0 Added the lag-hash-mpls microcode Version 6.5.1.0 Added the eg-default and ipv4-320k CAM profiles Version 6.3.1.0 Introduced on E-Series You must save the running configuration using the command copy running-config startup-config after changing the CAM profile from CONFIGURATION mode. CAM profile changes take effect after the next chassis reboot.
www.dell.com | support.dell.com Figure 10-2. Command Output: show cam-acl (non-default) FTOS#show cam-acl -- Chassis Cam ACL -Current Settings(in block sizes) L2Acl : 2 Ipv4Acl : 2 Ipv6Acl : 4 Ipv4Qos : 2 L2Qos : 3 -- Line card 4 -Current Settings(in block sizes) L2Acl : 2 Ipv4Acl : 2 Ipv6Acl : 4 Ipv4Qos : 2 L2Qos : 3 FTOS# show cam-profile e Syntax Parameters Display the details of the CAM profiles on the chassis and all line cards.
microcode microcode Choose the microcode to display. Not all microcodes are available to be paired with a CAM profile. • • Enter the keyword default to select the microcode that distributes CAM space for a typical deployment. Enter the keyword lag-hash-align to select the microcode for applications that require the same hashing for bi-directional traffic.
www.dell.com | support.dell.com Example 2 Figure 10-4.
Example Figure 10-5.
www.dell.com | support.dell.com Example Figure 10-8.
QoS Optimization for IPv6 ACLs does not impact the CAM usage for applying a policy on a single (or the first of several) interfaces. It is most useful when a policy is applied across multiple interfaces; it can reduce the impact to CAM usage across subsequent interfaces. Example Figure 10-9. The following examples show some sample output when using the test cam-usage command.
www.dell.com | support.dell.com Figure 10-10.
11 Control Plane Policing (CoPP) Overview Chapter 11, Control Plane Policing (CoPP) is supported on the and z platforms.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information Not configured. CONTROL-PLANE-CPUQOS Version 8.3.11.1 Introduced on Z9000 Version 8.3.11.1 Introduced on S4810 The policy-map must be created by associating a queue number with a qos-policy. The QoS policies must be created prior to enabling this command. For CoPP, the cpu-qos keyword should not be used when creating qos-policy-input. Related Commands qos-policy-input Create a QoS input policy map.
show cpu-queue rate cp z Syntax View the packet rate for CPU queues show cpu-queue rate cp Defaults Not configured. Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on Z9000 Version 8.3.11.1 Introduced on S4810 Sample Output FTOS#show cpu-queue rate cp Service-Queue Rate (PPS) -----------------------Q0 1300 Q1 300 Q2 300 Q3 300 Q4 2000 Q5 400 Q6 400 Q7 1100 show ip protocol-queue-mapping z Syntax View queue map information for IP protocols.
www.dell.com | support.dell.
Command History Sample Output Version 8.3.11.1 Introduced on Z9000 Version 8.3.11.
www.dell.com | support.dell.
12 Dynamic Host Configuration Protocol (DHCP) Overview Dynamic Host Configuration Protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on configuration policies determined by network administrators.
www.dell.com | support.dell.com clear ip dhcp csz Syntax Parameters Command Mode Default Command History Usage Information Reset DHCP counters. clear ip dhcp [binding {address} | conflict | server statistics] binding Enter this keyword to delete all entries in the binding table. address Enter the IP address to clear the binding entry for a single IP address. conflicts Enter this keyword to delete all of the log entries created for IP address conflicts.
Default Command History None Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on C-Series and S-Series. disable csz Disable DHCP Server. DHCP Server is disabled by default. Enable the system to be a DHCP server using the no form of the disable command. Syntax Command Mode Default Command History disable CONFIGURATION Disabled Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on C-Series and S-Series.
www.dell.com | support.dell.com Default Command History None Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on C-Series and S-Series. excluded-address csz Syntax Parameters Command Mode Default Command History Prevent the server from leasing an address or range of addresses in the pool. excluded-address [address | low-address high-address] address Enter a single address to be excluded from the pool.
Command Mode Default Command History DHCP None Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on C-Series and S-Series. pool csz Syntax Parameters Command Mode Default Command History Create an address pool. ipool name name Give a name to the IP address pool. DHCP None Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on C-Series and S-Series.
www.dell.com | support.dell.com netbios-name-server csz Syntax Parameters Command Mode Default Command History Specify the NetBIOS Windows Internet Naming Service (WINS) name servers, in order of preference, that are available to Microsoft Dynamic Host Configuration Protocol (DHCP) clients. netbios-name-server address [address2...address8] address Enter the address of the NETBIOS name server. You may enter up to 8, in order of preference. DHCP None Version 8.3.11.1 Introduced on the Z9000.
Default Command History None Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on C-Series and S-Series. pool csz Syntax Parameters Command Mode Default Command History Create an address pool pool name name Enter the address pool’s identifying name DHCP None Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on C-Series and S-Series. show ip dhcp binding csz Syntax Command Mode Default Command History Display the DHCP binding table.
www.dell.com | support.dell.com Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on C-Series and S-Series. show ip dhcp conflict csz Display the address conflict log. Syntax show ip dhcp conflict address Parameters Command Mode Default address Display a particular conflict log entry. EXEC Privilege None Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on C-Series and S-Series.
• • • • • • ip dhcp source-address-validation ip dhcp snooping vlan ip dhcp relay information-option ip dhcp relay information-agent remote-id ip dhcp snooping verify mac-address show ip dhcp snooping arp inspection cesz Syntax Command Modes Default Command History Related Commands Enable Dynamic Arp Inspection (DAI) on a VLAN. arp inspection INTERFACE VLAN Disabled Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Introduced on E-Series. Version 8.2.1.
www.dell.com | support.dell.com Syntax Command Modes Default Command History Related Commands clear ip dhcp snooping binding EXEC Privilege None Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Introduced on E-Series. Version 7.8.1.0 Introduced on C-Series and S-Series show ip dhcp snooping Display the contents of the DHCP binding table. ip dhcp snooping cesz Syntax Command Modes Default Command History Usage Information Enable DHCP Snooping globally.
Default Command History None Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Introduced on E-Series. Version 7.8.1.0 Introduced on C-Series and S-Series ip dhcp snooping binding cesz Syntax Parameters Create a static entry in the DHCP binding table. [no] ip dhcp snooping binding mac address vlan-id vlan-id ip ip-address interface type slot/ port lease number mac address Enter the keyword mac followed by the MAC address of the host to which the server is leasing the IP address.
www.dell.com | support.dell.com ip dhcp snooping database renew cesz Syntax Command Modes Renew the binding table. ip dhcp snooping database renew EXEC EXEC Privilege Default Command History None Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Introduced on E-Series. Version 7.8.1.0 Introduced on C-Series and S-Series ip dhcp snooping trust cesz Syntax Command Modes Default Command History Configure an interface as trusted. [no] ip dhcp snooping trust INTERFACE Untrusted Version 8.3.11.
Usage Information You must allocate at least one FP block to ipmacacl before you can enable IP+MAC Source Address Validation. 1 Use the command cam-acl l2acl from CONFIGURATION mode 2 Save the running-config to the startup-config 3 Reload the system. ip dhcp snooping vlan cesz Syntax Parameters Command Modes Default Command History Usage Information Related Commands Enable DHCP Snooping on one or more VLANs.
www.dell.com | support.dell.com Related Commands ip dhcp relay information-agent remote-id Manually re-set the remote-id for Option 82. ip dhcp relay information-agent remote-id z Syntax Parameters Command Modes Default Command History Usage Information Related Commands Manually re-set the remote-id for Option 82. ip dhcp relay information-agent remote-id [hostname | remote-id] hostname Set the hostname as the remote-id in Option 82.
Parameters Command Modes binding Display the binding table. source-address-validation Display the interfaces configured with IP Source Guard. EXEC EXEC Privilege Default Command History Related Commands None Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Introduced on E-Series. Version 7.8.1.0 Introduced on C-Series and S-Series clear ip dhcp snooping Clear the contents of the DHCP binding table.
www.dell.com | support.dell.
13 Equal Cost Multi-Path Overview The characters that appear below command headings indicate support for the associated Dell Force10 platform as indicated by the characters that appear under each of the command headings: e E-Series, c C-Series, s S-Series, z Z-Series, or .
www.dell.com | support.dell.com Parameters ecmp-group ID Enter the identifier number for the ECMP group. Range: 2 to 64. interface Enter the following keywords and slot/port to add the interface to the ECMP group. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
Parameters algorithm-number Enter the algorithm number. Range: 0 to 47 EtherScale range: 0 to 15; 16 to 47 will be considered as 15.
www.dell.com | support.dell.com lag hash algorithm value TeraScale and ExaScale Only: Enter the keyword lag followed by the LAG hash algorithm value. Range: 0 to 47 nh-ecmp hash algorithm value E-Series only: (OPTIONAL) Enter the keyword nh-ecmp followed by the ECMP hash algorithm value. linecard number E-Series only: (OPTIONAL) TeraScale and ExaScale Only: Enter the keyword linecard followed by the linecard slot number.
Message 1 FTOS(conf)#hash-algorithm linecard 5 ip-sa-mask ff ip-da-mask ff Message 2 % Error: This command is not supported in the current microcode configuration. In addition, the linecard number ip-sa-mask value ip-da-mask value option has the following behavior to maintain bi-directionality: • • When hashing is done on both IPSA and IPDA, the ip-sa-mask and ip-da-mask values must be equal.
www.dell.com | support.dell.com Related Commands load-balance (E-Series) Change the traffic balancing method. hash-algorithm d e Select the d value for the ECMP, LAG, and NH hashing algorithm. Syntax Parameters hash-algorithm d value [linecard slot] [port-set number] d value Enter the keyword followed by the d value. Range: 0 to 4095 linecard slot Enter the keyword linecard followed by the linecard slot number.
With 8 or less ECMPs, the ordering is lexicographic and deterministic. With more than 8 ECMPs, ordering is deterministic, but it is not in lexicographic order. Syntax Defaults Command Modes Command History Usage Information ip ecmp-deterministic Disabled CONFIGURATION Version 8.3.1.0 Introduced on E-Series. After enabling IPv6 Deterministic ECMP, traffic loss occurs for a few milliseconds while FTOS sorts the CAM entries.
www.dell.com | support.dell.com Syntax Parameters Defaults Command Modes Command History Usage Information ip ecmp maximum-path path-number path-number Specify the maximum number paths available for use by ECMP. Range: 2 to 64 Default: 16 16 CONFIGURATION Version 9.0.0.0 Introduced on the Z9000. The switch must be restarted after this command is used. ipv6 ecmp-deterministic e Deterministic ECMP Next Hop arranges all ECMPs in order before writing them into the CAM.
Command History Version 9.0.0.0 Introduced on the Z9000. Version 8.3.10.0 Introduced on S4810 link-bundle-distribution trigger-threshold Provides a mechanism to set the threshold to trigger when traffic distribution will begin being monitored on an ECMP link bundle. z Syntax link-bundle-distribution trigger-threshold [percent] To exit from ecmp group mode, use the exit command.
| Equal Cost Multi-Path www.dell.com | support.dell.
14 Force10 Resilient Ring Protocol (FRRP) Overview Force10 Resilient Ring Protocol (FRRP) is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the Spanning Tree Protocol. The Resilient Ring Protocol is an efficient protocol that transmits a high-speed token across a ring to verify the link status. All the intelligence is contained in the master node with practically no intelligence required of the transit mode.
www.dell.com | support.dell.com clear frrp cesz Syntax Clear the FRRP statistics counters. clear frrp [ring-id] Parameters Defaults Command Modes ring-id No default values or behavior EXEC Command History Example (Optional) Enter the ring identification number. Range: 1 to 255 Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced for the C-Series Version 7.5.1.0 Introduced Figure 14-1.
Parameters Defaults Command Modes Command History Usage Information event Enter the keyword event to display debug information related to ring protocol transitions. packet Enter the keyword packet to display brief debug information related to control packets. detail Enter the keyword detail to display detailed debug information related to the entire ring protocol packets. ring-id (Optional) Enter the ring identification number.
www.dell.com | support.dell.com Defaults Command Modes Command History Disabled CONFIGURATION (conf-frrp) Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced for the C-Series Version 7.4.1.0 Introduced interface cesz Syntax Configure the primary, secondary, and control-vlan interfaces. interface {primary interface secondary interface control-vlan vlan-id} To return to the default, use the no interface {primary interface secondary interface control-vlan vlan-id} command.
Command History Usage Information Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced for the C-Series Version 7.4.1.0 Introduced This command causes the Ring Manager to take ownership of these two ports after the configuration is validated by the IFM. Ownership is relinquished for a port only when the interface does not play a part in any control VLAN, that is, the interface does not belong to any ring.
www.dell.com | support.dell.com Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced for the C-Series Version 7.4.1.0 Introduced protocol frrp cesz Syntax Enter the Resilient Ring Protocol and designate a ring identification. protocol frrp {ring-id} To exit the ring protocol, use the no protocol frrp {ring-id} command. Parameters Defaults Command Modes Command History Usage Information ring-id Enter the ring identification number.
Example 1 Figure 14-2. show frrp summary Command Example FTOS#show frrp summary Ring-ID State Mode Ctrl_Vlan Member_Vlans ----------------------------------------------------------------2 UP Master 2 11-20, 25,27-30 31 UP Transit 31 40-41 50 Down Transit 50 32 FTOS# Example 2 Figure 14-3.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information 528 Enter the keyword dead-interval followed by the time, in milliseconds, to set the dead interval of the control packets. Range: 50 to 6000ms Default: 1500ms Note: The configured dead interval should be at least three times the hello interval dead-interval milliseconds | Default as shown CONFIGURATION (conf-frrp) Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.
15 GRUB Overview All commands in this chapter are in GRUB. These commands are supported on the z platform only. To access this mode, hit any key when the following line appears on the console during a system boot: Press ESC key to stop autoreboot... Select Force10 Boot on the screen and press C. You enter the GRUB mode immediately, as indicated by the grub> prompt. Note: This chapter discusses only a few commands available in GRUB.
www.dell.com | support.dell.com list_env Lists all the environment variables. Syntax Command Modes Command History Example list_env grub Version 8.3.11.1 Introduced on the Z9000. grub>list_env serverip=10.11.200.241 ipaddr=10.11.196.141 netmask=255.255.0.0 gatewayip=10.11.196.
save_env Saves the environment variables set using the set command. Syntax Parameters Command Modes Command History Example Usage save_env environment variable environment variable Enter the environment variable to be saved. grub Version 8.3.11.1 Introduced on the Z9000. grub>save_env primary_boot grub> The environment variables are listed under the list_env command. You must save the environment variables before rebooting.
www.dell.com | support.dell.com enablepwdignore To reload the system software with or without the Enable Password set. Use the following syntax: set enablepwdignore=true|false stconfigignore To enable/disable applying the startup-confg during bootup. Use the following syntax: set stconfigignmore=true|false Command Modes Command History Example Usage Information grub Version 8.3.11.1 Introduced on the Z9000. grub>set ipaddr=10.11.196.143 grub>set primary_boot=’f10boot tftp://10.11.200.
16 GARP VLAN Registration (GVRP) Overview The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com • Important Points to Remember • • • • • • • • • • • • • 534 GARP Information Declaration (GID) | GVRP is supported on Layer 2 ports only. All VLAN ports added by GVRP are tagged. GVRP is supported on untagged ports belonging to a default VLAN, and tagged ports. GVRP cannot be enabled on untagged ports belonging to a non-default VLAN unless native VLAN is turned on. GVRP requires end stations with dynamic access NICs.
clear gvrp statistics cesz Syntax Parameters Clear GVRP statistics on an interface. clear gvrp statistics interface interface interface interface Enter the following keywords and slot/port or number information: • • • • • Defaults Command Modes Command History Related Commands For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com event Enter the keyword event to enable debugging on the JOIN/LEAVE events. pdu Enter the keyword pdu followed one of the following Interface keywords and slot/port or number information: • • • • • Defaults For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Parameters Defaults Command Modes Enter the keyword join followed by the number of milliseconds to configure the join time. Range: 100-2147483647 milliseconds Default: 200 milliseconds Note: Designate the milliseconds in multiples of 100 leave Enter the keyword leave followed by the number of milliseconds to configure the leave time.
www.dell.com | support.dell.com Command Modes Command History Related Commands CONFIGURATION-INTERFACE Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on C, E, and S-Series disable Globally disable GVRP. gvrp registration cesz Syntax Configure the GVRP register type. gvrp registration {fixed | normal | forbidden} To return to the default, use the gvrp register normal command.
protocol gvrp cesz Syntax Defaults Command Modes Access GVRP protocol — (config-gvrp)#. protocol gvrp Disabled CONFIGURATION Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on C, E, and S-Series disable Globally disable GVRP. show config cesz Syntax Command Modes Command History Related Commands Display the global GVRP configuration. show config CONFIGURATION-GVRP Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.
www.dell.com | support.dell.com Example Figure 16-1. show garp timers Command Example FTOS#show garp timers GARP Timers Value (milliseconds) ---------------------------------------Join Timer 200 Leave Timer 600 LeaveAll Timer 10000 FTOS# Related Commands garp timers Set the intervals (in milliseconds) for sending GARP messages. show gvrp cesz Syntax Parameters Display the GVRP configuration.
Example Figure 16-2. show gvrp brief Command Example R3#show gvrp brief GVRP Feature is currently enabled.
www.dell.com | support.dell.com Example Figure 16-3.
17 Internet Group Management Protocol (IGMP) Overview This chapter contains the following sections: • • IGMP Commands IGMP Snooping Commands The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.. IGMP Commands FTOS supports IGMPv1/v2/v3 and is compliant with RFC-3376. Important Points to Remember • • • FTOS supports PIM-SM and PIM-SSM include and exclude modes.
www.dell.com | support.dell.com • • • • • • • • ip igmp query-interval ip igmp query-max-resp-time ip igmp ssm-map ip igmp static-group ip igmp version show ip igmp groups show ip igmp interface show ip igmp ssm-map clear ip igmp groups cesz Syntax Parameters Clear entries from the group cache table. clear ip igmp groups [group-address | interface] group-address (OPTIONAL) Enter the IP multicast group address in dotted decimal format.
Parameters group-address (OPTIONAL) Enter the IP multicast group address in dotted decimal format. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by the slot/port information.
www.dell.com | support.dell.com ip igmp group-join-limit cesz Syntax Parameters Defaults Command Modes Command History Use this feature to limit the number of IGMP groups that can be joined in a second. ip igmp group-join-limit number number Enter the number of IGMP groups permitted to join in a second. Range: 1 to 10000 No default values or behavior CONFIGURATION (conf-if-interface-slot/port) Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.6.
ip igmp last-member-query-interval cesz Syntax Change the last member query interval, which is the Max Response Time inserted into Group-Specific Queries sent in response to Leave Group messages. This interval is also the interval between Group-Specific Query messages. ip igmp last-member-query-interval milliseconds To return to the default value, enter no ip igmp last-member-query-interval.
www.dell.com | support.dell.com ip igmp query-interval cesz Syntax Change the transmission frequency of IGMP general queries sent by the Querier. ip igmp query-interval seconds To return to the default values, enter no ip igmp query-interval. Parameters Defaults Command Modes Command History seconds Enter the number of seconds between queries sent out. Default: 60 seconds Range: 1 to 18000 60 seconds INTERFACE Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.
Version 7.5.1.0 Introduced on C-Series in Interface VLAN mode only to enable that system to act as an IGMP Proxy Querier. E-Series legacy command ip igmp ssm-map cesz Syntax Use a statically configured list to translate (*,G) memberships to (S,G) memberships. ip igmp ssm-map std-access-list source-address Undo this configuration, that is, remove SSM map (S,G) states and replace them with (*,G) states using the command ip igmp ssm-map std-access-list source-address command.
www.dell.com | support.dell.com Defaults Command Modes No default values or behavior INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.5.1.0 Expanded to support the exclude and include options E-Series legacy command Usage Information A group in the include mode should have at least one source address defined.
Parameters group-address (OPTIONAL) Enter the group address in dotted decimal format to view information on that group only. interface (OPTIONAL) Enter the interface type and slot/port information: • • • • • • • • detail Command Modes For a 100/1000 Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
www.dell.com | support.dell.com show ip igmp interface cesz Syntax Parameters View information on the interfaces participating in IGMP. show ip igmp interface [interface] interface (OPTIONAL) Enter the interface type and slot/port information: • • • • • • • • Command Modes For a 100/1000 Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
show ip igmp ssm-map cesz Syntax Parameters Command Modes Display is a list of groups that are currently in the IGMP group table and contain SSM mapped sources. show ip igmp ssm-map [group] group (OPTIONAL) Enter the multicast group address in the form A.B.C.D to display the list of sources to which this group is mapped. EXEC EXEC Privilege Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.7.1.
www.dell.com | support.dell.com IGMP Snooping Commands FTOS supports IGMP Snooping version 2 and 3 on all Dell Force10 systems: • • • • • • • ip igmp snooping enable ip igmp snooping fast-leave ip igmp snooping flood ip igmp snooping last-member-query-interval ip igmp snooping mrouter ip igmp snooping querier show ip igmp snooping mrouter Important Points to Remember for IGMP Snooping • • • • • • • • • • FTOS supports version 1, version 2, and version 3 hosts.
ip igmp snooping enable cesz Syntax Enable IGMP snooping on all or a single VLAN. This is the master on/off switch to enable IGMP snooping. ip igmp snooping enable To disable IGMP snooping, enter no ip igmp snooping enable command. Defaults Command Modes Disabled CONFIGURATION INTERFACE VLAN Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com ip igmp snooping flood cesz This command controls the flooding behavior of unregistered multicast data packets. On the E-Series, when flooding is enabled (the default), unregistered multicast data traffic is flooded to all ports in a VLAN. When flooding is disabled, unregistered multicast data traffic is forwarded to only multicast router ports, both static and dynamic, in a VLAN.
ip igmp snooping mrouter cesz Syntax Statically configure a VLAN member port as a multicast router interface. ip igmp snooping mrouter interface interface To delete a specific multicast router interface, use the no igmp snooping mrouter interface interface command.
www.dell.com | support.dell.com Command Modes Command History INTERFACE VLAN—(conf-if-vl-n) Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series legacy command Usage Information This command enables the IGMP switch to send General Queries periodically. This is useful when there is no multicast router present in the VLAN because the multicast traffic does not need to be routed.
18 \ Interfaces Overview This chapter defines interface commands and is divided into the following sections: • • Basic Interface Commands Port Channel Commands The commands in this chapter are supported by FTOS on all Dell Force10 platforms, as indicated by the characters that appear under each of the command headings: e E-Series, c C-Series, s S-Series, . or Z Z-Series.
www.dell.com | support.dell.
Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • • • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383.
www.dell.com | support.dell.com clear dampening cesz Syntax Parameters Clear the dampening counters on all the interfaces or just the specified interface. clear dampening [interface] interface (Optional) Enter one of the following keywords and slot/port or number information: • • • • • Defaults Command Modes Command History For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Parameters long | medium | short Enter the keyword that matches the cable length to be used at the selected port: short = For 1-meter and 3-meter cable lengths medium = For 5-meter cable length long = For 10-meter and 15-meter cable lengths Defaults medium Mode Interface Command History Usage Information Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Introduced on S-Series This command only works on ports that the system recognizes as CX4 ports.
www.dell.com | support.dell.com dampening cesz Syntax Configure dampening on an interface. dampening [[[[half-life] [reuse-threshold]] [suppress-threshold]] [max-suppress-time]] To disable dampening, use the no dampening [[[[half-life] [reuse-threshold]] [suppress-threshold]] [max-suppress-time]] command syntax. Parameters half-life Enter the number of seconds after which the penalty is decreased. The penalty is decreased by half after the half-life period expires.
Note: Dampening cannot be applied on an interface that is monitoring traffic for other interfaces. Related Commands clear dampening Clear the dampening counters on all the interfaces or just the specified interface. show interfaces dampening Display interface dampening information. description cesz Syntax Assign a descriptive text string to the interface. description desc_text To delete a description, enter no description.
www.dell.com | support.dell.com Usage Information When an E300 system boots up and a single SFM is active this configuration, any ports configured with this feature will be shut down. If an SFM fails (or is removed) in an E300 system with two SFM, ports configured with this feature will be shut down. All other ports are treated normally. When a second SFM is installed or replaced, all ports are booted up and treated as normally.
duplex (10/100 Interfaces) cesz Configure duplex mode on any physical interfaces where the speed is set to 10/100.Syntax duplex {half | full} To return to the default setting, enter no duplex. Parameters Defaults Command Modes Command History Usage Information half Enter the keyword half to set the physical interface to transmit only in one direction. full Enter the keyword full to set the physical interface to transmit in both directions. Not configured INTERFACE Version 8.3.11.
www.dell.com | support.dell.com tx off Enter the keywords tx off so that flow control frames are not sent from this port to the connected device when a higher rate of traffic is received.
• The only configuration applicable to half duplex ports is rx off tx off. The following error is returned: Can’t configure flowcontrol when half duplex is configure, config ignored • Half duplex cannot be configured when the flow control configuration is on (default is rx on tx on). The following error is returned: Can’t configure half duplex when flowcontrol is on, config ignored Note: The flow control must be off (rx off tx off) before configuring the half duplex.
www.dell.com | support.dell.com The table below displays how FTOS negotiates the flow control values between two Dell Force10 chassis connected back-to-back using 1G copper ports. Table 18-1.
Parameters interface Enter one of the following keywords and slot/port or number information: • • • • • Defaults Command Modes Command History Example For 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For SONET interfaces, enter the keyword sonet followed by the slot/port information.
www.dell.com | support.dell.com Defaults Command Modes Command History Example Not configured. CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.1.0 Introduced Figure 18-6. interface loopback Command Example FTOS(conf)#interface loopback 1655 FTOS(conf-if-lo-1655)# Related Commands interface Configure a physical interface.
The Management port is enabled by default (no shutdown). Use the ip address command to assign an IP address to the Management port. Related Commands management route Configure a static route that points to the Management interface or a forwarding router. duplex (Management) Clear FIB entries on a specified line card. speed (Management interface) Clear FIB entries on a specified line card.
www.dell.com | support.dell.com Parameters interface, interface,... Enter the keyword interface range and one of the interfaces — slot/port, port-channel or VLAN number. Select the range of interfaces for bulk configuration. You can enter up to six comma separated ranges—spaces are not required between the commas. Comma-separated ranges can include VLANs, port-channels and physical interfaces. Slot/Port information must contain a space before and after the dash.
Example Figure 18-10. Interface Range prompt with Multiple Ports FTOS(conf)#interface range gi 2/0 - 23 , gi 2/1 - 10 FTOS(conf-if-range-gi-2/0-23# Example Figure 18-11. Interface Range prompt Overlapping Port Ranges FTOS(conf)#interface range gi 2/1 - 11 , gi 2/1 - 23 FTOS(conf-if-range-gi-2/1-23# Only VLAN and port-channel interfaces created using the interface vlan and interface port-channel commands can be used in the interface range command.
www.dell.com | support.dell.com Related Commands 576 | Interfaces interface port-channel Configure a port channel group. interface vlan Configure a VLAN interface. show config (from INTERFACE RANGE mode) Show the bulk configuration interfaces. show range Show the bulk configuration ranges. interface range macro (define) Define a macro for an interface-range.
interface range macro (define) cesz Syntax Parameters Defines a macro for an interface range and then saves the macro in the running configuration. define interface range macro name interface, interface,... name Enter up to 16 characters for the macro name. interface , interface ,... Enter the interface keyword (see below) and one of the interfaces slot/port, port-channel or VLAN numbers. Select the range of interfaces for bulk configuration.
www.dell.com | support.dell.com Usage Information Related Commands Figure 18-15 is an example of how to define an interface range macro named test. Execute the show running-config command to display the macro definition. Applying the macro is shown in Figure 18-17. interface range Configure a range of command (bulk configuration) interface range macro name Run an interface range macro.
Defaults Command Modes Command History Example Not configured, except for the Default VLAN, which is configured as VLAN 1. CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.0 Introduced for E-Series Figure 18-17.
www.dell.com | support.dell.com Usage Information For 1-Gigabit Ethernet interfaces only. Note: This command is an EtherScale only command. ipg (10 Gigabit Ethernet interfaces) e Syntax Set the Inter-packet Gap for traffic on 10 Gigabit Ethernet interface. ipg {ieee-802.3ae | shrink} To return to the default of averaging the IPG, enter no ipg {shrink | ieee-802.3ae} Parameters Defaults Command Modes Command History Usage Information ieee-802.3ae Enter the keyword ieee-802.
Usage Information Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.0 Introduced for E-Series When you configure keepalive, the system sends a self-addressed packet out of the configured interface to verify that the far end of a WAN link is up. When you configure no keepalive, the system does not send keepalive packets and so the local end of a WAN link remains up even if the remote end is down.
www.dell.com | support.dell.com monitor cesz Syntax Monitor counters on a single interface or all interfaces on a line card. The screen is refreshed every 5 seconds and the CLI prompt disappears. monitor interface [interface] To disable monitoring and return to the CLI prompt, press the q key.
Example Figure 18-18. systest-3 monitor Command Example of a Single Interface Monitor time: 00:00:06 Refresh Intvl.
www.dell.com | support.dell.com Table 18-2. monitor Command Menu Options Key Description systest-3 monitor time time Displays the host name assigned to the system. Displays the amount of time since the monitor command was entered. Displays the amount of time the chassis is up (since last reboot). m Change the view from a single interface to all interfaces on the line card or visa-versa. c Refresh the view. b Change the counters displayed from Packets on the interface to Bytes.
• On the E-Series, you must compensate for a Layer 2 header when configuring IP MTU and link MTU on an Ethernet interface. Use the ip mtu command. When you enter the no mtu command, FTOS reduces the IP MTU value to 1536 bytes. On the E-Series, to return the IP MTU value to the default, enter no ip mtu. Link MTU and IP MTU considerations for port channels and VLANs are as follows. port channels: • • All members must have the same link MTU value and the same IP MTU value.
www.dell.com | support.dell.com Usage Information Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.0 Introduced for E-Series This command is available on C-Series and S-Series 10/100/1000 Base-T Ethernet interfaces, and on E-Series EtherScale 100/1000 Base-T Ethernet line cards and on TeraScale 10/100/1000 Base-T Ethernet line cards. The no negotiation auto command is only available if you first manually set the speed of a port to 10Mbits or 100Mbits.
Figure 18-21. Display Auto-negotiation Master/Slave Setting (partial) FTOS#show interfaces configured GigabitEthernet 13/18 is up, line protocol is up Hardware is Force10Eth, address is 00:01:e8:05:f7:fc Current address is 00:01:e8:05:f7:fc Interface index is 474791997 Internet address is 1.1.1.
www.dell.com | support.dell.com Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on E-Series and S-Series Version 7.5.1.0 Introduced on C-Series only Figure 18-22.
rate-interval cesz Syntax Configure the traffic sampling interval on the selected interface. rate-interval seconds Parameters Defaults Command Modes seconds 299 seconds INTERFACE Command History Usage Information Enter the number of seconds for which to collect traffic data. Range: 30 to 299 seconds Note: Since polling occurs every 15 seconds, the number of seconds designated here will round to the multiple of 15 seconds lower than the entered value.
www.dell.com | support.dell.com Example Figure 18-25. show config Command Example for the INTERFACE Mode FTOS(conf-if)#show conf ! interface GigabitEthernet 1/7 no ip address switchport no shutdown FTOS(conf-if)# show config (from INTERFACE RANGE mode) cesz Syntax Command Modes Command History Example Display the bulk configured interfaces (interface range). show config CONFIGURATION INTERFACE (conf-if-range) Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.
show interfaces cesz Syntax Parameters Display information on a specific physical interface or virtual interface. show interfaces interface interface Enter one of the following keywords and slot/port or number information: • • • • • • • • • • Command Modes For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Example Figure 18-27. show interfaces Command Example for 10G Port (EtherScale in E-Series) FTOS# show interfaces tengigabitethernet 2/0 TenGigabitEthernet 2/0 is up, line protocol is up Hardware is Force10Eth, address is 00:01:e8:05:f7:3a Interface index is 100990998 Internet address is 213.121.22.
Table 18-5. Lines in show interfaces Command Example (EtherScale) (continued) Line Input Statistics: Description Displays all the input statistics including: • • Number of packets and bytes into the interface Number of packets with IP headers, VLAN tagged headers and MPLS headers Note: The sum of the number of packets may not be as expected since a VLAN tagged IP packet counts as both a VLAN packet and an IP packet.
www.dell.com | support.dell.com Example Figure 18-28. show interfaces Command Example for 10G (TeraScale) FTOS#show interfaces tengigabitethernet 0/0 TenGigabitEthernet 3/0 is up, line protocol is up Hardware is Force10Eth, address is 00:01:e8:41:77:c5 Current address is 00:01:e8:41:77:c5 Pluggable media present, XFP type is 10GBASE-SR Medium is MultiRate, Wavelength is 850.00nm XFP receive power reading is -2.
Table 18-6. Fields in show interfaces Command Example (TeraScale) Line Description Queuing strategy... States the packet queuing strategy. FIFO means first in first out.
www.dell.com | support.dell.com Example Figure 18-29.
show inventory (S-Series and Z-Series) Display the S-Series switch type, components (including media), FTOS version including hardware identification numbers and configured protocols. show ip interface Display Layer 3 information about the interfaces. show linecard Display the line card(s) status. show range Display all interfaces configured using the interface range command. show interfaces configured cesz Syntax Command Modes Display any interface with a non-default configuration.
www.dell.com | support.dell.com show interfaces dampening cesz Syntax Parameters Display interface dampening information. show interfaces dampening [[interface] [summary] [detail]] interface (Optional) Enter one of the following keywords and slot/port or number information: • • • • • Defaults Command Modes Command History Example For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
show interfaces debounce e Syntax Parameters Display information on interfaces with debounce timer configured. show interfaces debounce interface interface Enter one of the following keywords and slot/port or number information: • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 18-33.
show interfaces linecard ce Display information on all interfaces on a specific line card. Syntax show interfaces linecard slot-number Parameters Command Modes slot-number Enter a number for the line card slot. C-Series Range: 0-7 for C300; 0–3 for C150 E-Series Range: 0 to 13 on the E1200/1200i, 0 to 6 on the E600/600i, 0 to 5 on the E300 EXEC EXEC Privilege Command History Usage Example Version 8.1.1.2 Introduced support on E-Series ExaScale E600i Version 8.1.1.
www.dell.com | support.dell.com show interfaces phy ces Syntax Parameters Command Modes Display auto-negotiation and link partner information. show interfaces gigabitethernet slot/port phy gigabitethernet Enter the keyword gigabitethernet followed by the slot/port information. EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on C-Series and S-Series Version 6.5.4.0 Introduced on E-Series Figure 18-35.
Table 18-8. Lines in show interfaces gigabitethernet Command Example Related Commands Line Description AutoNegotiation Remote Partner’s Ability Displays the control words advertised by the remote interface during negotiation. Duplex is either half or full.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced for S-Series only Figure 18-36.
Parameters interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: • • • linecard slot-number Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information.
www.dell.com | support.dell.com show interfaces switchport cesz Syntax Parameters Display only virtual and physical interfaces in Layer 2 mode. This command displays the Layer 2 mode interfaces’ IEEE 802.1Q tag status and VLAN membership.
Example Figure 18-38. show interfaces switchport Command Example FTOS#show interfaces switchport Name: GigabitEthernet 13/0 802.1QTagged: Hybrid Vlan membership: Vlan 2, Vlan 20 Native VlanId: 20 Name: GigabitEthernet 13/1 802.1QTagged: True Vlan membership: Vlan 2 Name: GigabitEthernet 13/2 802.1QTagged: True Vlan membership: Vlan 2 Name: GigabitEthernet 13/3 802.1QTagged: True Vlan membership: Vlan 2 --More-- Table 18-9.
www.dell.com | support.dell.com Command Modes tengigabitethernet For a 10G interface, enter the keyword tengigabitethernet followed by the slot/port information. fortyGigE For a 40G interface, enter the keyword fortyGigE followed by the slot/port information. EXEC EXEC Privilege Command History Usage Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Output augmented with diagnostic data for pluggable media Version 7.7.1.
Example Figure 18-39. show interfaces gigabitethernet transceiver Command Example FTOS#show interfaces gigabitethernet 1/0 transceiver SFP is present.
www.dell.com | support.dell.com 610 Table 18-10. Diagnostic Data in show interfaces transceiver | Interfaces Line Description Rx Power measurement type Output depends on the vendor, typically either “Average” or “OMA” (Receiver optical modulation amplitude). Temp High Alarm threshold Factory-defined setting, typically in Centigrade. Value differs between SFPs and SFP+. Voltage High Alarm threshold Displays the interface index number used by SNMP to identify the interface.
Table 18-10. Diagnostic Data in show interfaces transceiver (continued) Line Description Tx Power Present Tx power of the SFP. If this crosses Tx power alarm/warning thresholds, then the Tx power high alarm/warning flag is set to true. If it falls below the low alarm/warning thresholds, then the Tx power low alarm/ warning flag is set to true. Rx Power Present Rx power of the SFP. This value is either average Rx power or OMA.This depends upon on the Rx Power measurement type displayed above.
www.dell.com | support.dell.com Table 18-10. Diagnostic Data in show interfaces transceiver (continued) Related Commands Line Description Tx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Rx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Temperature Low Warning Flag This can be either true or false, depending on the Current Temperature value displayed above.
Related Commands interface Configure a physical interface on the switch. show ip interface Displays Layer 3 information about the interfaces. show interfaces Display information on a specific physical interface or virtual interface. shutdown cesz Syntax Disable an interface. shutdown To activate an interface, enter no shutdown. Defaults Command Modes Command History The interface is disabled. INTERFACE Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.
www.dell.com | support.dell.com Parameters 10 Enter the keyword 10 to set the interface’s speed to 10 Mb/s. Note: This i speed is not supported on the LC-EH-GE-50P or the LC-EJ-GE-50P card. If the command is entered for these interfaces, an error message appears. 100 Enter the keyword 100 to set the interface’s speed to 10/100 Mb/s. Note: When this setting is enabled, only 100Base-FX optics are supported on the LC-EH-GE-50P or the LC-EJ-GE-50P card.
speed (Management interface) cez Syntax Set the speed for the Management interface. speed {10 | 100 | 1000 | auto} To return to the default setting, use the no speed command. Parameters Defaults Command Modes Command History Usage Information 10 Enter the keyword 10 to set the interface’s speed to 10 Mb/s. 100 Enter the keyword 100 to set the interface’s speed to 100 Mb/s. 1000 Enter the keyword 1000 to set the interface’s speed to 1000 Mb/s.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information Disabled CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 8.3.11.1 Introduced on S4810 Splitting a 40G port into 4x10G port is supported only on a standalone unit. — — — — Split ports cannot be used as stack-link to stack an Z9000. Split ports Z9000 unit cannot be a part of any stacked system.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Added backup interface option. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.0 Introduced for E-Series If an IP address or VRRP group is assigned to the interface, you cannot use the switchport command for that interface.
www.dell.com | support.dell.com Example Figure 18-41. wanport Command with shutdown Command Example interface TenGigabitEthernet 13/0 no ip address no shutdown FTOS(conf-if-te-13/0)# FTOS(conf-if-te-13/0)#wanport % Error: Port should be in shutdown mode, config ignored Te 13/0.
channel-member cesz Syntax Add an interface to the Port Channel, while in the INTERFACE PORTCHANNEL mode. channel-member interface To delete an interface from a Port Channel, use the no channel-member interface command. Parameters interface Enter the following keywords and slot/port or number information: • • • • • Defaults Command Modes Not configured.
www.dell.com | support.dell.com On the E-Series TeraScale, you can add up to 16 interfaces to a Port Channel; E-Series ExaScale can have up to 64. You can have eight interfaces per Port Channel on the C-Series and S-Series. The interfaces can be located on different line cards but must be the same physical type and speed (for example, all 1-Gigabit Ethernet interfaces). However, you can combine 100/1000 interfaces and GE interfaces in the same Port Channel.
interface port-channel cesz Syntax Create a Port Channel interface, which is a link aggregation group containing up to 16 physical interfaces on E-Series, eight physical interfaces on C-Series and S-Series. interface port-channel channel-number To delete a Port Channel, use the no interface port-channel channel-number command. Parameters Defaults Command Modes Command History Example channel-number Enter a number as the interface number.
www.dell.com | support.dell.com interface vlan Configure a VLAN. shutdown Disable/Enable the port channel. minimum-links cesz Syntax Configure the minimum number of links in a LAG (Port Channel) that must be in “oper up” status for the LAG to be also in “oper up” status. minimum-links number Parameters Defaults Command Modes Command History Usage Information number Enter the number of links in a LAG that must be in “oper up” status. Range: 1 to 16 Default: 1 1 INTERFACE Version 8.3.11.
Usage Information This feature groups two LAGs to work in tandem as a supergroup, so that, for example, if one LAG goes down, the other LAG is taken down automatically, providing an alternate path to reroute traffic, avoiding oversubscription on the other LAG. You can use both static and dynamic (LACP) LAGs to configure failover groups. For details, see the Port Channel chapter in the FTOS Configuration Guide. Related Commands group Group two LAGs in a supergroup (“fate-sharing group”).
www.dell.com | support.dell.com Version 7.6.1.0 Introduced for S-Series; Modified to display LAG failover group status Version 7.5.1.0 Introduced for C-Series E-Series legacy command Example Figure 18-44. show interfaces port-channel Command Example (EtherScale) FTOS#show interfaces port-channel 20 Port-channel 20 is up, line protocol is up (Failover-group 1 is down) Hardware address is 00:01:e8:01:46:fa Port-channel is part of failover-group 1 Internet address is 1.1.120.
Table 18-12. show interfaces port-channel Command Example Fields (continued) Field Description 0 64-byte... Displays the size of packets and the number of those packets entering that interface. This information is displayed over two lines. Received 0... Displays the type and number of errors or other specific packets received. This information is displayed over three lines. Output 0... Displays the type and number of packets sent out the interface. This information is displayed over three lines.
www.dell.com | support.dell.com show port-channel-flow cesz Syntax Parameters Display an egress port in a given port-channel flow.
Usage Information Since this command calculates based on a Layer 2 hash algorithm, use this command to display flows for switched Layer 2 packets, not for routed packets (use the show ip flow command to display routed packets). The show port-channel-flow command returns the egress port identification in a given port-channel, if a valid flow is entered. A mismatched flow error occurs if MAC-based hashing is configured for a Layer 2 interface and the user is trying to display a Layer 3 flow.
| Interfaces www.dell.com | support.dell.
19 IPv4 Routing Overview The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command. Commands IPv4-related commands are described in this chapter.
www.dell.com | support.dell.
mac-address Enter a MAC address in nnnn.nnnn.nnnn format. interface Enter the following keywords and slot/port or number information: • • • • • • Defaults Command Modes Command History Usage Information Related Commands For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For the Management interface, enter the keyword ManagementEthernet followed by the slot/port information. The slot range is 0-1 and the port range is 0.
www.dell.com | support.dell.com Command History Usage Information Version 8.3.11.1 Introduced for the Z9000 Version 8.3.8.0 Introduced for the S4810 This timer is an exponential backoff timer. Over the specified period, the time between ARP requests increases. This reduces the potential for the system to slow down while waiting for a multitude of ARP responses. Related Commands show arp retries Display the configured number of ARP retries.
Command History Usage Information Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Introduced Retries are 20 seconds apart. arp backoff-time Set the backoff timer for repeat ARPs. arp timeout cesz Syntax Set the time interval for an ARP entry to remain in the ARP cache. arp timeout minutes To return to the default value, enter no arp timeout. Parameters Defaults Command Modes Command History Related Commands seconds Enter the number of minutes. Range: 0 to 35790.
www.dell.com | support.dell.com Parameters vrf name E-Series Only: Clear only the ARP cache entries tied to the VRF process. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • • Command Modes Command History For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For the Management interface, enter the keyword ManagementEthernet followed by the slot/port information.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series clear ip fib linecard ce Clear all Forwarding Information Base (fib) entries in the specified line card (use this command with caution, see Usage Information below) Syntax clear ip fib linecard slot-number | vrf vrf instance Parameters Command Mode slot-number Enter the number of the line card slot.
www.dell.com | support.dell.com Command History Usage Information Version 9.0.0.0 Introduced on the Z9000. Use this command to clear Layer 3 CAM inconsistencies. Caution: Executing this command will cause traffic disruption. Related Commands show ip fib stack-unit Show FIB entries on a specified stack-unit. clear ip route cesz Syntax Parameters Command Modes Command History Related Commands Clear one or all routes in the routing table.
Command Modes Command History EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series debug arp cesz Syntax View information on ARP transactions. debug arp [interface] [count value] To stop debugging ARP transactions, enter no debug arp.
www.dell.com | support.dell.com debug ip dhcp cesz Syntax Enable debug information for DHCP relay transactions and display the information on the console. debug ip dhcp To disable debug, use the no debug ip dhcp command. Defaults Debug disabled Command Modes EXEC Privilege Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.
Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • • count value Command Modes Command History Example For a SONET interface, enter the keyword sonet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. For VLAN, enter the keyword vlan followed by a number from 1 to 4094.
www.dell.com | support.dell.com Parameters access-group name Enter the keyword access-group followed by the access list name (maximum 16 characters) to limit the debug output based on the defined rules in the ACL. count value (OPTIONAL) Enter the keyword count followed by the count value.
Example Figure 19-3. debug ip packet Command Example (Partial) IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 54, sending TCP src=23, dst=40869, seq=2112994894, ack=606901739, win=8191 ACK PUSH IP: s=10.1.2.206 (Ma 0/0), d=10.1.2.62, len 40, rcvd TCP src=0, dst=0, seq=0, ack=0, win=0 IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 226, sending TCP src=23, dst=40869, seq=2112994896, ack=606901739, win=8192 ACK PUSH IP: s=10.1.2.216 (Ma 0/0), d=10.1.2.255, len 78, rcvd UDP src=0, dst=0 IP: s=10.1.
www.dell.com | support.dell.com • • • • Internet Control Message Protocol* * but not the ICMP message type (0-255) Any Internet Protocol Transmission Control Protocol* * but not on the rst, syn, or urg bit User Datagram Protocol icmp ip tcp udp In the case of ambiguous access control list rules, the debug ip packet access-control command will be disabled. A message appears identifying the error (see Figure 19-4). Example Figure 19-4.
ip directed-broadcast cesz Syntax Enables the interface to receive directed broadcast packets. ip directed-broadcast To disable the interface from receiving directed broadcast packets, enter no ip directed-broadcast. Defaults Command Modes Disabled (that is, the interface does not receive directed broadcast packets) INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com Related Commands ip domain-name Specify a DNS server. ip domain-lookup cesz Syntax Enable dynamic host-name to address resolution (that is, DNS). ip domain-lookup To disable DNS lookup, use the no ip domain-lookup. Defaults Command Mode Command History Usage Information Disabled. CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
Usage Information Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series You can only configure one domain name with the ip domain-name command. To configure more than one domain name, configure the ip domain-list command up to 6 times. Use the following steps to enable dynamic resolution of hosts: • • specify a domain name server with the ip name-server command. enable DNS with the ip domain-lookup command. To view current bindings, use the show hosts command.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information ip-address Enter an IP address in dotted decimal format (A.B.C.D). ipv6-address C-Series and E-Series only: Enter the IPv6 address in the x:x:x:x::x format Note: The :: notation specifies successive hexadecimal fields of zeros. default-vrf (Optional) C-Series and E-Series Only: Enter default-vrf for the DHCP server VRF is using. Not configured. INTERFACE Version 9.0.0.
Usage Information Related Commands This command disables the incrementing of the hops field when boot requests are relayed to a DHCP server through FTOS. If the incoming boot request already has a non-zero hops field, the message will be relayed with the same value for hops. However, the message will be discarded if the hops field exceeds 16, to comply with the relay agent behavior specified in RFC 1542. ip helper-address Specify the destination broadcast or host address for DHCP server requests.
www.dell.com | support.dell.com Usage Information Version 7.5.1.0 Added support for C-Series pre-Version 6.1.1.0 Introduced for E-Series To avoid Denial of Service (DOS) attacks, keep the number of fragments allowed for re-assembly low. ip mtu e Syntax Set the IP MTU (frame size) of the packet transmitted by the RPM for the line card interface. If the packet must be fragmented, FTOS sets the size of the fragmented packets to the size specified in this command.
Example: The VLAN contains tagged members with Link MTU of 1522 and IP MTU of 1500 and untagged members with Link MTU of 1518 and IP MTU of 1500. The VLAN’s Link MTU cannot be higher than 1518 bytes and its IP MTU cannot be higher than 1500 bytes. Table 19-2.
www.dell.com | support.dell.com ip proxy-arp cesz Syntax Enable Proxy ARP on an interface. ip proxy-arp To disable Proxy ARP, enter no ip proxy-arp. Defaults Command Modes Command History Related Commands Enabled. INTERFACE Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.1.1.
To delete all routes matching a certain route, use the no ip route destination mask command. Parameters vrf name (OPTIONAL) E-Series Only: Enter the keyword vrf followed by the VRF Instances name to tie the static route to the VRF instance. destination Enter the IP address in dotted decimal format of the destination device. mask Enter the mask in slash prefix formation (/x) of the destination device’s IP address. ip-address Enter the IP address in dotted decimal format of the forwarding router.
www.dell.com | support.dell.com Usage Information Using the following example of a static route: ip route 33.33.33.0 /24 gigabitethernet 0/0 172.31.5.43 • • • • • Related Commands The software installs a next hop that is not on the directly connected subnet but which recursively resolves to a next hop on the interface’s configured subnet. In the example, if gig 0/0 has ip address on subnet 2.2.2.0 and if 172.31.5.43 recursively resolves to 2.2.2.0, FTOS installs the static route.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced on E-Series ip vlan-flooding e Syntax Enable unicast data traffic flooding on VLAN member ports. ip vlan-flooding To disable, use the no ip vlan-flooding command. Defaults Command Modes Command History Usage Information disabled CONFIGURATION Version 8.1.1.
www.dell.com | support.dell.com Parameters ip-selection {dest-ip | source-ip} Enter the keywords to distribute IP traffic based on the following criteria: • • mac {dest-mac | source-dest-mac | source-mac} Enter the keywords to distribute MAC traffic based on the following criteria: • • • tcp-udp enable Command Modes CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Added support for S-Series Version 7.5.1.
• • Parameters no load-balance ip-selection packet-based no load-balance mac Enter the keywords ip-selection 3-tuple to distribute IP traffic based on the following criteria: ip-selection 3-tuple • IP source address • IP destination address • IP Protocol type Note: For IPV6, only the first 32 bits (LSB) of IP SA and IP DA are used for hash generation.
www.dell.com | support.dell.com Table 19-3. Configurations of the load-balance Command Configuration ip-selection packet-based Related Commands ip address Routed IP Traffic (IPV4 Switched Non-IP Traffic Only) Packet based: IPV4 No distribution: IPV6 Packet based: IPV4 MAC based MAC based Packet based: IPV4 MAC based ip-selection packet-based and mac Change the algorithm used to distribute traffic on an E-Series chassis.
Defaults Command Modes Command History mac [source-mac | source-port-id | source-module-id | dest-mac | dest-port-id | dest-module-id | vlan | ethertype | source-dest-mac ] To use MAC key fields in hash computation, enter the keyword mac followed by one of the parameters: tunnel [ipv4-over-ipv4 | ipv4-over-gre-ipv4 | mac-in-mac]} To use tunnel key fields in hash computation, enter the keyword tunnel followed by one of the parameters: • • • • • • • • • • • • source-mac—Use source-mac field in hash cal
www.dell.com | support.dell.com Command Modes Command History Usage Information Related Commands CONFIGURATION Version 9.0.0.0 Introduced on Z9000; added support for IPv6 Version 8.3.11.1 Introduced on S4810 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.
Command Modes Command History Usage Information Example ip ip-address mask (OPTIONAL) Enter the keyword ip followed by an IP address in the dotted decimal format. Enter the optional IP address mask in the slash prefix format (/ x). macaddress mac-address mask (OPTIONAL) Enter the keyword macaddress followed by a MAC address in nn:nn:nn:nn:nn:nn format. Enter the optional MAC address mask in nn:nn:nn:nn:nn format also. static (OPTIONAL) Enter the keyword static to view entries entered manually.
www.dell.com | support.dell.com Figure 19-6. show arp Command Example with Private VLAN data FTOS#show arp Protocol Address Age(min) Hardware Address Interface VLAN CPU ----------------------------------------------------------------------------------Internet 5.5.5.1 00:01:e8:43:96:5e Vl 10 pv 200 CP Internet 5.5.5.10 00:01:e8:44:99:55 Vl 10 CP Internet 10.1.2.4 1 00:01:e8:d5:9e:e2 Ma 0/0 CP Internet 10.10.10.4 1 00:01:e8:d5:9e:e2 Ma 0/0 CP Internet 10.16.127.53 1 00:01:e8:d5:9e:e2 Ma 0/0 CP Internet 10.
Table 19-5. show arp summary Command Example Fields Related Commands Row Heading Description Total Entries Lists the total number of ARP entries in the ARP table. Static Entries Lists the total number of configured or static ARP entries. Dynamic Entries Lists the total number of learned or dynamic ARP entries. CPU Lists which CPU the entries are stored on. ip local-proxy-arp Enable/disable Layer 3 communication in secondary VLANs.
www.dell.com | support.dell.com Example Figure 19-9. show hosts Command Example FTOS#show hosts Default domain is not set Name/address lookup uses static Name servers are not set Host Flags -----------ks (perm, 4200-1 (perm, 1230-3 (perm, ZZr (perm, Z10-3 (perm, FTOS# mappings OK) OK) OK) OK) OK) TTL ---- Type ---IP IP IP IP IP Address ------2.2.2.2 192.68.69.2 192.68.99.2 192.71.18.2 192.71.23.1 Table 19-6. show hosts Command Example Fields Field Description Default domain...
Parameters number Enter the number of the line card. Range: 0 to 13 on a E1200/1200i, 0 to 6 on a E600600i, and 0 to 5 on a E300. pipe-number Enter the number of the line card’s port-pipe. Range: 0 to 1 ip-address mask [longer-prefix] (OPTIONAL) Enter the IP address and mask of a route to CAM entries for that route only. Enter the keyword longer-prefixes to view routes with a common prefix. Command Modes index index-number (OPTIONAL) Enter the keyword index followed by the CAM index number.
www.dell.com | support.dell.com Table 19-7. show ip cam Command Example Fields (continued) Example Field Description C Displays the CPU bit. 1 indicates that a packet hitting this entry is forwarded to the CP or RP2, depending on Egress port. Next-Hop Displays the next hop IP address of the entry. VId Displays the VLAN ID. If the entry is 0, the entry is not part of a VLAN. Mac Addr Displays the next-hop router’s MAC address. Port Displays the egress interface.
Table 19-8. show ip cam summary Command Example Fields Field Description Prefix Length Displays the prefix-length or mask for the IP address configured on the linecard 0 port pipe 0. Current Use Displays the number of routes currently configured for the corresponding prefix or mask on the linecard 0 port pipe 0. Initial Size Displays the CAM size allocated by FTOS for the corresponding mask. The CAM size is adjusted by FTOS if the number of routes for the mask exceeds the initial allocation.
www.dell.com | support.dell.com Table 19-9. show ip cam Command Example Fields Field Description Destination Displays the destination route of the index. EC Displays the number of equal cost multipaths (ECMP) available for the default route for non-Jumbo line cards. Displays 0,1 when ECMP is more than 8, for Jumbo line cards. CG Displays 0. V Displays a 1 if the entry is valid and a 0 otherwise. C Displays the CPU bit.
Example Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 19-13. show ip fib linecard Command Example FTOS>show ip fib linecard 12 Destination -------------------3.0.0.0/8 3.0.0.0/8 100.10.10.0/24 100.10.10.1/32 100.10.10.10/32 101.10.10.0/24 101.10.10.1/32 101.10.10.10/32 FTOS> Gateway First-Hop -------------------------- -------------via 100.10.10.10, So 2/8 100.10.10.10 via 101.10.10.10, So 2/9 Direct, So 2/8 0.0.0.0 via 127.0.0.1 127.0.0.1 via 100.10.10.
www.dell.com | support.dell.com Command Mode longer-prefixes (OPTIONAL) Enter the keyword longer-prefixes to view all routes with a common prefix. summary (OPTIONAL) Enter the keyword summary to view the total number of prefixes in the FIB. EXEC EXEC Privilege Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 7.7.1.0 Modified: Added support for up to seven stack members. Version 7.6.1.0 Introduced on S-Series Figure 19-14.
Parameters vrf instance E-Series Only: Show only the L3 flow as they apply to that VRF process. interface interface Enter the keyword interface followed by of the following interface keywords. • • • • • • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a SONET interface, enter the keyword sonet followed by the slot/ port information.
www.dell.com | support.dell.com C-Series produces the message: %Error: FIB cannot compute the egress port with the current trunk hash setting. Example Figure 19-15. Command Example show ip flow on E-Series FTOS#show ip flow interface Gi 1/8 189.1.1.1 63.0.0.1 protocol tcp source-port 7898 destination-port 8976 flow: 189.1.1.1 63.0.0.1 protocol 6 7868 8976 Ingress interface: Gi 1/20 Egress interface: Gi 1/14 to 1.7.1.2[CAM hit 103710] unfragmented packet Gi 1/10 to 1.2.1.
Command Modes EXEC EXEC Privilege Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.2 Supported on E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 19-16.
www.dell.com | support.dell.com Figure 19-17. show ip interface brief Command Example (Partial) FTOS#show ip int brief Interface GigabitEthernet 1/0 GigabitEthernet 1/1 GigabitEthernet 1/2 GigabitEthernet 1/3 GigabitEthernet 1/4 GigabitEthernet 1/5 GigabitEthernet 1/6 IP-Address unassigned unassigned unassigned unassigned unassigned 10.10.10.
Example Figure 19-18. show ip management route Command Example FTOS#show ip management-route Destination ----------10.1.2.0/24 172.16.1.0/24 Gateway ------ManagementEthernet 0/0 10.1.2.4 State ----Connected Active FTOS# show ipv6 management-route ceZ Display the IPv6 static routes configured for the management interface.
www.dell.com | support.dell.com Example Version 7.6.1.0 Regular evaluation optimization enabled/disabled added to display output Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 19-19. show ip protocols Command Example FTOS#show ip protocols Routing Protocol is "bgp 1" Cluster Id is set to 20.20.20.3 Router Id is set to 20.20.20.
Command Modes connected (OPTIONAL) Enter the keyword connected to view only the directly connected routes. all (OPTIONAL) Enter the keyword all to view both active and non-active routes. static (OPTIONAL) Enter the keyword static to view only routes configured by the ip route command. summary (OPTIONAL) Enter the keyword summary. See show ip route summary. EXEC EXEC Privilege Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.
www.dell.com | support.dell.com Table 19-14.
Related Commands Example ip prefix-list Enter the CONFIGURATION-IP PREFIX-LIST mode and configure a prefix list. show ip prefix-list summary Display a summary of the configured prefix lists. Figure 19-22.
www.dell.com | support.dell.com Table 19-15. show ip route summary Column Headings Related Commands Column Heading Description Route Source Identifies how the route is configured in FTOS. Active Routes Identifies the best route if a route is learned from two protocol sources. Non-active Routes Identifies the back-up routes when a route is learned by two different protocols. If the best route or active route goes down, the non-active route will become the best route.
Example Figure 19-24.
www.dell.com | support.dell.com Table 19-16. show ip traffic output definitions Usage Information Keyword Definition ...no port broadcasts The incoming broadcast/multicast packet did not have any listener. ...socket full The applications buffer was full and the incoming packet had to be dropped. The F10 Monitoring MIB provides access to the statistics described below. Table 19-17.
Command History Example Version 8.1.1.2 Introduced support for E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale Version 6.4.1.0 Introduced Figure 19-25.
www.dell.com | support.dell.com Command Modes Command History Example rp1 Enter the keyword rp1 to view only TCP statistics from Route Processor 1. rp2 Enter the keyword rp2 to view only TCP statistics from Route Processor 2. EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on E-Series ExaScale Version 6.4.1.0 Introduced Figure 19-26.
Table 19-18. show tcp statistics cp Command Example Fields (continued) Field Description 41 dup ack... Displays the number of duplicate acknowledgement packets and acknowledgement packets with data received. 10184 ack ... Displays the number of acknowledgement packets and bytes received. Sent: Displays the total number of TCP packets sent and the number of urgent packets sent. 25 control packets... Displays the number of control packets sent and the number retransmitted. 11603 data packets...
| IPv4 Routing www.dell.com | support.dell.
20 Link Aggregation Control Protocol (LACP) Overview This chapter contains commands for Dell Force10’s implementation of Link Aggregation Control Protocol (LACP) for the creation of dynamic link aggregation groups (LAGs — called port-channels in FTOS parlance). For static LAG commands, the section Port Channel Commands in the Interfaces chapter), based on the standards specified in the IEEE 802.
www.dell.com | support.dell.com Parameters Defaults Command Modes port-channel-number Enter a port-channel number: C-Series and S-Series Range: 1 to 128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale. Without a Port Channel specified, the command clears all Port Channel counters. EXEC EXEC Privilege Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on S4810 Version 7.6.1.
interface in | out (OPTIONAL) Enter the following keywords and slot/port or number information: For a 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a SONET interface, enter the keyword sonet followed by the slot/port information.
www.dell.com | support.dell.com Related Commands show lacp Display the lacp configuration lacp port-priority cesz Syntax Configure the port priority to influence which ports will be put in standby mode when there is a hardware limitation that prevents all compatible ports from aggregating. lacp port-priority priority-value To return to the default setting, use the no lacp port-priority priority-value command.
port-channel mode cesz Syntax Parameters Configure the LACP port channel mode. port-channel number mode [active] [passive] [off] number Enter the keyword port-channel followed by a number: C-Series and S-Series Range: 1 to 128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale. active Enter the keyword active to set the mode to the active state.* passive Enter the keyword passive to set the mode to the passive state.
www.dell.com | support.dell.com Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on S4810 Version 6.2.1.1 Introduced show lacp Display the LACP information. show interfaces port-channel Display information on configured Port Channel groups. show lacp cesz Syntax Parameters Command Modes Display the LACP matrix.
FTOS# Example (show lacp sys-id) FTOS#show lacp 1 sys-id Actor System ID: Priority 32768, Address 0001.e800.a12b Partner System ID: Priority 32768, Address 0001.e801.
www.dell.com | support.dell.
21 Intermediate System to Intermediate System (IS-IS) Overview Intermediate System to Intermediate System Protocol (IS-IS) for IPv4 and IPv6 is supported on the E-Series platform, as indicated by the e character under each command heading, on the S4810 (indicated by and Z9000 (indicated by the z character). IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic.
www.dell.com | support.dell.
• • • • • • • • • show config show isis database show isis graceful-restart detail show isis hostname show isis interface show isis neighbors show isis protocol show isis traffic spf-interval adjacency-check e Z Syntax Verify that the “protocols supported” field of the IS-IS neighbor contains matching values to this router. adjacency-check To disable adjacency check, use the no adjacency-check command.
www.dell.com | support.dell.com Defaults Command Modes level1-into-level2 ( Level 1 to Level 2 leaking enabled.) ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Command History Usage Information Version 7.5.1.0 Introduced IPv6 ISIS support Version 6.3.1.0 Introduced You cannot disable leaking from one level to another, however you can regulate the rate flow from one level to another via an IP Prefix list.
Syntax Command Modes Usage Information Related Commands clear config ROUTER ISIS Use caution when you enter this command. Back up your configuration prior to using this command or your IS-IS configuration will be erased. copy Use this command to save the current configuration to another location. clear isis Restart the IS-IS process. All IS-IS data is cleared.
www.dell.com | support.dell.com debug isis Enable debugging for all IS-IS operations. e Syntax debug isis To disable debugging of IS-IS, enter no debug isis. Command Modes Usage Information EXEC privilege Entering debug isis enables all debugging parameters. Use this command to display all debugging information in one output. To turn off debugging, you normally enter separate no forms of each command. Enter the no debug isis command to disable all debug messages for IS-IS at once.
Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • • • • • Command Modes For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel, enter the keyword port-channel followed by a number from 1 to 32 for EtherScale, 1 to 255 for TeraScale. For a SONET interface, enter the keyword sonet followed by the slot/port information.
www.dell.com | support.dell.com Syntax debug isis update-packets [interface] To turn off debugging, enter the no debug isis update-packets [interface] command. Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
How a metric value assigned to a default route is advertised depends on how on the configuration of the metric-style command. If the metric-style is set for narrow mode and the metric value in the default-information originate command is set to a number higher than 63, the metric value advertised in LSPs will be 63. If the metric-style is set for wide mode, their the metric value in the default-information originate command is advertised.
www.dell.com | support.dell.com Defaults Command Modes weight = 115 ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Usage Information The administrative distance indicates the trust value of incoming packets. A low administrative distance indicates a high trust rate. A high value indicates a lower trust rate. For example, a weight of 255 is interpreted that the routing information source is not trustworthy and should be ignored.
Syntax distribute-list prefix-list-name out [connected | bgp as number | ospf process-id | rip | static] To return to the default values, enter the no distribute-list prefix-list-name out [bgp as number connected | ospf process-id | rip | static] command. Parameters Defaults Command Modes prefix-list-name Specify the prefix list to filter prefixes in routing updates. connected (OPTIONAL) Enter the keyword connected for directly connected routing process.
www.dell.com | support.dell.com Command History Usage Information Version 7.8.1.0 Introduced IPv6 ISIS support Version 6.3.1.0 Introduced When the command is executed, IS-IS will not download the route to the routing table if the same route was redistributed into IS-IS routing protocol on the same router. domain-password Set the authentication password for a routing domain. e Syntax domain-password [hmac-md5 | encryption-type ] password To disable the password, enter no domain-password.
Usage Information A Restart TLV included in every Graceful Restart enabled router’s HELLO PDUs. This enables the (re)starting as well as the existing ISIS peers to detect the GR capability of the routers on the connected network. A flag in the Restart TLV contains Restart Request (RR), Restart Acknowledge (RA) and Suppress Adjacency Advertisement (SA) bit flags. The ISIS Graceful Restart enabled router can co-exist in mixed topologies where some routers are Graceful Restart enabled and others are not.
www.dell.com | support.dell.com Command History Version 8.3.1.0 Introduced on the E-Series graceful-restart t2 Configure thewait time for the Graceful Restart timer T2 that a restarting router uses as the wait time for each database to synchronize. e Syntax graceful-restart t2 {level-1 | level-2} seconds To return to the default, use the no graceful-restart t2command.
Override the default restart-wait time by entering the no graceful-restart restart-wait command. When restart-wait is disabled, the current adjacency hold time is used. Be sure to set the t3 timer to adjacency on the restarting router when implementing this command. The restarting router gets the remaining time value from its peer and adjusts its T3 value accordingly only when you have configured graceful-restart t3 adjacency.
www.dell.com | support.dell.com Usage Information IS-IS hellos are padded to the full maximum transmission unit (MTU) size. Padding IS-IS Hellos (IIHS) to the full MTU provides early error detection of large frame transmission problems or mismatched MTUs on adjacent interfaces. Related Commands isis hello padding Turn ON or OFF hello padding on an interface basis. hostname dynamic Enables dynamic learning of hostnames from routers in the domain and allows the routers to advertise the hostname in LSPs.
Parameters Defaults Command Modes Command History Usage Information Related Commands tag (OPTIONAL) The tag you specify identifies a specific area routing process. If you do not specify a tag, a null tag is assigned. No processes are configured. INTERFACE Version 7.5.1.0 Introduced You must use the net command to assign a network entity title to enable IS-IS. net Configures an IS-IS network entity title (NET) for the routing process. router isis Enables the IS-IS routing protocol.
www.dell.com | support.dell.com isis circuit-type Configure the adjacency type on interfaces. e Syntax isis circuit-type {level-1 | level-1-2 | level-2-only} To return to the default values, enter no isis circuit-type. Parameters Defaults Command Modes Usage Information level-1 You can form a Level 1 adjacency if there is at least one common area address between this system and neighbors. You cannot form Level 2 adjacencies on this interface.
Command Modes Usage Information INTERFACE The default values of this command are typically satisfactory transmission times for a specific interface on a designated intermediate system. To maintain database synchronization, the designated routers send CSNPs. Level 1 and Level 2 CSNP intervals can be configured independently. isis hello-interval Specify the length of time between hello packets sent.
www.dell.com | support.dell.com Parameters Defaults Command Modes Usage Information Related Commands multiplier Specifies an integer that sets the multiplier for hello holding time. Never configure a hello-multiplier lower then the default (3). Range: 3 to 1000 Default: 3 level-1 (OPTIONAL) Select this value to configure the hello multiplier independently for Level 1 adjacencies. This is the default.
Parameters Defaults Command Modes Command History Usage Information default-metric Metric assigned to the link and used to calculate the cost from each other router via the links in the network to other destinations. You can configure this metric for Level 1 or Level 2 routing. Range:0 to 16777215 Default: 10 level-1 (OPTIONAL) Enter level-1 to configure the shortest path first (SPF) calculation for Level 1 (intra-area) routing. This is the default.
www.dell.com | support.dell.com isis network point-to-point Enable the software to treat a broadcast interface as a point-to-point interface. e Syntax isis network point-to-point To disable the feature, enter no isis network point-to-point. Defaults Command Modes Not enabled. INTERFACE isis password Configure an authentication password for an interface.
To return to the default values, enter the no isis priority [value] [level-1 | level-2] command. Parameters Defaults Command Modes Usage Information value This value sets the router priority. The higher the value, the higher the priority. Range: 0 to 127 Default: 64 level-1 (OPTIONAL) Specify the priority for Level 1. This is the default. level-2 (OPTIONAL) Specify the priority for Level 2.
www.dell.com | support.dell.com Syntax log-adjacency-changes To disable this function, enter no log-adjacency-changes. Defaults Command Modes Usage Information Adjacency changes are not logged. ROUTER ISIS This command enables you to monitor adjacency state changes, which is useful when you monitor large networks. Messages are logged in the system error message facility. lsp-gen-interval Set the minimum interval between successive generations of link-state packets (LSPs).
The first generation is controlled by the initial wait interval and the second generation is controlled by the second wait interval. Each subsequent wait interval is twice as long as the previous one until the wait interval reaches the maximum wait time specified (interval seconds). Once the network calms down and there are no triggers for two times the maximum interval, fast behavior is restored (the initial wait time). lsp-mtu Set the maximum transmission unit (MTU) of IS-IS link-state packets (LSPs).
www.dell.com | support.dell.com Command History Usage Information Version 7.5.1.0 Expanded to support LSP Throttling Enhancement The refresh interval determines the rate at which route topology information is transmitted preventing the information from becoming obsolete. The refresh interval must be less than the LSP lifetime specified with the max-lsp-lifetime command.
Usage Information Change the maximum LSP lifetime with this command. The maximum LSP lifetime must always be greater than the LSP refresh interval. The seconds parameter enables the router to keep LSPs for the specified length of time. If the value is higher, the overhead is reduced on slower-speed links. Related Commands lsp-refresh-interval Use this command to set the link-state packet (LSP) refresh interval.
www.dell.com | support.dell.com Defaults Command Modes Usage Information level-1 Enables the metric style on Level 1. level-2 Enables the metric style on Level 2. narrow; if no Level is specified, Level-1 and Level-2 are configured. ROUTER ISIS If you enter the metric-style wide command, the FTOS generates and accepts only new-style TLVs. The router uses less memory and other resources rather than generating both old-style and new-style TLVs.
passive-interface Suppress routing updates on an interface. This command stops the router from sending updates on that interface. e Syntax passive-interface interface To delete a passive interface configuration, enter the no passive-interface interface command.
www.dell.com | support.dell.com Defaults Command Modes level-1 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 1 routes. level-1-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level-1-2 routes. level-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 2 routes. This is the default. route-map map-name (OPTIONAL) If the route-map argument is not entered, all routes are redistributed.
Parameters AS number Enter a number that corresponds to the Autonomous System number. Range: 1 to 65355 level-1 (OPTIONAL) Routes are independently redistributed into IS-IS Level 1 routes only level-1-2 (OPTIONAL) Routes are independently redistributed into IS-IS Level 1 and Level 2 routes. level-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 2 routes only. This is the default. metric metric-value (OPTIONAL) The value used for the redistributed route.
www.dell.com | support.dell.com Syntax redistribute ospf process-id [level-1| level-1-2 | level-2] [match {internal | external}] [metric metric-value] [metric-type {external | internal}] [route-map map-name] To return to the default values, enter the no redistribute ospf process-id [level-1| level-1-2 | level-2] [match {internal | external}] [metric metric-value][metric-type {external | internal}] [route-map map-name] command.
router isis Allows you to enable the IS-IS routing protocol and to specify an IP IS-IS process. e Syntax router isis [tag] To disable IS-IS routing, enter no router isis [tag]. Parameters Defaults Command Modes Usage Information tag (OPTIONAL) This is a unique name for a routing process. A null tag is assumed if the tag option is not specified. The tag name must be unique for all IP router processes for a given router. Not configured.
www.dell.com | support.dell.com Command History Version 7.8.1.0 Introduced MT ISIS support Version 6.3.1.0 Introduced show config Display the changes you made to the IS-IS configuration. Default values are not shown. e Syntax Command Modes show config ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Examples Figure 21-2. Command Example: show config (router-isis mode) FTOS(conf-router_isis)#show config ! router isis clns host ISIS 49.0000.0001.F100.E120.0013.
Command Modes EXEC EXEC privilege Example Figure 21-4. Command Example: show isis database FTOS#show isis database IS-IS Level-1 Link State Database LSPID LSP Seq Num ISIS.00-00 * 0x00000006 LSP Checksum 0xCF43 LSP Holdtime 580 ATT/P/OL 0/0/0 IS-IS Level-2 Link State Database LSPID LSP Seq Num LSP Checksum ISIS.00-00 * 0x00000006 0xCF43 ! FTOS#show isis database detail ISIS.
www.dell.com | support.dell.com Table 21-2. Command History Command Example Fields Field Description IS-IS Level-1/Level-2 Link State Database Displays the IS-IS link state database for Level 1 or Level 2. LSPID Displays the LSP identifier. The first six octets are the System ID of the originating router. The next octet is the pseudonode ID. If this byte is not zero, then the LSP describes system links. If this byte is zero (0), then the LSP describes the state of the originating router.
Example Figure 21-5.
www.dell.com | support.dell.com Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Loopback interface, enter the keyword loopback followed by a number from zero (0) to 16383. For a Port Channel, enter the keyword port-channel followed by a number from 1 to 32 for EtherScale, 1 to 255 for TeraScale.
detail (OPTIONAL) Displays detailed information about neighbors. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • • • • • Command Modes For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel, enter the keyword port-channel followed by a number from 1 to 32 for EtherScale, 1 to 255 for TeraScale. For a SONET interface, enter the keyword sonet followed by the slot/port information.
www.dell.com | support.dell.com show isis protocol Display IS-IS routing information. e Syntax Command Modes show isis protocol EXEC EXEC privilege Example Figure 21-9. Command Example: show isis protocol FTOS#show isis protocol IS-IS Router: System Id: F100.E120.0013 IS-Type: level-1-2 Manual area address(es): 49.0000.0001 Routing for area address(es): 49.0000.
Example Figure 21-10.
www.dell.com | support.dell.com Parameters Defaults Command Modes level-l (OPTIONAL) Enter the keyword level-1 to apply the configuration to Level-1 SPF calculations. level-2 (OPTIONAL) Enter the keyword level-2 to apply the configuration to Level-2 SPF calculations. interval seconds Enter the maximum number of seconds between SPF calculations.
22 Layer 2 Overview This chapter describes commands to configure Layer 2 features. It contains the following sections: • • MAC Addressing Commands Virtual LAN (VLAN) Commands Some MAC addressing commands are supported only on the E-Series, some on all three Dell Force10 platforms, and some on two Dell Force10 platforms. The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com • • • • • show mac-address-table show mac-address-table aging-time show mac accounting destination show mac cam show mac learning-limit clear mac-address-table cesz Syntax Parameters Clear the MAC address table of all MAC address learned dynamically. clear mac-address-table {dynamic | sticky} {address mac-address | all | interface interface | vlan vlan-id} dynamic Enter the keyword dynamic to specify dynamically-learned MAC addresses.
mac accounting destination e Syntax Configure a destination counter for Layer 2 traffic. mac accounting destination {mac-address vlan vlan-id | vlan} [bytes | packets] To delete a destination counter, enter no mac accounting destination. Parameters Defaults Command Modes Command History Usage Information mac-address Enter the MAC address in the nn:nn:nn:nn:nn:nn format to count Layer 2 packets or bytes sent to that MAC address.
www.dell.com | support.dell.com Related Commands Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series mac learning-limit Set the MAC address learning limits for a selected interface. show mac-address-table aging-time Display the MAC aging time. mac-address-table static cesz Syntax Associate specific MAC or hardware addresses to an interface and VLANs.
mac-address-table station-move threshold ce Change the frequency with which the MAC address station-move trap is sent after a MAC address changes in a VLAN. A trap is sent if a station move is detected above a threshold number of times in a given interval.
www.dell.com | support.dell.com mac-address-table station-move refresh-arp cesz Syntax Defaults Command Modes Command History Usage Information Ensure that ARP refreshes the egress interface when a station move occurs due to a topology change. [no] mac-address-table station-move refresh-arp No default values or behavior CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 7.4.1.
mac learning-limit cesz Syntax Parameters Defaults Limit the maximum number of MAC addresses (static + dynamic) learned on a selected interface. mac learning-limit address_limit [vlan vlan-id] [station-move-violation [dynamic]] | [dynamic [no-station-move | station-move]] address_limit Enter the maximum number of MAC addresses learned. Range: 1 to 1000000 vlan vlan-id On the E-Series only, enter the keyword followed by the VLAN ID.
www.dell.com | support.dell.com Once the MAC address learning limit is reached, the MAC addresses do not age out unless you add the dynamic option. To clear statistics on MAC address learning, use the clear counters command with the learning-limit parameter. Note: If you configure this command on an interface in a routed VLAN, and once the MAC addresses learned reaches the limit set in the mac learning-limit command, IP protocols are affected.
mac learning-limit mac-address-sticky z Syntax Maintain the dynamically-learnt mac addresses as sticky MAC addresses on the selected port. mac learning-limit mac-address-sticky Use the ‘no’ form of this command to convert the sticky MAC addresses to dynamic MAC addresses. Parameters Defaults Command Modes Command History Usage Information Related Commands mac-address-sticky Configures the dynamic MAC addresses as sticky on an interface. No default behavior or values. INTERFACE Version 9.0.0.
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on S-Series Version 7.8.1.0 Introduced on C-Series Version 7.5.1.0 Introduced on E-Series This is supported on physical interfaces, static LAGs, and LACP LAGs. show mac learning-limit Display details of the mac learning-limit mac learning-limit reset cesz Syntax Defaults Command Modes Reset the MAC address learning-limit error-disabled state.
interface interface (OPTIONAL) Enter the keyword interface followed by the interface type, slot and port information: • • • • vlan vlan-id Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series Range: 1-128 E-Series Range: 1 to 255 for TeraScale. For a SONET interface, enter the keyword sonet followed by the slot/ port information.
www.dell.com | support.dell.com Example Figure 22-1. show cam maccheck linecard Command Output Example FTOS#show cam maccheck linecard 2 port-set 0 Dumping entries. From 0 to 16383. Progress . marks 100 memory table entries. ............................
show cam mac linecard (dynamic or static) ce Display the CAM size and the portions allocated for MAC addresses and for MAC ACLs. Syntax show cam mac linecard slot port-set port-pipe [address mac_addr | dynamic | interface interface | static | vlan vlan-id] Parameters linecard slot (REQUIRED) Enter the keyword linecard followed by a slot number to select the linecard for which to gather information.
www.dell.com | support.dell.com Example Figure 22-4.
interface interface (OPTIONAL) Enter the keyword interface followed by the interface type, slot and port information: • • • • vlan vlan-id Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: S-Series Range: 1-128 For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com interface interface (OPTIONAL) Enter the keyword interface followed by the interface type, slot and port information: • • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 255 for TeraScale.
Table 22-1. show mac-address-table Information (continued) Column Heading Description Interface Displays the interface type and slot/port information. The following abbreviations describe the interface types: • • • • State Example (show mac-address-tabl e count) Lists if the MAC address is in use (Active) or not in use (Inactive).
www.dell.com | support.dell.com Example Version 7.7.1.0 Introduced on C-Series and S-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 22-5. show mac-address-table aging-time Command Example FTOS#show mac-address-table aging-time Mac-address-table aging time : 1800 FTOS# Related Commands show mac-address-table Display the current MAC address configuration.
Example Figure 22-6.
www.dell.com | support.dell.com show mac learning-limit ceZ Syntax Parameters Display MAC address learning limits set for various interfaces. show mac learning-limit [violate-action] [detail] [interface interface [vlan vlan-id]] violate-action (OPTIONALY) Enter the keyword violate-action to display the MAC learning limit violation status. detail (OPTIONAL) Enter the keyword detail to display the MAC learning limit in detail.
Example C-Series/S-Series output: FTOS#show mac learning-limit Interface Learning Dynamic Static Slot/port Limit MAC count MAC count Gi 1/0 10 0 0 Gi 1/1 5 0 0 FTOS#show mac learning-limit interface gig 1/0 Interface Learning Dynamic Static Slot/port Limit MAC count MAC count Gi 1/0 10 0 0 Unknown SA Drops 0 0 Unknown SA Drops 0 Virtual LAN (VLAN) Commands The following commands configure and monitor Virtual LANs (VLANs).
www.dell.com | support.dell.com Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on C-Series and S-Series Version 6.3.1.0 Introduced on E-Series show vlan Display VLAN configuration. default vlan-id cesz Syntax Specify a VLAN as the Default VLAN. default vlan-id vlan-id To remove the default VLAN status from a VLAN and VLAN 1 does not exist, use the no default vlan-id vlan-id syntax.
Usage Information no default vlan disable is not listed in the running-configuration, but when the default VLAN is disabled, default-vlan disable is listed in the running-configuration. enable vlan-counters ex Syntax Display VLAN counters for ingress and/or egress hardware. You must be in restricted mode to use this command. enable vlan-output-counters [ingress | egress | all] To return to the default (disabled), use the no enable vlan-output-counters command.
www.dell.com | support.dell.com SNMP counters differ from show interface counters as SNMP counters must maintain history. At any point, the value of SNMP counters reflect the amount of traffic being carried on the VLAN. VLAN output counters may show higher than expected values because source-suppression drops are counted. During an RPM failover event, all SNMP counters remain intact. The counters will sync over to the secondary RPM. name cesz Syntax Assign a name to the VLAN.
Example Figure 22-8. show config Command Sample Output for a Selected VLAN FTOS(conf-if-vl-100)#show config ! interface Vlan 100 no ip address no shutdown FTOS(conf-if-vl-100)# Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series show vlan cesz Display the current VLAN configurations on the switch.
www.dell.com | support.dell.com Example Figure 22-9. show vlan Command Example FTOS#show vlan Codes: Q: U x G * P * - Default VLAN, G - GVRP VLANs, P - Primary, C - Community, I - Isolated Untagged, T - Tagged Dot1x untagged, X - Dot1x tagged GVRP tagged, M - Vlan-stack NUM 1 2 Status Inactive Active 3 Active 4 Active 5 Active 6 Active 7 Active 100 Active C 101 I 102 FTOS# Table 22-4.
Figure 22-10.
www.dell.com | support.dell.com tagged cesz Syntax Add a Layer 2 interface to a VLAN as a tagged interface. tagged interface To remove a tagged interface from a VLAN, use no tagged interface command. Parameters interface Enter the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History Usage Information For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Parameters interface Enter the following keywords and slot/port or number information: • • • • • Defaults Command Modes Command History Usage Information For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series Range: 1-128 E-Series Range: 1 to 255 for TeraScale. For a SONET interface, enter the keyword sonet followed by the slot/port information.
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History Usage Information For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Port Channel interface types, enter the keyword port-channel followed by a number from 1 to 255 for TeraScale.
Far-End Failure Detection (FEFD) FTOS supports Far-End Failure Detection (FEFD) on the Ethernet interfaces of the following platforms as indicated by the characters that appear under each of the command headings: E-Series e, S4810 , Z-Series z The FEFD feature detects and reports far-end link failures. • • • FEFD is not supported on the Management interface. During an RPM failover, FEFD is operationally disabled for approximately 8-10 seconds. By default, FEFD is disabled.
www.dell.com | support.dell.com Related Commands Command History fefd Enable Far-End Failure Detection on an interface. fefd reset Enable FEFD globally on the system. Version 9.0.0.0 Introduced on Z9000 Version 8.3.12.0 Introduced on S4810. Legacy E-Series command fefd e z Syntax Parameters Enable Far-End Failure Detection on an interface, set the FEFD interval, or select the FEFD mode.
fefd-global e z Syntax Enable FEFD globally on the system. fefd-global [interval seconds] [mode {normal | aggressive}] To disable FEFD globally, use the no fefd-global [mode {normal | aggressive}] command syntax. Parameters Defaults Command Modes Related Commands interval seconds Enter the keyword interval followed by a number as the time between FEFD control packets.
www.dell.com | support.dell.com fefd reset e z Syntax Parameters Reset all interfaces or a single interface that was in “error-disabled” mode. fefd reset [interface] interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • Defaults Not configured. Command Modes EXEC Privilege Related Commands Command History For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Example FTOS#sh fefd FEFD is globally 'ON', interval is 10 seconds, mode is 'Aggressive'. INTERFACE MODE Gi 5/0 Gi 5/1 Gi 5/2 Gi 5/3 Gi 5/4 Gi 5/5 Gi 5/6 Gi 5/7 Gi 5/8 Gi 5/9 Gi 5/10 Gi 5/11 FTOS# Aggressive Aggressive Aggressive Aggressive Aggressive Aggressive Aggressive Aggressive Aggressive Aggressive NA Aggressive Table 22-5.
| Layer 2 www.dell.com | support.dell.
23 Link Layer Detection Protocol (LLDP) Overview Link Layer Detection Protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management. The FTOS implementation of LLDP is based on IEEE standard 801.1ab.
www.dell.com | support.dell.com See the Link Layer Discovery Protocol chapter of the FTOS Configuration Guide for details on implementing LLDP/LLDP-MED. advertise dot1-tlv cesz Syntax Advertise dot1 TLVs (Type, Length, Value). advertise dot1-tlv {port-protocol-vlan-id | port-vlan-id | vlan-name} To remove advertised dot1-tlv, use the no advertise dot1-tlv {port-protocol-vlan-id | port-vlan-id | vlan-name} command.
Command Modes Command History CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Version 8.3.11.1 Introduced on the Z9000. Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series advertise management cesz Syntax Advertise management TLVs (Type, Length, Value).
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • Defaults For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/ port information. For a 1-Gigabit Ethernet interface, enter the keyword gigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword tenGigabitEthernet followed by the slot/port information.
To disable debugging, use the no debug lldp interface {interface | all}{events} {packet {brief | detail} {tx | rx | both}} command. Parameters interface Enter the following keywords and slot/port or number information: • • • • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword gigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Related Commands Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series protocol lldp (Configuration) Enable LLDP globally. debug lldp interface Debug LLDP show lldp neighbors Display the LLDP neighbors show running-config lldp Display the LLDP running configuration hello cesz Syntax Configure the rate at which the LLDP control packets are sent to its peer. hello seconds To revert to the default, use the no hello seconds command.
Related Commands Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series protocol lldp (Configuration) Enable LLDP globally. show lldp neighbors Display the LLDP neighbors multiplier cesz Syntax Set the number of consecutive misses before LLDP declares the interface dead. multiplier integer To return to the default, use the no multiplier integer command.
www.dell.com | support.dell.com protocol lldp (Interface) cesz Syntax Enter the LLDP protocol in the INTERFACE mode. [no] protocol lldp To return to the global LLDP configuration mode, use the no protocol lldp command from the Interface mode. Defaults LLDP is not enabled on the interface. Command Modes INTERFACE (conf-if-interface-lldp) Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 7.7.1.0 Introduced on S-Series Version 7.6.1.
Example Figure 23-1. show lldp neighbors Command Output R1(conf-if-gi-1/31)#do show lldp neighbors Loc PortID Rem Host Name Rem Port Id Rem Chassis Id ------------------------------------------------------------------------Gi 1/21 Gi 1/31 Usage Information R2 R3 GigabitEthernet 2/11 GigabitEthernet 3/11 00:01:e8:06:95:3e 00:01:e8:09:c2:4a Omitting the keyword detail displays only the remote chassis ID, Port ID, and Dead Interval.
www.dell.com | support.dell.
• identify network policy advertise med guest-voice cesz Syntax Configure the system to advertise a separate limited voice service for a guest user with their own IP telephony handset or other appliances that support interactive voice services. advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Related Commands vlan-id Enter the VLAN ID. Range: 1 to 4094 layer2_priority Enter the Layer 2 priority. Range: 0 to 7 DSCP_value Enter the DSCP value. Range: 0 to 63 priority-tagged number Enter the keyword priority-tagged followed the Layer 2 priority. Range: 0 to 7 unconfigured CONFIGURATION (conf-lldp) \ Version 8.3.11.1 Introduced on the Z9000. Version 7.7.1.0 Introduced on S-Series Version 7.6.1.
Usage Information ECS—Emergency Call Service such as defined by TIA or National Emergency Numbering Association (NENA) ELIN—Emergency Location Identification Number, a valid North America Numbering Plan format telephone number supplied for ECS purposes.
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands DSCP_value Enter the DSCP value (C-Series and E-Series only). Range: 0 to 63 priority-tagged number Enter the keyword priority-tagged followed the Layer 2 priority. Range: 0 to 7 unconfigured CONFIGURATION (conf-lldp) Version 8.3.11.1 Introduced on the Z9000. Version 7.7.1.0 Introduced on S-Series Version 7.6.1.
show lldp neighbors Display the LLDP neighbors show lldp neighbors Display the LLDP running configuration advertise med video-conferencing cesz Syntax Configure the system to advertise dedicated video conferencing and other similar appliances that support real-time interactive video.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Related Commands vlan-id Enter the VLAN ID. Range: 1 to 4094 layer2_priority Enter the Layer 2 priority (C-Series and E-Series only). Range: 0 to 7 DSCP_value Enter the DSCP value (C-Series and E-Series only). Range: 0 to 63 priority-tagged number Enter the keyword priority-tagged followed the Layer 2 priority. Range: 0 to 7 unconfigured CONFIGURATION (conf-lldp) Version 8.3.11.1 Introduced on the Z9000.
Related Commands Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series and E-Series debug lldp interface Debug LLDP show lldp neighbors Display the LLDP neighbors show running-config lldp Display the LLDP running configuration advertise med voice-signaling cesz Syntax Configure the system to advertise when voice control packets use a separate network policy than voice data.
www.dell.com | support.dell.
24 Multicast Source Discovery Protocol (MSDP) Overview MSDP (Multicast Source Discovery Protocol) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections.
www.dell.com | support.dell.com Parameters Defaults peer address Enter the peer address in a dotted decimal format (A.B.C.D.) Not configured Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced n the Z9000 Version 8.3.7.1 Introduced on the S4810 Version 6.2.1.1 Introduced clear ip msdp sa-cache ez Clears the entire source-active cache, the source-active entries of a particular multicast group, rejected, or local source-active entries.
Defaults Without any options, this command clears the entire source-active cache. Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced n the Z9000 Version 8.3.7.1 Introduced on the S4810 Version 7.8.1.0 Added local option. Version 7.7.1.0 Added rejected-sa option. Version 6.2.1.1 Introduced debug ip msdp ez Turn on MSDP debugging.
www.dell.com | support.dell.com Command Modes Command History Related Commands CONFIGURATION Version 8.3.11.1 Introduced n the Z9000 Version 8.3.7.1 Introduced on the S4810 Version 7.4.1.0 Introduced show ip msdp sa-cache rejected-sa Description. ip msdp default-peer ez Define a default peer from which to accept all Source-Active (SA) messages. Syntax ip msdp default-peer peer address [list name] To remove the default peer, use the no ip msdp default-peer {peer address} list name command.
Version 8.3.7.1 Introduced on the S4810 Version 6.2.1.1 Introduced ip msdp mesh-group ez Configure a peer to be a member of a mesh group. Syntax ip msdp mesh-group {name} {peer address} To remove the peer from a mesh group, use the no ip msdp mesh-group {name} {peer address} command. Parameters Defaults Command Modes Command History Usage Information name Enter a string of up to 16 characters long for as the mesh group name. peer address Enter the peer address in a dotted decimal format (A.B.
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • • Defaults Command Modes Command History For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/ port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383.
Defaults Command Modes Command History Usage Information description name (OPTIONAL) Enter the keyword description followed by a description name (max 80 characters) to designate a description for the MSDP peer. sa-limit number (OPTIONAL) Enter the maximum number of SA entries in SA-cache. Range: 1 to 500000 Default: 500000 As above CONFIGURATION Version 8.3.11.1 Introduced n the Z9000 Version 8.3.7.1 Introduced on the S4810 Version 7.5.1.
www.dell.com | support.dell.com ip msdp sa-filter ez Permit or deny MSDP source active (SA) messages based on multicast source and/or group from the specified peer. Syntax ip msdp sa-filter {in | out} peer-address list [access-list name] Remove this configuration using the command no ip msdp sa-filter {in | out} peer address list [access-list name] Parameters Defaults Command Modes Command History in Enter the keyword in to enable incoming SA filtering.
Usage Information Related Commands FTOS counts the SA messages originated by itself and those received from the MSDP peers. When the total SA messages reach this limit, the subsequent SA messages are dropped (even if they pass RPF checking and policy checking). If the total number of SA messages is already larger than the limit when this command is applied, those SA messages that are already in FTOS will continue to be accepted.
www.dell.com | support.dell.com show ip msdp ez Display the MSDP peer status, SA cache, or peer summary. Syntax show ip msdp {peer peer address | sa-cache | summary} Parameters Defaults Command Modes peer peer address Enter the keyword peer followed by the peer address in a dotted decimal format (A.B.C.D.) sa-cache Enter the keyword sa-cache to display the Source-Active cache. summary Enter the keyword summary to display a MSDP peer summary.
show ip msdp sa-cache rejected-sa ez Display the rejected SAs in the SA cache. Syntax show ip mdsp sa-cache rejected-sa Defaults Command Modes No default values or behavior EXEC EXEC Privilege Command History Example Version 8.3.11.1 Introduced n the Z9000 Version 8.3.7.1 Introduced on the S4810 Version 7.4.1.0 Introduced Figure 24-4.
www.dell.com | support.dell.
25 Multiple Spanning Tree Protocol (MSTP) Overview Multiple Spanning Tree Protocol (MSTP), as implemented by FTOS, conforms to IEEE 802.1s. The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Parameters all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu interface {in | out} (OPTIONAL) Enter the keyword bpdu to debug Bridge Protocol Data Units. (OPTIONAL) Enter the interface keyword along with the type slot/port of the interface you want displayed. Type slot/port options are the following: • • • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information.
Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. pre-7.7.1.0 Introduced protocol spanning-tree mstp Enter Multiple SPANNING TREE mode on the switch. disable cesz Syntax Globally disable Multiple Spanning Tree Protocol on the switch. disable To enable Multiple Spanning Tree Protocol, enter no disable. Defaults Command Modes Command History Related Commands Multiple Spanning Tree Protocol is disabled MULTIPLE SPANNING TREE Version 8.3.11.1 Introduced on the Z9000.
www.dell.com | support.dell.com Related Commands max-age Change the wait time before MSTP refreshes protocol configuration information. hello-time Change the time interval between BPDUs. hello-time cesz Syntax Set the time interval between generation of Multiple Spanning Tree Bridge Protocol Data Units (BPDUs). hello-time seconds To return to the default value, enter no hello-time.
Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 6.5.1.0 Introduced forward-delay The amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. hello-time Change the time interval between BPDUs. max-hops cesz Syntax Configure the maximum hop count.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information msti instance Enter the Multiple Spanning Tree Protocol Instance Range: zero (0) to 63 vlan range Enter the keyword vlan followed by the identifier range value. Range: 1 to 4094 bridge-priority priority Enter the keyword bridge-priority followed by a value in increments of 4096 as the bridge priority.
protocol spanning-tree mstp cesz Syntax Enter the MULTIPLE SPANNING TREE mode to enable and configure the Multiple Spanning Tree group. protocol spanning-tree mstp To disable the Multiple Spanning Tree group, enter no protocol spanning-tree mstp command. Defaults Command Modes Command History Example Not configured. CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.
www.dell.com | support.dell.com Command Modes MULTIPLE SPANNING TREE Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 6.5.1.0 Introduced For two MSTP switches to be within the same MST region, the switches must share the same revision number. Related Commands msti Map the VLAN(s) to an MST instance name Assign the region name to the MST region.
Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 25-4. show spanning-tree mst configuration Command Example FTOS#show spanning-tree mst configuration MST region name: CustomerSvc Revision: 2 MSTI VID 10 101-105 FTOS# Usage Information You must enable Multiple Spanning Tree Protocol prior to using this command.
www.dell.com | support.dell.com Example Figure 25-5. show spanning-tree msti [instance-number] Command Example FTOS#show spanning-tree msti 10 MSTI 10 VLANs mapped 101-105 Bridge Identifier has priority 32768, Address 0001.e802.3506 Configured hello time 2, max age 20, forward delay 15, max hops 5 Current root has priority 16384, Address 0001.e800.
Example 2 Figure 25-6. show spanning-tree msti with EDS and LBK FTOS#show spanning-tree msti 0 brief MSTI 0 VLANs mapped 1-4094 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15, max hops 20 Bridge ID Priority 32768, Address 0001.e801.6aa8 We are the root of MSTI 0 (CIST) Configured hello time 2, max age 20, forward delay 15, max hops 20 CIST regional root ID Priority 32768, Address 0001.e801.
www.dell.com | support.dell.com Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.0 Introduced on E-Series spanning-tree msti cesz Syntax Configure Multiple Spanning Tree instance cost and priority for an interface.
Parameters mstp edge-port Enter the keywords mstp followed by the keyword edge-port to configure the interface as a Multiple Spanning Tree edge port. bpduguard (OPTIONAL) Enter the keyword portfast to enable Portfast to move the interface into forwarding mode immediately after the root fails. Enter the keyword bpduguard to disable the port when it receives a BPDU.
www.dell.com | support.dell.
26 Multicast Overview This chapter contains the following sections: • • IPv4 Multicast Commands IPv6 Multicast Commands The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Parameters group-address [source-address] Enter multicast group address and source address (if desired), in dotted decimal format, to clear information on a specific group. * Enter * to clear all multicast routes. Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on S4810 Version 7.8.1.0 Introduced on C-Series E-Series legacy command Related Commands show ip pim tib Show the PIM Tree Information Base.
Defaults Command Modes Command History Not configured. CONFIGURATION Version 8.3.11.1 Introduced on S4810 E-Series legacy command Related Commands show ip mroute View the E-Series routing table. ip multicast-lag-hashing e Syntax Distribute multicast traffic among Port Channel members in a round-robin fashion. ip multicast-lag-hashing To revert to the default, enter no ip multicast-lag-hashing.
www.dell.com | support.dell.com Related Commands ip pim sparse-mode Enable IGMP and PIM on an interface. ip multicast-limit cesz Syntax Parameters Defaults Command Modes Command History Usage Information Use this feature to limit the number of multicast entries on the system. ip multicast-limit limit limit Enter the desired maximum number of multicast entries on the system.
Defaults Command Modes Command History Usage Information vlan vlan-list Enter the VLAN(s) in which flooding will be restricted. Separate values by commas—no spaces ( 1,2,3 ) or indicate a list of values separated by a hyphen (1-3). Range: 1 to 4094 min-speed min-speed (OPTIONAL) Enter the minimum link speed that ports must have to receive the specified flooded multicast traffic. None CONFIGURATION Version 8.3.11.1 Introduced on S4810 Version 7.7.1.
www.dell.com | support.dell.com As an Mtrace transit or intermediate router, FTOS returns the response to Mtrace queries. Upon receiving the Mtrace request, FTOS computes the RPF neighbor for the source, fills in the request and the forwards the request to the RPF neighbor. While computing the RPF neighbor, the static mroute and mBGP route is preferred over the unicast route.
Usage Information This command restricts flooding for all unknown multicast traffic on ports below a certain speed. If you want some multicast traffic to be flooded on slower ports, use the command mac-flood-list without the min-speed option, in combination with restrict-flooding. With mac-flood-list you specify the traffic you want to be flooded using a MAC address range.
www.dell.com | support.dell.com Example 2 Figure 26-3. show ip mroute Command Example FTOS#show ip mroute IP Multicast Routing Table (*, 224.10.10.1), uptime 00:05:12 Incoming interface: GigabitEthernet 3/12 Outgoing interface list: GigabitEthernet 3/13 (1.13.1.100, 224.10.10.1), uptime 00:04:03 Incoming interface: GigabitEthernet 3/4 Outgoing interface list: GigabitEthernet 3/12 GigabitEthernet 3/13 (*, 224.20.20.
Example Figure 26-4. show ip rpf Command Example FTOS#show ip rpf RPF information for 10.10.10.9 RPF interface: Gi 3/4 RPF neighbor: 165.87.31.4 RPF route/mask: 10.10.10.9/255.255.255.255 RPF type: unicast show queue backplane multicast e Syntax Defaults Command Modes Display the backplane bandwidth configuration about how much bandwidth is dedicated to multicast versus unicast. show queue backplane multicast bandwidth-percentage None EXEC EXEC Privilege Command History Example Version 7.7.1.
www.dell.com | support.dell.com clear ipv6 mroute e Syntax Parameters Clear learned multicast routes on the multicast forwarding table. To clear the PIM tib, use clear ip pim tib command. clear ipv6 mroute {group-address [source-address] | *} group-address [source-address] Enter multicast group address and source address (if desired) to clear information on a specific group. Enter the addresses in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zero.
Command Modes Command History CONFIGURATION E-Series legacy command show ipv6 mroute e Syntax Parameters Command Modes View IPv6 multicast routes. show ipv6 mroute [group-address [source-address]] [active rate] [count group-address [source source-address]] group-address [source-address] (OPTIONAL) Enter the IPv6 multicast group-address to view only routes associated with that group. Optionally, enter the IPv6 source-address to view routes with that group-address and source-address.
www.dell.com | support.dell.com Example Figure 26-7. show ipv6 mroute active Command Example FTOS#show ipv6 mroute active 10 Active Multicast Sources - sending >= 10 pps Group: ff05:300::1 Source: 165:87:31::30 Rate: 100 pps Group: ff05:3300::1 Source: 165:87:31::30 Rate: 100 pps Group: ff3e:300::4000:1 Source: 165:87:31::20 Rate: 100 pps Group: ff3e:3300::4000:1 Source: 165:87:31::20 Rate: 100 pps FTOS# Example Figure 26-8.
Defaults Command Modes all (OPTIONAL) Enter the keyword all to view all the MLD information. vlan vlan-id (OPTIONAL) Enter the keyword vlan followed by the VLAN ID to view MLD VLAN information. No default values or behavior EXEC EXEC Privilege Command History Version 7.4.1.0 Example Figure 26-10.
www.dell.com | support.dell.com Example 828 Figure 26-11.
27 Open Shortest Path First (OSPFv2) Overview The Z9000 platform supports Open Shortest Path First (OSPFv2) only. Up to 3 OSPF instances can be run simultaneously. on the Z9000. OSPF is an Interior Gateway Protocol (IGP), which means that it distributes routing information between routers in a single Autonomous System (AS). OSPF is also a link-state protocol in which all routers contain forwarding tables derived from information about their links to their neighbors.
www.dell.com | support.dell.
• • timers throttle lsa all timers throttle lsa arrival area default-cost cesz Syntax Set the metric for the summary default route generated by the area border router (ABR) into the stub area. Use this command on the border routers at the edge of a stub area. area area-id default-cost cost To return default values, use the no area area-id default-cost command. Parameters Defaults area-id Specify the OSPF area in dotted decimal format (A.B.C.D.
www.dell.com | support.dell.com Defaults default-information-or iginate (OPTIONAL) Allows external routing information to be imported into the NSSA by using Type 7 default. no-summary (OPTIONAL) Specify that no summary LSAs should be sent into the NSSA. Not configured Command Mode ROUTER OSPF Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
area stub cesz Syntax Configure a stub area, which is an area not connected to other areas. area area-id stub [no-summary] To delete a stub area, enter no area area-id stub. Parameters Defaults area-id Specify the stub area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535. no-summary (OPTIONAL) Enter the keyword no-summary to prevent the ABR from sending summary Link State Advertisements (LSAs) into the stub area.
www.dell.com | support.dell.com authentication-key [encryption-type] key | message-digest-key keyid md5 [encryption-type] key (OPTIONAL) Choose between two authentication methods: • • Defaults Enter the keyword authentication-key to enable simple authentication followed by an alphanumeric string up to 8 characters long. Optionally, for the encryption-type variable, enter the number 7 before entering the key string to indicate that an encrypted password will follow.
auto-cost cesz Syntax Specify how the OSPF interface cost is calculated based on the reference bandwidth method. auto-cost [reference-bandwidth ref-bw] To return to the default bandwidth or to assign cost based on the interface type, use the no auto-cost [reference-bandwidth] command. Parameters Defaults ref-bw (OPTIONAL) Specify a reference bandwidth in megabits per second. Range: 1 to 4294967 Default: 100 megabits per second. 100 megabits per second.
www.dell.com | support.dell.com clear ip ospf statistics cesz Syntax Parameters Clear the packet statistics in interfaces and neighbors. clear ip ospf process-id statistics [interface name {neighbor router-id}] process-id Enter the OSPF Process ID to clear statistics for a specific process. If no Process ID is entered, all OSPF processes are cleared.
Parameters Command Modes Command History Example process-id Enter the OSPF Process ID to debug a specific process. If no Process ID is entered, command applies only to the first OSPF process. Range: 1 to 65535 bfd (OPTIONAL) Enter the keyword bfd to debug only OSPF BFD information. event (OPTIONAL) Enter the keyword event to debug only OSPF event information. packet (OPTIONAL) Enter the keyword packet to debug only OSPF packet information.
www.dell.com | support.dell.com Table 27-1. Output Descriptions for debug ip ospf process-id packet Field aut: Description States if OSPF authentication is configured. One of the following is listed: • • • 0 - no authentication configured 1 - simple authentication configured using the ip ospf authentication-key command) 2 - MD5 authentication configured using the ip ospf message-digest-key command. auk: If the ip ospf authentication-key command is configured, this field displays the key used.
metric-type type-value (OPTIONAL) Enter the keyword metric-type followed by an OSPF link state type of 1 or 2 for default routes. The values are: • • route-map map-name Defaults 1 = Type 1 external route 2 = Type 2 external route. (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Disabled. Command Modes ROUTER OSPF Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.
www.dell.com | support.dell.com description cesz Syntax Add a description about the selected OSPF configuration. description description To remove the OSPF description, use the no description command. Parameters Defaults description Enter a text string description to identify the OSPF configuration (80 characters maximum). No default behavior or values Command Modes ROUTER OSPF Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF.
Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series distance ospf cesz Syntax Configure an OSPF distance metric for different types of routes. distance ospf [external dist3] [inter-area dist2] [intra-area dist1] To delete these settings, enter no distance ospf. Parameters Defaults external dist3 (OPTIONAL) Enter the keyword external followed by a number to specify a distance for external type 5 and 7 routes.
www.dell.com | support.dell.com distribute-list in cesz Syntax Apply a filter to incoming routing updates from OSPF to the routing table. distribute-list prefix-list-name in [interface] To delete a filter, use the no distribute-list prefix-list-name in [interface] command. Parameters prefix-list-name Enter the name of a configured prefix list.
rip (OPTIONAL) Enter the keyword rip to specify that RIP routes are distributed.* static (OPTIONAL) Enter the keyword static to specify that only manually configured routes are distributed. * BGP and ISIS routes are not available on the C-Series. BGP, ISIS, and RIP routes are not available on the S-Series. Defaults Not configured. Command Modes ROUTER OSPF Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.
www.dell.com | support.dell.com fast-convergence cesz Syntax This command sets the minimum LSA origination and arrival times to zero (0), allowing more rapid route computation so that convergence takes less time. fast-convergence {number} To cancel fast-convergence, enter no fast convergence. Parameters Defaults number Enter the convergence level desired. The higher this parameter is set, the faster OSPF converge takes place. Range: 1 to 4 None.
By default, FTOS implements an enhanced flooding procedure that dynamically and intelligently determines when to optimize flooding. Whenever possible, the OSPF task attempts to reduce flooding overhead by selectively flooding on a subset of the interfaces between two routers. When flood-2328 is enabled, this command configures FTOS to flood LSAs on all interfaces.
www.dell.com | support.dell.com Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Restart role enabled on S-Series (Both Helper and Restart roles now supported on S-Series. Version 7.7.1.0 Helper-Role supported on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series graceful-restart mode cesz Syntax Enable the graceful restart mode.
Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Restart and helper roles supported on S-Series Version 7.7.1 Helper-Role supported on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series ip ospf auth-change-wait-time cesz Syntax OSPF provides a grace period while OSPF changes its interface authentication type.
www.dell.com | support.dell.com Usage Information Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series All neighboring routers in the same network must use the same password to exchange OSPF information. ip ospf cost cesz Syntax Change the cost associated with the OSPF traffic on an interface. ip ospf cost cost To return to default value, enter no ip ospf cost. Parameters Defaults Command Modes Command History Usage Information cost Enter a number as the cost.
Defaults Command Modes Command History Usage Information Related Commands 40 seconds INTERFACE Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series By default, the dead interval is four times the default hello-interval. ip ospf hello-interval Set the time interval between hello packets.
www.dell.com | support.dell.com ip ospf message-digest-key cesz Syntax Enable OSPF MD5 authentication and send an OSPF message digest key on the interface. ip ospf message-digest-key keyid md5 key To delete a key, use the no ip ospf message-digest-key keyid command. Parameters Defaults Command Modes Command History Usage Information keyid Enter a number as the key ID. Range: 1 to 255 key Enter a continuous character string as the password. No MD5 authentication is configured. INTERFACE Version 8.
ip ospf network cesz Syntax Set the network type for the interface. ip ospf network {broadcast | point-to-point} To return to the default, enter no ip ospf network. Parameters Defaults broadcast Enter the keyword broadcast to designate the interface as part of a broadcast network. point-to-point Enter the keyword point-to-point to designate the interface as part of a point-to-point network. Not configured. Command Modes ROUTER OSPF Command History Version 8.3.11.
www.dell.com | support.dell.com ip ospf retransmit-interval cesz Syntax Set the retransmission time between lost link state advertisements (LSAs) for adjacencies belonging to the interface. ip ospf retransmit-interval seconds To return to the default values, enter no ip ospf retransmit-interval. Parameters Defaults Command Modes Command History Usage Information seconds Enter the number of seconds as the interval between retransmission.
log-adjacency-changes cesz Syntax Set FTOS to send a Syslog message about changes in the OSPF adjacency state. log-adjacency-changes To disable the Syslog messages, enter no log-adjacency-changes. Defaults Disabled. Command Mode ROUTER OSPF Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.
www.dell.com | support.dell.com mib-binding cesz Syntax Enable this OSPF process ID to manage the SNMP traps and process SNMP queries. mib-binding To mib-binding on this OSPF process, enter no mib-binding. Defaults None. Command Modes ROUTER OSPF Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced to all platforms. Usage Information This command is either enabled or disabled. If no OSPF process is identified as the MIB manager, the first OSPF process will be used.
Usage Information To enable OSPF on an interface, the network area command must include, in its range of addresses, the primary IP address of an interface. Note: An interface can be attached only to a single OSPF area. If you delete all the network area commands for Area 0, the show ip ospf command output will not list Area 0. passive-interface cesz Syntax Suppress both receiving and sending routing updates on an interface.
www.dell.com | support.dell.com The default keyword sets all interfaces as passive. You can then configure individual interfaces, where adjacencies are desired, using the no passive-interface interface command. The no form of this command is inserted into the configuration for individual interfaces when the no passive-interface interface command is issued while passive-interface default is configured.
metric-type type-value (OPTIONAL) Enter the keyword metric-type followed by one of the following: • • Defaults 1 = OSPF External type 1 2 = OSPF External type 2 route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of the route map. tag tag-value (OPTIONAL) Enter the keyword tag followed by a number. Range: 0 to 4294967295 Not configured. Command Modes ROUTER OSPF Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.
www.dell.com | support.dell.com Defaults No default behavior or values Command Modes ROUTER OSPF Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.3 Introduced Route Map for BGP Redistribution to OSPF Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 Modified to include the default keyword. pre-Version 6.1.1.
Usage Information Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series IS-IS is not supported on S-Series platforms. router-id cesz Syntax Use this command to configure a fixed router ID. router-id ip-address To remove the fixed router ID, use the no router-id ip-address command. Parameters Defaults ip-address Enter the router ID in the IP address format This command has no default behavior or values.
www.dell.com | support.dell.com router ospf cesz Syntax Enter the ROUTER OSPF mode to configure an OSPF instance. router ospf process-id [vrf {vrf name}] To clear an OSPF instance, enter no router ospf process-id. Parameters Defaults Command Modes Enter a number for the OSPF instance. Range: 1 to 65535 vrf name (Optional) E-Series Only: Enter the VRF process identifier to tie the OSPF instance to the VRF. All network commands under this OSPF instance are subsequently tied to the VRF instance.
Example Figure 27-4. Command Example: show config FTOS(conf-router_ospf)#show config ! router ospf 3 passive-interface FastEthernet 0/1 FTOS(conf-router_ospf)# show ip ospf cesz Syntax Parameters Command Modes Display information on the OSPF process configured on the switch. show ip ospf process-id [vrf vrf name] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process.
www.dell.com | support.dell.com Table 27-2. Command Output Descriptions: show ip ospf process-id Line Beginning with Description “Routing Process...” Displays the OSPF process ID and the IP address associated with the process ID. “Supports only...” Displays the number of Type of Service (TOS) rouse supported. “SPF schedule...” Displays the delay and hold time configured for this process ID. “Convergence Level” Related Commands “Min LSA....
Example Figure 27-6. Command Example: show ip ospf process-id asbr FTOS#show ip ospf 1asbr RouterID 3.3.3.3 1.1.1.1 Flags -/-/-/ E/-/-/ Cost Nexthop 2 10.0.0.2 0 0.0.0.0 Interface Area Gi 0/1 1 0 FTOS# You can determine if an ASBR is in a directly connected area (or not) by the flags. For ASBRs in a directly connected area, E flags are set. In the figure above, router 1.1.1.1 is in a directly connected area since the Flag is E/-/-/.
www.dell.com | support.dell.com Example Figure 27-7. FTOS>show ip ospf 1 database OSPF Router with ID (11.1.2.1) (Process ID 1) Router (Area 0.0.0.0) Link ID ADV Router Age Seq# Checksum 11.1.2.1 11.1.2.1 673 0x80000005 0x707e 13.1.1.1 13.1.1.1 676 0x80000097 0x1035 192.68.135.2 192.68.135.2 1419 0x80000294 0x9cbd Link ID 10.2.3.2 10.2.4.2 Link ID 0.0.0.0 1.1.1.1 10.1.1.0 10.1.2.0 10.2.2.0 10.2.3.0 10.2.4.0 11.1.1.0 11.1.2.0 12.1.2.0 13.1.1.0 13.1.2.0 172.16.1.0 FTOS> Table 27-3.
show ip ospf database asbr-summary cesz Syntax Parameters Display information about AS Boundary LSAs. show ip ospf process-id database asbr-summary [link-state-id] [adv-router ip-address] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
www.dell.com | support.dell.com Table 27-4. Command Output Descriptions: show ip ospf database asbr-summary Item Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: • • • Related Commands TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
Example Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Figure 27-9. Command Example: show ip ospf database external FTOS#show ip ospf 1 database external OSPF Router with ID (20.20.20.5) (Process ID 1) Type-5 AS External LS age: 612 Options: (No TOS-capability, No DC, E) LS type: Type-5 AS External Link State ID: 12.12.12.2 Advertising Router: 20.31.3.
www.dell.com | support.dell.com Table 27-5. external Related Commands Command Example Descriptions: show ip ospf process-id database Item Description Length Displays the length in bytes of the LSA. Network Mask Displays the network mask implemented on the area. Metrics Type Displays the external type. TOS Displays the TOS options. Option 0 is the only option. Metrics Displays the LSA metric. Forward Address Identifies the address of the forwarding router.
Example Figure 27-10. Command Example: show ip ospf process-id database network FTOS#show ip ospf 1 data network OSPF Router with ID (20.20.20.5) (Process ID 1) Network (Area 0.0.0.0) LS age: 1372 Options: (No TOS-capability, DC, E) LS type: Network Link State ID: 202.10.10.2 Advertising Router: 20.20.20.8 LS Seq Number: 0x80000006 Checksum: 0xa35 Length: 36 Network Mask: /24 Attached Router: 20.20.20.8 Attached Router: 20.20.20.9 Attached Router: 20.20.20.7 Network (Area 0.0.0.
www.dell.com | support.dell.com show ip ospf database nssa-external cesz Syntax Parameters Display NSSA-External (type 7) LSA information. show ip ospf database nssa-external [link-state-id] [adv-router ip-address] link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Command History Example Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Figure 27-11. (Partial) Command Example: show ip ospf process-id database opaque-area FTOS>show ip ospf 1 database opaque-area OSPF Router with ID (3.3.3.
www.dell.com | support.dell.com Related Commands show ip ospf database Displays OSPF database information. show ip ospf database opaque-as cesz Syntax Parameters Display the opaque-as (type 11) LSA information. show ip ospf process-id database opaque-as [link-state-id] [adv-router ip-address] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Command Modes EXEC EXEC Privilege Command History Related Commands Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series show ip ospf database Displays OSPF database information. show ip ospf database router cesz Syntax Parameters Display the router (type 1) LSA information.
www.dell.com | support.dell.com Example Figure 27-12. Command Example: show ip ospf process-id database router (Partial) FTOS#show ip ospf 100 database router OSPF Router with ID (1.1.1.10) (Process ID 100) Router (Area 0) LS age: 967 Options: (No TOS-capability, No DC, E) LS type: Router Link State ID: 1.1.1.10 Advertising Router: 1.1.1.
Table 27-8. router Related Commands Command Example Descriptions: show ip ospf process-id database Item Description Advertising Router Identifies the router ID of the LSA’s originating router. LS Seq Number Displays the link state sequence number. This number detects duplicate or old LSAs. Checksum Displays the Fletcher checksum of an LSA’s complete contents. Length Displays the length in bytes of the LSA.
www.dell.com | support.dell.com Example Figure 27-13. Command Example: show ip ospf process-id database summary FTOS#show ip ospf 100 database summary OSPF Router with ID (1.1.1.10) (Process ID 100) Summary Network (Area 0.0.0.0) LS age: 1551 Options: (No TOS-capability, DC, E) LS type: Summary Network Link State ID: 192.68.16.0 Advertising Router: 192.168.17.
Table 27-9. summary Related Commands Command Example Descriptions: show ip ospf process-id database Items Description Network Mask Displays the network mask implemented on the area. TOS Displays the TOS options. Option 0 is the only option. Metric Displays the LSA metrics. show ip ospf database Displays OSPF database information. show ip ospf interface cesz Syntax Parameters Display the OSPF interfaces configured. If OSPF is not enabled on the switch, no output is generated.
www.dell.com | support.dell.com Example Figure 27-14. Command Example: show ip ospf process-id interface FTOS>show ip ospf int GigabitEthernet 13/17 is up, line protocol is up Internet Address 192.168.1.2/30, Area 0.0.0.1 Process ID 1, Router ID 192.168.253.2, Network Type BROADCAST, Cost: 1 Transmit Delay is 1 sec, State DR, Priority 1 Designated Router (ID) 192.168.253.2, Interface address 192.168.1.2 Backup Designated Router (ID) 192.168.253.1, Interface address 192.168.1.
show ip ospf neighbor cesz Syntax Parameters Display the OSPF neighbors connected to the local router. show ip ospf process-id neighbor process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Usage Information Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and E-Series This command is useful in isolating routing problems between OSPF and RTM.
(OPTIONAL) Enter the keyword interface followed by one of the following interface keywords and slot/port or number information: interface name For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Table 27-12.
The show ip ospf process-id statistics command displays the error packet count received on each interface as: • • • • • • • • Example The hello-timer remaining value for each interface The wait-timer remaining value for each interface The grace-timer remaining value for each interface The packet count received and transmitted for each neighbor Dead timer remaining value for each neighbor Transmit timer remaining value for each neighbor The LSU Q length and its highest mark for each neighbor The LSR Q lengt
www.dell.com | support.dell.com Command History Example Version 8.3.11.1 Introduced on Z9000 Version 8.3.8.0 Introduced on S4810 Figure 27-19. Command Example: show ip ospf process-id timers rate-limit FTOS#show ip ospf 10 timers rate-limit List of LSAs in rate limit Queue LSA id: 1.1.1.0 Type: 3 Adv Rtid: 3.3.3.3 Expiry time: 00:00:09.111 LSA id: 3.3.3.3 Type: 1 Adv Rtid: 3.3.3.3 Expiry time: 00:00:23.
show ip ospf virtual-links cesz Syntax Parameters Command Modes Display the OSPF virtual links configured and is useful for debugging OSPF routing operations. If no OSPF virtual-links are enabled on the switch, no output is generated. show ip ospf process-id virtual-links process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. EXEC EXEC Privilege Command History Example Version 8.3.11.
www.dell.com | support.dell.com summary-address cesz Syntax Set the OSPF ASBR to advertise one external route. summary-address ip-address mask [not-advertise] [tag tag-value] To disable summary address, use the no summary-address ip-address mask command. Parameters Defaults ip-address Specify the IP address in dotted decimal format of the address to be summarized. mask Specify the mask in dotted decimal format of the address to be summarized.
Parameters Defaults delay Enter a number as the delay. Range: 0 to 4294967295. Default: 5 seconds holdtime Enter a number as the hold time. Range: 0 to 4294967295. Default: 10 seconds. delay = 5 seconds; holdtime = 10 seconds Command Modes ROUTER OSPF Command History Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.
www.dell.com | support.dell.com Usage Information LSAs are sent after the start-interval and then after hold-interval until the maximum interval is reached. In throttling, exponential backoff is used when sending same LSA, so that the interval is multiplied until the maximum time is reached. For example, if the start-interval 5000 and hold-interval 1000 and max-interval 100,000, the LSA is sent at 5000 msec, then 1000 msec, then 2000 msec, them 4000 until 100,000 msec is reached.
28 PIM-Sparse Mode (PIM-SM) Overview This chapter contains the following sections: • IPv4 PIM-Sparse Mode Commands The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com clear ip pim rp-mapping cesz Syntax Parameters Used by the bootstrap router (BSR) to remove all or particular Rendezvous Point (RP) Advertisement. clear ip pim rp-mapping rp-address rp-address (OPTIONAL) Enter the RP address in dotted decimal format (A.B.C.D) Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.1 Introduced on S4810 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.
packet [in | out] (OPTIONAL) Enter the keyword packet to view PIM packets. Enter one of the optional parameters • • register (OPTIONAL) Enter the keyword register to view PIM register address in dotted decimal format (A.B.C.D). state (OPTIONAL) Enter the keyword state to view PIM state changes. timer [assert | hello | joinprune | register] (OPTIONAL) Enter the keyword timer to view PIM timers.
www.dell.com | support.dell.com ip pim bsr-candidate cesz Syntax Configure the PIM router to join the Bootstrap election process. ip pim bsr-candidate interface [hash-mask-length] [priority] To return to the default value, enter no ip pim bsr-candidate. Parameters interface Enter the following keywords and slot/port or number information: • • • • • • Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Command Modes Command History Usage Information INTERFACE Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.1 Introduced on S4810 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series on port-channels and S-Series The router with the largest value assigned to an interface becomes the Designated Router. If two interfaces contain the same DR priority value, the interface with the largest interface IP address becomes the Designated Router.
www.dell.com | support.dell.com ip pim neighbor-filter cesz Syntax Configure this feature to prevent a router from participating in protocol independent Multicast (PIM). ip pim neighbor-filter {access-list} To remove the restriction, use the no ip pim neighbor-filter {access-list} command. Parameters Defaults Command Modes Command History Usage Information access-list Enter the name of a standard access list. Maximum 139 characters. Defaults. CONFIGURATION. Version 8.3.11.
ip pim register-filter cesz Syntax Use this feature to prevent a PIM source DR from sending register packets to an RP for the specified multicast source and group. ip pim register-filter access-list To return to the default, use the no ip pim register-filter access-list command. Parameters Defaults Command Modes Command History Usage Information access-list Enter the name of an extended access list. Maximum 16 characters. Not configured CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 8.
www.dell.com | support.dell.com Usage Information This address is used by first-hop routers to send Register packets on behalf of source multicast hosts. The RP addresses are stored in the order in which they are entered. RP addresses learned via BSR take priority over static RP addresses. Without the override option, RPs advertised by the BSR updates take precedence over the statically configured RPs.
ip pim sparse-mode cesz Syntax Enable PIM sparse mode and IGMP on the interface. ip pim sparse-mode To disable PIM sparse mode and IGMP, enter no ip pim sparse-mode. Defaults Command Modes Command History Usage Information Disabled. INTERFACE Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.1 Introduced on S4810 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series on port-channels and S-Series C-Series supports a maximum of 31 PIM interfaces.
www.dell.com | support.dell.com Usage Information This command configures an expiration timer for all S.G entries, unless they are assigned to an Extended ACL. show ip pim bsr-router cesz Syntax Command Modes View information on the Bootstrap router. show ip pim bsr-router EXEC EXEC Privilege Command History Example Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.1 Introduced on S4810 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on S-Series Figure 28-2.
Example Figure 28-3. show ip pim interface Command Example E600-7-RPM0#show ip pim interface Address Interface Ver/ Nbr Mode Count 172.21.200.254 Gi 7/9 v2/S 0 172.60.1.2 Gi 7/11 v2/S 0 192.3.1.1 Gi 7/16 v2/S 1 192.4.1.1 Gi 13/5 v2/S 0 172.21.110.1 Gi 13/6 v2/S 0 172.21.203.1 Gi 13/7 v2/S 0 Table 28-1. Query Intvl 30 30 30 30 30 30 DR DR Prio 1 172.21.200.254 1 172.60.1.2 1 192.3.1.1 1 192.4.1.1 1 172.21.110.1 1 172.21.203.
www.dell.com | support.dell.com Example Figure 28-4. show ip pim neighbor Command Example FTOS#show ip pim neighbor Neighbor Interface Address 127.87.3.4 Gi 7/16 FTOS# Table 28-2. Uptime/Expires Ver 09:44:58/00:01:24 v2 DR Prio/Mode 1 / S show ip pim neighbor Command Example Fields Field Description Neighbor address Displays the IP address of the PIM neighbor.
Example 1 Figure 28-5. show ip pim rp mapping Command Example 1 FTOS#sh ip pim rp Group RP 224.2.197.115 165.87.20.4 224.2.217.146 165.87.20.4 224.3.3.3 165.87.20.4 225.1.2.1 165.87.20.4 225.1.2.2 165.87.20.4 229.1.2.1 165.87.20.4 229.1.2.2 165.87.20.4 FTOS# Example 2 Figure 28-6. show ip pim rp mapping Command Example 2 FTOS#sh ip pim rp mapping Group(s): 224.0.0.0/4 RP: 165.87.20.4, v2 Info source: 165.87.20.5, via bootstrap, priority 0 Uptime: 00:03:11, expires: 00:02:46 RP: 165.87.20.
www.dell.com | support.dell.com Example Figure 28-8. show ip pim tib Command Example FTOS#show ip pim tib PIM Multicast Routing Table Flags: D - Dense, S - Sparse, C - Connected, L - Local, P - Pruned, R - RP-bit set, F - Register flag, T - SPT-bit set, J - Join SPT, M - MSDP created entry, A - Candidate for MSDP Advertisement, K - Ack-Pending State Timers: Uptime/Expires Interface state: Interface, next-Hop, State/Mode (*, 226.1.1.1), uptime 01:29:19, expires 00:00:52, RP 10.211.2.
Table 28-3. show ip pim tib Command Example Fields (continued) Field Description RPF neighbor Displays the next hop from this interface towards the RP/source. Outgoing interface list: Lists the interfaces that meet one of the following criteria: • • • a directly connect member of the Group. statically configured member of the Group. received a (*,G) Join message.
| PIM-Sparse Mode (PIM-SM) www.dell.com | support.dell.
29 PIM-Source Specific Mode (PIM-SSM) Overview This chapter contains the following sections • IPv4 PIM-Source Specific Mode Commands The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com However, if ip pim ssm-range {access list name} is configured first and then the ACL is configured as an Extended ACL, an error is not reported and the ACL is not applied to the SSM range. FTOS recommended best-practices are to configure the standard ACL, and then apply the ACL to the SSM range. Once the SSM range is applied, the changes are applied internally without requiring clearing of the TIB.
30 Port Monitoring Overview The Port Monitoring feature enables you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port. The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com • On the S-Series, one monitor session can have only one MG port. There is no restriction on the number of source ports, or destination ports on the chassis. Note: The monitoring port should not be a part of any other configuration. description cesz Syntax Enter a description of this monitoring session description {description} To remove the description, use the no description {description} command.
monitor session cesz Syntax Create a session for monitoring traffic. monitor session session-ID To delete a session, use the no monitor session session-ID command. To delete all monitor sessions, use the no monitor session command. Parameters Defaults Command Modes session-ID No default values or behaviors MONITOR SESSION (conf-mon-sess-session-ID) Command History Example Enter a session identification number. Range: 0 to 65535 Version 8.3.11.1 Introduced on Z9000 Version 8.1.1.
www.dell.com | support.dell.com Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series Example FTOS(conf-mon-sess-11)#show config ! monitor session 11 source GigabitEthernet 10/0 destination GigabitEthernet 10/47 direction rx show monitor session cesz Syntax Display the monitor information of a particular session or all sessions.
show running-config monitor session ces Syntax Display the running configuration of all monitor sessions or a specific session. show running-config monitor session {session-ID} To display the running configuration for all monitor sessions, use just the show running-config monitor session command. Parameters Defaults Command Modes session-ID (OPTIONAL) Enter a session identification number. Range: 0 to 65535 No default values or behavior EXEC EXEC Privilege Command History Version 8.3.11.
www.dell.com | support.dell.com Parameters interface Enter the one of the following keywords and slot/port information: • • • • destination For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information.to indicate the interface destination.
31 Private VLAN (PVLAN) Overview The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command. Commands • • • • • • • ip local-proxy-arp private-vlan mode private-vlan mapping secondary-vlan show interfaces private-vlan show vlan private-vlan show vlan private-vlan mapping switchport mode private-vlan See also the following commands. The command output is augmented in FTOS 7.8.1.
www.dell.com | support.dell.com A community VLAN is a secondary VLAN of the primary VLAN: • • Ports in a community VLAN can talk to each other. Also, all ports in a community VLAN can talk to all promiscuous ports in the primary VLAN and vice-versa. Devices on a community VLAN can communicate with each other via member ports, while devices in an isolated VLAN cannot. Isolated VLAN: An isolated VLAN is a secondary VLAN of the primary VLAN: • • Ports in an isolated VLAN cannot talk to each other.
Command History Related Commands Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on C-Series and S-Series private-vlan mode Set the mode of the selected VLAN to community, isolated, or primary. private-vlan mapping secondary-vlan Map secondary VLANs to the selected primary VLAN. show arp Display the ARP table. show interfaces private-vlan Display type and status of PVLAN interfaces. show vlan private-vlan Display PVLANs and/or interfaces that are part of a PVLAN.
www.dell.com | support.dell.com Related Commands private-vlan mapping secondary-vlan Set the mode of the selected VLAN to primary and then associate secondary VLANs to it. show interfaces private-vlan Display type and status of PVLAN interfaces. show vlan private-vlan Display PVLANs and/or interfaces that are part of a PVLAN. show vlan private-vlan mapping Display primary-secondary VLAN mapping. switchport mode private-vlan Set the PVLAN mode of the selected port.
Parameters Defaults Command Modes interface interface (OPTIONAL) Enter the keyword interface, followed by the ID of the specific interface for which to display PVLAN status. none EXEC EXEC Privilege Command History Usage Information Examples Version 7.8.1.0 Introduced on C-Series and S-Series This command has two types of display — a list of all PVLAN interfaces or for a specific interface. Examples of both types of output are shown below. Figure 31-1.
www.dell.com | support.dell.com show vlan private-vlan cs Display PVLANs and/or interfaces that are part of a PVLAN. Syntax show vlan private-vlan [community | interface | isolated | primary | primary_vlan | interface interface] Parameters Defaults Command Modes community (OPTIONAL) Enter the keyword community to display VLANs configured as community VLANs, along with their interfaces.
FTOS# show vlan private-vlan isolated Primary Secondary Type Active Ports ------- --------- --------- ------ -----------------------10 primary Yes Gi 2/1,3 100 isolated Yes Gi 2/2,4-6 200 isolated Yes Gi 3/2,4-6 FTOS# show vlan private-vlan community Primary Secondary Type Active Ports ------- --------- --------- ------ -----------------------10 primary Yes Gi 2/1,3 101 community Yes Gi 2/7-10 20 primary Yes Po 10, 12-13 Gi 3/1 201 community No 202 community Yes Gi 3/11-12 FTOS# show vlan private-vlan int
www.dell.com | support.dell.com Table 31-2. Related Commands show interfaces description Command Example Fields Field Description Active States whether the interface is operationally up or down Ports Displays the interface IDs in the listed VLAN. private-vlan mode Set the mode of the selected VLAN to either community or isolated. show interfaces private-vlan Display type and status of PVLAN interfaces. show vlan private-vlan mapping Display primary-secondary VLAN mapping.
Syntax [no] switchport mode private-vlan {host | promiscuous | trunk} To remove the PVLAN mode from the selected port, use the no switchport mode private-vlan command. Parameters Defaults Command Modes Command History Usage Information Example host Enter host to configure the selected port or port channel as an isolated interface in a PVLAN, as described above. promiscuous Enter promiscuous to configure the selected port or port channel as an promiscuous interface, as described above.
| Private VLAN (PVLAN) www.dell.com | support.dell.
32 Per-VLAN Spanning Tree Plus (PVST+) Overview The FTOS implementation of PVST+ (Per-VLAN Spanning Tree plus) is based on the IEEE 802.1d standard Spanning Tree Protocol, but it creates a separate spanning tree for each VLAN configured. PVST+ (Per-VLAN Spanning Tree plus) is supported by FTOS on all Dell Force10 systems. The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands PVST+ is disabled CONFIGURATION (conf-pvst) Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced on E-Series protocol spanning-tree pvst Enter PVST+ mode.
Example FTOS(conf-pvst)#do show spanning-tree pvst vlan 5 brief VLAN 5 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32773, Address 0001.e832.73f7 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32773 (priority 32768 sys-id-ext 5), Address 0001.e832.73f7 We are the root of Vlan 5 Configured hello time 2, max age 20, forward delay 15 Related Commands Interface Name ---------Gi 0/10 Gi 0/12 PortID -------128.140 128.
www.dell.com | support.dell.com Related Commands disable Disable PVST+. show spanning-tree pvst Display the PVST+ configuration. show spanning-tree pvst cesz Syntax Parameters View the Per-VLAN Spanning Tree configuration. show spanning-tree pvst [vlan vlan-id] [brief] [Interface] vlan vlan-id (OPTIONAL) Enter the keyword vlan followed by the VLAN ID. Range: 1 to 4094 brief (OPTIONAL) Enter the keyword brief to view a synopsis of the PVST+ configuration information.
Example 1 Figure 32-2. show spanning-tree pvst brief Command FTOS#show spanning-tree pvst vlan 3 brief VLAN 3 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 4096, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 16384, Address 0001.e805.e306 Configured hello time 2, max age 20, forward delay 15 Example 2 Interface Name ---------Gi 1/0 Gi 1/1 Gi 1/16 Gi 1/17 PortID -------128.130 128.131 128.146 128.
www.dell.com | support.dell.com Example 3 Figure 32-4.
Defaults Command Modes Command History Usage Information cost number (OPTIONAL) Enter the keyword cost followed by the port cost value.
www.dell.com | support.dell.com Related Commands show spanning-tree pvst View PVST+ configuration spanning-tree pvst err-disable cesz Syntax Defaults Command Modes Command History Usage Information Place ports in an err-disabled state if they receive a PVST+ BPDU when they are members an untagged VLAN. spanning-tree pvst err-disable cause invalid-pvst-bpdu Enabled; ports are placed in err-disabled state if they receive a PVST+ BPDU when they are members of an untagged VLAN. INTERFACE Version 8.3.11.
vlan bridge-priority cesz Syntax Set the PVST+ bridge-priority for a VLAN or a set of VLANs. vlan vlan-range bridge-priority value To return to the default value, enter no vlan bridge-priority command. Parameters Defaults Command Modes Command History Related Commands vlan vlan-range Enter the keyword vlan followed by the VLAN number(s). Range: 1 to 4094 bridge-priority value Enter the keyword bridge-priority followed by the bridge priority value in increments of 4096.
www.dell.com | support.dell.com Command Modes Command History Related Commands CONFIGURATION (conf-pvst) Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.
Syntax vlan vlan-range max-age seconds To return to the default, use the no vlan max-age command. Parameters Defaults Command Modes Command History Related Commands vlan vlan-range Enter the keyword vlan followed by the VLAN number(s). Range: 1 to 4094 max-age seconds Enter the keyword max-age followed by the time interval, in seconds, that FTOS waits before refreshing configuration information. Range: 6 to 40 seconds Default: 20 seconds 20 seconds CONFIGURATION (conf-pvst) Version 8.3.11.
www.dell.com | support.dell.
33 Quality of Service (QoS) Overview FTOS commands for Quality of Service (QoS) include traffic conditioning and congestion control. QoS commands are not universally supported on all Dell Force10 platforms. This chapter contains the following sections: • • • Global Configuration Commands Per-Port QoS Commands Policy-Based QoS Commands The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Command History Version 8.3.11.1 Introduced on Z9000 Version 8.3.1.0 Introduced Per-Port QoS Commands Per-port QoS (“port-based QoS”) allows users to defined QoS configuration on a per-physical-port basis. The commands include: • • • • • • • • dot1p-priority rate limit rate police rate shape service-class bandwidth-percentage service-class bandwidth-percentage show interfaces rate strict-priority queue dot1p-priority cesz Syntax Assign a value to the IEEE 802.
Defaults Command Modes Command History Usage Information No default behavior or values INTERFACE Version 8.3.11.1 Introduced on Z9000 Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series The dot1p-priority command changes the priority of incoming traffic on the interface. The system places traffic marked with a priority in the correct queue and processes that traffic according to its queue.
www.dell.com | support.dell.com Usage Information Note: Per Port rate limit and rate police is supported for Layer 2 tagged and untagged switched traffic and for Layer 3 traffic. Per VLAN rate limit and rate police is supported on only tagged ports with Layer 2 switched traffic. On one interface, you can configure the rate limit or rate police command for a VLAN or you can configure the rate limit or the rate police command for the interface.
Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Usage Information Note: Per Port rate limit and rate police is supported for Layer 2 tagged and untagged switched traffic and for Layer 3 traffic. Per VLAN rate limit and rate police is supported on only tagged ports with Layer 2 switched traffic. C-Series and S-Series On one interface, you can configure the rate police command for a VLAN or you can configure the rate police command for an interface.
www.dell.com | support.dell.com Command Modes Command History Related Commands INTERFACE Version 8.3.11.1 Introduced on Z9000 Version 8.2.1.0 Added kbps option on C-Series, E-Series, and Series. Version 7.6.1.0 Introduced on S-Series and on C-Series pre-Version 6.1.1.1 Introduced on E-Series rate-shape Shape traffic output as part of the designated policy.
Defaults Command Modes All dot1p traffic is mapped to Queue 0 unless service-class dynamic dot1p is enabled. Then the default mapping is as follows: Table 33-1. Default dot1p to Queue Mapping dot1p E-Series Queue ID C-Series Queue ID S-Series Queue ID 0 2 1 1 1 0 0 0 2 1 0 0 3 3 1 1 4 4 2 2 5 5 2 2 6 6 3 3 7 7 3 3 INTERFACE CONFIGURATION (C-Series and S-Series only) Command History Usage Information Version 8.3.11.1 Introduced on Z9000 Version 8.2.1.
www.dell.com | support.dell.com show interfaces rate e Syntax Parameters Display information of either rate limiting or rate policing on the interface. show interfaces [interface] rate [limit | police] interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • Command Mode For a 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Table 33-2.
www.dell.com | support.dell.com Table 33-3.
Policy-Based QoS Commands Policy-based traffic classification is handled with class maps. These maps classify unicast traffic into one of eight classes in E-Series and one of four classes in C-Series and S-Series. FTOS enables you to match multiple class maps and specify multiple match criteria. Policy-based QoS is not supported on logical interfaces, such as port-channels, VLANS, or loopbacks.
www.dell.com | support.dell.com • • wred-ecn wred-profile bandwidth-percentage ez Assign a percentage of weight to class/queue. Syntax bandwidth-percentage percentage To remove the bandwidth percentage, use the no bandwidth-percentage command. Parameters Defaults Command Modes Command History Usage Information Related Commands percentage Enter the percentage assignment of weight to class/queue.
Usage Information This command is not supported on the S4810. This command provides a minimum bandwidth guarantee to traffic flows in a particular queue. The minimum bandwidth is provided by scheduling packets from that queue a certain number of times relative to scheduling packets from the other queues using the Deficit Round Robin method. Related Commands qos-policy-output Create a QoS output policy.
www.dell.com | support.dell.com match ip dscp Configure the match criteria based on the DSCP value match mac access-group Configure a match criterion for a class map, based on the contents of the designated MAC ACL. match mac dot1p Configure a match criterion for a class map, based on a dot1p value. match mac vlan Configure a match criterion for a class map based on VLAN ID. service-queue Assign a class map and QoS policy to different queues.
match ip access-group cesz Syntax Configure match criteria for a class map, based on the access control list (ACL). match ip access-group access-group-name [set-ip-dscp value] To remove ACL match criteria from a class map, enter no match ip access-group access-group-name [set-ip-dscp value] command.
www.dell.com | support.dell.com Command History Related Commands Version 8.3.11.1 Introduced on Z9000 pre-Version 7.7.1.0 Introduced policy-map-input Create an input policy map. policy-map-output Create an output policy map. qos-policy-input Create an input QOS-policy on the router. qos-policy-output Create an output QOS-policy on the router. wred-profile Create a WRED profile. match ip dscp cesz Syntax Use a DSCP (Differentiated Services Code Point) value as a match criteria.
Up to 64 IP DSCP values can be matched in one match statement. For example, to indicate IP DCSP values 0 1 2 3 4 5 6 7, enter either the command match ip dscp 0,1,2,3,4,5,6,7 or match ip dscp 0-7. Note: Only one of the IP DSCP values must be a successful match criterion, not all of the specified IP DSCP values need to match. Related Commands class-map Identify the class map. match ip precedence cesz Syntax Use IP precedence values as a match criteria.
www.dell.com | support.dell.com Up to eight precedence values can be matched in one match statement. For example, to indicate the IP precedence values 0 1 2 3 enter either the command match ip precedence 0-3 or match ip precedence 0,1,2,3. Note: Only one of the IP precedence values must be a successful match criterion, not all of the specified IP precedence values need to match. Related Commands class-map Identify the class map.
Usage Information Related Commands Version 7.5.1.0 Added support for DSCP Marking option Version 7.4.1.0 Introduced You must enter the class-map command in order to access this command. Once the class map is identified, you can configure the match criteria. class-map Identify the class map. match mac vlan cesz Syntax Parameters Defaults Command Modes Command History Usage Information Related Commands Configure a match criterion for a class map based on VLAN ID.
www.dell.com | support.dell.com Usage Information Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series C-Series and S-Series Aggregate input/output QoS policy applies to all the port ingoing/outgoing traffic. Aggregate input/ output QoS policy can co-exist with per queue input/output QoS policies. 1. 2. If only aggregate input QoS policy exists, input traffic conditioning configurations (rate-police) will apply.
policy-map-input cesz Syntax Create an input policy map. policy-map-input policy-map-name cpu-qos[layer2] To remove an input policy map, use the no policy-map-input policy-map-name cpu-qos [layer2] command. Parameters Defaults Command Modes Command History Usage Information Related Commands policy-map-name Enter the name for the policy map in character format (32 characters maximum). cpu-qos Enter the cpu-qos keyword to assign this ACL to control plane traffic only (CoPP).
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 8.3.11.1 Introduced on Z9000 Version 8.2.1.0 Policy name character limit increased from 16 to 32. Version 7.6.1.0 Introduced on C-Series and S-Series pre-Version 6.1.1.1 Introduced on E-Series Output policy map is used to assign traffic to different flows using QoS policy. This command enables the policy-map-output configuration mode (conf-policy-map-out).
Related Commands rate-police Incoming traffic policing function qos-policy-output cesz Syntax Create a QoS output policy. qos-policy-output qos-policy-name To remove an existing output QoS policy, use no qos-policy-output qos-policy-name command. Parameters Defaults Command Modes Command History Usage Information qos-policy-name Enter your output QoS policy name in character format (32 character maximum). No default behavior or values CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 8.
www.dell.com | support.dell.com Command History Version 7.7.1.0 Introduced on E-Series queue egress e Syntax Assign a WRED Curve to all eight egress Multicast queues or designate the percentage for the Multicast bandwidth queue.
The no form of the command without multicast-bandwidth and wred-profile, will remove both the wred-profile and multicast-bandwidth configuration. On 10 Gigabit ports only, the multicast bandwidth option will work only if the total unicast bandwidth is more than the multicast bandwidth. If strict priority is applied along with multicast-bandwidth, the effect of strict priority is on all ports where unicast and multicast bandwidth are applied.
www.dell.com | support.dell.com rate-limit e Syntax Parameters Specify the rate-limit functionality on outgoing traffic as part of the selected policy. rate-limit [kbps] committed-rate [burst-KB] [peak [kbps] peak-rate [burst-KB]] kbps Enter this keyword to specify the rate limit in Kilobits per second (Kbps). On the E-Series, Dell Force10 recommends using a value greater than or equal to 512 as lower values does not yield accurate results. The default granularity is Megabits per second (Mbps).
burst-KB (OPTIONAL) Enter the burst size in KB. Range: 16 to 200000 KB Default:100 KB peak peak-rate (OPTIONAL) Enter the keyword peak followed by the peak rate in Mbps. Range: 0 to 10000 Mbps Default: Same as designated for committed-rate Defaults Command Modes Command History Usage Information Related Commands Burst size is 100 KB. peak-rate is by default the same as committed-rate. Granularity for committed-rate and peak-rate is Mbps unless the kbps option is used. QOS-POLICY-IN Version 8.3.11.
www.dell.com | support.dell.com Usage Information Related Commands Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series rate-shape can be applied only as an aggregate policy. If it is applied as a class-based policy, then rate-shape will not take effect. rate shape Shape the traffic output of the selected interface. qos-policy-output Create a QoS output policy. service-policy input cesz Syntax Apply an input policy map to the selected interface.
service-policy output cesz Syntax Apply an output policy map to the selected interface. service-policy output policy-map-name To remove the output policy map from the interface, use the no service-policy output policy-map-name command. Parameters Defaults Command Modes Command History Usage Information Related Commands policy-map-name Enter the name for the policy map in character format (16 characters maximum). You can identify an existing policy map or name one that does not yet exist.
www.dell.com | support.dell.com Command Modes Command History Usage Information Related Commands CONFIGURATION (conf-policy-map-in and conf-policy-map-out) Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series There are eight (8) queues per interface on the E-Series and four (4) queues per interface on the C-Series and S-Series.
show cam layer2-qos e Syntax Parameters Display the Layer 2 QoS CAM entries. show cam layer2-qos {[linecard number port-set number] | [interface interface]} [summary] linecard number Enter the keyword linecard followed by the line card slot number. E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. port-set number Enter the keyword port-set followed by the line card’s port pipe.
www.dell.com | support.dell.com show cam layer3-qos e Syntax Display the Layer 3 QoS CAM entries. show cam layer3-qos {[linecard number port-set number] | [interface interface]} [summary] Parameters linecard number Enter the keyword linecard followed by the line card slot number. E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. port-set number Enter the keyword port-set followed by the line card’s port pipe.
Example Figure 33-6. show cam layer3-qos linecard port-set Command Output FTOS#show cam layer3-qos linecard 13 port-set 0 Cam Port Dscp Proto Tcp Src Dst SrcIp DstIp DSCP Queue Index Flag Port Port Marking ---------------------------------------------------------------------------------------24511 1 0 TCP 0x5 2 5 1.0.0.1/24 2.0.0.2/24 TRUST-DSCP 24512 1 0 UDP 0x2 2 5 8.0.0.8/24 8.0.0.8/24 23 3 FTOS# Example Figure 33-7.
www.dell.com | support.dell.com Example Figure 33-9. show qos class-map Command Output FTOS#show qos class-map Class-map match-any CM Match ip access-group ACL Related Commands class-map Identify the class map show qos policy-map cesz Syntax Parameters View the QoS policy map information.
Example 1 Figure 33-10. show qos policy-map detail (IPv4) Command Output FTOS#show qos policy-map detail gigabitethernet 0/0 Interface GigabitEthernet 4/1 Policy-map-input policy Trust diffserv Queue# Class-map-name 0 1 CM1 2 CM2 3 CM3 4 CM4 5 CM5 6 CM6 7 CM7 FTOS# Example 2 Figure 33-11.
www.dell.com | support.dell.com EXEC Privilege Command History Example 1 Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 E-Series Only: Added Trust IPv6 diffserv Version 6.2.1.1 Introduced on E-Series Figure 33-13.
Example Figure 33-15. show qos policy-map-output Command Output FTOS#show qos policy-map-output Policy-map-output PolicyMapOutput Aggregate Qos-policy-name AggPolicyOut Queue# Qos-policy-name 0 qosPolicyOutput FTOS# show qos qos-policy-input cesz Syntax Parameters Defaults Command Modes View the input QoS policy details. show qos qos-policy-input [qos-policy-name] qos-policy-name Enter the QoS policy name. No default behavior or values EXEC EXEC Privilege Command History Example Version 8.3.11.
www.dell.com | support.dell.com Command History Example Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced on C-Series and S-Series pre-Version 6.1.1.1 Introduced on E-Series Figure 33-17. show qos qos-policy-output (E-Series, C-Series) FTOS#show qos qos-policy-output Qos-policy-output qosOut Rate-limit 50 50 peak 50 50 Wred yellow 1 Wred green 1 Example Figure 33-18.
Command Modes EXEC EXEC Privilege Command History Example Version 8.3.8.0 WRED-profile supported on the S4810 Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.1 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Figure 33-19.
www.dell.com | support.dell.com Example Figure 33-20. show qos wred-profile Command Output (S4810) FTOS#show qos wred-profile Wred-profile-name max-drop-rate wred_drop wred_teng_y wred_teng_g wred_fortyg_y wred_fortyg_g 0 FTOS# min-threshold max-threshold 0 467 467 467 467 0 4671 4671 4671 4671 100 100 50 50 25 test cam-usage cesz Syntax Check the Input Policy Map configuration for the CAM usage.
Note: In a Layer 2 Policy Map, IPv4/IPv6 rules are not allowed and hence the output contains only L2ACL CAM partition entries. Table 33-4. Usage Information test cam-usage Command Example Fields Field Description Linecard Indicates the line card slot number. Portpipe Indicates the portpipe number. CAM Partition The CAM space where the rules are added. Available CAM Indicates the free CAM space, in the partition, for the classification rules.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information max number Enter the keyword max followed by the maximum threshold number for the WRED profile. Range: 1024 to 77824 KB max-drop-rate number Enter the keyword max-drop-rate followed by the maximum number of packets for the WRED profile. Range: 0-100 KB S4810 ONLY No default behavior or values CONFIGURATION (config-wred) Version 8.3.11.1 Introduced on Z9000 Version 8.3.8.0 Introduced on S4810 pre-Version 6.1.
trust cesz Syntax Parameters Defaults Command Modes Command History Usage Information Specify dynamic classification (DSCP) or dot1p to trust. trust {diffserv [fallback]| dot1p [fallback]| ipv6-diffserv} diffserv Enter the keyword diffserv to specify trust of DSCP markings. dot1p Enter the keyword dot1p to specify trust dot1p configuration. fallback Enter this keyword to classify packets according to their DSCP value as a secondary option in case no match occurs against the configured class maps.
www.dell.com | support.dell.com Table 33-7.
Related Commands wred-profile Create a WRED profile and name that profile trust Define the dynamic classification to trust DSCP wred-ecn z Syntax Use Explicit Congestion Notification (ECN) to indicate network congestion, rather than dropping packets. wred-ecn Use the no wred-ecn command to stop marking packets. Defaults Command Modes Command History Usage Information No default behavior or values CONFIGURATION (conf-qos-policy-out) Version 8.3.11.0 Introduced on Z9000 Version 8.3.8.
www.dell.com | support.dell.com wred-profile ez Create a WRED profile and name that profile. Syntax wred-profile wred-profile-name To remove an existing WRED profile, use the no wred-profile command. Parameters Defaults Command Modes Command History Usage Information Related Commands 980 | wred-profile-name Enter your WRED profile name in character format (16 character maximum). Or use one of the pre-defined WRED profile names.
34 Router Information Protocol (RIP) Overview Router Information Protocol (RIP) is a Distance Vector routing protocol. FTOS supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2). The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command. Note: The C-Series platform supports RIP with FTOS version 7.6.1.0 and later. The S-Series platform supports RIP with FTOS version 7.8.1.0 and later. Prior to 7.6.
www.dell.com | support.dell.com • • • • • • • • • redistribute redistribute isis redistribute ospf router rip show config show ip rip database show running-config rip timers basic version auto-summary cesz Syntax Restore the default behavior of automatic summarization of subnet routes into network routes. This command applies only to RIP version 2. auto-summary To send sub-prefix routing information, enter no auto-summary. Default Command Modes Command History Enabled. ROUTER RIP Version 8.3.11.
debug ip rip cesz Syntax Examine RIP routing information for troubleshooting. debug ip rip [interface | database | events [interface] | packet [interface] | trigger] To turn off debugging output, use the no debug ip rip command. Parameters interface (OPTIONAL) Enter the interface type and ID as one of the following: • • • • • • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Parameters Defaults always (OPTIONAL) Enter the keyword always to enable the switch software to always advertise the default route. metric metric-value (OPTIONAL) Enter the keyword metric followed by a number as the metric value. Range: 1 to 16 Default: 1 route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of a configured route-map. Disabled. metric: 1 Command Modes ROUTER RIP Command History Usage Information Version 8.3.11.
Related Commands redistribute Allows you to redistribute routes learned by other methods. description cesz Syntax Enter a description of the RIP routing protocol description {description} To remove the description, use the no description {description} command. Parameters Defaults Command Modes Command History Related Commands description Enter a description to identify the RIP protocol (80 characters maximum). No default behavior or values ROUTER RIP Version 8.3.11.
www.dell.com | support.dell.com Related Commands Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series default-metric Assign one distance metric to all routes learned using the redistribute command. distribute-list in cesz Configure a filter for incoming routing updates. Syntax distribute-list prefix-list-name in [interface] To delete the filter, use the no distribute-list prefix-list-name in command.
Parameters prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • • • • • • Defaults Command Modes Command History Related Commands For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel, enter the keyword port-channel followed by a number from 1 to 32 for EtherScale, 1 to 255 for TeraScale, 1-128 on C-Series and S-Series.
www.dell.com | support.dell.com Related Commands Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series ip split-horizon Set RIP routing updates to exclude routing prefixes. ip rip receive version cesz Syntax Set the interface to receive specific versions of RIP. The RIP version you set on the interface overrides the version command in the ROUTER RIP mode. ip rip receive version [1] [2] To return to the default, enter no ip rip receive version.
Command Modes INTERFACE Command History Usage Information Related Commands Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series To enable the interface to send both version of RIP packets, enter ip rip send version 1 2. ip rip receive version Sets the RIP version for the interface to receive traffic. version Sets the RIP version to be used for the switch software.
www.dell.com | support.dell.com Command Modes Command History Usage Information ROUTER RIP Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series RIP supports a maximum of 16 ECMP paths. neighbor cesz Syntax Define a neighbor router with which to exchange RIP information. neighbor ip-address To delete a neighbor setting, use the no neighbor ip-address command.
Defaults Command Modes Command History Usage Information No RIP network is configured. ROUTER RIP Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series You can enable an unlimited number of RIP networks. RIP operates over interfaces configured with any address specified by the network command.
www.dell.com | support.dell.com Usage Information Related Commands When the offset metric is applied to an interface, that value takes precedence over an offset value that is not extended to an interface. ip prefix-list Enter the PREFIX-LIST mode and configure a prefix list. output-delay cesz Syntax Set the interpacket delay of successive packets to the same neighbor. output-delay delay To return to the switch software defaults for interpacket delay, enter no output-delay.
Defaults Command Modes Command History Usage Information Related Commands Not configured. ROUTER RIP Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Although the passive interface will neither send nor receive routing updates, the network on that interface will still be included in RIP updates sent via other interfaces. neighbor Enable RIP for a specified network.
www.dell.com | support.dell.com redistribute isis e Syntax Redistribute routing information from an IS-IS instance. redistribute isis [tag] [level-1 | level-1-2 | level-2] [metric metric-value] [route-map map-name] To disable redistribution, use the no redistribute isis [tag] [level-1 | level-1-2 | level-2] [metric metric-value] [route-map map-name] command. Parameters Defaults Command Modes Command History Usage Information tag (OPTIONAL) Enter the name of the IS-IS routing process.
Defaults Command Modes Command History metric metric-value (OPTIONAL) Enter the keyword metric followed by a number as the metric value. Range: 0 to16 route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of a configured route map. Not configured. ROUTER RIP Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.
www.dell.com | support.dell.com show config cesz Display the changes you made to the RIP configuration. Default values are not shown. Syntax show config Command Modes ROUTER RIP Command History Example Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 34-2. show config Command Example in ROUTER RIP Mode FTOS(conf-router_rip)#show config ! router rip network 172.31.0.
Example Figure 34-3. show ip rip database Command Example (partial) FTOS#show ip rip database Total number of routes in RIP database: 1624 204.250.54.0/24 [50/1] via 192.14.1.3, 00:00:12, GigabitEthernet 9/15 204.250.54.0/24 auto-summary 203.250.49.0/24 [50/1] via 192.13.1.3, 00:00:12, GigabitEthernet 9/14 203.250.49.0/24 auto-summary 210.250.40.0/24 [50/2] via 1.1.18.2, 00:00:14, Vlan 18 [50/2] via 1.1.130.2, 00:00:12, Port-channel 30 210.250.40.0/24 auto-summary 207.250.53.0/24 [50/2] via 1.1.120.
www.dell.com | support.dell.com Command History Introduced on Z9000 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series timers basic cesz Syntax Manipulate the RIP timers for routing updates, invalid, holddown times and flush time. timers basic update invalid holddown flush To return to the default settings, enter no timers basic. Parameters Defaults Command Modes Command History Usage Information 998 Version 8.3.11.1 Version 7.8.1.
version cesz Syntax Specify either RIP version 1 or RIP version 2. version {1 | 2} To return to the default version setting, enter no version. Parameters Default Command Modes Command History Related Commands 1 Enter the keyword 1 to specify RIP version 1. 2 Enter the keyword 2 to specify RIP version 2. The FTOS sends RIPv1 and receives RIPv1 and RIPv2. ROUTER RIP Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.
www.dell.com | support.dell.
35 Remote Monitoring (RMON) Overview FTOS RMON is implemented on all Dell Force10 switching platforms. The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command. FTOS RMON is based on IEEE standards, providing both 32-bit and 64-bit monitoring, and long-term statistics collection.
www.dell.com | support.dell.com • • • • • • show rmon alarms show rmon events show rmon hc-alarm show rmon history show rmon log show rmon statistics rmon alarm cesz Syntax Set an alarm on any MIB object. rmon alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon alarm number command.
Version 7.5.1.0 Support added for C-Series Version 6.1.1.0 Introduced for E-Series rmon collection history cesz Syntax Enable the RMON MIB history group of statistics collection on an interface. rmon collection history {controlEntry integer} [owner name] [buckets number] [interval seconds] To remove a specified RMON history group of statistics collection, use the no rmon collection history {controlEntry integer} command.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History controlEntry integer Enter the keyword controlEntry to specify the RMON group of statistics using a value. Then enter an integer value from 1 to 65535 that identifies the RMON Statistic Table. The integer value must be a unique in the RMON Statistic Table. owner name (OPTIONAL) Enter the keyword owner followed by the owner name to record the owner of the RMON group of statistics.
rmon hc-alarm cesz Syntax Set an alarm on any MIB object. rmon hc-alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon hc-alarm number command. Parameters Defaults Command Modes Command History number Enter the alarm integer number from 1 to 65535. The value must be unique in the RMON Alarm Table. variable The MIB object to monitor.
www.dell.com | support.dell.com show rmon cesz Syntax Defaults Command Modes Command History Example Display the RMON running status including the memory usage. show rmon No default behavior EXEC Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.1.1.0 Introduced for E-Series Figure 35-1. show rmon Command Example FTOS# show rmon RMON status total memory used 218840 bytes.
Example 1 Figure 35-2. show rmon alarms index Command Example FTOS#show rmon alarm 1 RMON alarm entry 1 sample Interval: 5 object: 1.3.6.1.2.1.1.3 sample type: absolute value. value: 255161 alarm type: rising or falling alarm. rising threshold: 1, RMON event index: 1 falling threshold: 501, RMON event index: 501 alarm owner: 1 alarm status: OK FTOS# Example 2 Figure 35-3.
www.dell.com | support.dell.com Example 1 Version 7.5.1.0 Support added for C-Series Version 6.1.1.0 Introduced for E-Series Figure 35-4. show rmon event index Command Example FTOS#show rmon event 1 RMON event entry 1 description: 1 event type: LOG and SNMP TRAP. event community: public event last time sent: none event owner: 1 event status: OK FTOS# Example 2 Figure 35-5.
Example 1 Version 7.5.1.0 Support added for C-Series Version 6.1.1.0 Introduced for E-Series Figure 35-6. show rmon hc-alarm brief Command Example FTOS#show rmon hc-alarm brief index SNMP OID -------------------------------------------------------------------1 1.3.6.1.2.1.1.3 2 1.3.6.1.2.1.1.3 3 1.3.6.1.2.1.1.3 4 1.3.6.1.2.1.1.3 5 1.3.6.1.2.1.1.3 FTOS# Example 2 Figure 35-7. show rmon hc-alarm index Command Example FTOS#show rmon hc-alarm 1 RMON high-capacity alarm entry 1 object: 1.3.6.1.2.1.1.
www.dell.com | support.dell.com Example 1 Figure 35-8. show rmon history index Command Example FTOS#show rmon history 6001 RMON history control entry 6001 interface: ifIndex.100974631 GigabitEthernet 2/0 bucket requested: 1 bucket granted: 1 sampling interval: 5 sec owner: 1 status: OK FTOS# Example 2 Figure 35-9.
Example 2 Figure 35-11. show rmon log brief Command Example FTOS#show rmon log br eventIndex description -------------------------------------------------------------------2 2 4 4 FTOS# Usage Information The log table has a maximum of 500 entries. If the log exceeds that maximum, the oldest log entry is purged to allow room for the new entry. show rmon statistics cesz Syntax Parameters Defaults Command Modes Command History Display the contents of RMON Ethernet Statistics table.
www.dell.com | support.dell.com Example 1 Figure 35-12. show rmon statistics index Command Example FTOS#show rmon statistics 6001 RMON statistics entry 6001 interface: ifIndex.
36 Rapid Spanning Tree Protocol (RSTP) Overview The FTOS implementation of RSTP (Rapid Spanning Tree Protocol) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged LAN that is comprised of LANs interconnected by bridges. RSTP is supported by FTOS on all Dell Force10 systems. The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Related Commands priority-value Enter a number as the bridge priority value in increments of 4096. Range: 0 to 61440. Default: 32768 32768 CONFIGURATION RSTP (conf-rstp) Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.
Command History Example Version 8.3.11.1 Support added for Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced for E-Series Figure 36-1.
www.dell.com | support.dell.com Related Commands protocol spanning-tree rstp Enter the Rapid Spanning Tree mode forward-delay cesz Syntax Configure the amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State. forward-delay seconds To return to the default setting, enter no forward-delay.
Command History Usage Information Version 8.3.11.1 Introduced on Z9000 Version 8.3.1.0 Added milli-second to S-Series. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced for E-Series The hello time is encoded in BPDUs in increments of 1/256ths of a second. The standard minimum hello time in seconds is 1 second, which is encoded as 256.
www.dell.com | support.dell.com protocol spanning-tree rstp cesz Syntax Enter the RSTP mode to configure RSTP. protocol spanning-tree rstp To exit the RSTP mode, enter exit Defaults Command Modes Not configured CONFIGURATION RSTP (conf-rstp) Command History Example Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced for E-Series Figure 36-2.
show spanning-tree rstp cesz Syntax Parameters Command Modes Display the RSTP configuration. show spanning-tree rstp [brief] (OPTIONAL) Enter the keyword brief to view a synopsis of the RSTP configuration information. brief EXEC EXEC Privilege Command History Example 1 Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.4.1.
www.dell.com | support.dell.com Example 2 Figure 36-5. show spanning-tree rstp with EDS and LBK FTOS#show spanning-tree rstp br Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32768, Address 0001.e801.
Parameters cost Port cost (OPTIONAL) Enter the keyword cost followed by the port cost value.
www.dell.com | support.dell.com Example Figure 36-6. spanning-tree rstp edge-port Command FTOS(conf)#interface gigabitethernet 4/0 FTOS(conf-if-gi-4/0)#spanning-tree rstp edge-port FTOS(conf-if-gi-4/0)#show config ! interface GigabitEthernet 4/0 no ip address switchport spanning-tree rstp edge-port no shutdown FTOS# tc-flush-standard cesz Syntax Enable the MAC address flushing upon receiving every topology change notification. tc-flush-standard To disable, use the no tc-flush-standard command.
37 Security Overview Except for the Trace List feature (E-Series only), most of the commands in this chapter are available on all Dell Force10 platforms. The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com aaa accounting cesz Syntax Enable AAA Accounting and create a record for monitoring the accounting function. aaa accounting {system | exec | commands level} {name | default}{start-stop | wait-start | stop-only} {tacacs+} To disable AAA Accounting, use the no aaa accounting {system | exec | command level} {name | default}{start-stop | wait-start | stop-only} {tacacs+} command.
Related Commands enable password Change the password for the enable command. login authentication Enable AAA login authentication on terminal lines. password Create a password. tacacs-server host Specify a TACACS+ server host. aaa accounting suppress cesz Syntax Prevent the generation of accounting records of users with user name value of NULL.
www.dell.com | support.dell.com Usage Information Version 7.5.1.0 Introduced for C-Series Version 6.3.1.0 Introduced on E-Series aaa accounting Enable AAA Accounting and create a record for monitoring the accounting function. show accounting cesz Syntax Defaults Command Modes Display the active accounting sessions for each online user. show accounting No default configuration or behavior EXEC Command History Example Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.
authorization cesz Apply an authorization method list to terminal lines. Syntax authorization {exec | commands level} method-list Parameters exec Enter this keyword to apply an EXEC level authorization method list. commands level Enter this keyword to apply an EXEC and CONFIGURATION level authorization method list. method-list Enter a method list that you defined using the command aaa authorization exec or aaa authorization commands.
www.dell.com | support.dell.com Command History Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series Version 6.1.1.0 Added support for RADIUS aaa authorization config-commands ez Set parameters that restrict (or permit) a user’s access to EXEC level commands. Syntax aaa authorization config-commands Disable authorization checking for CONFIGURATION level commands using the command no aaa authorization config-commands.
Version 7.5.1.0 Introduced for C-Series Version 6.1.1.0 Added support for RADIUS privilege level (CONFIGURATION mode) cesz Syntax Change the access or privilege level of one or more commands. privilege mode {level level command | reset command} To delete access to a level and command, use the no privilege mode level level command command.
www.dell.com | support.dell.com privilege level (LINE mode) cesz Syntax Change the access level for users on the terminal lines. privilege level level To delete access to a terminal line, use the no privilege level level command. Parameters Defaults Command Modes level level Enter the keyword level followed by a number for the access level. Range: 0 to 15. Level 1 is the EXEC mode and Level 15 allows access to all CLI modes. level = 15 LINE Command History Version 8.3.11.
aaa authentication enable cesz Syntax Configure AAA Authentication method lists for user access to the EXEC Privilege mode (the “Enable” access). aaa authentication enable {default | method-list-name} method [... method2] To return to the default setting, use the no aaa authentication enable {default | method-list-name} method [... method2] command.
www.dell.com | support.dell.com radius-server host Specify a RADIUS server host. tacacs-server host Specify a TACACS+ server host. aaa authentication login cesz Syntax Configure AAA Authentication method lists for user access to the EXEC mode (Enable log-in). aaa authentication login {method-list-name | default} method [... method4] To return to the default setting, use the no aaa authentication login {method-list-name | default} command.
Methods configured with the aaa authentication login command are evaluated in the order they are configured. If users encounter an error with the first method listed, FTOS applies the next method configured. If users fail the first method listed, no other methods are applied. The only exception is the local method. If the user’s name is not listed in the local database, the next method is applied. If the correct user name/password combination are not entered, the user is not allowed access to the switch.
www.dell.com | support.dell.com enable password cesz Syntax Change the password for the enable command. enable password [level level] [encryption-type] password To delete a password, use the no enable password [encryption-type] password [level level] command. Parameters level level (OPTIONAL) Enter the keyword level followed by a number as the level of access. Range: 1 to 15 encryption-type (OPTIONAL) Enter the number 7 or 0 as the encryption type.
enable restricted cesz Syntax Allows Dell Force10 technical support to access restricted commands. enable restricted [encryption-type] password To disallow access to restricted commands, enter no enable restricted. Parameters encryption-type (OPTIONAL) Enter the number 7 as the encryption type. Enter 7 followed a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Force10 router.
www.dell.com | support.dell.com Usage Information Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series Use this command to define a password for a level and use the privilege level (CONFIGURATION mode) command to control access to command modes. Passwords must meet the following criteria: • • Start with a letter, not a number. Passwords can have a regular expression as the password.
password cesz Syntax Specify a password for users on terminal lines. password [encryption-type] password To delete a password, use the no password password command. Parameters encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the password entered. The options are: • • password Defaults Command Modes Command History Usage Information Related Commands 0 is the default and means the password is not encrypted and stored as clear text.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Related Commands min-length number (OPTIONAL) Enter the keyword min-length followed by the number of characters. Range: 0 - 32 characters max-retry number (OPTIONAL) Enter the keyword max-retry followed by the number of maximum password retries. Range: 0 - 16 character-restriction (OPTIONAL) Enter the keyword character-restriction to indicate a character restriction for the password.
Caution: Encrypting passwords with this command does not provide a high level of security. When the passwords are encrypted, you cannot return them to plain text unless you re-configure them. To remove an encrypted password, use the no password password command. Usage Information To keep unauthorized people from viewing passwords in the switch configuration file, use the service password-encryption command.
www.dell.com | support.dell.com Example Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 37-4. show users Command Example FTOS#show user Line 0 console 0 * 3 vty 1 FTOS# User admin admin Host(s) idle idle Location 172.31.1.4 Table 1 describes the information in the show users command example. Table 1 show users Command Example Fields Related Commands Field Description (untitled) Indicates with a * which terminal line you are using.
Usage Information The software measures the period of inactivity defined in this command as the period between consecutive keystrokes. For example, if your password is “password” you can enter “p” and wait 29 seconds to enter the next letter. username cesz Syntax Establish an authentication system based on user names.
www.dell.com | support.dell.com The MD5 encryption method includes an additional password to support SmartScripts. This addition is included even if SmartScripts is not installed. The password appears as: username robert secret 5 d7397df437351f9c3e48e5e4fde9f9ed bsd-password $1$T0duaorE$v0l3A5GFxIZz4LHOxz2IM. Related Commands password Specify a password for users on terminal lines. show running-config View the current configuration. RADIUS Commands The RADIUS commands supported by FTOS.
Parameters interface Enter the following keywords and slot/port or number information: • • • • • • • • • Defaults Command Mode Command History For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Loopback interfaces, enter the keyword loopback followed by a number from zero (0) to 16838. For the Null interface, enter the keywords null 0.
www.dell.com | support.dell.com Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series radius-server host cesz Syntax Configure a RADIUS server host. radius-server host {hostname | ip-address | ipv6-address} [auth-port port-number] [retransmit retries] [timeout seconds] [key [encryption-type] key] To delete a RADIUS server host or return to the default values, use the no radius-server host {hostname | ip-address | ipv6-address} [auth-port] [retransmit] [timeout] command.
Command History Usage Information Version 9.0.0.0 Added support for IPv6 Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.0 Authentication key length increased to 42 characters Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced on E-Series Configure up to six RADIUS server hosts by using this command for each server host configured. FTOS searches for the RADIUS hosts in the order they are configured in the software.
www.dell.com | support.dell.com If the key parameter in the radius-server host command is configured, the key configured with the radius-server key command is the default key for all RADIUS communications. Related Commands radius-server host Configure a RADIUS host. radius-server retransmit cesz Syntax Configure the number of times the switch attempts to connect with the configured RADIUS host server before declaring the RADIUS host server unreachable.
Command History Related Commands Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced on E-Series radius-server host Configure a RADIUS host. TACACS+ Commands FTOS supports TACACS+ as an alternate method for login authentication.
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • • • • Defaults Command Mode Command History For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Loopback interfaces, enter the keyword loopback followed by a number from zero (0) to 16838.
Defaults Command Modes Command History Usage Information timeout seconds (OPTIONAL) Enter the keyword timeout followed by the number of seconds the switch waits for a reply from the TACACS+ server. Range: 0 to 1000 Default: 10 seconds key key (OPTIONAL) Enter the keyword key followed by a string up to 42 characters long as the authentication key. This authentication key must match the key specified in the tacacs-server key for the TACACS+ daemon.
www.dell.com | support.dell.com Command History Usage Information Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.0 Authentication key length increased to 42 characters Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.2.1.1 Introduced on E-Series The key configured with this command must match the key configured on the TACACS+ daemon. Port Authentication (802.1X) Commands The 802.
• • • • • • • If 802.1X authorization is enabled but the VLAN information from the RADIUS server is not valid, the port returns to the unauthorized state and remains in the configured access VLAN. This prevents ports from appearing unexpectedly in an inappropriate VLAN due to a configuration error. Configuration errors create an entry in Syslog. If 802.1X authorization is enabled and all information from the RADIUS server is valid, the port is placed in the specified VLAN after authentication.
www.dell.com | support.dell.com Related Commands Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series dot1x authentication (Configuration) Enable dot1x globally dot1x auth-fail-vlan cesz Syntax Configure a authentication failure VLAN for users and devices that fail 802.1X authentication. dot1x auth-fail-vlan vlan-id [max-attempts number] To delete the authentication failure VLAN, use the no dot1x auth-fail-vlan vlan-id [max-attempts number] command.
dot1x auth-server cesz Syntax Defaults Command Modes Command History Configure the authentication server to RADIUS. dot1x auth-server radius No default behavior or values CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series dot1x guest-vlan cesz Syntax Configure a guest VLAN for limited access users or for devices that are not 802.1X capable.
www.dell.com | support.dell.com dot1x reauthentication Enable periodic re-authentication show dot1x interface Display the 802.1X information on an interface dot1x mac-auth-bypass cs z Syntax Defaults Command Modes Enable MAC authentication bypass. If 802.1X times out because the host did not respond to the Identity Request frame, FTOS attempts to authenticate the host based on its MAC address. [no] dot1x mac-auth-bypass Disabled INTERFACE Command History Usage Information Version 8.3.11.
dot1x port-control cesz Syntax Parameters Defaults Command Modes Command History Usage Information Enable port control on an interface. dot1x port-control {force-authorized | auto | force-unauthorized} force-authorized Enter the keyword force-authorized to forcibly authorize a port. auto Enter the keyword auto to authorize a port based on the 802.1X operation result. force-unauthorized Enter the keyword force-unauthorized to forcibly de-authorize a port.
www.dell.com | support.dell.com dot1x reauthentication cesz Syntax Enable periodic re-authentication of the client. dot1x reauthentication [interval seconds] To disable periodic re-authentication, use the no dot1x reauthentication command. Parameters Defaults Command Modes 3600 seconds (1 hour) INTERFACE Command History Related Commands (Optional) Enter the keyword interval followed by the interval time, in seconds, after which re-authentication will be initiated.
dot1x server-timeout cesz Syntax Configure the amount of time after which exchanges with the server time out. dot1x server-timeout seconds To return to the default, use the no dot1x server-timeout command. Parameters Defaults Command Modes Command History seconds Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant. Default: 30 30 seconds INTERFACE Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
www.dell.com | support.dell.com dot1x tx-period cesz Syntax Configure the intervals at which EAPOL PDUs are transmitted by the Authenticator PAE. dot1x tx-period seconds To return to the default, use the no dot1x tx-period command. Parameters Defaults Command Modes Command History seconds Enter the interval time, in seconds, that EAPOL PDUs are transmitted. Range: 1 to 31536000 (1 year) Default: 30 30 seconds INTERFACE Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.
Example Figure 37-5. show dot1x interface command Example FTOS#show dot1x int Gi 2/32 802.
www.dell.com | support.dell.com crypto key generate cesz Syntax Parameters Defaults Command Modes Command History Example Generate keys for the SSH server. crypto key generate {rsa | rsa1} rsa Enter the keyword rsa followed by the key size to generate a SSHv2 RSA host keys. Range: 1024 to 2048 Default: 1024 rsa1 Enter the keyword rsa1 followed by the key size to generate a SSHv1 RSA host keys. Range: 1024 to 2048 Default: 1024 Key size 1024 CONFIGURATION Version 8.3.11.
debug ip ssh cesz Syntax Enables collecting SSH debug information. debug ip ssh {client | server} To disable debugging, use the no debug ip ssh {client | server} command. Parameters Defaults Command Modes Enter the keyword client to enable collecting debug information on the client. server Enter the keyword server to enable collecting debug information on the server. Disabled on both client and server EXEC Command History Usage Information client Version 8.3.11.1 Introduced on Z9000 Version 7.
www.dell.com | support.dell.com ip ssh authentication-retries cesz Syntax Configure the maximum number of attempts that should be used to authenticate a user. ip ssh authentication-retries 1-10 Parameters Defaults Command Modes Command History Usage Information 1-10 Enter the number of maximum retries to authenticate a user. Range: 1 to 10 Default: 3 3 CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced for S-Series Version 7.5.1.
ip ssh hostbased-authentication cesz Syntax Enable hostbased-authentication for the SSHv2 server. ip ssh hostbased-authentication enable To disable hostbased-authentication for SSHv2 server, use the no ip ssh hostbased-authentication enable command. Parameters Defaults Command Modes Disable by default CONFIGURATION Command History Usage Information Enter the keyword enable to enable hostbased-authentication for SSHv2 server. enable Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.
www.dell.com | support.dell.com Command History Usage Information Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series The server-generated key is used for SSHv1 key-exchange. ip ssh password-authentication cesz Syntax Enable password authentication for the SSH server.
Example Figure 37-7. ip ssh pub-key-file Command Example FTOS#conf FTOS(conf)# ip ssh pub-key-file flash://knownhosts FTOS(conf)# Usage Information This command specifies the file to be used for the host-based authentication. The file creates/ overwrites the file flash://ADMIN_DIR/ssh/knownhosts and deletes the user specified file. Even though this is a global configuration command, it will not appear in the running configuration since this command needs to be run just once.
www.dell.com | support.dell.com This file contains hostnames and usernames, for which hosts and users, rhost-authentication can be allowed. Note: For rhostfile and pub-key-file, the administrator must FTP the file to the switch. ip ssh rsa-authentication (Config) cesz Syntax Enable RSA authentication for the SSHv2 server. ip ssh rsa-authentication enable To disable RSA authentication, use the no ip ssh rsa-authentication enable command.
Usage Information Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series If you want to log in without being prompted for a password, log in through RSA authentication. To do that, you must first add the SSHv2 RSA public keys to the list of authorized keys. This command adds the specified RSA keys to the following file: flash://ADMIN_DIR/ssh/authorized-keys-username (where username is the user associated with this terminal).
www.dell.com | support.dell.com Example Figure 37-9. ip ssh server port Command Example FTOS# conf FTOS(conf)# ip ssh server port 45 FTOS(conf)# ip ssh server enable FTOS# Related Commands show ip ssh Display the ssh information show crypto cesz Syntax Parameters Defaults Command Modes Command History Example Display the public part of the SSH host-keys. show crypto key mypubkey {rsa | rsa1} Key Enter the keyword key to display the host public key.
show ip ssh cesz Syntax Command Modes Display information about established SSH sessions. show ip ssh EXEC EXEC Privilege Command History Example Version 8.3.11.1 Figure 37-11. Introduced on Z9000 show ip ssh Command Example FTOS#show ip ssh SSH server : SSH server version : Password Authentication : Hostbased Authentication : RSA Authentication Vty Encryption 0 3DES 1 3DES 2 3DES FTOS# Related Commands enabled. v1 and v2. enabled. disabled. : disabled. Remote IP 172.16.1.162 172.16.1.162 172.16.
www.dell.com | support.dell.com Usage Information Related Commands This command displays the contents of the file flash://ADMIN_DIRssh/knownhosts ip ssh pub-key-file Configure the file name for the host-based authentication show ip ssh rsa-authentication cesz Syntax Parameters Defaults Command Modes Command History Example Display the authorized-keys for the RSA authentication. show ip ssh rsa-authentication {my-authorized-keys} my-authorized-keys Display the RSA authorized keys.
Defaults Command Modes (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 Note: The :: notation specifies successive hexadecimal fields of zeros -l username (OPTIONAL) Enter the keyword -l followed by the user name used in this SSH session. Default: The user name of the user associated with the terminal. -p port-number (OPTIONAL) Enter the keyword -p followed by the port number.
www.dell.com | support.dell.com clear ip dhcp snooping csz Clear the DHCP binding table. Syntax clear ip dhcp snooping binding Command Modes Default Command History Related Commands EXEC Privilege None Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on C-Series and S-Series show ip dhcp snooping Display the contents of the DHCP binding table. ip dhcp relay csz Syntax Parameters Command Modes Default Command History Enable Option 82.
Usage Information Related Commands When enabled, no learning takes place until snooping is enabled on a VLAN. Upon disabling DHCP Snooping the binding table is deleted, and Option 82, IP Source Guard, and Dynamic ARP Inspection are disabled. ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs. ip dhcp snooping database csz Syntax Parameters Command Modes Default Command History Delay writing the binding table for a specified time.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Default Command History Related Commands None Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on C-Series and S-Series show ip dhcp snooping Display the contents of the DHCP binding table. ip dhcp snooping database renew csz Syntax Command Modes Renew the binding table. ip dhcp snooping database renew EXEC EXEC Privilege Default Command History None Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.
Default Command History Disabled Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on C-Series and S-Series ip dhcp snooping vlan cs Enable DHCP Snooping on one or more VLANs. Syntax [no] ip dhcp snooping vlan name Parameters Command Modes Default Command History Usage Information Related Commands name Enter the name of a VLAN on which to enable DHCP Snooping. CONFIGURATION Disabled Version 7.8.1.
| Security www.dell.com | support.dell.
38 Service Provider Bridging Overview Service Provider Bridging is composed of VLAN Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the FTOS Configuration Guide Service Provider Bridging chapter. This chapter includes CLI information for FTOS Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel. L2PT is available in FTOS for the E-Series e, C-Series c, S-Series s, and Z-Series z.
www.dell.com | support.dell.com debug protocol-tunnel cesz Syntax Enable debugging to ensure incoming packets are received and rewritten to a new MAC address. debug protocol-tunnel interface {in | out | both} [vlan vlan-id] [count value] To disable debugging, use the no debug protocol-tunnel interface {in | out | both} [vlan vlan-id] [count value] command.
Command Modes Command History Example CONF-IF-VLAN Version 8.3.11.1 Introduced on Z9000 Version 8.2.1.0 Introduced on the C-Series, E-Series and E-Series ExaScale. Version 7.4.1.0 Introduced Figure 38-1.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information Disabled CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 7.4.1.0 Introduced FTOS must have the default CAM profile with the default microcode before you enable L2PT. protocol-tunnel rate-limit cesz Syntax Enable traffic rate limiting per box. protocol-tunnel rate-limit rate To reset the rate limit to the default, use the no protocol-tunnel rate-limit rate command.
Parameters Defaults Command Modes Command History Example vlan vlan-id (OPTIONAL) Enter the keyword vlan followed by the VLAN ID to display information for the one VLAN. Range: 1 to 4094 No default values or behavior EXEC Version 8.3.11.1 Introduced on Z9000 Version 8.2.1.0 Introduced on the C-Series, E-Sere i es and E-Series ExaScale. Version 7.4.1.0 Introduced Figure 38-3.
| Service Provider Bridging www.dell.com | support.dell.
39 sFlow Overview sFlow commands are supported on the Dell Force10 platforms. The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command. FTOS sFlow monitoring system includes an sFlow Agent and an sFlow Collector. The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector.
www.dell.com | support.dell.com Commands The sFlow commands are: • • • • • • • • • • • • sflow collector sflow enable (Global) sflow enable (Interface) sflow extended-gateway enable sflow extended-router enable sflow extended-switch enable sflow polling-interval (Global) sflow polling-interval (Interface) sflow sample-rate (Global) sflow sample-rate (Interface) show sflow show sflow linecard sflow collector cesz Syntax Specify a collector(s) to which sFlow datagrams are forwarded.
Defaults Command Modes Command History Usage Information Not configured CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 8.2.1.0 Introduces on S-Series Stacking Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 6.5.1.0 Expanded the no form of the command to mirror the syntax used to configure Version 6.2.1.1 Introduced on E-Series You can specify up to 2 sFlow collectors.
www.dell.com | support.dell.com sflow enable (Interface) cesz Syntax Enable sFlow on Interfaces. sflow enable To disable sFlow, use the no sflow enable command. Defaults Command Modes Command History Usage Information sFlow is disabled by default on all interfaces INTERFACE Version 8.3.11.1 Introduced on Z9000 Version 8.2.1.0 Introduces on S-Series Stacking Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 6.
Usage Information The show sflow command displays the configured global extended information. FTOS 7.8.1.0 and later enhances the sFlow implementation for real time traffic analysis on the E-Series to provide extended gateway information in cases where the destination IP addresses are learned by different routing protocols, and for cases where the destination is reachable over ECMP. Example Figure 39-1.
www.dell.com | support.dell.com sflow extended-switch enable cesz Syntax Enable packing information on a switch only. sflow extended-switch enable To disable packing information, use the no sflow extended-switch [enable] command. Parameters Defaults Command Modes Command History Usage Information Related Commands enable Enter the keyword enable to enable global extended information. Disabled CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 8.2.1.
Usage Information Related Commands Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 6.2.1.1 Introduced on E-Series The polling interval for an interface is the maximum number of seconds between successive samples of counters to be sent to the collector. This command changes the global default counter polling (20 seconds) interval. You can configure an interface to use a different polling interval.
www.dell.com | support.dell.com sflow sample-rate (Global) cesz Syntax Change the global default sampling rate. sflow sample-rate value To return to the default sampling rate, enter the no sflow sample-rate. Parameters Defaults Command Modes Command History Usage Information Related Commands value Enter the sampling rate value. Range: C-Series, S-Series, Z9000: 256 to 8388608 packets E-Series TeraScale and ExaScale: 2 to 8388608 Enter values in powers of 2 only, for example 4096, 8192, 16384 etc.
Defaults Command Modes Command History Usage Information Related Commands The Global default sampling CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 8.2.1.0 Introduces on S-Series Stacking Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 6.2.1.1 Introduced on E-Series This command changes the sampling rate for an Interface.
www.dell.com | support.dell.com Example Figure 39-2. show sflow Command Example FTOS#show sflow sFlow services are enabled Global default sampling rate: 32768 Global default counter polling interval: 20 1 collectors configured Collector IP addr: 133.33.33.53, Agent IP addr: 133.33.33.
40 Simple Network Management Protocol and Syslog Overview This chapter contains commands to configure and monitor SNMP v1/v2/v3 and Syslog. Both features are supported on the Dell Force10 systems. The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com The Simple Network Management Protocol (SNMP) is used to communicate management information between the network management stations and the agents in the network elements. FTOS supports SNMP versions 1, 2c, and 3, supporting both read-only and read-write modes. FTOS sends SNMP traps, which are messages informing an SNMP management system about the network. FTOS supports up to 16 SNMP trap receivers.
Example Figure 40-1.
www.dell.com | support.dell.com show snmp group cesz Syntax Command Modes Display the group name, security model, status, and storage type of each group. show snmp group EXEC EXEC Privilege Command History Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Usage Information Example The following example displays a group named ngroup.
Command History Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command snmp ifmib ifalias long cesz Syntax Defaults Command Modes Command History Example Display the entire description string through the Interface MIB, which would be truncated otherwise to 63 characters. snmp ifmib ifalias long Interface description truncated beyond 63 characters CONFIGURATION Version 8.3.11.
www.dell.com | support.dell.com Parameters Defaults Command Modes Example Enter a text string (up to 20 characters long) to act as a password for SNMP. ro Enter the keyword ro to specify read-only permission. rw Enter the keyword rw to specify read-write permission. ipv6 access-list-name (Optional) Enter the keyword ipv6 followed by a an IPv6 ACL name (a string up to 16 characters long).
Example Figure 40-7. snmp-server community Command Example FTOS(conf)# ip access-list standard snmp-ro-acl FTOS(config-std-nacl)#seq 5 permit host 10.10.10.224 FTOS(config-std-nacl)#seq 10 deny any count ! FTOS(conf)#snmp-server community guest ro snmp-ro-acl FTOS(conf)# Note: For IPv6 ACLs, only IPv6 and UDP types are valid for SNMP; TCP, ICMP rules are not valid for SNMP. In IPv6 ACLs port rules are not valid for SNMP.
www.dell.com | support.dell.com Parameters notification-type Enter the type of notification from the list below: • • bgp—for notification of changes in BGP process envmon—for Dell Force10 device notifications when an environmental • • • snmp—for notification of the RFC 1157 traps. stp - Allow Spanning Tree protocol notification (RFC 1493) xstp - Allow MSTP (802.1s), RSTP (802.
Parameters Enter the keyword local followed by the engine ID number that identifies the copy of the SNMP on the local device. Format (as specified in RFC 3411): 12 octets. local engineID • • Defaults Command Modes Command History The first 4 octets are set to the private enterprise number. The remaining 8 octets are the MAC address of the chassis. remote ip-address Enter the keyword remote followed by the IP address that identifies the copy of the SNMP on the remote device.
www.dell.com | support.dell.com Parameters group_name Enter a text string (up to 20 characters long) as the name of the group. Defaults: The following groups are created for mapping to read/write community/security-names. • • v1v2creadg — maps to a community/security-name with ro permissions 1v2cwriteg — maps to a community/security-name rw permissions (OPTIONAL) Enter the security model version number (1, 2c, or 3).
Example Figure 40-8. snmp-server group Command Example FTOS#conf FTOS(conf)# snmp-server group harig 3 priv read rview FTOS# Note: The number of configurable groups is limited to 16 groups. Related Commands show snmp group Display the group name, security model, view status, and storage type of each group. show running-config snmp Display the SNMP running configuration snmp-server host cesz Syntax Configure the recipient of an SNMP trap operation.
www.dell.com | support.dell.com community-string Enter a text string (up to 20 characters long) as the name of the SNMP community. Note: For version 1 and version 2c security models, this string represents the name of the SNMP community. The string can be set using this command, however it is recommended that you set the community string using the snmp-server community command before executing this command. For version 3 security model, this string is the USM user security name.
The snmp-server host command is used in conjunction with the snmp-server enable command. Use the snmp-server enable command to specify which SNMP notifications are sent globally. For a host to receive most notifications, at least one snmp-server enable command and the snmp-server host command for that host must be enabled.
www.dell.com | support.dell.com snmp-server packetsize cesz Syntax Set the largest SNMP packet size permitted when the SNMP server is receiving a request or generating a reply, use the snmp-server packetsize global configuration command. snmp-server packetsize byte-count Parameters Defaults Command Modes Command History byte-count Enter one of the following values 8, 16, 24 or 32. Packet sizes are 8000 bytes, 16000 bytes, 32000 bytes, and 64000 bytes. 8 CONFIGURATION Version 8.3.11.
Related Commands snmp-server community Set the community string. snmp-server user cesz Syntax Configure a new user to an SNMP group.
www.dell.com | support.dell.com Defaults Command Modes Command History priv password (OPTIONAL) Enter a text string (up to 20 characters long) password that will enables the host to encrypt the contents of the message it sends to the agent. Minimum: 8 characters long access-list-name (Optional) Enter the standard IPv4 access list name (a string up to 16 characters long).
FTOS#conf FTOS(conf)# snmp-server user n3user ngroup remote 172.31.1.3 udp-port 5009 3 auth md5 authpasswd Note: The number of configurable users is limited to 16. Related Commands Display the information configured on each SNMP user name. show snmp user snmp-server view cesz Syntax Configure an SNMPv3 view. snmp-server view view-name oid-tree {included | excluded} To remove an SNMPv3 view, use the no snmp-server view view-name oid-tree {included | excluded} command.
www.dell.com | support.dell.com snmp trap link-status cesz Syntax Enable the interface to send SNMP link traps, which indicate whether the interface is up or down. snmp trap link-status To disable sending link trap messages, enter no snmp trap link-status. Defaults Command Modes Enabled. INTERFACE Command History Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.
clear logging cesz Syntax Defaults Clear the messages in the logging buffer. clear logging None. Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Related Commands show logging Display logging settings and system messages in the internal buffer.
www.dell.com | support.dell.com Version 7.5.1.0 Support added for C-Series E-Series legacy command Related Commands logging console Set the logging console parameters. default logging monitor cesz Syntax Defaults Command Modes Command History Return to the default settings for messages logged to the terminal. default logging monitor level = 7 or debugging CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.
logging cesz Syntax Configure an IP address or host name of a Syslog server where logging messages will be sent. logging {ip-address | ipv6-address | hostname} To disable logging, enter no logging. Parameters Defaults Command Modes Usage Information Command History ip-address Enter the IP address in dotted decimal format. ipv6-address Enter the IPv6 address in the x:x:x:x::x format Note: The :: notation specifies successive hexadecimal fields of zeros.
www.dell.com | support.dell.com Command Modes Command History CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Usage Information Related Commands When you decrease the buffer size, all messages stored in the buffer are lost. Increasing the buffer size does not affect messages stored in the buffer. clear logging Clear the logging buffer.
logging facility cesz Syntax Configure the Syslog facility, used for error messages sent to Syslog servers. logging facility [facility-type] To return to the default values, enter no logging facility. Parameters facility-type (OPTIONAL) Enter one of the following parameters.
www.dell.com | support.dell.com logging history cesz Syntax Specify which messages are logged to the history table of the switch and the SNMP network management station (if configured). logging history level To return to the default values, enter no logging history. Parameters Defaults Command Modes Command History level Indicate a value from 0 to 7 or enter one of the following equivalent words: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging.
Usage Information Related Commands When the number of messages reaches the limit you set with the logging history size command, older messages are deleted as newer ones are added to the table. show logging history Display information logged to the history buffer. logging monitor cesz Syntax Specify which messages are logged to Telnet applications. logging monitor [level] To disable logging to terminal connections, enter no logging monitor.
www.dell.com | support.dell.com Usage Information Related Commands When you enter no logging on, messages are logged only to the console. logging Enable logging to Syslog server. logging buffered Set the logging buffered parameters. logging console Set the logging console parameters. logging monitor Set the logging parameters for the terminal connections.
Related Commands logging Enable the logging to another device. logging synchronous cesz Syntax Synchronize unsolicited messages and FTOS output. logging synchronous [level level | all] [limit number-of-buffers] To disable message synchronization, use the no logging synchronous [level level | all] [limit number-of-buffers] command. Parameters Defaults Command Modes Command History all Enter the keyword all to ensure that all levels are printed asynchronously.
www.dell.com | support.dell.com logging trap cesz Syntax Specify which messages are logged to the Syslog server based the message severity. logging trap [level] To return to the default values, enter default logging trap. To disable logging, enter no logging trap. Parameters level Defaults Command Modes Command History Indicate a value from 0 to 7 or enter one of the following parameters: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging. The default is 6.
Command History Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Figure 40-11.
www.dell.com | support.dell.com show logging driverlog stack-unit (S-Series) sz Display the driver log for the specified stack member. Syntax show logging driverlog stack-unit unit# Parameters Defaults Command Modes stack-unit unit# Enter the keyword stack-unit followed by the stack member ID of the switch for which you want to display the driver log. Unit ID range: S4810: 0-11 all other S-Series: 0-7 No default values or behavior EXEC EXEC Privilege Command History Usage Information Version 8.
41 Storm Control Overview The FTOS Storm Control feature allows users to limit or suppress traffic during a traffic storm (Broadcast/Unknown Unicast Rate Limiting, or Multicast on the C-Series and S-Series). The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com • • When broadcast storm control is enabled on an interface or globally on ingress, and DSCP marking for a DSCP value 1 is configured for the data traffic, the traffic will go to queue 1 instead of queue 0. Similarly, if unicast storm control is enabled on an interface or globally on ingress, and DSCP marking for a DSCP value 2 is configured for the data traffic, the traffic will go to queue 2 instead of queue 0.
Example Figure 41-2. show storm-control broadcast Command Example (C-Series) FTOS#show storm-control broadcast gigabitethernet 3/24 Broadcast storm control configuration Interface Direction Packets/Second ----------------------------------------------Gi 3/24 Ingress 1000 FTOS# show storm-control multicast csz Syntax Parameters Display the storm control multicast configuration.
www.dell.com | support.dell.com show storm-control unknown-unicast cesz Syntax Parameters Display the storm control unknown-unicast configuration show storm-control unknown-unicast [interface] interface (OPTIONAL) Enter one of the following interfaces to display the interface specific storm control configuration. • • • • Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
storm-control broadcast (Configuration) cesz Syntax Configure the percentage of broadcast traffic allowed in or out of the network. storm-control broadcast [percentage decimal_value in | out] | [wred-profile name]] [packets_per_second in] To disable broadcast rate-limiting, use the storm-control broadcast [percentage decimal_value in | out] | [wred-profile name]] [packets_per_second in] command.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History percentage decimal_value in E-Series Only: Enter the percentage of broadcast traffic allowed in to the network. Optionally, you can designate a decimal value percentage, for example, 55.5%. Percentage: 0 to 100 0% blocks all related traffic 100% allows all traffic into the interface Decimal Range: .1 to .
Usage Information Broadcast traffic (all 0xFs) should be counted against broadcast storm control meter, not against the multicast storm control meter. It is possible, however, that some multicast control traffic may get dropped when storm control thresholds are exceeded. storm-control multicast (Interface) csz Syntax Configure the percentage of multicast traffic allowed on an C-Series or S-Series interface (ingress only) network only.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information wred-profile name E-Series Only: (Optionally) Enter the keyword wred-profile followed by the profile name to designate a wred-profile. packets_per_second in C-Series and S-Series Only: Enter the packets per second of broadcast traffic allowed into the network. Range: 0 to 33554431 The minimum number of PPS limited on the S4810 is 2 No default behavior or values CONFIGURATION Version 8.3.11.
Command History Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 E-Series Only: Added percentage decimal value option Version 6.5.1.
| Storm Control www.dell.com | support.dell.
42 Spanning Tree Protocol (STP) Overview The commands in this chapter configure and monitor the IEEE 802.1d Spanning Tree protocol (STP) and are supported on all Dell Force10 switch/routing platforms. The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Defaults Command Modes Command History priority-value = 32768 SPANNING TREE (The prompt is “config-stp”.) Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series bpdu-destination-mac-address cs Use the Provider Bridge Group address in Spanning Tree or GVRP PDUs.
Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Usage Information Related Commands When you enable debug spanning-tree bpdu for multiple interfaces, the software only sends information on BPDUs for the last interface specified. protocol spanning-tree Enter SPANNING TREE mode on the switch.
www.dell.com | support.dell.com Related Commands Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series protocol spanning-tree Enter SPANNING TREE mode. forward-delay cesz Syntax The amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State. forward-delay seconds To return to the default setting, enter no forward-delay.
Command History Related Commands Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series forward-delay Change the wait time before STP transitions to the Forwarding state. max-age Change the wait time before STP refreshes protocol configuration information.
www.dell.com | support.dell.com Defaults Command Modes Not configured. CONFIGURATION Command History Example Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 42-1. protocol spanning-tree Command Example FTOS(conf)#protocol spanning-tree 0 FTOS(config-stp)# Usage Information STP is not enabled when you enter the SPANNING TREE mode.
show spanning-tree 0 cesz Syntax Parameters Display the Spanning Tree group configuration and status of interfaces in the Spanning Tree group. show spanning-tree 0 [active | brief | interface interface | root | summary] 0 Enter 0 (zero) to display information about that specific Spanning Tree group. active (OPTIONAL) Enter the keyword active to display only active interfaces in Spanning Tree group 0.
www.dell.com | support.dell.com Example Figure 42-3. show spanning-tree Command Example FTOS#show spann 0 Executing IEEE compatible Spanning Tree Protocol Bridge Identifier has priority 32768, Address 0001.e800.0a56 Configured hello time 2, max age 20, forward delay 15 We are the root of the spanning tree Current root has priority 32768 address 0001.e800.
Table 42-1. show spanning-tree Command Example Information (continued) Field Description “Times” List the number of seconds since the last: • • • • hello time topology change notification aging “Port 1...” Displays the Interface type slot/port information and the status of the interface (Disabled or Enabled). “Port path...” Displays the path cost, priority, and identifier for the interface. “Designated root...
www.dell.com | support.dell.com spanning-tree cesz Syntax Configure Spanning Tree group id, cost, priority, and Portfast for an interface. spanning-tree stp-id [cost cost] [portfast [bpduguard]] [priority priority] To disable Spanning Tree group on an interface, use the no spanning-tree stp-id [cost cost] [portfast [bpduguard] [shutdown-on-violation]] [priority priority] command. Parameters stp-id Enter the Spanning Tree Protocol group ID.
43 System Time and Date Overview The commands in this chapter configure time values on the system, either using FTOS, or the hardware, or using the Network Time Protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For details, see the “Network Time Protocol” section of the Management chapter in the FTOS Configuration Guide. The commands in this chapter are generally supported on all Dell Force10 platforms.
www.dell.com | support.dell.com calendar set cesz Syntax Parameters Set the time and date for the switch hardware clock. calendar set time month day year time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format, for example, 17:15:00 is 5:15 pm. month Enter the name of one of the 12 months in English. You can enter the name of a day to change the order of the display to time day month year. day Enter the number of the day. Range: 1 to 31.
clock read-calendar cesz Syntax Set the software clock on the switch from the information set in hardware clock (calendar). clock read-calendar Defaults Not configured. Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Usage Information In the switch, the hardware clock is separate from the software and is called the calendar.
www.dell.com | support.dell.com Example Figure 43-2. clock set Command Example FTOS#clock set 16:20:00 19 may 2001 FTOS# Usage Information You can change the order of the month and day parameters to enter the time and date as time day month year. You cannot delete the software clock. The software clock runs only when the software is up. The clock restarts, based on the hardware clock, when the switch reboots.
Defaults Command Modes Command History Related Commands end-year Enter a four-digit number as the year. Range: 1993 to 2035. offset (OPTIONAL) Enter the number of minutes to add during the summer-time period. Range: 1 to1440. Default: 60 minutes Not configured. CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series calendar set Set the hardware clock.
www.dell.com | support.dell.com end-week Enter the one of the following as the week that daylight savings ends: • • • Defaults Command Modes Command History Related Commands week-number: enter a number from 1-4 as the number of the week to end daylight savings time. first: enter the keyword first to end daylight savings time in the first week of the month. last: enter the keyword last to end daylight savings time in the last week of the month.
Default Command Modes Command History Usage Information Not configured. CONFIGURATION Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Coordinated Universal Time (UTC) is the time standard based on the International Atomic Time standard, commonly known as Greenwich Mean time. When determining system time, you must include the differentiator between UTC and your local timezone.
www.dell.com | support.dell.com events Enter the keyword events to display information on NTP events. loopfilter Enter the keyword loopfilter to display information on NTP local clock frequency. packets Enter the keyword packets to display information on NTP packets. select Enter the keyword select to display information on the NTP clock selection. sync Enter the keyword sync to display information on the NTP clock synchronization. Command Modes EXEC Privilege Command History Version 8.3.11.
ntp authentication-key cesz Specify a key for authenticating the NTP server. Syntax ntp authentication-key number md5 [0 | 7] key Parameters Defaults Command Modes Command History Usage Information number Specify a number for the authentication key. Range: 1 to 4294967295. This number must be the same as the number parameter configured in the ntp trusted-key command. md5 Specify that the authentication key will be encrypted using MD5 encryption algorithm.
www.dell.com | support.dell.com Defaults Command Modes Command History Disabled INTERFACE Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series ntp disable cesz Syntax Prevent an interface from receiving NTP packets. ntp disable To re-enable NTP on an interface, enter no ntp disable.
ntp server cesz Syntax Configure an NTP time-serving host. ntp server address [key keyid] [prefer] [version number] To delete an NTP server configuration, use the no ntp server ip-address command. Parameters Defaults Command Modes Command History Usage Information address Enter the IP address or name of the NTP server. Enter either an IPv4 address in dotted decimal format, an IPv6 address in X:X:X:X::X format, or a domain name.
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • • Defaults Command Modes Command History For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Loopback interfaces, enter the keyword loopback followed by a number from zero (0) to 16383.
Related Commands ntp authentication-key Set an authentication key for NTP. ntp authenticate Enable the NTP authentication parameters you set. ntp update-calendar cesz Syntax Configure the FTOS to update the calendar (the hardware clock) with the NTP-derived time. ntp update-calendar [minutes] To return to default setting, enter no ntp update-calendar. Parameters Defaults Command Modes Command History minutes (OPTIONAL) Enter the number of minutes between updates from NTP to the hardware clock.
www.dell.com | support.dell.com Related Commands show clock Display the time and date from the switch software clock. show clock cesz Syntax Parameters Command Modes Display the current clock settings. show clock [detail] detail (OPTIONAL) Enter the keyword detail to view the source information of the clock. EXEC EXEC Privilege Command History Example Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.
Command History Example Version 9.0.0.0 Added support for IPv6 Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 43-6. show ntp associations Command Example FTOS#show ntp associations remote ref clock st when poll reach delay offset disp ========================================================================== 10.10.120.5 0.0.0.0 16 - 256 0 0.00 0.000 16000.0 *172.16.1.
www.dell.com | support.dell.com show ntp status cesz Syntax Command Modes Display the current NTP status. show ntp status EXEC EXEC Privilege Command History Example Version 9.0.0.0 Added support for IPv6 Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 43-7. show ntp status Command Example FTOS#sh ntp sta Clock is synchronized, stratum 2, reference is 100.10.10.
44 VLAN Stacking Overview With the VLAN-Stacking feature (also called Stackable VLANs and QinQ), available on all Dell Force10 platforms that are supported by this version of FTOS, you can “stack” VLANs into one tunnel and switch them through the network transparently. The symbols e c s — E-Series, C-Series, S-Series, z under command headings indicate which Dell Force10 platforms or Z-Series, respectively — support the command.
www.dell.com | support.dell.com • • • • • Layer 3 protocols are not supported on a Stackable VLAN network. Assigning an IP address to a Stackable VLAN is supported when all the members are only Stackable VLAN trunk ports. IP addresses on a Stackable VLAN-enabled VLAN is not supported if the VLAN contains Stackable VLAN access ports. This facility is provided for SNMP management over a Stackable VLAN enabled VLAN containing only Stackable VLAN trunk interfaces.
Command History Usage Information Related Commands Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on S4810. Version 8.3.1.0 Introduced on C-Series and S-Series. You must first enable DEI for this configuration to take effect. Make packets eligible for dropping based on their DEI value dei enable dei mark Set the DEI value on egress according to the color currently assigned to the packet.
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • Defaults Command Mode Command History For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel, enter the keyword port-channel followed by a number from 1 to 32 for EtherScale, 1 to 255 for TeraScale and ExaScale; 1 to 128 for C-Series and S-Series.
show interface dei-mark cs Display the dei mark configuration. Syntax show interface dei-mark [interface slot/port | linecard number port-set number] Parameters Command Mode Command History Example interface slot/port Enter the interface type followed by the line card slot and port number. linecard number port-set number Enter linecard followed by the line card slot number, then enter port-set followed by the port-pipe number. EXEC Privilege Version 8.3.1.0 Introduced on C-Series and S-Series.
www.dell.com | support.dell.com Usage Information Warning: The following message is displayed to confirm the command: All non-default configurations on the related member ports ports () will be removed. Do you want to continue (y/n)? If “y” is entered, all non-default configurations on any member ports of the current stack group will be removed when the unit is rebooted.
Version 7.6.1.0 Support added for C-Series and S-Series E-Series original Command Usage Information You must remove the members prior to disabling the Stackable VLAN feature. To view the Stackable VLANs, use the show vlan command in the EXEC Privilege mode. Stackable VLANs contain members, designated by the M in the Q column of the command output. Figure 44-1.
www.dell.com | support.dell.com vlan-stack protocol-type ces z Syntax Parameters Defaults Command Modes Command History Define the Stackable VLAN Tag Protocol Identifier (TPID) for the outer VLAN tag (also called the VMAN tag). If you do not configure this command, FTOS assigns the value 0x9100. vlan-stack protocol-type number number Enter the hexadecimal number as the Stackable VLAN tag.
Table 44-2. Related Commands Configuring a TPID on the E-Series TeraScale number Resulting TPID 81 0x0081 8100 0x8100 portmode hybrid Set a port (physical ports only) to accept both tagged and untagged frames. A port configured this way is identified as a hybrid port in report displays. vlan-stack trunk Specify a Layer 2 port or port channel as a trunk port to the Stackable VLAN network.
www.dell.com | support.dell.com In Example 1 below.a VLAN-Stack trunk port is configured and then also made part of a single-tagged VLAN. In Example 2 below, the Tag Protocol Identifier (TPID) is set to 8848. The “Gi 3/10” port is configured to act as a VLAN-Stack access port, while the “TenGi 8/0” port will act as a VLAN-Stack trunk port, switching Stackable VLAN traffic for VLAN 10, while also switching untagged traffic for VLAN 30 and tagged traffic for VLAN 40.
Example 2 Figure 44-3.
| VLAN Stacking www.dell.com | support.dell.
45 Virtual Router Redundancy Protocol (VRRP) Overview Virtual Router Redundancy Protocol (VRRP) is supported by FTOS on all Dell Force10 platforms, as indicated by the characters that appear under each of the command headings: e E-Series, c C-Series, s S-Series, z Z-Series or .
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information seconds Enter a number of seconds. Range: 1 to 255. Default: 1 second. 1 second. INTERFACE-VRRP Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Dell Force10 recommends that you keep the default setting for this command.
clear counters vrrp cesz Syntax Parameters Clear the counters maintained on VRRP operations. clear counters vrrp [vrrp-id] vrrp-id (OPTIONAL) Enter the number of the VRRP group ID. Range: 1 to 255 Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series debug vrrp cez Syntax Allows you to enable debugging of VRRP.
www.dell.com | support.dell.com Command History Usage Information Version 8.3.11.1 Introduced on Z9000 Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series If no options are specified, debug is active on all interfaces and all VRRP groups. description cesz Syntax Configure a short text string describing the VRRP group. description text To delete a VRRP group description, enter no description.
Related Commands virtual-address Specify the IP address of the Virtual Router. hold-time cesz Syntax Specify a delay (in seconds) before a switch becomes the MASTER virtual router. By delaying the initialization of the VRRP MASTER, the new switch can stabilize its routing tables. hold-time seconds To return to the default value, enter no hold-time. Parameters Defaults Command Modes Command History Usage Information Related Commands seconds Enter a number of seconds.
www.dell.com | support.dell.com priority cesz Syntax Specify a VRRP priority value for the VRRP group. This value is used by the VRRP protocol during the MASTER election process. priority priority To return to the default value, enter no priority. Parameters Defaults Command Modes priority 100 VRRP Command History Usage Information Enter a number as the priority. Enter 255 only if the router’s virtual address is the same as the interface’s primary IP address (that is, the router is the OWNER).
Example Figure 45-1. show config Command Example FTOS(conf-if-vrid-4)#show con vrrp-group 4 virtual-address 119.192.182.124 ! show vrrp cesz Syntax Parameters View the VRRP groups that are active. If no VRRP groups are active, the FTOS returns No Active VRRP group.” show vrrp [vrrp-id] [interface] [brief] vrrp-id (OPTIONAL) Enter the Virtual Router Identifier for the VRRP group to view only that group. Range: 1 to 255.
www.dell.com | support.dell.com Table 45-1. Command Example Descriptions: show vrrp brief Item Description Interface Lists the interface type, slot and port on which the VRRP group is configured. Grp Displays the VRRP group ID. Pri Displays the priority value assigned to the interface. If the track command is configured to track that interface and the interface is disabled, the cost is subtracted from the priority value assigned to the interface.
Table 45-2. Command Example Description: show vrrp Line Beginning with Description GigabitEthernet 12/3... Displays the Interface, the VRRP group ID, and the network address. If the interface is no sending VRRP packets, 0.0.0.0 appears as the network address. State: master... Displays the interface’s state: • Na/If (not available), • master (MASTER virtual router) • backup (BACKUP virtual router) the interface’s priority and the IP address of the MASTER. Hold Down:...
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • • priority-cost Defaults Command Modes Command History Usage Information For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 40-Gigabit Ethernet interface, enter the keyword FortyGigabitEthernet followed by the slot/port information.
Command Modes VRRP Command History Usage Information Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 Introduced support for telnetting to the VRRP group IP address assigned using this command pre-Version 6.2.1.1 Introduced on E-Series The VRRP group only becomes active and sends VRRP packets when a virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets.
www.dell.com | support.dell.com vrrp delay reload z Syntax Set the delay time for VRRP initialization after a system reboot. vrrp delay reload seconds Parameters Defaults Command Modes seconds 0 INTERFACE Command History Usage Information Enter the number of seconds for the delay. Range: 0-900 (0 indicates no delay) Version 8.3.11.1 Introduced on Z9000 Version 8.3.8.0 Introduced on S4810 This command applies to a all the VRRP configured interfaces on a system.
46 Z-Series Debugging and Diagnostics Overview The symbols e c s z under command headings indicate which Dell Force10 platforms — E-Series, C-Series, S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com logging coredump cesz Syntax Parameters Defaults Command Modes Command History Usage Information Related Commands Enable coredump. logging coredump {cp | linecard {number | all} | rps} cp Enable coredump for the CP. linecard Enable coredump for a linecard. rps Enable coredump for RP 1 and 2. The kernal coredump is enabled by default for RP 1 and 2 on E-Series. The kernel coredump for CP and application coredump are disabled on all systems by default.
type Enter the password type: • • Defaults Command Modes Command History Usage Information Enter 0 to enter an un-encrypted password. Enter 7 to enter a password that has already been encrypted using a Type 7 hashing algorithm. password Enter a password to access the target server. ftp-password Enter the password of the target ftp server where the application core dump files will be uploaded. The password can be up to 15 alphanumeric characters; no special characters are allowed.
www.dell.com | support.dell.com Command Modes Command History Usage Information Related Commands CONFIGURATION Version 8.3.11.1 Introduced on Z9000. Version 8.3.10.1 Introduced on S4810. When you enable this command to allow the system to automatically upload application core dumps to an FTP server, you will be requested to enter username and password. Use the username and password of the FTP server where the core files are being moved.
Defaults Command Modes Disabled EXEC Privilege Command History Usage Information Version 8.3.11.1 Introduced on Z9000 The capture-duration timer and the packet-count counter can be used at the same time. The TCP dump stops when the first of the thresholds is met. That means that even if the duration timer is 9000 seconds, if the maximum file count parameter is met first, the dumps stop. Entering no tcpdump stops the file dump immediately, without waiting for a threshold to be met.
www.dell.com | support.dell.com Defaults Command Modes level0 Enter the keyword level0 to run Level 0 diagnostics. Level 0 diagnostics check for the presence of various components and perform essential path verifications. In addition, they verify the identification registers of the components on the board. level1 Enter the keyword Level1 to run Level 1 diagnostics. Level 1 diagnostics is a smaller set of diagnostic tests with support for automatic partitioning.
The system reboots when the off-line diagnostics complete. This is an automatic process. A warning message appears when the offline stack-unit command is implemented. Warning - Diagnostic execution will cause stack-unit to reboot after completion of diags. Proceed with Offline-Diags [confirm yes/no]:y online stack- unit sz Place a stack unit in the online state. Syntax online stack-unit number Parameters Defaults Command Mode Command History number Enter the stack unit number.
www.dell.com | support.dell.com buffer (Buffer Profile) cs Allocate an amount of dedicated buffer space, dynamic buffer space, or packet pointers to queues 0 to 3. Syntax buffer [dedicated | dynamic | packets-pointers] queue0 number queue1 number queue2 number queue3 number Parameters dedicated Enter this keyword to configure the amount of dedicated buffer space per queue. dynamic Enter this keyword to configure the amount of dynamic buffer space per Field Processor.
Related Commands buffer-profile (Configuration) Create a buffer profile that can be applied to an interface. buffer (Configuration) cs Apply a buffer profile to all Field or Switch Fabric processors in a port-pipe. buffer [csf | fp-uplink] linecard slot port-set port-pipe buffer-policy buffer-profile Parameters csf Enter this keyword to apply a buffer profile to all Switch Fabric processors in a port-pipe.
www.dell.com | support.dell.com Parameters Defaults Command Mode Command History Related Commands Usage Information profile-name Create a name for the buffer profile. global Apply one of two pre-defined buffer profiles to all of the port-pipes in the system. 1Q Enter this keyword to choose a pre-defined buffer profile for single queue (i.e non-QoS) applications. 4Q Enter this keyword to choose a pre-defined buffer profile for four queue (i.e QoS) applications.
Command History Example Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Figure 46-1. show buffer-profile Command Example FTOS#show buffer-profile summary fp-uplink Linecard Port-set Buffer-profile 0 0 test1 4 0 test2 FTOS# Related Commands buffer-profile (Configuration) Create a buffer profile that can be applied to an interface. show buffer-profile stack-unit z Syntax Parameters Defaults Command Mode Command History Example Displays the global buffer profile.
www.dell.com | support.dell.com Hardware Commands These commands display information from a hardware sub-component or ASIC. The commands are: • • • • • • • clear hardware stack-unit clear hardware system-flow hardware watchdog show hardware layer2 show hardware layer3 show hardware stack-unit show hardware system-flow clear hardware stack-unit sz Clear statistics from selected hardware components.
Command History Related Commands Usage Information Version 8.3.11.5 Modified: added i2c and sata-interface statistics. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced on S-Series show hardware stack-unit Display the data plane or management plane input and output statistics of the designated component of the designated stack member. The unit numbers given are internal port numbers.
www.dell.com | support.dell.com Defaults Command Mode Command History Usage Information Enabled CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced This command enables a hardware watchdog mechanism that automatically reboots an FTOS switch/ router with a single unresponsive unit. This is a last resort mechanism intended to prevent a manual power cycle. show hardware layer2 sz Display Layer 2 ACL or eg data for the selected stack member and stack member port-pipe.
Defaults Command Modes Command History Usage Information stack-unit id Enter the keyword stack-unit to select a stack ID. Unit ID range: Z9000: 0 port-set 0-3 Enter the keyword port-set with a port-pipe number — 0 or 3. The S25 models of the S-Series have only port-pipe 0. No default behavior EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced on S-Series The unit numbers given are internal port numbers.
www.dell.com | support.dell.com Defaults Command Modes unit 0-3 {counters | details | port-stats [detail] | register} Enter the unit keyword followed by 0 or 3 for port-pipe 0 or 3, and then enter one of the following keywords to troubleshoot errors on the selected port-pipe and to give status on why a port is not coming up to register level: counters, details, port-stats [detail], or register TI monitor Enter the unit keyword to show information regarding the TI register.
Example 3 Figure 46-6. show hardware stack-unit drops Command Example Z9000-B4#show hardware stack-unit 0 drops unit 2 UserPort PortNumber Ingress Drops IngMac Drops 64 1 0 0 65 2 0 0 66 3 0 0 67 4 0 0 68 5 0 0 69 6 0 0 70 7 0 0 ... Internal 39 0 0 Internal 40 0 0 Internal 41 0 0 value = 0 = 0x0 Example 4 Figure 46-7.
www.dell.com | support.dell.com Example 5 1200 Figure 46-8. show hardware stack-unit unit 1 register Command Example FTOS#show hardware stack-unit 0 unit 1 register 0x0068003c AGINGCTRMEMDEBUG.mmu0 = 0x00000000 0x0068003d AGINGEXPMEMDEBUG.mmu0 = 0x00000000 0x00680017 ASFCONFIG.mmu0 = 0x0000000e 0x0060004c ASFPORTSPEED.ge0 = 0x00000000 0x0060104c ASFPORTSPEED.ge1 = 0x00000000 0x0060204c ASFPORTSPEED.ge2 = 0x00000000 0x0060304c ASFPORTSPEED.ge3 = 0x00000000 0x0060404c ASFPORTSPEED.
Example 4 Figure 46-9.
www.dell.com | support.dell.com show hardware system-flow sz Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe. Syntax show hardware system-flow layer2 stack-unit idport-set 0-3 [counters] Parameters acl | qos For the selected stack member and stack member port-pipe, display which system flow entry the packet hits and what queue the packet takes as it dumps the raw system flow tables. stack-unit id Enter the keyword stack-unit to select a stack member ID.
Example 2 Figure 46-11.
www.dell.com | support.dell.com Usage Information 1204 | The unit numbers given are internal port numbers. For a cross reference of the internal and user port numbers, see the Z9000 Debugging and Diagnostics chapter in the FTOS Configuration Guide for the Z9000 System.
A ICMP Message Types This chapter lists and describes the possible ICMP Message Type resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. Table A-1.
www.dell.com | support.dell.com Table A-1.
B SNMP Traps This chapter lists the traps sent by FTOS. Each trap is listed by the fields Message ID, Trap Type, and Trap Option, and the next is the message(s) associated with the trap. Table B-1. SNMP Traps and Error Messages Message ID Trap Type Trap Option COLD_START SNMP COLDSTART %SNMP-5-SNMP_COLD_START: SNMP COLD_START trap sent.
www.dell.com | support.dell.com Table B-1. SNMP Traps and Error Messages (continued) Message ID Trap Type Trap Option CHM_CARD_DOWN ENVMON NONE %CHMGR-1-CARD_SHUTDOWN: %sLine card %d down - %s %CHMGR-2-CARD_DOWN: %sLine card %d down - %s CHM_CARD_UP ENVMON NONE %CHMGR-5-LINECARDUP: %sLine card %d is up CHM_CARD_MISMATCH ENVMON NONE %CHMGR-3-CARD_MISMATCH: Mismatch: line card %d is type %s - type %s required.
Table B-1.
www.dell.com | support.dell.com Table B-1. SNMP Traps and Error Messages (continued) Message ID Trap Type Trap Option %CHMGR-5-CPU_THRESHOLD_CLR: Cpu %s usage drops below threshold. Cpu5SecUsage (%d) CHM_MEM_THRESHOLD ENVMON NONE %CHMGR-5-MEM_THRESHOLD: Memory %s usage above threshold. MemUsage (%d) CHM_MEM_THRESHOLD_CLR ENVMON NONE %CHMGR-5-MEM_THRESHOLD_CLR: Memory %s usage drops below threshold.
Index Numerics 802.3x pause frames 567 A aaa accounting suppress 1025 aaa authentication login 1032 ABR 831 Access Control Lists (ACLs) 171 access control lists. See ACL. access-class (common IP ACL) 174 access-group 1033 ACCESS-LIST Mode 21 ACL 20, 21 description 236 address family ipv4 multicast (MBGP) 360 address family ipv6 unicast (BGP IPv6) 448 Address Resolution Protocol, See ARP.
www.dell.com | support.dell.
clear ip fib linecard 635 clear ip igmp groups 544 clear ip mroute 815, 824 clear ip ospf 835 clear ip ospf statistics 836 clear ip pim rp-mapping 890 clear ip pim tib 890 clear ip prefix-list 229 clear ip rip 982 clear ip route 636 clear isis 697 clear lacp port 685 clear logging 1111 clear mac-address-table dynamic 736 clear qos statistics (policy QoS) 948 clear tcp statistics 636 CLI case sensitivity 16 partial keywords 16 CLI Modes AS-PATH ACL 21 CONFIGURATION 19 EXEC 19 EXEC Privilege 19 INTERFACE 19 I
www.dell.com | support.dell.
distance (OSPF) 840 distance (RIP) 985 distance bgp 306, 415 distance bgp (BGP IPv6) 415 distance bgp (IPv6) 452 distance bgp (MBGP) 365 distance ospf 841 distribute-list (ISIS) 702, 703 distribute-list (OSPF) 842 distribute-list (RIP) 986 distribute-list in IS-IS 702 OSPF 842 RIP 986 distribute-list out IS-IS 702 OSPF 842 RIP 986 distribute-list redistributed-override (ISIS) 703 distribute-list redistributed-override in 703 IS-IS 703 DNS commands 643, 644, 649 do 70 Document conventions 11 domain-password
www.dell.com | support.dell.
ip ftp source-interface 80 ip ftp username 80 ip helper-address 645 ip helper-address hop-count disable ip host 647 ip igmp access-group 545 ip igmp immediate-leave 546 ip igmp last-member-query-interval ip igmp querier-timeout 547 ip igmp query-interval 548 ip igmp query-max-resp-time 548 ip igmp static-group 549 ip local-proxy-arp command 914 ip max-frag-count 647 ip mroute 816 ip mtu 648 ip multicast-lag-hashing 817 ip multicast-limit 818 ip multicast-routing 817, 824 ip name-server 649 ip ospf auth-chan
www.dell.com | support.dell.
max-age (STP) 1137 max-area-addresses 718 max-area-addresses (ISIS) 718 max-hops (MSTP) 805 maximum-paths 853 BGP 307, 416 IS-IS 719, 720 OSPF 853 RIP 989 maximum-paths (BGP IPv6) 416 maximum-paths (BGP) 307 maximum-paths (ISIS) 719 maximum-paths (RIP) 989 max-lsp-lifetime 718 max-lsp-lifetime (ISIS) 718 MBGP Commands 359, 447 Media Endpoint Discovery 780 member 1161 member (Stackable VLAN) 1161 member-vlan (FRRP) 525 metric-style 719 metric-style (ISIS) 719 mib-binding 854 minimum-links 622 mode (FRRP) 525
www.dell.com | support.dell.
permit arp (extended IP ACLs) 200 permit ether-type 201 permit ether-type (extended IP ACLs) 201 permit icmp (extended IP ACLs) 203 permit regex (BGP) 387 permit tcp IP ACL 204 permit tcp (extended IP ACLs) 204 permit udp IP ACL 207 permit udp (extended IP ACLs) 207 per-port QoS 936 PIM Sparse-Mode 889 PIM-SM 789 ping 87 policy-aggregate (policy QoS) 953 Policy-Based QoS 945 Policy-map description 949 policy-map-input 955 policy-map-input (policy QoS) 955 policy-map-output (policy QoS) 955 Port Channel-Spec
www.dell.com | support.dell.
set community (Route Map) 246 set extcommunity rt (BGP) 387 set extcommunity soo (BGP) 388 set level (Route Map) 247 set local-preference (Route Map) 248 set metric (Route Map) 249 set metric-type (Route Map) 249 set next-hop (Route Map) 250 set origin (Route Map) 250 set tag (Route Map) 251 set weight (Route Map) 252 set-overload-bit 725 set-overload-bit (ISIS) 725 sFlow 1084 sflow collector 1084 sFlow commands 1083 sflow enable (globally) 1085 sflow enable (Interface) 1086 sflow extended-gateway enable 10
www.dell.com | support.dell.
show ip ssh client-pub-keys 1069 show ip ssh rsa-authentication 1070 show ip traffic 678 show isis database 726 show isis hostname 728, 729 show isis interface 729 show isis neighbors 730 show isis protocol 732 show isis traffic 732 show lacp 690 show linecard 43, 110 show logging 1120 show logging driverlog stack-unit (S-Series) 1122 show mac accounting access-list 218 show mac accounting destination 752 show mac cam 753 show mac learning-limit 754 show mac-address-table 749 show mac-address-table aging-ti
www.dell.com | support.dell.
terminal length 149 terminal monitor 1122 test cam-usage 486 TFTP server, copy running-config to 32 threshold 975 timeout login response 1040 timer (FRRP) 527 timers basic 998 timers bgp 358, 446 timers bgp (BGP IPv6) 446 timers spf 886, 887, 888 timers spf (OSPF) 886, 887, 888 TOS 866, 867, 869, 871, 874, 876 traceroute 150 track 1179 track (VRRP) 1179 track ip command 762 trap, MAC address station-move 739 Troubleshooting 1205, 1207 trunk port 914 trust diffserv 977 Type of Service. See TOS.
www.dell.com | support.dell.