Download Print this page

Brocade Communications Systems FastIron Administration Manual

Brocade Communications Systems FastIron Administration Manual

Ethernet switch

Table Of Contents

page of 388

/ 388
Contents
Table of Contents
Bookmarks

Table of Contents

Advertisement

Quick Links

53-1003625-01

31 March 2015

FastIron Ethernet Switch

Administration Guide

Supporting FastIron Software Release 08.0.30

Table of Contents

Advertisement

Table of Contents

Need help?

Need help?

Do you have a question about the FastIron and is the answer not in the manual?

Questions and answers

Summary of Contents for Brocade Communications Systems FastIron

Page 1 53-1003625-01 31 March 2015 FastIron Ethernet Switch Administration Guide Supporting FastIron Software Release 08.0.30...
Page 2 United States government. The authors and Brocade Communications Systems, Inc. assume no liability or responsibility to any person or entity with respect to the accuracy of this document or any loss, cost, liability, or damages arising from the information contained herein or the computer programs that accompany it.
Page 3: Table Of Contents
How Brocade supports leap second handling for NTP....... 37 NTP and SNTP................... 38 NTP server..................38 NTP Client...................39 NTP peer.....................39 NTP broadcast server................. 40 NTP broadcast client................41 NTP associations................41 Synchronizing time................42 Authentication..................42 VLAN and NTP..................43 Configuring NTP..................43 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 4 Flow control configuration..............64 Symmetric flow control on FCX and ICX devices......67 PHY FIFO Rx and Tx depth configuration.........71 Interpacket Gap (IPG) on a FastIron X Series switch....... 71 IPG on FastIron Stackable devices...........72 Enabling and disabling support for 100BaseTX........ 73 Enabling and disabling support for 100BaseFX........
Page 5 Example for setting the IPv6 hitless purge timer on the non- default VRF..................134 Energy Efficient Ethernet................134 Enabling Energy Efficient Ethernet........... 135 Histogram information overview..............135 Displaying CPU histogram information..........136 External USB Hotplug................... 136 Using External USB Hotplug............. 136 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 6 Displaying FDP information.............165 Clearing FDP and CDP information..........167 CDP packets....................168 Enabling interception of CDP packets globally....... 168 Enabling interception of CDP packets on an interface....168 Displaying CDP information............169 Clearing CDP information............... 170 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 7 Virtual Cable Testing configuration notes......... 218 Virtual Cable Test command syntax..........218 Viewing the results of the cable analysis.......... 218 Digital optical monitoring................220 Digital optical monitoring configuration limitations......220 Enabling digital optical monitoring.............220 Setting the alarm interval..............221 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 8 System monitoring for Fabric Adapters............270 sysmon fa error-count ..............271 sysmon fa link ................272 System monitoring for Cross Bar..............273 sysmon xbar error-count ..............273 sysmon xbar link ................274 System monitoring for Packet Processors..........275 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 9 Setting the power budget for a PoE interface module on an FSX device..356 Setting the inline power priority for a PoE port ..........357 Command syntax for setting the inline power priority for a PoE port....................357 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 10 Configuring 40 Gbps breakout ports............378 Configuring sub-ports..................379 Removing breakout configuration............... 381 Displaying information for breakout ports........... 383 OpenSSL License........................385 OpenSSL license..................385 Original SSLeay License..............385 Joint Interoperability Test Command................... 387 JITC overview..................... 387 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 11: Preface
Identifies command names, keywords, and command options. italic text Identifies a variable. value In Fibre Channel products, a fixed value provided as input to a command option is printed in plain text, for example, --show WWN. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 12: Notes, Cautions, And Warnings
DANGER A Danger statement indicates conditions or situations that can be potentially lethal or extremely hazardous to you. Safety labels are also attached directly to products to warn of these conditions or situations. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 13: Brocade Resources
OEM/Solution Provider for all of your product support needs. ® • OEM/Solution Providers are trained and certified by Brocade to support Brocade products. • Brocade provides backline support for issues that cannot be resolved by the OEM/Solution Provider. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 14: Document Feedback
• By sending your feedback to documentation@brocade.com. Provide the publication title, part number, and as much detail as possible, including the topic heading and page number if applicable, as well as your suggestions for improvement. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 15: About This Document
For information about the specific models and modules supported in a product family, refer to the hardware installation guide for that product family. What’s new in this document The following tables include descriptions of new information added to this guide for the FastIron 08.0.30 release. FastIron Ethernet Switch Administration Guide...
Page 16: How Command Information Is Presented In This Guide
In an effort to provide consistent command line interface (CLI) documentation for all products, Brocade is in the process of completing a standalone command reference for the FastIron platforms. This FastIron Ethernet Switch Administration Guide...
Page 17 Until this process is completed, command information is presented in two ways: • For all new content supported in FastIron Release 08.0.20 and later, the CLI is documented in separate command pages included in the FastIron Command Reference. Command pages are compiled in alphabetical order and follow a standard format to present syntax, parameters, usage guidelines, examples, and command history.
Page 18 How command information is presented in this guide FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 19: Management Applications
For stacking devices, (for example, an FCX stack) each stack unit has one out-of band management port. Only the management port on the Active Controller will actively send and receive packets. If a new Active Controller is elected, the new Active Controller management port will become the active FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 20: Cli Commands For Use With The Management Port
1 Port Link State Dupl Speed Trunk Name mgmt1 None Full None 0000.0076.544a Port mgmt1 Counters: InOctets 3210941 OutOctets 1540 InPkts 39939 OutPackets InBroadcastPkts 4355 OutbroadcastPkts InMultiastPkts 35214 OutMulticastPkts InUnicastPkts OutUnicastPkts InBadPkts InFragments FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 21: Web Management Interface
CLI for creating new configurations, modifying existing ones, and monitoring the traffic on a device. For more information on how to log in and use the Web Management Interface, refer to the FastIron SX, FCX, and ICX Web Management Interface User Guide.
Page 22: Source Interface And Management Vrf Compatibility
When the management VRF is configured, the SNMP trap generator sends traps to trap hosts through the ports belonging to the management VRF and through the out-of-band management port. Any change in the management VRF configuration takes effect immediately for the SNMP trap generator. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 23 Any change in the management VRF configuration takes effect immediately for the RADIUS client. NOTE The RADIUS source interface configuration command ip radius source-interface must be compatible with the management VRF configuration. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 24: Configuring A Global Management Vrf
The Syslog source interface configuration command ip syslog source-interface must be compatible with the management VRF configuration. Configuring a global management VRF To configure a VRF as a global management VRF, enter the following command. device(config)# management-vrf mvrf Syntax: [no] management-vrf vrf-name FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 25: Displaying Management Vrf Information
Number of Unicast Routes: 2 Address Family IPv6 Max Routes: 64 Number of Unicast Routes: 2 Syntax: show vrf vrf-name The vrf-name parameter specifies the VRF for which you want to display IP information. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 26 3 seconds in idle established, client ip address 10.20.20.2, privilege super-user using vrf mvrf. 48 seconds in idle closed closed closed closed closed closed closed closed closed closed closed closed closed closed FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 27 If not, the system displays the following error message. Error - Management VRF is not configured. To clear the management VRF rejection statistics, enter the following command. device(config)# clear management-vrf-stats Syntax: clear management-vrf-stats FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 28 Displaying management VRF information FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 29: Basic Software Features
NOTE For information about configuring IP addresses, DNS resolver, DHCP assist, and other IP-related parameters, refer to "IP Configuration" chapter in the FastIron Ethernet Switch Layer 3 Routing Configuration Guide NOTE For information about the Syslog buffer and messages, refer to Basic system parameter configuration.
Page 30: Snmp Parameter Configuration
NOTE To add and modify "get" (read-only) and "set" (read-write) community strings, refer to "Security Access" chapter in the FastIron Ethernet Switch Security Configuration Guide . Specifying an SNMP trap receiver You can specify a trap receiver to ensure that all SNMP traps sent by the Brocade device go to the same SNMP trap receiver or set of receivers, typically one or more host devices on the network.
Page 31 You can specify a single trap source to ensure that all SNMP traps sent by the Layer 3 switch use the same source IP address. For configuration details, refer to "Specifying a single source interface for specified packet types" section in the FastIron Ethernet Switch Layer 3 Routing Configuration Guide. Setting the SNMP trap holddown time When a Brocade device starts up, the software waits for Layer 2 convergence (STP) and Layer 3 convergence (OSPF) before beginning to send SNMP traps to external SNMP servers.
Page 32 • Bridge new root • Bridge topology change • Locked address violation • BGP4 • OSPF • VRRP • VRRP-E To stop link down occurrences from being reported, enter the following. device(config)# no snmp-server enable traps link-down FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 33: Displaying Virtual Routing Interface Statistics
This value is not configurable. Displaying virtual routing interface statistics NOTE This feature is supported on FastIron X Series and ICX 6650 devices only. You can enable SNMP to extract and display virtual routing interface statistics from the ifXTable (64-bit counters).
Page 34: Cancelling An Outbound Telnet Session
Cancelling an outbound Telnet session If you want to cancel a Telnet session from the console to a remote Telnet server (for example, if the connection is frozen), you can terminate the Telnet session by doing the following. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 35: Network Time Protocol Version 4 (Ntpv4)
To keep the time in your network current, it is recommended that each device have its time synchronized with at least four external NTP servers. External NTP servers should be synchronized among themselves to maintain time synchronization. NOTE Network Time Protocol (NTP) commands must be configured on each individual device. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 36 • NTP implementation supports below association modes. ‐ Client ‐ Server ‐ Symmetric active/passive ‐ Broadcast server ‐ Broadcast client • NTP supports maximum of 8 servers and 8 peers. The 8 peers includes statically configured and dynamically learned. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 37: Limitations
• By default, NTP operates in default VLAN and it can be changed. Limitations • FastIron devices cannot operate as primary time server (or stratum 1). It only serves as secondary time server (stratum 2 to 15). • NTP server and client cannot communicate using hostnames.
Page 38: Ntp And Sntp
FastIron 07.3.00c and earlier releases implements SNTP for time synchronization. In FastIron 07.3.00d, NTP can be used for time synchronization in FCX devices with router images. From FastIron 8.0 release onwards, NTP can be used for time synchronization in all FastIron devices with both router and switch images.
Page 39: Ntp Client
NTP secondary servers. When one of the devices lose all reference sources or simply cease operation, the other peers automatically reconfigures so that time values can flow from the surviving peers to others. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 40: Ntp Broadcast Server
The local clock is valid and the system clock is not synchronized ‐ Authentication key is configured, the system clock is synchronized and the local clock is valid • NTP broadcast packets are not sent in the following cases: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 41: Ntp Broadcast Client
When a networking device is operating in the symmetric active mode, it polls its assigned time- serving hosts for the current time and it responds to polls by its hosts. Because symmetric active FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 42: Synchronizing Time
The peer is also configured in symmetric active mode in this way by specifying the FastIron device information. If the peer is not specifically configured, a symmetric passive association is activated upon arrival of a symmetric active message.
Page 43: Vlan And Ntp
NOTE You cannot configure the ntp command if SNTP is enabled. If SNTP is enabled, configuring the ntp command will display the following message:"SNTP is enabled. Disable SNTP before using NTP for time synchronization" FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 44 If JITC is enabled, only the sha1 option is available. The key-string option is the value of the MD5 or SHA1 key. The maximum length of the key string may be defined up to 16 characters. Up to 32 keys may be defined. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 45 The ipv4-address or ipv6-address parameter is the IP address of the server providing the clock synchronization. The version num option defines the Network Time Protocol (NTP) version number. Valid values are 3 or 4. If the num option is not specified, the default is 4. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 46 The burst option sends a burst of packets to the server at each polling interval. Configuring the master To configure the FastIron device as a Network Time Protocol (NTP) master clock to which peers synchronize themselves when an external NTP source is not available, use the master command. The master clock is disabled by default.
Page 47 If the interface is operationally down or there is no ip address configured for the subnet address, then the NTP broadcast server packets are not sent. To disable this capability, use the no form of this command. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 48 Precision of the clock of this system in Hz. reference time Reference time stamp. clock offset Offset of clock (in milliseconds) to synchronized peer. root delay Total delay (in milliseconds) along path to root clock. root dispersion Dispersion of root path. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 49 The server or peer is statically configured. address IPv4 or IPv6 address of the peer. ref clock IPv4 address or first 32 bits of the MD5 hash of the IPv6 address of the peer to which clock is synchronized. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 50 16000.000 16.0005 15.9975 15.9945 15.9915 15.8885 15.8855 0.0030 filter epoch 55683 55683 55685 55687 55689 55691 55693 56748 Syntax: show ntp association detail { ipv4-address | ipv6-address } The following table provides descriptions of the show ntp associations detail command output. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 51 Offset of a peer clock relative to this clock. Dispersion Dispersion of a peer clock. precision Precision of a peer clock. version Peer NTP version number. org time Originate time stamp of the last packet. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 52 Sample CLI commands to configure the Brocade device in loose authentication mode. This allows some of the servers or clients to use the authentication keys. Brocade(config-ntp)# authentication-key key-id 1 md5 key123 Brocade(config-ntp)# server 10.1.2.4 key 1 Brocade(config-ntp)# server 10.1.2.7 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 53: Basic Port Parameter Configuration
• port --Specifies the port number in the slot. Range is from 1 to 24 (24-port models) or 1 to 48 (48-port models). This example shows how to specify port 2 in slot 1 of a device that is not part of a stack: Brocade (config) # interface ethernet 1/1/2 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 54 This example shows how to specify stacking port 2 in slot 2 of unit 3 in a stack: Brocade (config) # interface ethernet 3/2/2 Specifying a management port The management port number is always 1. This example shows how to specify the management port: Brocade (config) # interface management 1 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 55 This example shows how to specify port 2 in slot 1: Brocade (config) # interface ethernet 1/2 Specifying a management port The management port number is always 1. This example shows how to specify the management port: Brocade (config) # interface management 1 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 56: Assigning Port Names
To show full port names, use the show interfaces brief wide command. Brocade# show interfaces brief Port Link State Dupl Speed Trunk Tag Pvid Pri Name 1/1/23 Forward Full 1G None 748e.f82d.7a16 connected- FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 57 Specifies the priority. Specifies the MAC address. Name Specifies the port name. To display the complete port name for an Ethernet interface, enter a command such as the following. Brocade# show interface brief wide ethernet 1/1/23 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 58 (10,100,1000), duplex (half, full), MDI/MDIX, and Flow Control. Port speed and duplex mode configuration syntax The following commands change the port speed of copper interface 8 on a FastIron device from the default of 10/100/1000 auto-sense, to 100 Mbps operating in full-duplex mode.
Page 59: Enabling Auto-Negotiation Maximum Port Speed Advertisement And Down-Shift
Enabling auto-negotiation maximum port speed advertisement and down-shift NOTE On FastIron devices, when setting the speed and duplex-mode of an interface to 1000-full, configure one side of the link as master (1000-full-master) and the other side as slave (1000-full-slave). NOTE...
Page 60 Syntax: [no] link-config gig copperautoneg-control [ 10m | 100m ] ethernet port [ ethernet port ] You can enable maximum port speed advertisement on one or two ports at a time. To disable maximum port speed advertisement after it has been enabled, enter the no form of the command. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 61: Configuring Port Speed Down-Shift And Auto-Negotiation For A Range Of Ports
10.44.9.11 255.255.255.0 ip default-gateway 10.44.9.1 To disable selective auto-negotiation of 100m-auto on ports 0/1/21 to 0/1/25 and 0/1/30, enter the following. Brocade(config)# no link-config gig copper autoneg-control 100m-auto ethernet 0/1/21 to 0/1/25 ethernet 0/1/30 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 62: Enabling Port Speed Down-Shift
# interface ethernet 8 device(config-if-e1000-8)# speed-duplex 10-full Syntax: speed-duplex value The value can be one of the following: • 10-full • 10-half • 100-full • 100-half • auto (default) FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 63: Mdi And Mdix Configuration
MDI/MDIX, designate the port as an MDI port, or designate the port as an MDIX port. To turn off automatic MDI/MDIX detection and define a port as an MDI only port. device(config-if-e1000-2)# mdi-mdix mdi FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 64: Disabling Or Re-Enabling A Port
Without flow control, buffers would overflow, packets would be dropped, and data retransmission would be required. All FastIron devices support asymmetric flow control, meaning they can receive PAUSE frames but cannot transmit them. In addition, FCX and ICX devices also support symmetric flow control, meaning they can both receive and transmit 802.3x PAUSE frames.
Page 65 NOTE You must save the configuration and reload for the change to take effect. See the description of the store-and-forward command in the FastIron Command Reference for more information. Disabling or re-enabling flow control You can configure the Brocade device to operate with or without flow control. Flow control is enabled by default globally and on all full-duplex ports.
Page 66 Displaying flow-control status The show interface command with the appropriate parameters displays configuration, operation, and negotiation status where applicable. For example, on a FastIron Stackable device, issuing the command for 10/100/1000M port 0/1/21 displays the following output. device# show interfaces ethernet 0/1/21...
Page 67: Symmetric Flow Control On Fcx And Icx Devices
Symmetric flow control addresses the requirements of a lossless service class in an Internet Small Computer System Interface (iSCSI) environment. It is supported on FCX and ICX standalone units as well as on all FCX and ICX units in a traditional stack. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 68 • Symmetric flow control is supported on all 1G,10G, and 40G data ports on FCX and ICX devices. • Symmetric flow control is not supported on stacking ports or across units in a stack. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 69 In the above configuration examples, when the XOFF limit of 91% is reached or exceeded, the Brocade device will send PAUSE frames to the sender telling it to stop transmitting data temporarily. When the FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 70 Symmetric Flow Control is enabled on units: 2 3 Buffer parameters: 1G Ports: Total Buffers : 272 XOFF Limit : 240(91%) XON Limit : 200(75%) 10G Ports: Total Buffers : 416 XOFF Limit : 376(91%) XON Limit : 312(75%) Syntax: show symmetric-flow-control FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 71: Phy Fifo Rx And Tx Depth Configuration
Gbps Ethernet. IPG on a FastIron X series switch configuration notes • The CLI syntax for IPG differs on FastIron X Series devices compared to FastIron Stackabledevices. This section describes the configuration procedures for FastIron X Series devices. For FastIron...
Page 72: Ipg On Fastiron Stackable Devices
IPG may be set from either the interface configuration level or the multiple interface level. IPG configuration notes • The CLI syntax for IPG differs on FastIron Stackabledevices compared to FastIron X Series devices. This section describes the configuration procedures for FastIron Stackabledevices. For...
Page 73: Enabling And Disabling Support For 100Basetx
Enabling and disabling support for 100BaseTX For FastIron X Series devices, you can configure a 1000Base-TX SFP (part number E1MG-TX) to operate at a speed of 100 Mbps. To do so, enter the 100-tx command at the Interface level of the CLI.
Page 74: Enabling And Disabling Support For 100Basefx
• Long Reach (LR) - maximum distance is 40 kilometers • Intermediate Reach (IR) - maximum distance is 15 kilometers For information about supported SFP and SFP+ transceivers on FastIron devices, refer to the Brocade Optics Family Datasheet on the Brocade website.
Page 75: Changing The Gbps Fiber Negotiation Mode
Dynamic configuration of Voice over IP (VoIP) phones You can configure a FastIron device to automatically detect and re-configure a VoIP phone when it is physically moved from one port to another within the same device. To do so, you must configure a voice VLAN ID on the port to which the VoIP phone is connected.
Page 76 To view the voice VLAN configuration for a port, specify the port number with the show voice-vlan command. The following example shows the command output results. device# show voice-vlan ethernet 2 Voice vlan ID for port 2: 1001 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 77: Port Flap Dampening Configuration
The wait-time-in-sec is the amount of time the port remains disabled (down) before it becomes enabled. Enter a value from 0 - 65535 seconds; 0 indicates that the port will stay down until an administrative override occurs. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 78 Port8/5 is configured for link-error-disable threshold:4, sampling_period:10, waiting_period:2 Port8/9 is configured for link-error-disable threshold:2, sampling_period:20, waiting_period:0 For FastIron X Series devices, the output of the command shows the following. device# show link-error-disable all Port -----------------Config--------------- ------Oper---- Threshold...
Page 79 Syntax: show interface ethernet port-number In addition to the show commands above, the output of the show interface brief command for FastIron X Series indicates if a port is down due to link errors. device# show interface brief e17...
Page 80: Port Loop Detection
• Loopback detection packets are sent and received on both tagged and untagged ports. Therefore, this feature cannot be used to detect a loop across separate devices. The following information applies to Loose Mode loop detection: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 81 To configure the global loop detection interval, enter a command similar to the following. device(config)# loop-detection-interval 50 This command sets the loop-detection interval to 5 seconds (50 x 0.1). FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 82 To revert back to the default recovery time interval of 300 seconds (5 minutes), enter one of the following commands. device(config)# errdisable recovery interval 300 device(config)# no errdisable recovery interval 120 Syntax: [no] errdisable recovery interval seconds where seconds is a number from 10 to 65535. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 83 Vlans configured loop-detection use 1 HW MAC Vlans not configured but use HW MAC: 1 10 alloc in-use avail get-fail limit get-mem size init configuration pool 3712 linklist pool 3712 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 84 0 input errors, 0 CRC, 0 frame, 0 ignored 0 runts, 0 giants 51094 packets output, 3925313 bytes, 0 underruns Transmitted 2 broadcasts, 42830 multicasts, 8262 unicasts 0 output errors, 0 collisions Relay Agent Information option: Disabled FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 85 Prevents shut down for loop-detect on an interface. In prior FastIron releases, when a loop detection probe packet was received back on an interface, the corresponding interface would be shut down either permanently or for a specific duration configured by the user.
Page 86: Cli Banner Configuration
To remove the banner, enter the no banner motd command. NOTE The banner delimiting-character command is equivalent to the banner motd delimiting-character command. When you access the Web Management Interface, the banner is displayed. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 87: Requiring Users To Press The Enter Key After The Message Of The Day Banner
To enable the requirement to press the Enter key after the MOTD is displayed, enter a command such as the following. Brocade(config)# banner motd require-enter-key Syntax: [no] banner motd require-enter-key Use the no form of the command to disable the requirement. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 88: Setting A Privileged Exec Cli Level Banner
Banner text can be up to 4000 characters, which can consist of multiple lines. Syntax: [no] banner incoming delimiting-character To remove the banner, enter the no banner incoming command. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 89: Operations, Administration, And Maintenance
You can update the software contained on a flash module using TFTP to copy the update image from a TFTP server onto the flash module. In addition, you can copy software images and configuration files from a flash module to a TFTP server. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 90: Software Versions Installed And Running On A Device
To determine the flash image version running on a Compact device, enter the show version command at any level of the CLI. The following shows an example output. device#show version Copyright (c) 1996-2012 Brocade Communications Systems, Inc. All rights reserved. UNIT 1: compiled on Mar 2 2012 at 12:38:17 labeled as ICX64S07400 (10360844 bytes) from Primary ICX64S07400.bin...
Page 91 CLI. The following is an example output. device#show version ========================================================================== Active Management CPU [Slot-9]: SW: Version 07.4.00T3e3 Copyright (c) 1996-2012 Brocade Communications Systems, Inc. All rights reserved. Compiled on Mar 02 2012 at 11:54:29 labeled as SXR07400 (4585331 bytes) Primary /GA/SXR07400.bin BootROM: Version 07.2.00T3e5 (FEv2)
Page 92: Displaying The Boot Image Version Running On The Device
FastIron Chassis management modules and to the out-of-band management port on the FastIron stackable switches. The other copper or fiber ports on these devices do not have the ability to ping or tftp from the boot-monitor mode.
Page 93: Software Image File Types
Verification SUCCEEDED. Software Image file types This section lists the boot and flash image file types supported and how to install them on the FastIron family of switches. For information about a specific version of code, refer to the release notes.
Page 94: Flash Timeout
12 through 60 minutes. The new timeout value is applicable for all flash operations and will be effective from the next flash operation. Software upgrades For instructions about upgrading the software, refer to the FastIron Ethernet Switch Software Upgrade Guide. FastIron Ethernet Switch Administration Guide...
Page 95: Boot Code Synchronization Feature
1808 [acfa] startup-config.backup 8674340 bytes 7 File(s) 56492032 bytes free Syntax: show dir The following example shows the output of the show files command. device#show files Type Size Name ------------------------ 28203908 primary 27949956 secondary FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 96: Using Snmp To Upgrade Software
For filename, enter the name of a file stored in flash memory. Using SNMP to upgrade software You can use a third-party SNMP management application such as HP OpenView to upgrade software on a Brocade device. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 97: Software Reboot
It is very important that you verify a successful TFTP transfer of the boot code before you reset the system. If the boot code is not transferred successfully but you try to reset the system, the system will not have the boot code with which to successfully boot. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 98: Software Boot Configuration Notes
Software boot configuration notes • In FastIron X Series devices, the boot system tftp command is supported on ports e 1 through e 12 only. • If you are booting the device from a TFTP server through a fiber connection, use the following command: boot system tftp ip-address filename fiber-port .
Page 99: Loading And Saving Configuration Files
To replace the startup configuration with the running configuration, enter the following command at any Enable or CONFIG command prompt. device# write memory NOTE To return the unit to the default startup configuration, use the delete startup-config command. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 100: Replacing The Running Configuration With The Startup Configuration
TFTP server to a Layer 2 Switch or Layer 3 Switch. NOTE It is recommended to use a script or the copy running-config tftp command for extensive configuration. You should not copy-paste configuration with more than 2000 characters into CLI. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 101: Dynamic Configuration Loading
"return to the global CONFIG level". NOTE You can enter text following " ! " as a comment. However, the " !" is not a comment marker. It returns the CLI to the global configuration level. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 102 To successfully replace the address, enter commands into the file as follows. interface ethernet no ip address 10.20.20.69/24 ip address 10.10.10.69/24 This time, the CLI accepts the command, and no error message is displayed. device(config)#interface ethernet 11 device(config-if-e1000-11)#no ip add 10.20.20.69/24 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 103: Maximum File Sizes For Startup-Config File And Running-Config
To load the file from a TFTP server, use the following command: copy tftp running-config ip-addr filename NOTE In the current FastIron release, the copy tftp running-config command merges only the access-lists and mac-filters configuration from the configuration file on the TFTP server to the running configuration on the device.
Page 104: Using The Ipv6 Copy Command
The tftp ipv6-address parameter specifies the address of the TFTP server. You must specify this address in hexadecimal using 16-bit values between colons as documented in RFC 2373. The destination-file-name parameter specifies the name of the file that is copied to the IPv6 TFTP server. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 105: Copying A File From An Ipv6 Tftp Server
The overwrite keyword specifies that the device should overwrite the current configuration file with the copied file. If you do not specify this parameter, the device copies the file into the current running or startup configuration but does not overwrite the current configuration. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 106: Ipv6 Copy Command
IPv6 TFTP server. IPv6 TFTP server file upload You can upload the following files from an IPv6 TFTP server: • Primary boot image. • Secondary boot image. • Running configuration. • Startup configuration. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 107: Using Snmp To Save And Load Configuration Information
1. Configure a read-write community string on the Brocade device, if one is not already configured. To configure a read-write community string, enter the following command from the global CONFIG level of the CLI. snmp-server community string ro|rw FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 108: Erasing Image And Configuration Files
• erase flash secondary erases the image stored in secondary flash of the system. • erase startup-config erases the configuration stored in the startup configuration file; however, the running configuration remains intact until system reboot. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 109: System Reload Scheduling
Displaying the amount of time remaining beforea scheduled reload To display how much time is remaining before a scheduled system reload, enter the following command from any level of the CLI. device#show reload FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 110: Canceling A Scheduled Reload
Retry the transfer using the correct image. TFTP remote - general The TFTP configuration has an error. The specific error message error. describes the error. Correct the error, then retry the transfer. TFTP remote - no such file. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 111 Download the correct file, then retry the transfer. Controller Type. Firmware tftp remote file The TFTP server needs read access on the PoE firmware file. Check the access failed. permissions on the file, then try again. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 112: Network Connectivity Testing
Pinging an IPv4 address NOTE This section describes the IPv4ping command. For details about IPv6 ping , refer to the FastIron Ethernet Layer 3 Routing Configuration Guide . To verify that a Brocade device can reach another device through the network, enter a command such as the following at any level of the CLI on the Brocade device: device>...
Page 113: Tracing An Ipv4 Route
NOTE This section describes the IPv4traceroute command. For details about IPv6traceroute , refer to the FastIron Ethernet Switch Layer 3 Routing Configuration Guide . Use the traceroute command to determine the path through which a Brocade device can reach another device.
Page 114: Ieee 802.3Ah Efm-Oam
Using the Ethernet demarcation, service providers can additionally manage the remote device without utilizing an IP layer. This can be done by using link-layer SNMP counters, request and reply, loopback testing, and other techniques. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 115: Efm-Oam Protocol
The discovery process allows local Data Terminating Entity (DTE) to detect OAM on a remote DTE. Once OAM support is detected, both ends of the link exchange state and configuration information (such as mode, PDU size, loopback support, and so on). If both DTEs are satisfied with the settings, FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 116: Remote Failure Indication
• Critical event: On any critical event, the DTE will set the critical event bit in the information OAMPDU. The device will generate critical event in the following cases: ‐ When the temperature of the box breaches the warning/shutdown threshold ‐ Fan failure FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 117: Remote Loopback
5. Enter the ethernet command to enable EFM-OAM on an interface. EFM-OAM can be enabled on more than one interface. You can also specify a range of interfaces to enable EFM-OAM on multiple interfaces. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 118: Displaying Oam Information
The following sample output of the show link-oam info detail command displays detailed OAM information on all OAM-enabled ports. device(config)# show link-oam info detail OAM information for Ethernet port: 10/1/1 +link-oam mode: passive +link status: down +oam status: down Local information multiplexer action: forward FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 119 OAM information for Ethernet port: 1/1/3 +link-oam mode: active +link status: +oam status: Local information multiplexer action: forward parse action: forward stable: satisfied state: loopback state: disabled dying-gasp: false critical-event: false link-fault: false Remote information FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 120: Displaying Oam Statistics
Rx statistics information OAMPDUs: loopback control OAMPDUs: loopback control OAMPDUs dropped: variable request OAMPDUs: variable response OAMPDUs: unique event notification OAMPDUs: duplicate event notification OAMPDUs: organization specific OAMPDUs: unsupported OAMPDUs: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 121 OAMPDUs: loopback control OAMPDUs dropped: variable request OAMPDUs: variable response OAMPDUs: unique event notification OAMPDUs: duplicate event notification OAMPDUs: organization specific OAMPDUs: unsupported OAMPDUs: link-fault records: critical-event records: dying-gasp records: discarded TLVs: unrecognized TLVs: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 122: Efm-Oam Syslog Messages
In the event of a failover, the active management module abruptly leaves and the standby management module immediately assumes the active role. Like a switchover, a failover occurs without any packet loss to FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 123: Benefits Of Hitless Management
Hitless management events (switchover, failover, and OS upgrade) to the system’s major functions. The services and protocols that are not listed may be disrupted, but will resume normal operation once the new active management module is back up and running. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 124 • 802.3at - PoE+ • DSCP honoring and Diffserv New switched flows are not learned by the System-level FastIron switch during the switchover • Dual-mode VLAN process and are flooded to the VLAN • IGMP v1, v2, and v3 snooping members in hardware.
Page 125: Hitless Management Configuration Notes And Feature Limitations
This information is not • SNMP traps synchronized. • NTPv4 Ping traffic will be minimally impacted. • Traceroute Hitless management configuration notes and feature limitations The following limitations apply to hitless management support. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 126: Hitless Reload Or Switchover Requirements And Limitations
Separate data and control planes The FSX 800 and FSX 1600 management modules have separate data and control planes. The data plane forwards traffic between the switch fabric modules and all of the Interface modules in the FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 127 After baseline synchronization, any new events that occur on the active CPU will be dynamically synchronized on the standby CPU. Examples of such events include: • CLI/HTTP/SNMP configurations • CPU receive packets FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 128: Enabling Hitless Failover On The Fsx 800 And Fsx 1600
Hitless OS upgrade is not impacted by this option and is supported whether or not hitless failover is enabled. NOTE Synchronization between the active management module and standby management module will occur whether or not hitless failover is enabled. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 129: Executing A Hitless Switchover On The Fsx 800 And Fsx 1600
Hitless management. What happens during a Hitless OS upgrade The following steps describe the internal events that occur during a hitless OS upgrade. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 130 6. The old active management module resets and reloads with the same software image running on the newly active management module. 7. The FastIron switch is now operating with the new software image. The management module that was initially configured as the standby management module is now the active management module and the management module that was initially configured as the active management module is now the standby.
Page 131: Syslog Message For Hitless Management Events
Hitless OS upgrade configuration steps The following is a summary of the configuration steps for a hitless OS software upgrade. 1. Copy the software image that supports hitless software upgrade from a TFTP server to the FastIron switch. Refer to Loading the software onto the switch on page 131.
Page 132: Displaying Diagnostic Information
Total number of messages in IP send queue = 0 Syntax: showipc_stat Displaying management redundancy information Enter the following command at any level of the CLI, to view the redundancy parameter settings and statistics. Brocade(config)# show redundancy === MP Redundancy Settings === FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 133: Layer 3 Hitless Route Purge
1. Enter the VRF configuration mode using the vrf command. 2. Configure route distinguisher using the rd command. 3. Enter IPv4 address family configuration mode using the address-family ipv4 command. 4. Configure the router purge timer using the ip hitless-route-purge-timer command. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 134: Example For Setting The Ipv4 Hitless Purge Timer On The Non-Default Vrf
EEE allows Brocade devices to conform to green computing standards. This functionality is achieved by moving the data ports to a low-power state when their function is not necessary or when they are in FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 135: Enabling Energy Efficient Ethernet
The histogram information is collected and maintained internally, in a cyclical buffer. It can be reviewed to determine if resource allocation failures or task CPU usage may have contributed to an application failure. NOTE Histogram information is not maintained across reboot. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 136: Displaying Cpu Histogram Information
Plug in the External USB to begin using the External USB Hotplug commands. Use the show files disk0 command to check if the external USB is mounted and ready to use. You can use the commands in the following table as part of the External USB Hotplug functionality. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 137: Commands
Copies the configuration file present on the external USB drive to the system's startup configuration file. Refer to the FastIron Command Reference Guide for details on using the External USB Hotplug commands. Commands ip hitless-route-purge-timer Configures the maximum time before stale routes are purged from the routing information base (RIB) after a switchover, failover, or OS upgrade.
Page 138: Ipv6 Hitless-Route-Purge-Timer
The following example shows how to set IPv6 hitless purge timer on default VRF: Brocade(config)# ipv6 hitless-route-purge-timer 500 The following example shows how to set IPv6 purge timer on a non-default VRF: Brocade(config)# vrf blue Brocade(config-vrf-blue)# rd 10:10 Brocade(config-vrf-blue)# address-family ipv6 Brocade(config-vrf-blue-ipv4)# ipv6 hitless-route-purge-timer 120 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 139: Ipv6
IPv6 address or explicitly enabling IPv6 on that interface. For more information on performing these configuration tasks, refer to "Configuring IPv4 and IPv6 protocol stacks" section in the FastIron Ethernet Switch Administration Guide . Configuring a static IPv6 route...
Page 140 IPv6 route table. In general, a low administrative distance indicates a preferred route. By default, static routes take precedence over routes learned by routing protocols. If you want a FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 141: Configuring A Static Route In A Non-Default Vrf Or User Vrf
FIGURE 2 IPv6 over an IPv4 tunnel In general, a manually configured tunnel establishes a permanent link between switches in IPv6 domains. A manually configured tunnel has explicitly configured IPv4 addresses for the tunnel source and destination. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 142: Ipv6 Over Ipv4 Tunnel Configuration Notes
IPv6 protocol stacks. The Layer 3 switches running both protocol stacks, or dual-stack routers, can interoperate directly with both IPv4 and IPv6 end systems and routers. Refer to "Configuring IPv4 and IPv6 protocol stacks" section in the FastIron Ethernet Switch Administration Guide. IPv6 over IPv4 tunnel configuration notes •...
Page 143: Clearing Ipv6 Tunnel Statistics
IP6 Tunnels Tunnel Mode Packet Received Packet Sent configured configured 22419 Syntax: show ipv6tunnel This display shows the following information. TABLE 16 IPv6 tunnel summary information Field Description Tunnel The tunnel interface number. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 144 The interface is a tunnel interface. Tunnel source The tunnel source can be one of the following: • An IPv4 address • The IPv4 address associated with an interface/port. Tunnel destination The tunnel destination can be an IPv4 address. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 145 The status of the line protocol can be one of the following: • up - IPv6 is enabled through the ipv6 enable or ipv6 address command. • down - The line protocol is not functioning and is down. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 146 Displaying interface level IPv6 settings FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 147: Snmp Access
Management Information Bases (MIBs) and return this data to the SNMP requesters. "Security Access" chapter in the FastIron Ethernet Switch Security Configuration Guide introduced a few methods used to secure SNMP access. They included the following: • Using ACLs to restrict SNMP access •...
Page 148: Encryption Of Snmp Community Strings
NOTE As an alternative to the SNMP community strings, you can secure Web management access using local user accounts or ACLs. Refer to Security Access chapter in the FastIron Ethernet Switch Security Configuration Guide. Encryption of SNMP community strings The software automatically encrypts SNMP community strings.
Page 149 SNMP packets. You can enter either the ACL name or its ID. Here are some examples. device(config)#snmp-s community myread ro view sysview 2 device(config)#snmp-s community myread ro view sysview myACL FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 150: Displaying The Snmp Community Strings
The command in the first example indicates that ACL group 2 will filter incoming SNMP packets; whereas, the command in the second example uses the ACL group called "myACL" to filter incoming packets.Refer to "Using ACLs to restrict SNMP access" section in the FastIron Ethernet Switch Security Configuration Guide for more information.
Page 151: Configuring Your Nms
The local parameter indicates that engine ID to be entered is the ID of this device, representing an SNMP management entity. NOTE Each user localized key depends on the SNMP server engine ID, so all users need to be reconfigured whenever the SNMP server engine ID changes. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 152: Defining An Snmp Group
Selecting priv means that an authentication password will be required from the users. The access standard-ACL-id parameter is optional. It allows incoming SNMP packets to be filtered based on the standard ACL attached to the group. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 153: Defining An Snmp User Account
The SNMP group to which the user account will be mapped should be configured before creating the user accounts; otherwise, the group will be created without any views. Also, ACL groups must be configured before configuring user accounts. The v3 parameter is required. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 154: Defining Snmp Views
MIB tree or a subset of objects from the MIB tree. To configure the number of SNMP views available on the Brocade device, enter the following command. device(config)#system-max view 15 Syntax: system-maxview number-of-views FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 155: Snmp Version 3 Traps
To delete a view, use the no parameter before the command. SNMP version 3 traps Brocade devices support SNMP notifications in SMIv2 format. This allows notifications to be encrypted and sent to the target hosts in a secure manner. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 156: Defining An Snmp Group And Specifying Which View Is Notified Of Traps
The ip-addr parameter specifies the IP address of the host that will receive the trap. For version , indicate one of the following For SNMP version 1, enter v1 and the name of the community string ( community-string ). This string is encrypted within the system. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 157: Trap Mib Changes
Syntax: snmp-serverhost ipv6 ipv6-address The ipv6-address must be in hexadecimal format using 16-bit values between colons as documented in RFC 2373. SNMP v3 over IPv6 Some FastIron devices support IPv6 for SNMP version 3. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 158: Specifying An Ipv6 Host As An Snmp Trap Receiver
Power supply failure: Enable Fan failure: Enable Temperature warning: Enable STP new root: Enable STP topology change: Enable vsrp: Enable Total Trap-Receiver Entries: 4 Trap-Receiver IP-Address Port-Number Community 10.147.201.100 ..2001:DB8::200 ..10.147.202.100 ..2001:DB8::200 ..FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 159: Displaying Snmp Information
Displays if the security model shows v3 and user authentication is by user name and the MD5 or SHA algorithm. Displaying user information To display the definition of an SNMP user account, enter a command such as the following. device#show snmp user FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 160: Interpreting Varbinds In Report Packets
The following sections present examples of how to configure SNMP v3. Example 1 device(config)#snmp-s group admingrp v3 priv read all write all notify all device(config)#snmp-s user adminuser admingrp v3 auth md5 auth password priv privacy password device(config)#snmp-s host FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 161: Example 2
0e1b153303b6188089411447dbc32de device(config)#snmp-server user admin admin v3 encrypted auth md5 0d8a2123f91bfbd8695fef16a6f4207b priv encrypted des 18e0cf359fce4fcd60df19c2b6515448 device(config)#snmp-server user restricted restricted v3 encrypted auth md5 261fd8f56a3ad51c8bcec1e4609f54dc priv encrypted des d32e66152f89de9b2e0cb17a65595f43 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 162 Example 2 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 163: Foundry Discovery Protocol (Fdp) And Cisco Discovery Protocol (Cdp) Packets
To enable a Brocade device to globally send FDP packets, enter the following command at the global CONFIG level of the CLI. device(config)# fdp run Syntax: [no] fdprun The feature is disabled by default. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 164 • The device receives a new update. • 180 seconds have passed since receipt of the last update. This is the hold time. Once either of these events occurs, the device discards the update. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 165: Displaying Fdp Information
The interface on which this Brocade device received an FDP or CDP update for the neighbor. Holdtm The maximum number of seconds this device can keep the information received in the update before discarding it. Capability The role the neighbor is capable of playing in the network. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 166 Version The software version running on the neighbor. Displaying FDP entries To display the detailed neighbor information for a specific device, enter the show fdp entry FastIron x command. deviceA# show fdp entry FastIronB Device ID: FastIronB configured as default VLAN1, tag-type8100...
Page 167: Clearing Fdp And Cdp Information
The same commands clear information for both FDP and CDP. Clearing FDP and CDP neighbor information To clear the information received in FDP and CDP updates from neighboring devices, enter the following command. device# clear fdp table Syntax: clear fdp table FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 168: Cdp Packets
The feature is disabled by default. Enabling interception of CDP packets on an interface You can disable and enable CDP at the interface level. You can enter commands such as the following. device(config)# int e 2/1 device(config-if-2/1)# cdp enable FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 169: Displaying Cdp Information
Cisco Internetwork Operating System Software IOS (tm) RSP Software (RSP-JSV-M), Version 12.0(5)T1, RELEASE SOFTWARE (fc1) Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Thu 19-Aug-99 04:12 by cmong Syntax: show fdp neighbors [ detail | ethernet port ] FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 170: Clearing Cdp Information
To clear the Cisco neighbor information, enter the clear fdp table command. device# clear fdp table Syntax: clear fdptable To clear CDP statistics, enter the following command. device# clear fdp counters Syntax:clear fdp counters FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 171 Foundry Discovery Protocol (FDP) and Cisco Discovery Protocol (CDP) Packets FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 172 Clearing CDP information FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 173: Lldp And Lldp-Med
Station - A node in a network. TLV (Type-Length-Value) - An information element in an LLDPDU that describes the type of information being sent, the length of the information string, and the value (actual information) that will be transmitted. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 174: Lldp Overview
Simple Network Management Protocol (SNMP). The information also can be viewed from the CLI, using show LLDP commands. The following diagram illustrates LLDP connectivity FIGURE 3 LLDP connectivity Benefits of LLDP LLDP provides the following benefits: • Network Management: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 175: Lldp-Med Overview
(VoIP) network. Whereas LLDP enables network discovery between Network Connectivity devices, LLDP-MED enables network discovery between Network Connectivity devices and media Endpoints such as, IP telephones, softphones, VoIP gateways and conference bridges. The following diagram illustrates LLDP-MED connectivity. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 176: Benefits Of Lldp-Med
• Class 1 (Generic endpoint) - A Class 1 Endpoint requires basic LLDP discovery services, but does not support IP media nor does it act as an end-user communication appliance. A Class 1 Endpoint FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 177: General Lldp Operating Principles
TLVs, then validates optional TLVs. If the LLDP agent detects any errors in the LLDPDUs and TLVs, it drops them in software. TLVs that are not recognized but do not contain basic FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 178: Lldp Packets
General system information TLVs are optional in LLDP implementations and are defined by the Network Administrator. Brocade devices support the following Basic Management TLVs: • ‐ Chassis ID (mandatory) ‐ Port ID (mandatory) ‐ Time to Live (mandatory) FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 179 There are several ways in which a device may be identified. A chassis ID subtype, included in the TLV and shown in the following table, indicates how the device is being referenced in the Chassis ID field. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 180 TLV, indicates how the port is being referenced in the Port ID field. TABLE 22 Port ID subtypes ID subtype Description Reserved Interface alias Port component MAC address Network address Interface name FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 181 LLDP agent/port is to be deleted. This TLV may be used, for example, to signal that the sending port has initiated a port shutdown procedure. The LLDPDU format is shown in LLDP packets on page 178. The TTL TLV format is shown below. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 182: Mib Support
LLDP global configuration tasks and default behavior /value Global task Default behavior / value when LLDP is enabled Enabling LLDP on a global basis Disabled Specifying the maximum number of LLDP Automatically set to 392 neighbors per device neighbors per device FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 183: Lldp Configuration Notes And Considerations
• Auto-negotiation status indicates what is being advertised by the port for 802.3 auto-negotiation. Enabling and disabling LLDP LLDP is enabled by default on individual ports. However, to run LLDP, you must first enable it on a global basis (on the entire device). FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 184: Enabling Support For Tagged Lldp Packets
To enable LLDP on a port after it has been disabled, enter the following command. device(config)#lldp enable ports e 2/4 Syntax: [no] lldp enable ports ethernet port-list | all Use the [no] form of the command to disable the receipt and transmission of LLDP packets on a port. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 185 For example, enter commands such as the following at the Global CONFIG level of the CLI. device(config)#no lldp enable receive ports e 2/7 e 2/8 device(config)#lldp enable transmit ports e 2/7 e 2/8 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 186: Configuring Lldp Processing On 802.1X Blocked Port
If lldp-pass-through is disabled, the neighboring information is lost only after LLDP timeout period (default is 120). Maximum number of LLDP neighbors You can change the limit of the number of LLDP neighbors for which LLDP data will be retained, per device as well as per port. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 187: Enabling Lldp Snmp Notifications And Syslog Messages
If desired, you can change this interval. Refer to Specifying the minimum time between SNMP traps and Syslog messages on page 188. Syntax: [no] lldp enablesnmp notifications ports ethernet port-list | all FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 188: Changing The Minimum Time Between Lldp Transmissions
1 and 8192. The default is two seconds. Note that this value must not be greater than one quarter of the LLDP transmission interval (CLI command lldp transmit- interval ). FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 189: Changing The Interval Between Regular Lldp Transmissions
LLDP is disabled on a port, until it will honor a request to re-enable LLDP on that port. When you enable LLDP, the system sets the re-initialization delay timer to two seconds. If desired, you can change the default behavior from two seconds to a value between one and ten seconds. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 190: Lldp Tlvs Advertised By The Brocade Device
Except for the system description, the Brocade device will advertise the following system information when LLDP is enabled on a global basis: • Management address • Port description • System capabilities • System description (not automatically advertised) • System name FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 191: Port Description
Port description The port description TLV identifies the port from which the LLDP agent transmitted the advertisement. The port description is taken from the ifDescr MIB object from MIB-II. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 192: System Capabilities
The system description will appear similar to the following on the remote device, and in the CLI display output on the Brocade device (show lldp local-info ). + System description : "Brocade Communications, Inc.,FCX_ADV_ROUTER_SOFT_PACKAGE, FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 193 Brocade device (show lldp local-info ). VLAN name (VLAN 99): "Voice-VLAN-99" Syntax:[no] lldp advertise vlan-name vlan vlan ID ports ethernet port-list | all Forvlan ID , enter the VLAN ID to advertise. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 194 Link aggregation: not capable MAC and PHY configuration status The MAC and PHY configuration and status TLV includes the following information: • Auto-negotiation capability and status • Speed and duplex mode • Flow control capabilities for auto-negotiation FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 195 The power-via-MDI TLV provides general information about Power over Ethernet (POE) capabilities and status of the port. It indicates the following: • POE capability (supported or not supported) • POE status (enabled or disabled) FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 196: Lldp-Med Configuration
The LLDP-MED fast start mechanism is only intended to run on links between Network Connectivity devices and Endpoint devices. It does not apply to links between LAN infrastructure elements, including between Network Connectivity devices, or to other types of links. Interface-level tasks FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 197: Enabling Lldp-Med
LLDP-MED fast start period. By default, the device will send three packets at one-second intervals. If desired, you can change the number of packets the device will send per second, up to a maximum of FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 198: Defining A Location Id
A smaller value increases the area within which the device is located. For latitude, enter a number between 1 and 34. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 199 Example coordinate-based location advertisement The coordinate-based location advertisement will appear similar to the following on the remote device, and in the CLI display output on the Brocade device (show lldp local-info ). + MED Location ID FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 200 For example, elem 3 "Santa Clara" . TABLE 25 Elements used with civic address Civic Address Description Acceptable values / examples (CA) type Language The ISO 639 language code used for presenting the address information. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 201 Germany - District Japan - Town Korea - Urban district United States - N/A Neighborhood or block Examples: Canada - N/A Germany - N/A Japan - City district Korea - Neighborhood United States - N/A FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 202 The valid postal / zip code for the address. Example: 95054-1234 Building (structure) The name of a single building if the street address includes more than one building or if the building name is helpful in identifying the location. Example: Law Library FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 203 Japan, down to the level of indicating the floor of the building. Script The script (from ISO 15924 [14]) used to present the address information. Example: Latn NOTE If not manually configured, the system assigns the default value Latn Reserved FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 204: Defining An Lldp-Med Network Policy
Defining an LLDP-MED network policy An LLDP-MED network policy defines an Endpoint VLAN configuration (VLAN type and VLAN ID) and associated Layer 2 and Layer 3 priorities that apply to a specific set of applications on a port. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 205 • softphone-voice - Softphone voice service for use with multi-media applications that work in association with VoIP technology, enabling phone calls direct from a PC or laptop. Softphones do not FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 206: Lldp-Med Attributes Advertised By The Brocade Device
When enabled, LLDP-MED is enabled, and the LLDP-MED capabilities TLV is sent whenever any other LLDP-MED TLV is sent. When disabled, LLDP-MED is disabled and no LLDP-MED TLVs are sent. The LLDP-MED capabilities advertisement includes the following information: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 207: Extended Power-Via-Mdi Information
The Endpoint may additionally choose to power down non- essential subsystems or to conserve power as long as the PSE is advertising that it is operating on backup power. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 208 Power Type : PSE device Power Source : Unknown Power Source Power Priority : Low (3) Power Value : 6.5 watts (PSE equivalent: 7005 mWatts) Syntax:[no] lldp advertise med-power-via-mdi ports ethernet port-list | all FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 209: Displaying Lldp Statistics And Configuration Settings
The minimum number of seconds the device will wait from when LLDP is disabled on a port, until a request to re-enable LLDP on that port will be honored. LLDP-MED fast start The number of seconds between LLDP frame transmissions when an LLDP-MED repeat count Endpoint is newly detected. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 210: Displaying Lldp Statistics
Neighbor entries deleted The number of LLDP neighbors deleted since the last reboot or since the last time the clear lldp statistics all command was issued. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 211: Displaying Lldp Neighbors
0000.0011.0200 0000.0011.020e GigabitEthernet15 FastIron SX 8~ 0000.0011.0200 0000.0011.0211 GigabitEthernet18 FastIron SX 8~ 0000.0011.0200 0000.0011.0210 GigabitEthernet17 FastIron SX 8~ Syntax:show lldp neighbors The following table describes the information displayed by the show lldp neighbors command. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 212: Displaying Lldp Neighbors Detail
Advertised capabilities: 10BaseT-HD, 10BaseT-FD, 100BaseTX-HD, 100BaseTX-FD Operational MAU type : 100BaseTX-FD + MED capabilities: capabilities, networkPolicy, extendedPD MED device type : Endpoint Class III + MED Network Policy Application Type : Voice Policy Flags : Known Policy, Tagged FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 213: Displaying Lldp Configuration Details
: auto-negotiation enabled Advertised capabilities: 10BaseT-HD, 10BaseT-FD, 100BaseTX-HD, 100BaseTX-FD, fdxSPause, fdxBPause, 1000BaseT-HD, 1000BaseT-FD Operational MAU type: 100BaseTX-FD + 802.3 Power via MDI: PSE port, power enabled, class 2 Power Pair : A (not controllable) FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 214 Syntax: show lldp local-info [ ports ethernet port-list | all ] If you do not specify any ports or use the keyword all , by default, the report will show the local information advertisements for all ports. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 215: Resetting Lldp Statistics
Syntax: clear lldp neighbors [ ports ethernet port-list | all ] If you do not specify any ports or use the keyword all , by default, the system will clear the cached LLDP neighbor information for all ports. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 216 Clearing cached LLDP neighbor information FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 217: Hardware Component Monitoring
Throughput is 100 percent when only SX third-generation modules are used. Virtual cable testing Most FastIron devices support Virtual Cable Test (VCT) technology. VCT technology enables the diagnosis of a conductor (wire or cable) by sending a pulsed signal into the conductor, then examining the reflection of that pulse.
Page 218: Virtual Cable Testing Configuration Notes
In the first example, the command displays TDR test results for port 1, slot 1 on device 1 in the stack. The results indicate that the port is down or the cable is not connected. device>show cable-diagnostics tdr 1/1/1 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 219 T568A pair and color assignment Pair A Pair 3 (green) Pair B Pair 2 (orange) Pair C Pair 1 (blue) Pair D Pair 4 (brown) The following figure illustrates the T568A pin/pair assignment. FIGURE 8 T568A pin/pair assignment FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 220: Digital Optical Monitoring
A Brocade ICX 6650 device allows all ports to support Digital Optical Monitoring (DOM). Enabling digital optical monitoring To enable optical monitoring on all Brocade-qualified optics installed in the device, use the following command. device(config)#optical-monitor FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 221: Setting The Alarm Interval
Port 1/1/10: Type : 1G M-C (Gig-Copper) Port 1/1/11: Type : 1G M-C (Gig-Copper) Port 1/1/12: Type : 1G M-C (Gig-Copper) Port 1/1/13: Type : 1G M-C (Gig-Copper) Port 1/1/14: Type : 1G M-C (Gig-Copper) FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 222: Viewing Optical Monitoring Information
[ unit / slot / port ] | slot slot-num | stack stack-id ] Viewing optical monitoring information You can view temperature and power information for qualified XFPs, SFPs, and SFP+ installed in a FastIron device. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 223 Normal Normal Syntax: showoptic port-number Use the show optic slot on a FastIron X Series chassis to view information about all qualified XFPs, SFPs, and SFP+ in a particular slot. The following shows example output. device>show optic slot 4 Port...
Page 224 Port 2/2 sfp monitor thresholds: Temperature High alarm 5a00 90.0000 C Temperature Low alarm d300 -45.0000 C Temperature High warning 5500 85.0000 C Temperature Low warning d800 -40.0000 C Supply Voltage High alarm 9088 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 225: Syslog Messages For Optical Transceivers
• The optical transceiver is not qualified, and therefore not supported by Brocade. For details about the above Syslog messages, refer to Syslog messages for optical transceivers. FastIron Fiber-optic Transceivers The fiber-optic transceivers listed in the following table are supported on all FastIron devices. TABLE 32 FastIron fiber-optic transceivers Label Type...
Page 226 10GE ZR 80km ((SFP+)) 1550.0 nm 57-1000180-01 Used on Port 1/3/8 40G-QSFP-C-0101 40GE QSFP Direct Attached Copper 58-0000033-01 Cable, 1m (stacking) Used for stacking only. 40G-QSFP-C-0501 40GE QSFP Direct Attached Copper 58-0000035-01 Cable, 5m (stacking) Used for stacking only. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 227 Hardware Component Monitoring TABLE 32 FastIron fiber-optic transceivers (Continued) Label Type Brocade part number Supports Digital Optical Monitoring? 40Ge LR4 40GE-LR4 10km (QSFP + LC) 57-1000263-01 40GE-SR4 100m (QSFP+) 57-1000128-1 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 228 FastIron Fiber-optic Transceivers FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 229: Network Monitoring
Software versions installed and running on a device on page 90 in the FastIron Ethernet Switch Administration Guide. To view the software and hardware details for the system, enter the show version command. The following shows example output.
Page 230: Viewing Configuration Information
90 in the FastIron Ethernet Switch Administraiton Guide. Starting with FastIron 08.0.30, you can view the serial number pluggable modules. If there are no pluggable modules on the device, the serial number of the fixed modules on the device is displayed.
Page 231: Enabling The Display Of The Elapsed Timestamp For Port Statistics Reset
You can view statistics for ports by entering the following show commands: • show interfaces • show configuration • show statistics The Elapsed Timestamp information is displayed in the output of the following show commands: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 232 The mode (full-duplex or half-duplex). Speed The port speed. Trunk The trunk group number, if the port is a member of a trunk group. Whether the port is a tagged member of a VLAN. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 233 • The packet is undersized (short). InFragments The total number of packets received for which both of the following is true: • The length is less than 64 bytes. • The CRC is invalid. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 234 • The data length is longer than the maximum allowable frame size. • No Rx Error is detected. NOTE Packets are counted for this statistic regardless of whether the CRC is valid or invalid. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 235: Viewing Stp Statistics
You can clear statistics for many parameters using the clear command. To determine the available clear commands for the system, enter the clear command at the Privileged EXEC level of the CLI. device#clear ? FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 236: Traffic Counters For Outbound Traffic
Traffic counters configuration notes Consider the following rules when configuring traffic counters for outbound traffic. • This feature is supported on FastIron X Series devices only. • This feature is supported in the Layer 2 and Layer 3 codes. • This feature applies to physical ports only, including 10 Gbps Ethernet ports and trunk ports. It does not apply to virtual interfaces.
Page 237 Transmit Queue Counter Values for Counter 1: Transmitted Frames: Known Unicast : 17204 Multicast & Unknown Unicast : 2797 Broadcast Dropped Frames: Bridge Egress Filtered Congestion Drops device#show transmit-counter values 4 Transmit Queue Counter Values for Counter 4: Transmitted Frames: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 238: Viewing Egress Queue Counters On Icx 6610 And Fcx Devices
The egress queue counters display at the end of the show interface command output as shown in the following example. device#show interface e 1/1/1 GigabitEthernet1/1/1 is up, line protocol is up Hardware is GigabitEthernet, address is 0000.0077.8080 (bia 0000.0077.8080) FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 239: Viewing Egress Queue Counters On Icx 7750 Devices
Port down for 16 hours 16 minutes 48 seconds Hardware is 10GigabitEthernet , address is 748e.f8f9.6280 (bia 748e.f8f9.6280) Interface type is 40Gig Fiber Configured speed 40Gbit, actual unknown, configured duplex fdx, actual unknown Configured mdi mode AUTO, actual unknown FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 240: Clearing The Egress Queue Counters
• Events (RMON Group 9) The CLI allows you to make configuration changes to the control data for these groups, but you need a separate RMON application to view and display the data graphically. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 241: Maximum Number Of Entries Allowed In The Rmon Control Table
0 for both of these counters. The port parameter specifies the port number. You can use the physical port number or the SNMP port number. The physical port number is based on the product. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 242 It is normal for this counter to increment, since it counts both runts (which are normal occurrences due to collisions) and noise hits. This number does not include framing bits but does include FCS octets. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 243 256 to 511 octets The total number of packets received that were 256 - 511 octets long. pkts This number includes bad packets. This number does not include framing bits but does include FCS octets. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 244: History (Rmon Group 2)
(event) to be taken if the threshold be exceeded. A sample CLI alarm entry and its syntax is shown below. device(config)#rmon alarm 1 ifInOctets.6 10 delta rising-threshold 100 1 falling threshold 50 1 owner nyc02 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 245: Event (Rmon Group 9)
On ICX and FCX Series devices, you can use QoS queue 1 for priority traffic, even when sFlow is enabled on the port. This differs from FastIron X Series devices, which support seven priorities instead of eight when sFlow is enabled. In this case, QoS queue 1 is reserved for sFlow and is not used by other packets.
Page 246: Sflow Support For Ipv6 Packets
• The Autonomous System patch to the destination NOTE Autonomous System communities and local preferences are not included in the sampled packets. To obtain extended gateway information, use "struct extended_gateway" as described in RFC 3176. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 247: Sflow Configuration Considerations
On ICX and FCX Series devices, you can use QoS queue 1 for priority traffic, even when sFlow is enabled on the port. This differs from FastIron X Series devices, which support seven priorities instead of eight when sFlow is enabled. In this case, QoS queue 1 is reserved for sFlow and is not used by other packets.
Page 248 IP address. ‐ If all the IP addresses are deleted from the source interface, the IP address of the outgoing interface is used in the sFlow datagram. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 249: Configuring And Enabling Sflow
Note that on the FastIron devices, the configured sampling rate and the actual rate are the same. The software does not adjust the configured sampling rate as on other Brocade devices.
Page 250 The dest-udp-port parameter specifies the UDP port on which the sFlow collector will be listening for exported sFlow data. The default port number is 6343. For information on VRF parameter, see the FastIron Layer 3 Routing Configuration Guide . The sampled sFlow data sent to the collectors includes an agent_address field. This field identifies the device that sent the data.
Page 251: Configuration Considerations
NOTE Brocade recommends that you do not change the denominator to a value lower than the default. Sampling requires CPU resources. Using a low denominator for the sampling rate can cause high CPU utilization. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 252 1073741823. The default value is 4096 for all devices. The software rounds the value you enter to the next higher odd power of 2. This value becomes the actual default sampling rate and is one of the following: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 253 The num parameter specifies the average number of packets from which each sample will be taken. The software rounds the value you enter up to the next odd power of 2. The actual sampling rate becomes one of the values listed in the section Changing the sampling rate. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 254: Enabling Sflow Forwarding
You can enable sFlow forwarding on Ethernet interfaces. To enable sFlow forwarding, perform the following: • Globally enable the sFlow feature • Enable sFlow forwarding on individual interfaces • Enable sFlow forwarding on individual trunk ports FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 255 For information about 802.1X, refer to "802.1X Port Security" chapter in the FastIron Ethernet Switch Security Configuration Guide Command syntax for enabling sFlow forwarding This section shows how to enable sFlow forwarding.
Page 256: Sflow Version 5 Feature Configuration
247. Alternatively, you can configure the device to instead use an arbitrary IPv4 or IPv6 address as the sFlow agent IP address. To specify an IPv4 address as the sFlow agent IP address, enter a command such as the following device(config)#sflow agent-ip 10.10.10.1 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 257 CPU and memory usage to the sFlow collector. To export CPU usage and memory usage information, enter the following command. device(config)# sflow export system-info Syntax: [no] sflow export system-info By default, CPU usage information and memory usage information are not exported. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 258: Configuring Sflow With Multi-Vrfs
Configuring sFlow with Multi-VRFs sFlow is a traffic monitoring protocol that supports VRFs. sFlow provides traffic sampling on configured ports based on sample rate and port information to a collector. By default, sFlow uses the FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 259 100 UDP packets exported 80 sFlow flow samples collected. sFlow ports: ethe 4/1/5 Module Sampling Rates --------------------- Port Sampling Rates ------------------- Port=4/1/5, configured rate=500, actual rate=500 Syntax: show sflow FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 260: Displaying Sflow Information
Port 1/4, configured rate=512, actual rate=512, Subsampling factor=1 Port 1/3, configured rate=512, actual rate=512, Subsampling factor=1 Port 1/2, configured rate=1000, actual rate=2048, Subsampling factor=4 Syntax: show sflow The show sflow command displays the following information. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 261 The maximum size of a flow sample sent to the sFlow collector. sample size exporting cpu-traffic Indicates whether or not the sFlow agent is configured to export data destined to the CPU (e.g., Telnet sessions) to the sFlow collector: • enabled • disabled FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 262 This command clears the values in the following fields of the show sflow display: • UDP packets exported • sFlow samples collected NOTE This command also clears the statistics counters used by other features. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 263: Utilization List For An Uplink Port
To display an uplink utilization list, enter a command such as the following at any level of the CLI. device#show relative-utilization 1 uplink: ethe 1 30-sec total uplink packet count = 3011 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 264 1/2 is connected to a hub and is sending traffic to port 1/1. Port 1/3 is unconnected. device#show relative-utilization 1 uplink: ethe 1 30-sec total uplink packet count = 2996 packet count ratio (%) 1 /2:100 1/ 3:--- FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 265: System Monitoring
Configuration notes and feature limitations • While system monitoring is supported on all FastIron devices, the types of errors monitored vary according to devices. On FSX devices, the sysmon utility monitors the following for errors: ‐...
Page 266: Configure System Monitoring
However, any sysmon configuration that is made, including global and event-specific configuration are retained. Examples The following example disables system monitoring: Brocade# disable system-monitoring all enable system-monitoring all Enables system monitoring at the global level for all event types. Syntax enable system-monitoring all FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 267: Sysmon Timer
The sysmon utility keeps a counter of the number of times the threshold value is exceed. If the number exceeds the back-off value, the error is logged as specified by the action option. Examples The following example sets the number of times to skip logging to 20. Brocade(config)# sysmon log-backoff 20 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 268: Sysmon Threshold
Use the following commands configure and display the status of system monitoring on fabric adaptors: • sysmon ecc-error on page 268 • sysmon link-error on page 269 sysmon ecc-error Configures how sysmon handles ECC errors. The no version of this command disables system monitoring on internal ECC errors. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 269: Sysmon Link-Error
Configures how sysmon handles link errors. The no version of this command disables system monitoring on link errors. Syntax sysmon link-error { threshold events polling-interval | log-backoff value | action { none | syslog } } no sysmon link-error FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 270: System Monitoring For Fabric Adapters
In addition to the error count, sysmon also checks for connectivity of FA links. This happens at the interval defined by the sysmon-timer command generally or specifically for FA. Use the following commands configure and display the status of system monitoring on fabric adaptors: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 271: Sysmon Fa Error-Count
The error is logged in the internal sysmon logs. This is the default value. syslog The error is logged to syslog. Modes Global configuration mode. Usage Guidelines This command is supported only on FSX devices. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 272: Sysmon Fa Link
No action is taken. This is the default. syslog The error is logged to syslog. Modes Global configuration mode. Usage Guidelines This command is supported only on FSX devices. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 273: System Monitoring For Cross Bar
Specifies the number of polling windows. The device polls the internal registers at the interval specified by the sysmon timer value. Valid values 1-32. However, the polling window number must be equal or greater than the number of events. log-backoff FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 274: Sysmon Xbar Link
If an error condition persists, it will be continuously logged (internally and/or externally). The log back-off count skips configured number of logs before logging again. This avoids overflow of the internal log or of the syslog. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 275: System Monitoring For Packet Processors
Use the following commands to configure and display the statistics of cross bar or switch fabric module: • sysmon pp error-count on page 276 • show sysmon logs on page 278 • show sysmon counters on page 278 • show sysmon config on page 282 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 276: Sysmon Pp Error-Count
Brocade(config)# sysmon pp error-count log-backoff 15 clear sysmon counters Clears sysmon counters for all or specific event types. Syntax clear sysmon counters all clear sysmon counters fa { error | link } { all | decimal } FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 277 Specifies that all stack units are cleared of errors. link-error Clears the link error count on FCX and ICX devices. This option is not supported on FSX devices. stack-unit Specifies the stack unit on which errors to be cleared. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 278: Show Sysmon Logs
Possible values are FA ERROR, FA Link, XBAR ERROR, XBAR LINK, or PP ERROR Component identifier Identifies the component of the system where the error was detected Error A brief description of the error show sysmon counters Displays sysmon counters for all or specific event types. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 279 Sysmon FA HG.link error detected (number of times) FA-link0 link1 FA-link2 FA-link3 SLOT FA-dev Sync/FC(RX,TX) Sync/ FC(RX,TX) Sync/FC(RX,TX)Sync/FC(RX,TX) 0/(0,0) 0/(0,0) (0,0) 0/(0,0) 0/(0,0) 0/(0,0) (0,0) 0/(0,0) 1751/(1750,1750) 0/(0,0) (0,0) 0/(0,0) 0/(0,0) 0/(0,0) (0,0) 0/(0,0) FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 280 Parity error detect = 0, ECC error detect LPM1: Parity error detect = 0, ECC error detect LPM2: Parity error detect = 0, ECC error detect LPM3: Parity error detect = 0, ECC error detect FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 281 ****Stacking unit 4 (ICX) ecc error detect ECC one-time error detect = 0 ECC two-time error detect = 0 ========================== Sysmon ECC error detected on: Stacking Unit 5 (number of times) ****Stacking unit 5 (ICX) ecc error detect FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 282: Show Sysmon Config
Log Backoff Numner: Number of times skip log before log again. ====================================== Sysmon Event: LINK_STATUS (Enabled) Threshold: 2/10 Log Backoff Number: 10 Action: log(internal) /syslog Sysmon Event: ECC_STATS (Enabled) Threshold: 2/10 Log Backoff Number: 10 Action: log(internal) /syslog FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 283: Show Sysmon System Sfm
Brocade(config)# show sysmon system sfm all SFM= 1,Xbar= 2 X-link Status FlowCtrl FA-dev/Link Status FlowCtrl 19/0 13/0 10/1 17/0 ======================================================= SFM= 1,Xbar= 3 X-link Status FlowCtrl FA-dev/Link Status FlowCtrl 17/1 19/1 10/2 13/1 ======================================================= FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 284 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 285: Syslog
Syslog format. There are several subfields in the format. Keywords are used to identify each subfield, and commas are delimiters. The subfield order is insensitive except that the text subfield should be the last field in the message. All the subfields are optional. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 286: Displaying Syslog Messages
Notice that the CLI displays a message to indicate the status change for the feature. To disable the feature in the management session, enter the terminal monitor command again. The command toggles the feature on and off. telnet@device#terminal monitor Syslog trace was turned OFF FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 287: Displaying Real-Time Syslog Messages
Dec 15 18:45:21:I:Bridge topology change, vlan 4095, interface 4, changed state to forwarding Dec 15 18:45:15:I:Warm start Syntax:show logging The Syslog display shows the following configuration information, in the rows above the log entries themselves. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 288 Dec 15 19:00:14:A:Fan 2, fan on left connector, failed Dynamic Log Buffer (50 entries): Dec 15 18:46:17:I:Interface ethernet 4, state up Dec 15 18:45:21:I:Bridge topology change, vlan 4095, interface 4, changed state to forwarding Dec 15 18:45:15:I:Warm start FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 289 The example shows the format of messages on a device where the onboard system clock has been set. Each time stamp shows the month, the day, and the time of the system clock when the message was FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 290: Disabling Or Re-Enabling Syslog
This command enables local Syslog logging with the following defaults: • Messages of all severity levels (Emergencies - Debugging) are logged. • Up to 50 messages are retained in the local Syslog buffer. • No Syslog server is specified. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 291: Specifying A Syslog Server
Changing the number of entries the local buffer can hold You also can use the logging buffered command to change the number of entries the local Syslog buffer can store. For example. device(config)#logging buffered 1000 device(config)#write memory device(config)#exit device#reload Syntax:[no] logging buffered num FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 292: Changing The Log Facility
Local buffer configuration notes The default number of messages is 50. For FastIron devices, you can set the Syslog buffer limit from 1 - 1000 entries. Local buffer configuration notes • You must save the configuration and reload the software to place the change into effect.
Page 293: Displaying Interface Names In Syslog Messages
To display TCP or UDP port numbers instead of their names, enter the following command. device(config)#ip show-service-number-in-log Syntax: [no] ip show-service-number-in-log Retaining Syslog messages after a soft reboot You can configure the device to save the System log (Syslog) after a soft reboot (reload command). FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 294: Clearing The Syslog Messages From The Local Buffer
Syslog messages for hardware errors NOTE This feature is supported on FastIron X Series devices only. It is not supported on FCX and ICX devices. FastIron Chassis devices support the display of hardware read and write errors encountered on a slot or module during bootup and during normal system operations.
Page 295 0d00h00m02s:A:System: Module in slot 5 encountered PCI config read error: Bus 10, Dev 3, Reg Offset 0. 0d00h00m00s:W:System: Fan speed changed automatically to 1 Syslog messages (alerts) for hardware errors are listed in Brocade Syslog messages on page 297. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 296 Syslog messages for hardware errors FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 297: Syslog Messages
Fan num , location , failed Explanation A fan has failed. The num is the fan number. The location describes where the failed fan is in the chassis. Message Level Alert Message MAC Authentication failed for mac-address on portnum FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 298 RADIUS authentication was successful for the specified mac-address on the specified portnum ; however, the RADIUS Access-Accept message specified a VLAN that does not exist in the Brocade configuration. This is treated as an authentication failure. Message Level Alert FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 299 • 5 - External Message Level Alert OSPF Memory Overflow Message Explanation OSPF has run out of memory. Message Level Alert Message System: Module in slot slot-num encountered PCI config read error: Bus PCI-bus-number , Dev PCI- FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 300 The module encountered an unrecoverable (hardware) bridge validation failure. The module will be disabled or powered down. Message Level Alert Message System: Module in slot slot-num encountered unrecoverable PCI config read failure. Module will be deleted. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 301 The module encountered an unrecoverable hardware memory write failure. The module will be disabled or powered down. Message Level Alert System: No Free Tcam Entry available. System will Message be unstable Explanation You must reboot the device. Message Level Alert FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 302 The device could not start the BGP4 routing protocol because there is not enough memory available. Message Level Debug DOT1X: Not enough memory Message Explanation There is not enough system memory for 802.1X authentication to take place. Contact Brocade Technical Support. Message Level Debug FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 303 MAC address filters that were removed. Message Level Informational Security: Password has been changed for user Message username from session-id FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 304 PRIVILEGED mode Message Explanation A user has logged out of Privileged EXEC mode of the CLI. The user-name is the user name. Message Level Informational Message user-name logout from USER EXEC mode FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 305 The vlan-id is the ID of the VLAN in which the STP topology change occurred. The portnum is the port number. The stp-state is the new STP state and can be one of the following: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 306 MAC filter, but MAC filter have no effect on router port Explanation The RADIUS server returned an MAC address filter, but the portnum is a router port (it has one or more IP addresses). Message Level Informational FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 307 802.1X authentication failed for the Client with the specified mac address on the specified portnum either due to insufficient system resources on the device, or due to invalid IP ACL or MAC address filter information returned by the RADIUS server. Message Informational Level FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 308 RADIUS server specifies a VLAN ID for the user. The port to which the user is connected has been moved to the VLAN indicated by vlan-id . Message Level Informational Message DOT1X: Port portnum currently used vlan-id is set back to port default vlan-id vlan-id FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 309 ERR_DISABLE: Interface ethernet 16, err-disable recovery timeout Explanation If the wait time (port is down and is waiting to come up) expires and the port is brought up the following message is displayed. Message Level Informational FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 310 Message Level Informational Message MAC Based Vlan Disabled on port port id Explanation A MAC Based VLAN has been disabled on a port Message Level Informational MAC Based Vlan Enabled on port port id Message FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 311 A port priority has changed. Message Level Informational Port portnum , srcip-security max-ipaddr-per-int Message reached.Last IP= ipaddr Explanation The address limit specified by the srcip-security max-ipaddr-per- interface command has been reached for the port. Message Level Informational FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 312 SNMP read-only community | read-write community | Message contact | location | user | group | view | engineld | trap [host] [ value -str ] deleted | added | modified from console | telnet | ssh| snmp session FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 313 STP: Root Guard Port port-number, VLAN vlan-ID consistent (Timeout). Explanation Root guard unblocks a port. Message Level Informational Message STP: Root Guard Port port-number , VLAN vlan-ID inconsistent (Received superior BPDU). Explanation Root guard blocked a port. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 314 BPDU guard violation in occurred in STP or RSTP. Message Level Informational Message Syslog server IP-address deleted | added | modified from console | telnet | ssh| snmp OR Syslog operation enabled | disabled from console | telnet | ssh| snmp FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 315 / slot / port to unit / slot / port on VLANs vlan-id to vlan-id Explanation A MAC address is added to a range of interfaces, which are members of the specified VLAN range. Message Level Informational FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 316 / slot / port on vlan-id Explanation A MAC address is deleted from an interface and the interface is a member of the specified VLAN. Message Level Informational FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 317 | deleted | modified from console | telnet | ssh| snmp session Explanation A user created, modified, or deleted a VLAN through the SNMP, console, SSH, or Telnet session. Message Level Informational FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 318 ( description ), failed Explanation The operational status of a fan in the specified unit in a stack changed from normal to failure. Message Level Informational Message System: Stack unit unit# Power supply power- supply# is down FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 319 Message vlan vlan-id Bridge is RootBridge mac-address (MsgAgeExpiry) Explanation The message age expired on the Root port so 802.1W changed the current bridge to be the root bridge of the topology. Message Level Informational FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 320 Layer 4 CAM entries, enter the following command at the CLI configuration level for the interface: ip access-group max-l4-cam num Message Level Notification Message ACL insufficient L4 cam resource, using flow based ACL instead FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 321 This message can occur if fragment thottling is enabled. Message Level Notification Message Authentication Disabled on portnum Explanation The multi-device port authentication feature was disabled on the on the specified portnum . Message Level Notification Message Authentication Enabled on portnum FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 322 DOT1X issues software but not physical port up Message indication of Port portnum to other software applications Explanation The device has indicated that the specified port has been authenticated, but the actual port may not be active. Message Level Notification FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 323 The Layer 3 switch adjacency with this Level-2 IS-IS has come up. The system-id is the system ID of the IS-IS. The circuit-id is the ID of the circuit over which the adjacency was established. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 324 The second num is the number of seconds during which additional TCP packets will be blocked on the device. NOTE This message can occur in response to an attempted TCP SYN attack. Message Notification Level Message MAC Authentication RADIUS timeout for mac_address on port port_id FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 325 The ospf-state indicates the state to which the interface has changed and can be one of the following: • down • loopback • waiting • point-to-point • designated router • backup designated router • other designated router • unknown FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 326 The ip-addr is the IP address of the interface on the Brocade device. The src-ip-addr is the IP address of the interface from which the Brocade device received the error packet. The error-type can be one of the following: FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 327 Message addr , intf addr ip-addr , pkt size num , checksum num , pkt src addr ip-addr , pkt type type Explanation The device received an OSPF packet that had an invalid checksum. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 328 Explanation The neighbor IP address in the packet is not in the list of OSPF neighbors in the Brocade device. The parameters are the same as for the Bad Checksum message. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 329 OSPF LSDB overflow, rid router-id, limit num Explanation A Link State Database Overflow (LSDB) condition has occurred. The router-id is the router ID of the Brocade device. The num is the number of LSAs. Message Level Notification FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 330 Explanation An OSPF interface has originated an LSA. The router-id is the router ID of the Brocade device. The area-id is the OSPF area. The lsa-type is the type of LSA. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 331 Indicates that an OSPF virtual routing interface configuration error has occurred. The router-id is the router ID of the Brocade device. The ip-addr is the IP address of the interface on the Brocade device. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 332 The packet-type can be one of the following: • hello • database description • link state request • link state update • link state ack • unknown Message Notification Level FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 333 The ospf-state indicates the state to which the interface has changed and can be one of the following: • down • loopback • waiting • point-to-point • designated router • backup designated router • other designated router • unknown Message Notification Level FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 334 Explanation Threshold parameters for TCP transit (through) traffic have been configured on an interface, and the maximum burst size for TCP packets on the interface has been exceeded. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 335 Explanation Indicates that the Brocade device received a packet from another device on the network with an IP address that is also configured on the Brocade device. The ip-addr is the duplicate IP address. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 336 The ACL-num indicates the ACL number. Numbers 1 - 99 indicate standard ACLs. Numbers 100 - 199 indicate extended ACLs. The ip-proto indicates the IP protocol of the denied packets. The src-ip-addr is the source IP address of the denied packets. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 337 No of prefixes received from BGP peer ip-addr Message exceeds warning limit num Explanation The Layer 3 switch has received more than the allowed percentage of prefixes from the neighbor. The ip-addr is the IP address of the neighbor. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 338 The num indicates how many packets matching the values above were dropped during the five-minute interval represented by the log entry. Message Warning Level Message Temperature is over warning level. Explanation The chassis temperature has risen above the warning level. Message Level Warning FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 339: Power Over Ethernet
PoE to refer to PoE, PoE+, and High PoE. For a list of the FastIron devices and modules that support PoE, PoE+, High PoE, Power over HDBaseT (PoH), or a combination, refer to the FastIron Ethernet Switch Feature and Standards Support Matrix.
Page 340: Methods For Delivering Power Over Ethernet
• Power-sourcing device or Power-sourcing equipment (PSE) - The source of the power, or the device that integrates the power onto the network. Power sourcing devices and equipment have embedded PoE technology. The Brocade FastIron PoE device is a power sourcing device. Methods for delivering Power over Ethernet There are two methods for delivering Power over Ethernet (PoE) as defined in the 802.3af and 802.3at...
Page 341 (Alternative B). The intermediate device has multiple channels (typically 6 to 24), and each of the channels has data input and a data-plus-power RJ-45 output connector. The Midspan method is illustrated in the following figure. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 342: Poe Autodiscovery
PD. PDs that do not support classification are assigned a class of 0 (zero). The following table shows the different power classes and their respective power consumption needs. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 343 LLDP messages). As an example, if each PoE power-consuming device attached to a FastIron PoE device is budgeted to consume 30 watts of power, one 720- or 748-watt power supply can power up to 24 PoE ports. With the...
Page 344: Dynamic Upgrade Of Poe Power Supplies
You can use the show inline power detail command to display detailed information about the PoE power supplies installed in a FastIron PoE device. For more information, refer to section Displaying detailed information about PoE power supplies on page 364.
Page 345: Power Over Ethernet Cabling Requirements
Category 5 UTP cable or better. PoH has the following cabling requirements based on distance: • Cat 5e - 25 meters • Cat 6/6a - 55 meters • Cat 7 - 100 meters. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 346: Supported Powered Devices
The following table lists PoE firmware files. The firmware files are specific to each device and cannot be used in any other device. TABLE 41 PoE Firmware files Product PoE Firmware FSX Gen 1 & 2 modules fsx_poe_06.0.6.fw FSX Gen 3 modules fsx_poeplus_02.1.0.fw FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 347 PoE firmware is stored in the PoE controller of the FastIron switch. You can install PoE firmware from the TFTP server on a FastIron switch using CLI commands. To do so, you should have a valid firmware image on the TFTP server.
Page 348 U3-MSG: PoE Info: Firmware Download on slot 1..10 percent completed. U3-MSG: PoE Info: Firmware Download on slot 1..20 percent completed. U3-MSG: PoE Info: Firmware Download on slot 1..30 percent completed. U3-MSG: PoE Info: Firmware Download on slot 1..40 percent completed. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 349 To use the PoE feature, download the PoE firmware file. You can then install it using SCP as shown in the following procedure. NOTE In a stack, you must install the PoE firmware on each individual member unit. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 350: Poe And Cpu Utilization
For example: C:/>pscp fsx_poe_07400.fw host1@10.10.1.1:firmware:stackid:1 The process of PoE firmware installation begins. In the FastIron device CLI, you should see output similar to the following. Brocade(config)# scp download successful stackId = 1 file name = poe-fw Sending PoE Firmware to Stack Unit 1.
Page 351: Enabling And Disabling Power Over Ethernet
PoE: Power disabled on port 1/1/46 because of admin off. PoE: Power disabled on port 1/1/47 because of admin off. PoE: Power disabled on port 1/1/48 because of admin off. ICX7250-48P Router(config-mif-1/1/1-1/1/48)# Syntax: [no] inline power [device/slot/port] [to device/slot/port] FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 352: Disabling Support For Poe Legacy Power-Consuming Devices
NOTE Inline power should not be configured between two switches, as it may cause unexpected behavior. NOTE FastIron PoE and PoE+ devices can automatically detect whether a power-consuming device is 802.3af- or 802.3at-compliant. Disabling support for PoE legacy power-consuming devices Brocade PoE devices automatically support most legacy power-consuming devices (devices not compliant with 802.3af 802.3at), as well as all 802.3af- and 802.3at-compliant devices.
Page 353: Enabling The Detection Of Poe Power Requirements Advertised Through Cdp
To enable the Brocade device to detect CDP power requirements, enter the following commands. device# configure terminal device(config)# cdp run Syntax: [no] cdp run Use the no form of the command to disable the detection of CDP power requirements. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 354: Setting The Maximum Power Level For A Poe Power-Consuming Device
ICX7450 because Class 4 encompasses 30-95W. However, Class 4 on units that do not support PoH or High Power is still 30W. • FastIron devices pre-allocate power as per the configured maximum power for a physically operational PoE, PoE+, or High PoE configured port. However, in an ICX 6450-C12 device that is operational without direct power supply and that has pass-through power, there is no pre-allocation of power.
Page 355: Setting The Power Class For A Poe Power-Consuming Device
If power resources are not available, the following message is displayed on the console and in the Syslog: PoE: Failed power allocation of 30000 mwatts on port 1/1/21. Will retry when more power budget. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 356: Setting The Power Class Command Syntax
The num variable is the number of milliwatts to allocate to the module. Enter a value from 0 through 65535000. The slot variable specifies where the PoE or PoE+ module resides in the chassis. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 357: Setting The Inline Power Priority For A Poe Port
1/1/2. By default, all ports are configured with a low inline power priority. Command syntax for setting the inline power priority for a PoE port To configure an inline power priority for a PoE port on a FastIron PoE device, use the inline power priority command as shown in the following example.
Page 358: Resetting Poe Parameters
ICX7250-24-3J32(config)# stack unit 12 ICX7250-24-3J32-u12(config)# interface ethernet 2/1/1 ICX7250-24-3J32-u12(config-if-e1000-2/1/1)# inline power decouple-datalink Decouple PoE from data link operational behavior power-by-class Allocate power based on class of the power devices power-limit Allocate power based on specified limit FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 359: Displaying Power Over Ethernet Information
1/1/25 On 6385 7000 802.3af Class 2 1/1/26 On 6385 7000 802.3af Class 2 1/1/27 On 6385 7000 802.3af Class 2 1/1/28 On 6385 7000 802.3af Class 2 1/1/29 On 6385 7000 802.3af Class 2 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 360 The number of current, actual milliwatts that the PD is consuming. Consumed Power The number of milliwatts allocated to the port. This value is either the default or configured Allocated maximum power level, or the power class that was automatically detected by the device. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 361 This field can also be "Unknown" when the device attached to the port cannot advertise its power class. NOTE If an 802.3at PD with a class 4 value is connected to a Brocade FastIron switch, the switch must be running FastIron release 08.0.20 or later to be able to perform the necessary power negotiations.
Page 362: Displaying Poe Data Specific To Pd Ports
Grand Total The total number of current, actual milliwatts being consumed by all PDs connected to the FastIron PoE device, and the total number of milliwatts allocated to all PDs connected to the FastIron PoE device. Displaying PoE data specific to PD ports The show inline power pd command displays operational information specific to the PD ports.
Page 363 Field definitions for the show inline power pd command Column Definition Number of PD Ports The number of PD ports in the system. Total PD Power Total PD power available to PSE. Available to PSE FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 364: Displaying Detailed Information About Poe Power Supplies
Displaying detailed information about PoE power supplies The show inline power detail command displays detailed operational information about the PoE power supplies in FastIron PoE switches. The command output differs on FCX POE+ switches compared to FSX Series and ICX switches.
Page 365 ++++++++++++++++++ PoE+ Max Operating Voltage: 54 V Power Supply #1: Model Number: 32004000 Serial Number: 093786124716 Firmware Ver: Test Date: 9/12/09 (mm/dd/yy) H/W Status: Max Curr: 50.0 Amps Voltage: 54.0 Volts Capacity: 2500 Watts FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 366 54.0 Volts Capacity: 360 Watts Power Supply #3: Max Curr: 6.6 Amps Voltage: 54.0 Volts Capacity: 360 Watts POE Details Info. On Stack 1 : General PoE Data: +++++++++++++++++ Firmware Version ---------------- 01.2.1 Build 003 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 367 1/1/7 On 28452 30000 802.3at Class 4 1/1/8 On 28358 30000 802.3at Class 4 1/1/9 On 28170 30000 802.3at Class 4 1/1/10 On 28170 30000 802.3at Class 4 1/1/11 On 28170 30000 802.3at Class 4 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 368 Oper-Off Off-Denied Off-No-PD Off-Fault ------------------------------------------------------------------------- Cumulative Port Power Data: +++++++++++++++++++++++++++ #Ports #Ports #Ports Power Power Pri: 1 Pri: 2 Pri: 3 Consumption Allocation ----------------------------------------------- 679.371 W 720.0 ICX7250-24P Router# Syntax: show inline power detail FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 369 (PSUs) is inaccurately displayed as lower than the actual power consumption of the PSUs due to the sensitivity limitations of power supply measurements. General PoE data Slot The device/slot/port number. Firmware Version The firmware version for the device/slot/port. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 370 The number of watts allocated to the Interface module PoE ports. This value is the sum of the ports’ default or configured maximum power levels, or power classes automatically detected by the FastIron PoE device. FastIron Ethernet Switch Administration Guide...
Page 371: Inline Power On Poe Lag Ports
If you want to keep decoupling in place on a PoE port when you configure the inline power ethernet command to change its other parameters, for example, priority, you must also configure the decouple- datalink keyword. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 372: Configuring Inline Power On Poe Ports In A Lag
8. Configure inline power on a secondary port, specifying the actual power value. The following example configures inline power on the port 1/1/4, specifying an actual power value of 12000 mWatts. Device(config)# inline power ethernet 1/1/4 power-limit 12000 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 373: Decouple Poe And Datalink Operations On Poe Ports
Configure this task on the Brocade PSE for any PoE ports that require the decoupling of inline power and datalink operations. Any Layer 2 features can then be configured and deployed on these PoE ports. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 374: Decoupling Of Poe And Datalink Operations On Regular Poe Ports
PoE port does not affect the power state of the powered device (PD) that is connecting to the port. You can FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 375 7. Enables interface configuration for Ethernet 1/1/4 port. The following example enters interface configuration mode for Ethernet port 1/1/4. Device(config-if-e1000-1/1/3)# interface ethernet 1/1/4 8. Configure inline power on Ethernet 1/1/4 port, specifying the actual power value. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 376 The following example configures inline power on Ethernet port 1/1/4 port, specifies an actual power value of12000 mWatts, and decouples the datalink operations and the PoE operations for this port. Device(config-if-e1000-1/1/4)# inline power decouple-datalink power-limit 12000 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 377: 40 Gbps Breakout Ports
Module 2 1/2/1 through 1/2/6 (6 ports) 1/2/1 through 1/2/6 (6 ports) 1/2/1 through 1/2/6 (6 ports) Module 3 1/3/1 through 1/3/6 (6 ports) 1/3/1 through 1/3/6 (6 ports) 1/3/1 through 1/3/6 (6 ports) FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 378: Configuring 40 Gbps Breakout Ports
Device(config)# breakout ethernet 1/1/5 Reload required. Please write memory and then reload or power cycle. Device(config)# write memory Write startup-config done. Device(config)# Flash Memory Write (8192 bytes per dot) . Copy Done. Device(config)# end Device# reload FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 379: Configuring Sub-Ports
2439.3728 1/1/15 Down None None None None cc4e. 2439.372c 1/1/16 Down None None None None cc4e. 2439.3730 1/1/17 Down None None None None cc4e. 2439.3734 1/1/18 Down None None None None cc4e. 2439.3735 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 380 None cc4e. 2439.3730 1/1/17 Down None None None None cc4e. 2439.3734 1/1/18 Down None None None None cc4e. 2439.3735 1/1/19 Down None None None None cc4e. 2439.3736 1/1/20 Down None None None None cc4e. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 381: Removing Breakout Configuration
Enter the no breakout command for an individual port or port range as shown in the following examples. However, for the restored 40 Gbps port configuration to take effect, you must also execute the write memory command and then use the reload command to update the unit's configuration. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 382 Deleted tagged port(s) to port-vlan 200. device(config)# end device# configure terminal device(config)# no breakout ethernet 1/1/5 Reload required. Please write memory and then reload or power cycle. device(config)# end device# write memory Write startup-config done. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 383: Displaying Information For Breakout Ports
Port 1/2/1 is the only port with active sub-ports; however, ports 1/2/2 and 1/2/4 are configured for breakout, pending reload. Device# show breakout Unit-Id: 1 Port Module Exist Module Conf Breakout-config Breakout-oper 1/2/1 1/2/2 1/2/3 1/2/4 1/2/5 1/2/6 1/3/1 1/3/2 1/3/3 1/3/4 1/3/5 1/3/6 FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 384 Displaying information for breakout ports FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 385: Openssl License
Tim Hudson (tjh@cryptsoft.com). Copyright remains Eric Young's, and as such any Copyright notices in the code are not to be removed. If this package is used in a product, Eric FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 386 SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. The licence and distribution terms for any publically available version or derivative of this code cannot be changed. i.e. this code cannot simply be copied and put under another distribution licence. FastIron Ethernet Switch Administration Guide 53-1003625-01...
Page 387: Joint Interoperability Test Command
JITC overview....................... 387 JITC overview The Joint Interoperability Test Command (JITC) mode on a FastIron device is compliant with the standards established by JITC, a United States military organization that tests technology pertaining to multiple branches of the armed services and the government.
Page 388 SNMPv3 group, and the incoming SNMP packets can be filtered based on the IPv6 ACL attached to the group. For more information, refer to Defining an SNMP group on page 152 and Defining an SNMP group and specifying which view is notified of traps on page 156. FastIron Ethernet Switch Administration Guide 53-1003625-01...

Save PDF