D-Link 5000 Series Cli Reference Manual

D-Link 5000 Series Cli Reference Manual

Layer 2/3 managed 10g/25g/40g/100g data center switches
Hide thumbs Also See for 5000 Series:
Table of Contents

Advertisement

Draft 1.2.1

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the 5000 Series and is the answer not in the manual?

Questions and answers

Summary of Contents for D-Link 5000 Series

  • Page 1 Draft 1.2.1...
  • Page 2: Table Of Contents

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Table of Contents About This Guide ................................. 1 Objective and Audience ..............................1 Acronyms and Abbreviations ............................1 Guide Conventions ................................5 About D-LINK OS Software ............................. 7 About D-LINK OS Software ..............................7 Product Concept ................................
  • Page 3 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide RADIUS Commands ................................. 105 TACACS+ Commands ............................... 122 Configuration Scripting Commands ..........................127 Pre-login Banner, System Prompt, and Host Name Commands ..................130 Front Panel TAP Interfaces .............................. 133 Utility Commands ................................
  • Page 4 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DHCP L2 Relay Agent Commands ........................... 460 DHCP Client Commands ..............................466 DHCP Snooping Configuration Commands ........................468 Dynamic ARP Inspection Commands ..........................481 IGMP Snooping Configuration Commands ........................489 IGMP Snooping Querier Commands ..........................
  • Page 5 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide General OSPF Commands ............................730 OSPF Interface Commands............................756 OSPF Graceful Restart Commands ..........................763 OSPFv2 Stub Router Commands ..........................765 OSPF Show Commands ............................... 767 ICMP Throttling Commands ............................794 Bidirectional Forwarding Detection Commands ......................
  • Page 6 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Differentiated Services Commands ..........................1155 DiffServ Class Commands .............................. 1156 DiffServ Policy Commands ............................1169 DiffServ Service Commands ............................1179 DiffServ Show Commands ............................. 1180 MAC Access Control List Commands ..........................1187 IP Access Control List Commands ..........................
  • Page 7: About This Guide

    D-LINK OS software. It is assumed that readers of this guide will have an understanding of the D-LINK OS software base and will have read the appropriate specifications for the relevant networking device platform. It is further assumed that readers will have basic knowledge of Ethernet and networking concepts.
  • Page 8 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Acronym Expansion dial-on-demand routing designated forwarder Distributed Forwarding Card DHCP Dynamic Host Configuration Protocol DIAG diagnostic Dual In-Line Package dLFI Distributed Link Fragmentation and Interleaving dLFIoATM Distributed Link Fragmentation and Interleaving over ATM...
  • Page 9 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Acronym Expansion interface description block IDPROM identification programmable read-only memory IGMP Internet Group Management Protocol Internet Operating System Internet Protocol InterProcessor Communication IPNAT IP Network Address Translation keepalive Layer 2...
  • Page 10 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Acronym Expansion Optical Services Module Programmable Binary Image Peripheral Component Interconnect Policy Feature Card PFINIT platform initialization PFREDUN platform redundancy Protocol Independent Multicast PIMSN Protocol Independent Multicast Snooping PISA...
  • Page 11: Guide Conventions

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Acronym Expansion SPAN Switched Port Analyzer Spatial Reuse Protocol Super Santa Ana ASIC Stateful Switchover State Synchronization Protocol Manager SSRAM synchronous static RAM STAPL Standard Test and Programming Language...
  • Page 12 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Convention Description Bold Indicates user inputs and actions: for example, type exit, click OK, press Alt+C Monospace Indicates code: for example, #include <iostream> Indicates command-line commands and command outputs: for example,...
  • Page 13: About D-Link Os Software

    Relatedly, there is an increasing demand for devices that can switch Layers 2, 3, and 4, and D-LINK OS software offers a highly adaptable solution for these constantly increasing demands.
  • Page 14: Using The Command-Line

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Using the Command-Line The command-line interface (CLI) constitutes a text-based means by which to monitor and manage the system. The CLI can be accessed by the use of a direct serial connection or through the used of a remote logical connection via telnet or SSH.
  • Page 15: Common Parameter Values

    Name with Spaces”. An empty string (“”) will not be considered valid. Slot/Port Naming Convention In referencing physical entities such as cards and ports, the D-LINK OS software uses a slot/port naming convention. This convention is also used by the software to identify certain logical entities, such as Port- Channel interfaces.
  • Page 16: Using The No Form Of A Command

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Slot Type Description Logical slot numbers Logical slots numbers are given immediately after physical slot numbers and identify port-channel (LAG) or router interfaces. The values for logical slot numbers are dependent upon the type of logical interface and can differ from platform to platform.
  • Page 17: Executing Show Commands

    Q will cause the pagination to stop, and pressing any other key will advance the display by a whole page. No other configuring of these keys is possible. Note: Although pagination is already supported by some D-LINK OS show commands, its implementation is unique per command rather than being generic to all commands.
  • Page 18: D-Link Os Modules

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide D-LINK OS Modules The D-LINK OS software is composed of flexible modules that can be utilized in a variety of combinations in order to support advanced Layer 2/3/4 products. The installed modules determine the commands and command modes available on your switch.
  • Page 19 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Prompt Mode Description Mode This mode can also be used to manage Switch (Interface Loopback id)# the operation of a range of interfaces. For example, for the range of interfaces from...
  • Page 20 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Prompt Mode Description Mode TACACS+ Includes the commands for configuring the Switch (Tacacs)# Config properties of the TACACS+ servers. ARP Access- Switch (Config-arp-access- Includes the commands used to add...
  • Page 21: Command Completion And Abbreviation

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Access Method Policy-Class-Map Config Enter while in the Policy Map mode. class <classname> Note: A given classname should be created using the class-map command. Class-Map Config Enter while in the Global class-map match-all <class-map-name>...
  • Page 22: Cli Error Messages

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide CLI Error Messages If a command is entered by the user and the system cannot execute it, an error message will appear. Table 7 provides a list of the most common CLI error messages.
  • Page 23: Using Cli Help

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Key Sequence Description Ctrl-Z Returns user to root command prompt. Tab, <SPACE> Yields command-line completion. Exit Returns user to next lower command prompt. Opens list of available commands, keywords, or parameters.
  • Page 24: Accessing The Cli

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Accessing the CLI The CLI can be accessed through a direct console connection or through a telnet or SSH connection from a remote management host. For the initial connection, a direct connection to the console port must be used. The system cannot be accessed remotely until it has been assigned an IP address, subnet mask, and default gateway.
  • Page 25: Management Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Management Commands This section provides descriptions of the following management commands for the D-LINK OS CLI: • “Network Interface Commands” • “IPv6 Management Commands” • “Console Port Access Commands”...
  • Page 26 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide do (Privileged EXEC) commands This command causes Privileged EXEC mode commands to be executed from any of the configuration modes. do Priv Exec Mode Command Parameters None Default The default is None.
  • Page 27 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC serviceport protocol This command specifies the network management port configuration protocol. If you modify this value, the change is effective immediately. If you use the bootp parameter, the switch periodically sends requests to a BootP server until a response is received.
  • Page 28 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC Usage Guideline There is no support for the no form of the command serviceport protocol dhcp client-id. To remove the client-id option from the DHCP client messages, issue the command serviceport protocol dhcp without the client-id option.
  • Page 29 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters none No specified network information is set. bootp Specifies the static BOOTP server for packet requests. dhcp Specifies the DHCP server for packet requests. Default The default is DHCP.
  • Page 30 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide This command is used to show the configuration settings associated with the network interface of the switch. Please note that the network interface is the logical interface that is used to provide the switch with in-band connectivity via any of the switch's front panel ports.
  • Page 31 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configured IPv4 Protocol Indicates the designated IPv4 network protocol (bootp | DHCP | none). Configured IPv6 Protocol Indicates the IPv6 network protocol being utilized. The options for this parameter are DHCP | none.
  • Page 32: Ipv6 Management Commands

    IPv6 management commands are used to manage a device via an IPv6 address in a switch or via IPv4 routing (i.e., independent from the IPv6 Routing package). For Routing/IPv6 builds of D-LINK OS dual IPv4/IPv6, operation over the service port is enabled. D-LINK OS has the following capabilities: •...
  • Page 33 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC 4-12 network ipv6 enable This command is used to enable IPv6 operation on the network port if it has been disabled. However, please note that IPv6 operation is, by default, enabled on the network port.
  • Page 34 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC 4-14 serviceport ipv6 gateway This command is used to configure the IPv6 gateway (i.e. default router) information for the service port.
  • Page 35 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters ipv6-address Indicates the IPv6 address of the neighbor or interface. Default The default is None. Command Mode Privileged EXEC 4-16 network ipv6 neighbor This command is used for the manual addition of IPv6 neighbors to the IPv6 neighbor table for this network port.
  • Page 36 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide network ipv6 address {prefixs/prefix-length [eui64] | autoconfig | dhcp} no network ipv6 address {prefix/prefix-length [eui64] | autoconfig | dhcp} Parameters Prefix/prefix-length Indicates the lPv6 prefix length value. autoconfig Used to configure the stateless global address autoconfiguration capability.
  • Page 37 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-19 show network ipv6 neighbors This command is used to show information regarding the IPv6 neighbor entries cached on the network port. The information is updated in order to display the type of the entry.
  • Page 38 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show serviceport ipv6 neighbors Parameters None Default The default is None. Command Mode Privileged EXEC Example The following provides an example of the command (Routing) #show serviceport ipv6 neighbors...
  • Page 39 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following provides an example of the CLI display output for the command...
  • Page 40 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DHCPv6 Request Packets Indicates the number of DHCPv6 Request packets that have been Transmitted transmitted on the network interface. DHCPv6 Renew Packets Indicates the number of DHCPv6 Renew packets that have been Transmitted transmitted on the network interface.
  • Page 41 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DHCPv6 Rebind Packets Transmitted....0 DHCPv6 Release Packets Transmitted....0 Total DHCPv6 Packets Transmitted....0 Display Parameters DHCPv6 Advertisement Indicates the number of DHCPv6 Advertisement packets that have been Packets Received received on the service port interface.
  • Page 42 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC 4-24 clear serviceport ipv6 dhcp statistics This command is used to clear the DHCPv6 client statistics on the service port interface. clear serviceport ipv6 dhcp statistics...
  • Page 43 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default • The default count is 1. • The default interval 3 seconds. • The default size is 0 bytes. Command Mode • Privileged EXEC • User EXEC 4-26 ping ipv6 interface This command is used to determine if another computer is present on the network.
  • Page 44 An incoming packet, such as a traceroute response, that arrives on a routing interface will not be accepted by D-LINK OS if the packet’s destination address is located on one of the out-of-band management interfaces (that is, the service port or network port). Similarly, a packet that arrives on a management interface will not be accepted by D-LINK OS if that packet’s destination is an address...
  • Page 45 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide hostname The value for the hostname value should be a valid hostname. ipv6 (Optional) The use of the optional ipv6 keyword before the ipv6-address or hostname is possible. If the ipv6 keyword is used before the hostname, the system will try to resolve to an IPv6 address.
  • Page 46 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Traceroute to 10.240.10.115, 4 hops max 43 byte packets: 1 10.240.4.1 708 msec 41 msec 11 msec 2 10.240.10.115 0 msec 0 msec 0 msec Hop Count = 1 Last TTL = 2 Test attempt = 6 Test Success = 6...
  • Page 47: Console Port Access Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-28 traceroute ipv6 This command is used to identify the routes that are actually taken by packets as they travel to their destinations through the network on a hop-by-hop basis. It is required that the ipv6-address parameter be a valid IPv6 address.
  • Page 48 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-30 line This command is used to give the user access to the Line Console mode, which in turn allows the user to configure the console port and various Telnet settings, as well as the console login/enable authentication.
  • Page 49 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Line Config 4-32 show serial This command is used to call up a display of the serial communication settings for the switch. show serial Parameters None Default The default is None.
  • Page 50: Telnet Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Telnet Commands In this section, the commands used to configure and view Telnet settings are described. The user can use Telnet in order to manage the device from a remote management host.
  • Page 51 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-35 telnet This command is used to establish a new outbound Telnet connection to a remote host. It is required that the host value be a valid IP address or host name. The allowable values for the port parameter are valid decimal integers ranging from 0 to 65535, with the default value being 23.
  • Page 52 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC 4-37 telnetcon timeout This command is used to set the Telnet session timeout value. The unit of time for the timeout value is minutes. The no command is used to set default value as the Telnet session timeout value. The unit of time for the timeout value is minutes.
  • Page 53 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Timeout session may remain inactive before being logged off. Maximum Number of Indicates the allowed number of simultaneous outbound Telnet Outbound Telnet Sessions connections. Allow New Outbound Indicates whether or not outbound Telnet sessions are allowed.
  • Page 54: Secure Shell Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Secure Shell Commands The commands the user can use to configure the Secure Shell (SSH) access to the switch are described in this section. The SSH can be used to access the switch from a remote management host.
  • Page 55 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-42 ip ssh protocol Use of this command allows the user to set or remove protocol levels (or versions) for the SSH. It is possible to set either SSH1 (1) or SSH2 (2) or both SSH 1 and SSH 2 (1 and 2).
  • Page 56 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default Command Mode Privileged EXEC 4-45 sshcon timeout This command is used to set the value (in minutes) for the SSH connection session timeout value. If a session has not been idle for the entirety of the value set, it remains active.
  • Page 57: Management Security Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Display Parameters Administrative Mode Indicates whether the administrative mode of SSH is enabled or disabled. SSH Port Indicates the SSH port.
  • Page 58: Access Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 4-48 crypto key generate dsa This command is used to generate a DSA key pair for the SSH. Any existing generated or downloaded DSA key files will be overwritten by the new key files.
  • Page 59 The linuxsh command can be used to access the Linux shell. The exit command can be used to exit the Linux shell and go back to the D-LINK OS CLI. By default, a given shell session will timeout after five minutes with no activity.
  • Page 60: Aaa Commands

    In this section, the commands used to add, manage, and delete system users are described. There are two default users set for the D-LINK OS software: admin and guest. System settings can be viewed and configured by the admin user, while they can only be viewed by the guest user.
  • Page 61 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Note: The admin user cannot be deleted. Only one user with read/write privileges is allowed. However, up to five read-only users can be configured on the system. 4-53 aaa accounting This command is used in the Global Config mode in order to create an accounting method list for user EXEC sessions, user executed commands, or DOT1X.
  • Page 62 This alternative list is applied for Telnet and SSH by default and contains “enable” followed by the deny methods. In D-LINK OS, the enable password is, by default, not configured. This means that, by default, users of Telnet and SSH will not get access to the Privileged EXEC mode. On the other hand, under the default conditions, a console user will always enter the Privileged EXEC mode without needing to enter the enable password.
  • Page 63 TACACS+ methods, respectively, examples c and d do cause the password prompt to be displayed. lf only enable is included as a login method, and if no enable password is configured, then D-LINK OS does not produce a prompt for a username. In such cases, D-LINK OS only produces a prompt for a password.
  • Page 64 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • deny: This method is used to deny access. • enable: The enable password is used for authentication. • line: The line password is used for authentication. • none: No authentication is used.
  • Page 65 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • local: The local username database is used for authentication. • none: No authentication is used. • radius: The list of all RADIUS servers is used for authentication. •...
  • Page 66 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Switching)(config-line)#exit (Switching)(config)# 4-56 aaa ias-user username Used for the local authentication of users for network access through the IEEE 802.1X feature, the Internal Authentication Server (IAS) database is a dedicated internal database.
  • Page 67 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters common (Optional) Indicates that the same session-id is used for all AAA Service types. unique (Optional) Indicates that a unique session-id is used for all AAA Service types.
  • Page 68 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The following is another example of the command in which a MAC Authentication Bypass (MAB) client is added to the Internal user database. (Routing)# (Routing)#configure (Routing)(config)#aaa ias-user username 1f3ccb1157 (Routing)(config-aaa-ias-User)#password 1f3ccb1157 (Routing)(config-aaa-ias-User)#exit...
  • Page 69 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged Config Example The following is an example of the command. (Routing)# (Routing)#show aaa ias-users UserName ------------ Client-1 Client-2 The IAS configuration commands shown in the output of the show running config command are shown in the example below.
  • Page 70 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Line Config Example The following is an example of the command. (Routing)# (Routing)#configure (Routing)(Config)#line telnet (Routing)(Config-telnet)#accounting exec default (Routing)(Config-telnet)#exit 4-62 show accounting This command is used to display the ordered methods for accounting lists.
  • Page 71 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged Config Example The following is an example of a CLI display output for the command. (Routing)#show accounting methods Acct Type...
  • Page 72 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)#show authorization methods Command Authorization Method List ----------------------------------- dfltCmdAuthList none noCmdAuthList none Line Command Method List -------- ---------------------- Console dfltCmdAuthList Telnet dfltCmdAuthList dfltCmdAuthList Exec Authorization Method List ----------------------------------- dfltExecAuthList...
  • Page 73: User Account And Password Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example specifying the default authentication method for a console. (Routing)(Config)#line console (Routing)(Config-line)#login authentication default User Account and Password Commands 4-66 username (Global Config) The username command is used in the Global Config mode in order to add a new user to the local user database.
  • Page 74 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config Example In the following example, the user bob is configured with the password xxxyyymmmm and user level 15. (Routing)(config)#username bob password xxxyyymmmm level 15 In the following example, the user test is configured with the password testPassword and is assigned a user level of 1.
  • Page 75 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide level level Indicates the user level. A level 15 user may assign a level 0 value to another user in order to suspend that user’s access. The range of user levels is 0-15.
  • Page 76 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC Display Parameters User Name Indicates the name the given user enters in order to login using either the serial port or Telnet. User Access Mode Indicates whether the user is only able to view the parameters on the switch (Level 1) or if the user can also change them (Level 15).
  • Page 77 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters detail (Optional) Display the details of local database users accounts. Default The default is None. Command Mode Privileged EXEC Example The following is an example of the local user database information that is displayed.
  • Page 78 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-72 show users login-history This command is used to display information regarding the login history of the various users. show users login-history [name] [long] Parameters name (Optional) Indicates the name of the user, which must be 1-20 characters in length.
  • Page 79 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Line Config Example In the following example, a password mcmxxyyy is specified on a line. (Routing)(config-line)#password mcmxxyyy The following is a second example of the command. (Routing)(config-line)#password testtest...
  • Page 80 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-75 enable password The enable password configuration command is used to set a local password in order to control access to the privileged EXEC mode. The no command is used to remove the password requirement.
  • Page 81 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is 8. Command Mode Global Config 4-77 passwords history This command is used to specify the number of previous passwords that are to be stored for each user account.
  • Page 82 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is 0. Command Mode Global Config 4-79 passwords lock-out This command is used to improve the security of the switch by locking user accounts after a certain number of failed logins due to the entry of incorrect passwords.
  • Page 83 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is Disabled. Command Mode Global Config 4-81 passwords strength maximum consecutive-characters This command is used to specify the maximum number of consecutive characters to be used to ensure password strength.
  • Page 84 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-83 passwords strength minimum uppercase-letters This command is used to specify the minimum number of uppercase letters that a password must contain. The valid range of values is 0-16, with the default value being 2. Using the minimum value of 0 designates no restriction placed on that set of characters.
  • Page 85 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-85 passwords strength minimum numeric-characters This command is used to specify the minimum number of numeric characters that a password must contain. The valid range of values is 0-16, with the default value being 2. Using the minimum value of 0 means that there is no restriction placed on that set of characters.
  • Page 86 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-87 passwords strength minimum character-classes This command is used to specify the minimum number of characters classes that a password must contain. The classes of characters are uppercase letters, lowercase letters, special characters, and numeric characters.
  • Page 87 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-89 show passwords configuration This command is used to show the configured password management settings. show passwords configuration Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is an example of the command.
  • Page 88 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Password Strength Check Indicates whether or not the function to comply with a strong password configuration is enabled or not. Minimum Password Indicates the minimum number of uppercase characters required when Uppercase Letters changing passwords.
  • Page 89: Snmp Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Last User Whose Indicates the name of the user whose password was set most recently. Password ls Set Password Strength Check Indicates whether or not password strength checking is enabled.
  • Page 90 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide location Loc Select a system location up to 255 characters in length. sysname sysname Select a system name up to 255 characters in length. user user Select a new SNMP v3 user on the host that can connect to the agent (up to 30 characters).
  • Page 91 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is as follows: • public – this community has read-only permissions, a view name of Default, and provides access via all IP addresses • private – this community has read/write permissions, a view name of Default, and provides...
  • Page 92 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no snmp-server enable traps violation Parameters None Default The default is Disabled. Command Mode • Global Config • Interface Config 4-95 snmp-server enable traps This command is used to enable the switch to send out the traps for events.
  • Page 93 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-96 snmp-server enable traps bgp When the bgp option is used for the “snmp-server enable traps” command described above, it enables the two traps defined in the standard BGP MIB, RFC 4273. In that case, then in the event that an adjacency reaches the ESTABLISHED state or in the event that a backward adjacency state transition occurs, a trap will be sent.
  • Page 94 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The no command is used to disable Multiple User traps. snmp-server enable traps multiusers no snmp-server enable traps multiusers Parameters None Default The default is Enabled. Command Mode Global Config...
  • Page 95 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no snmp-server enginelD local Parameters engine-id A hexadecimal string identifying the engine-id. The allowed range of characters: even hexadecimal numbers from 6 to 32. Default This parameter sets the engine-id to the default string, which is based on the device MAC address.
  • Page 96 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-102 snmp-server group This command is used to create an SNMP access group. The no command is used to remove the specified group. snmp-server group group-name {v1 | v2c | v3 {noauth | auth | priv}} [context context-name] [read...
  • Page 97 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide snmp-server host host-addr community-string [informs [timeout seconds] [retries retries] version {1 | 2c}] [udp-port port] [filter filter-name] no snmp-server host host-addr {traps | informs} version {1 | 2c} Parameters...
  • Page 98 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide snmp-server port 1025-65535 no snmp-server port Parameters None Default The default is 161. Command Mode Privileged EXEC 4-105 snmp-server trapsend This command is used to set the UDP port that the SNMP server sends traps too.
  • Page 99 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters username Indicates the username under which the SNMPv3 user will connect to the switch. The allowed range of characters is 1 to 30 characters. groupname Indicates the name of the group to which the user belongs. The allowed range of characters is 1 to 30 characters.
  • Page 100 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide excluded Indicates the excluded tree. Default The default is as follows: views are created to grant access to the default group. Command Mode Global Config 4-108 snmp-server v3-host This command is used to configure the traps to be sent to the specified host.
  • Page 101 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 4-109 snmptrap source-interface This command is used in the Global Configuration mode to configure the global source-interface (that is, the source IP address) for all SNMP communication between the server and the SNMP client.
  • Page 102 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide This command is used to show the current SNMP configuration. show snmp Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command.
  • Page 103 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide SNMPv1 and SNMPv2 protocols to access the switch. Community Access Indicates the access type that the community has: • Read on|y • Read write • View Name Indicates the name given to this community.
  • Page 104 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show snmp enginelD Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command. (Routing)#show snmp engineid...
  • Page 105 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Test enterprises.937 Included Test2 enterprises.259 Excluded Display Parameters Name Indicates the filter name for the given entry. OID Tree Indicates the OID tree that the given entry will include or exclude.
  • Page 106 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DefaultWrite "" NoAuth-NoPriv Default Default Default DefaultWrite "" Auth-NoPriv Default Default Default DefaultWrite "" Auth-Priv Default Default Default Display Parameters Name Indicates the name of the group. Context Prefix Indicates a defined prefix to apply to the context.
  • Page 107 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide SNMP Trap Send Port SNMP trap listening port. Net-SNMP Proxy Mode The SNMP proxy mode. 4-115 show snmp user This command is used to show the currently configured SNMPv3 users.
  • Page 108 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show snmp views [viewname] Parameters viewname (Optional) Select the SNMP view name to display its configuration. Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command.
  • Page 109 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command. (Routing)#show trapflags Authentication Flag......Enable Link Up/Down Flag........
  • Page 110 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide be either enabled or disabled (factory default: disabled). In the event that any of the trap flags are not enabled, the command display will show disabled. Otherwise, the command shows the information for all the enabled traps.
  • Page 111: Radius Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command. (Routing)#show snmp source-interface SNMP trap Client Source Interface....serviceport SNMP trap Client Source IPv4 Address.....
  • Page 112 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)(Config-radius-da)# (Routing)#configure (Routing)(Config)#no aaa server radius dynamic-author 4-120 auth type This command is used to specify the type of authorization that will be used by the device for RADIUS clients in order to be granted authorization.
  • Page 113 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no authorization network radius Parameters None Default The default is Disabled. Command Mode Global Config 4-122 clear radius dynamic-author statistics This command is used to clear RADIUS dynamic authorization counters.
  • Page 114 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide client {ip-address} [server-key [0 | 7] key-string] no client { ip-address | hostame } Parameters ip-address Select the IP address of the DAC to configure. Server-key (Optional) Select the shared secret string to verify client COA requests for the server.
  • Page 115 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is Disabled. Command Mode Privileged EXEC 4-126 radius server attribute 4 This command is used to specify the RADIUS client that will use the NAS-IP-Address attribute in the event of RADIUS requests.
  • Page 116 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide If the auth parameter is used, the command will configure the IP address or hostname that will be used to connect to a RADIUS authentication server. Up to 3 servers per RADIUS client can be configured. If three servers have already been configured, the command will fail until the user removes one of those servers by utilizing the “no”...
  • Page 117 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config Example The following provides an example of the command. (Routing)(Config)#radius server host acct 192.168.37.60 (Routing)(Config)#radius server host acct 192.168.37.60 port 1813 (Routing)(Config)#radius server host auth 192.168.37.60 name Network1_RS port 1813 (Routing)(Config)#wadius server host acct 192.168.37.60 name Network2_RS...
  • Page 118 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)(Config)#radius server key acct 10.240.4.10 encrypted encrypt-string 4-129 radius server msgauth This command is used to enable the use of the message authenticator attribute by the specified RADIUS Authenticating server.
  • Page 119 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 4-131 radius server retransmit This command is used to configure the RADIUS client global parameters specifying the allotted number of times a message is transmitted when an unsuccessful RADIUS authentication event occurs. Once the allotted number is reached and a response is not achieved, the client no longer communicates with other servers.
  • Page 120 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters slot/port Indicates the specific port that will be used as the source interface. loopback loopback-id Indicates the specific loopback interface that will be used as the source interface (range for the loopback ID: 0 to 7).
  • Page 121 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide server-key [0 | 7] key-string no server-key Parameters Indicates that an unencrypted key is to be entered. Indicates that an encrypted key is to be entered. key-string Indicates the shared secret string. For an unencrypted key, the maximum length is 128 characters, while for an encrypted key, the maximum length is 256 characters.
  • Page 122 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example (Routing)#show radius servers name Default-RADIUS-Server RADIUS Server Name..........CoA-Server-1 Current Server IP Address........1.1.1.1 Number of Retransmits..........3 Timeout Duration..........15 Deadtime............0 Port............. 3799 Source IP............10.27.9.99 RADIUS Accounting Mode...........
  • Page 123 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Number of Retransmits.......4 Time Duration........10 RADIUS Accounting Mode......Disable RADIUS Attribute 4 Mode......Enable RADIUS Attribute 4 Value......192.168.37.60 4-137 show radius servers This command is used to show the summary and details for the RADIUS authenticating servers that have been configured for the RADIUS client.
  • Page 124 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)#show radius servers name Default_RADIUS_Server Server Name........Default_RADIUS_Server Host Address........192.168.37.58 Secret Configured........ No Message Authenticator......Enable Number of Retransmits......4 Time duration........10 RADIUS Accounting Mode......Disable RADIUS Attribute 4 Mode......Enable RAIDUS Attribute 4 Value......
  • Page 125 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)#show radius accounting name Host Address Server Name Port Secret Configured ---------------- ----------------------- ------- ------------------- 192.168.37.200 Network1_RADIUS_Server 1813 192.168.37.201 Network2_RADIUS_Server 1813 192.168.37.202 Network3_RADIUS_Server 1813 192.168.37.203 Network4_RADIUS_Server 1813 (Routing) #show radius accounting name Default_Radius_Server Server Name........
  • Page 126 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Bad Authenticators....... 0 Pending Requests......... 0 Timeouts......... 0 Unknown Types........0 Packets Dropped........0 (Routing)#show radius statistics name Default_RADIUS_Server RADIUS Accounting Server Name....Default_RADIUS_Server Host Address........192.168.37.200 Round Trip Time........0.00 Requests.........
  • Page 127 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-141 show radius statistics This command is used to show the summary statistics for the configured RADIUS Authenticating servers. show radius statistics {ipaddr | dnsname | name [servername]} Parameters ipaddr Indicates the IP address of the server.
  • Page 128: Tacacs+ Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Malformed Access Responses....... 0 Bad Authenticators....... 0 Pending Requests......... 0 Timeouts......... 0 Unknown Types........0 Packets Dropped........0 TACACS+ Commands TACACS+ is used to provide access control, via one or more centralized servers, to networked devices.
  • Page 129 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide key {key-string | encrypted} Parameters key-string Indicates a string value, length: 0 – 128 characters. Encrypted Indicates a pre-encrypted key. Default The default is 0. Command Mode TACACS+ Config 4-144 keystring The keystring command is used to re-confirm the authentication and encryption key function.
  • Page 130 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters port-number Indicates a port range: 0 – 65535. Default: 49. Default The default is 0. Command Mode TACACS+ Config 4-146 priority The priority command is used in the TACACS+ Configuration mode to define the order that servers are used in, where 0 (zero) indicates the highest priority server (range: 0 - 65535).
  • Page 131 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode TACACS+ Config 4-148 tacacs server key The tacacs-server key command is used to set the encryption key and authentication for all TACACS+ communications between the TACACS+ daemon and the switch. The allowed range for the key-string parameter is 0-128 characters, and the parameter is used to specify the encryption key and authentication for all TACACS+ communications between the TACACS+ server and the switch.
  • Page 132 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Global Config Example The following provides an example of the CLI command. (Routing)(Config)#tacacs-server keystring Enter tacacs key: ******** Re-enter tacacs key: ********...
  • Page 133: Configuration Scripting Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config Example The following provides an example of the command. (Config)#tacacs-server source-interface loopback 0 (Config)#tacacs-server source-interface 0/1 (Config)#no tacacs-server source-interface 4-151 tacacs-server timeout The tacacs-server timeout command is used to specify the timeout value for any communications with the TACACS+ servers.
  • Page 134 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide To view the configuration stored in the startup-config, backup-config, or factory-defaults file, the user can use the show {startup-config | backup-config | factory-defaults} command (please see “show”). In general, scripts should be used on systems with the default configuration; however, it is also possible to apply scripts on systems with configurations other than the default configurations.
  • Page 135 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 4-153 script delete This command is used to delete a specified script, with the scriptname parameter indicating the name of the script to be deleted. Alternatively, the all option can be used to delete all the scripts currently present on the switch.
  • Page 136: Pre-Login Banner, System Prompt, And Host Name Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters scriptname Indicaes the file name of the configuration script. Default The default is None. Command Mode Privileged EXEC 4-156 script validate This command is used to validate a script file through parsing of each line in the script file, with the scriptname parameter indicating the name of the script to be validated.
  • Page 137 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide copy nvram:clibanner <tftp://<ipacldr>/<filepath>/<filename>> Parameters None Default The default is None. Command Mode Privileged EXEC 4-158 set prompt This command is used to change the name of the prompt, which may be up to 64 alphanumeric characters long.
  • Page 138 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide length of the banner message is 2000 characters. Default The default is None. Command Mode Global Config 4-160 show clibanner This command is used to display the configured pre-login CLI banner, which consists of the text that is displayed before the CLI prompt is displayed.
  • Page 139: Front Panel Tap Interfaces

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters hostname Indicates the system prompt, up to 64 case sensitive characters. Default The default is None. Command Mode Privileged EXEC Front Panel TAP Interfaces The commands in this section can be used to enable and monitor the FPTI mode.
  • Page 140 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters slot/port (Optional) Default The default is None. Command Mode • Global Config • Interface Config Example (Switching)#show port fpti Global Front Panel Tap Interface Mode.... Enabled Intf Mode...
  • Page 141 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide...
  • Page 142: Utility Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Utility Commands In this section, the following utility commands available in the D-LINK OS CLI are described: • “Application Commands” • “CLI Output Filtering Commands” • “System Information and Statistics Commands”...
  • Page 143: Application Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Note: All of the commands described in this section are included in one of five functional groups: • Show commands are used to display statistics, switch settings, and other information.
  • Page 144 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters filename Indicates the name of application to start. Default The default is None. Command Mode Privileged EXEC application stop This command is used to stop the execution of the specified application.
  • Page 145 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters filename Indicates the name of the application. start-on-boot Indicates whether or not the application is configured to initiate on boot • Yes indicates that the application will initiate on boot up.
  • Page 146: Cli Output Filtering Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters filename Indicates the name of the file. File size Indicates the number of bytes that the file occupies in the file system. Directory Size Indicates the total number of bytes of all the files included in the application directory.
  • Page 147 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show xxx | include “string” exclude “string2” With this filtering command, the command xxx is executed, but the output is filtered so that only the lines containing a match for the “string” match and not containing a match for the “string2” are shown, while all the other non-matching lines in the output are also not shown.
  • Page 148: System Information And Statistics Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Enable Down Disable Enable Down Disable Enable Down Disable Enable Down Disable Enable Down Disable (Routing)# 5-10 show xxx | section “string” With this filtering command, the command xxx is executed, but the output is filtered so that only those lines included within the section(s) identified by lines containing a match for the "string"...
  • Page 149 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide This command is used to show the contents of the Address Resolution Protocol (ARP) table for the IP stack. It should be noted that the IP stack only learns those ARP entries that are associated with the management interfaces –...
  • Page 150 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide -rwx 14328276 May 09 2002 16:01:06 image2 -rwx 148 May 09 2002 16:46:06 hpc_dl.cfg -rwx 0 May 09 2002 14:51:28 olog1.txt -rwx 517 Jul 23 2001 17:24:00 ssh_host_key -rwx...
  • Page 151 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide EVENT> bootos.c 0F61FDDC AAAAAAAA 2018/01/02 01:05:20 EVENT> bootos.c 0DA00DDC AAAAAAAA 2017/12/27 10:41:49 EVENT> bootos.c 0DD83DDC AAAAAAAA 2017/12/27 00:37:50 EVENT> bootos.c 0F46ADDC AAAAAAAA 2017/10/17 04:12:45 EVENT> bootos.c 0E2E9DDC AAAAAAAA 2017/10/16 08:23:55...
  • Page 152 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 5-18 show environment This command is used to show information regarding system disk space and usage. show environment Parameters None Default The default is None.
  • Page 153 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Fan4_rotor1 Removable 5696 Operational Fan4_rotor2 Removable 4736 Operational Power Modules: Unit Power supply Description Type State ----- --------------- --------------- ---------- --------------- PS-1 Removable Operational PS-2 Removable Not powered Disk usage information:...
  • Page 154 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show version Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command. (Routing)#show version Switch: 1 System Description.......
  • Page 155 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Part Number This parameter consists of the manufacturing part number. Maintenance Level Indicates hardware changes that are of significance to software. Manufacturer This parameter consists of a description of the manufacturer.
  • Page 156 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of the show interface output command. (Routing)#show interface switchport Packets Received Without Error....8229 Broadcast Packets Received....... 10 Packets Received With Error...... 0 Packets Transmitted Without Errors....
  • Page 157 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide This command is used to show information regarding the interface, including its description, speed, port state, and auto-neg capabilities. It is similar to the show port all command, but it also shows additional fields such as the interface description and port-capability.
  • Page 158 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Media Type Indicates the media type of the interface. FIow Control Status Indicates the 802.3x flow control status. Flow Control Indicates the configured 802.3x flow control mode. 5-22 show interface counters This command is used to report key summary statistics for all the ports (physical/CPU/port-channel).
  • Page 159 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ch64 4025293 32910 Display Parameters Port Indicates the physical port, LAG, or CPU interface that is associated with the rest of the data shown in the row. InOctets Indicates the number of inbound octets that have been received by the interface.
  • Page 160 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command when the all keyword is used.
  • Page 161 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide between 1024 and 1518 octets in length inclusive (excluding framing bits but including FCS octets). • Packets Rceived > 1518 Octets – Indicates the total number of received packets that were longer than 1522 octets (excluding framing bits, but including FCS octets) and were otherwise well formed.
  • Page 162 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • Broadcast Packets Received – Indicates the total number of received good packets that were directed to the broadcast address. Receive Packets Discarded Indicates the number of inbound packets that were selected for discard even though no errors preventing their delivery to a higher-layer protocol had been detected.
  • Page 163 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide before and after a common interval. • Packets Transmitted 64 Octets – Indicates the total number of received packets (including bad packets) that were 64 octets in length (excluding framing bits but including FCS octets).
  • Page 164 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide FCS octets) from 64 to 1518 octets inclusive, but that also had a bad Frame Check Sequence (FCS) with an integral number of octets. • Oversized – Indicates the total number of frames that exceeded the maximum permitted frame size.
  • Page 165 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • Dot1x Statistics EAPOL Frames Transmitted – Indicates the number of EAPOL frames of any type transmitted by this authenticator. • EAPOL Start Frames Received – Indicates the number of valid EAPOL start frames received by this authenticator.
  • Page 166 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of the CLI display output for the command. (Routing) #show interface ethernet 0/1 switchport Port: 0/1 VLAN Switchport mode:Private Vlan Host Private VLAN configured Host association:10 20...
  • Page 167 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide vlan vlan_id Select to enter VLAN format. Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command.
  • Page 168 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide does not fall under one of the aforementioned categories. If the vlan vlan_id is entered, then only the MAC Address, interface, and Status fields will be displayed. If the interface slot/port parameter is entered, then the VLAN ID will also appear in addition to the MAC Address and Status fields.
  • Page 169 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide rising interval Indicates, the duration, in seconds, for the CPU rising threshold violation that must be met to trigger a notification (range: 5 to 86400; default: 0 (disabled)). falling threshold Indicates the percentage of CPU resources that triggers a notification when exceeded by the configured falling interval (range: 1 to 100;...
  • Page 170 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Indicates the application identifier. Name Indicates the name that identifies the process. Indicates the number that the software uses to identify the process Admin Status Indicates the administrative status of the process.
  • Page 171 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Process Name Indicates the name that identifies the process. Application ID-Name Indicates the application identifier along with its associated name. Child Indicates whether or not the process has spawned a child process.
  • Page 172 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Memory Limit Indicates the maximum amount of memory that the process can consume. CPU Share Indicates the maximum percentage of CPU utilization that the process can consume. Memory Usage Indicates the amount of memory that the process is using currently.
  • Page 173 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide hapiRxTask 0.00% 0.01% 0.01% dtlTask 0.00% 0.02% 0.02% spmTask 0.00% 0.01% 0.00% ip6MapLocalDataTask 0.00% 0.01% 0.01% RMONTask 0.00% 0.11% 0.12% ---------------------------------------------------------------- Total CPU Utilization 1.55% 1.58% 1.50% 5-31 show running-config This command is used to show or record the current settings of different protocol packages supported on the switch.
  • Page 174 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters scriptname (Optional) Indicates the script file name for writing active configuration. (Optional) Select to display all the running configurations. interface Indicates the running configuration for a specified interface.
  • Page 175 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide exit (Routing)# Display Parameters slot/port Indicates a given interface in slot/port format. Indicates the running config for a particular lag interface. loopback Indicates the running config for a particular loopback interface.
  • Page 176 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide !Current System Time: Apr 26 13:50:51 2018 vlan database exit configure ip routing vxlan enable line console exit line telnet exit line ssh exit interface loopback 0 ip address 192.168.1.30 255.255.255.255...
  • Page 177 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide serviceport protocol dhcp network parms 10.90.90.13 255.255.255.0 0.0.0.0 vlan database vlan 10,20,30 exit configure vxlan enable line console exit line telnet exit line ssh exit spanning-tree configuration name "DLINK"...
  • Page 178 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide description 'Conn_SW2' exit interface lag 1 switchport mode access exit interface lag 3 switchport mode access exit router ospf exit ipv6 router ospf router-id 3.3.3.3 exit exit The following is an example of the CLI display output for the command when using the factory-defaults parameter.
  • Page 179 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-34 show sysinfo This command is used to show switch information. show sysinfo Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command.
  • Page 180 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Feature. IANA-ADDRESS-FAMILY-NUMBERS-MIB The MIB module defines the AddressFamilyNumbers textual convention. NAX-DENIALOFSERVICE-PRIVATE-MIB The D-Link Private MIB for NAX Denial of Service. LLDP-MIB Management Information Base module for LLDP configuration, statistics, local system data and remote systems data components.
  • Page 181 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide multipath IP Routes. NAX-LOOPBACK-MIB The D-Link Private MIB for NAX Loopback NAX-BGP-MIB The MIB definitions for Border Gateway Protocol Flex package. NAX-QOS-ACL-MIB NAX Flex QOS ACL NAX-QOS-AUTOVOIP-MIB NAX Flex QOS VOIP...
  • Page 182 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The show tech-support command is used to show the system and configuration information for the whole system, or the information for BGP, BGP-IPv6, OSPF, or OSPFv3 when the user contacts technical support.
  • Page 183 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of the CLI display output for the command. (Routing) #show tech-support *************** show version *************** Switch: 1 System Description....... DQS-5000-54SQ28 - 48 25GE + 6 100GE, 2.1.5, Linux 3.16.0-29-generic...
  • Page 184 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide SNMP-COMMUNITY-MIB....... This MIB module defines objects to help support coexistence between SNMPv1, SNMPv2, and SNMPv3. SNMP-MPD-MIB........The MIB for Message Processing and Dispatching SNMP-TARGET-MIB........The Target MIB Module SNMP-VIEW-BASED-ACM-MIB......The management information definitions for the View-based Access Control Model for SNMP.
  • Page 185 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide TACACS-CLIENT-MIB........ Defines a portion of the SNMP MIB under the OID pertaining to TACACS+ client configurati NAX-MGMT-SECURITY-MIB......The Private MIB for NAX Mgmt Security RFC 1850 - OSPF-TRAP-MIB......The MIB module to describe traps for the OSPF Version 2 Protocol.
  • Page 186 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide !System Software Version "1.00.005" !System Up Time "1 days 20 hrs 9 mins 18 secs" !Additional Packages BGP-4,QOS,Multicast,IPv6,Routing,Data Center !Current System Time: Apr 25 01:43:34 2018 vlan database exit...
  • Page 187 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide length value no length value Parameters None Default The default is 24. Command Mode Line Config 5-37 show terminal length This command is used to show all the configured terminal length values.
  • Page 188 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide memory notification will be generated over any period of 60 seconds in order to prevent the generation of excessive notifications when the free memory fluctuates around the configured threshold, which is specified in kilobytes.
  • Page 189: Logging Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC Logging Commands In this section, the commands used to configure the system logging and to view logs and the logging settings are described. 5-40 logging buffered This command is used to enable logging in to an in-memory log.
  • Page 190 5-42 logging cli-command This command is used to enable the CLI command logging feature, which in turn makes the D-LINK OS software capable of logging all the CLI commands issued on the system, with those commands being stored in a persistent log. The show logging persistent command is used to show the stored history of CLI commands.
  • Page 191 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 5-44 logging host This command is used to configure the logging host parameters and allows for the configuration of up to eight hosts. logging host {hostaddress | hostname} addresstype tls [anon | x509name] certificate-index {port...
  • Page 192 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-45 logging host reconfigure This command is used to enable logging host reconfiguration. logging host reconfigure hostindex Parameters hostindex This parameter can be used to enter the Logging Host Index for which to change the IP address.
  • Page 193 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide logging persistent severity level no logging persistent Parameters severity level Indicates the Logging Severity level. Default The default is Disabled. Command Mode Global Config 5-48 logging protocol This command is used to configure the logging protocol version number as either 0 or 1. Version 0 is used by RFC 3164 and version 1 is used by RFC 5424.
  • Page 194 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters facility facility Indicates the Syslog Facility. Default The default is Disabled. Command Mode Global Config 5-50 logging syslog port This command is used to enable syslog logging. The value for the portid parameter consists of an integer within the range of 1-65535.
  • Page 195 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide loopback loopback-id Indicates the loopback interface to be used as the source interface (range: 0 to 7). tunnel tunnel-id Indicates the tunnel interface to be used as the source interface (range: 0 to 7).
  • Page 196 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Log Messages Received : 229 Log Messages Dropped Log Messages Relayed Display Parameters Logging Client Local Port Indicates the port on the collector/relay that syslog messages are sent Logging Client Source Indicates the configured syslog source-interface (source IP address).
  • Page 197 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command. (Routing)#show logging buffered Buffered (In-Memory) Logging...
  • Page 198 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of the CLI display output for the command. (Routing)#show logging hosts Index IP Address/Hostname Severity Port Status Mode Auth Cert# ----- ------------------- --------...
  • Page 199 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of the CLI display output for the command. (Switching)#show logging persistent Persistent Logging : disabled Persistent Log Count (Switching)#show logging persistent log-files Persistent Log Files: slog0.txt...
  • Page 200 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Number of Traps Since Last Reset....84 Trap Log Capacity........ 256 Number of Traps Since Log Last Viewed.... 84 System Up Time Trap ---------------------- ------------------------------------------------------- Apr 27 08:04:56 2018 Session 0 of type 1 started for user admin connected from EIA-232.
  • Page 201: Email Alerting And Mail Server Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Email Alerting and Mail Server Commands 5-58 logging email This command is used to enable email alerts and to set the lowest severity level for the emailing of log messages.
  • Page 202 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no logging email urgent Parameters severity Indicates the severity level of the alert. none Indicates that no log messages are emailed as urgent. Default The default is as follows: log messages with the Alert (1) and Emergency (0) severity levels are sent immediately.
  • Page 203 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The no command is used to remove the configured email source address. logging email from-addr from-address no logging email from-addr from-address Parameters from-addr from-address Indicates the sender email address.
  • Page 204 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-63 logging email logtime This command is used to configure the frequency with which non-urgent email messages are sent. That is, non-urgent messages will be collected and sent together in a batch email at the specified interval (valid range: every 30-1440 minutes).
  • Page 205 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-65 logging email test message-type This command is used to send an email to the SMTP server in order to test the email alert function. logging email test message-type {urgent | non-urgent | both} message-body msg-body...
  • Page 206 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Email Alert From Address......service@dlink.com Email Alert Urgent Severity Level....alert Email Alert Non Urgent Severity Level.... warning Email Alert Trap Severity Level....info Email Alert Notification Period....30 min...
  • Page 207 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is No default value. Command Mode Privileged EXEC Example The following shows an example of the command. (Routing)#show logging email statistics Email Alert operation status..... disabled Email Alert Statistics: No of email Failures so far......
  • Page 208 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC 5-69 mail-server This command is used to configure the SMTP server to which email alert messages are sent by the switch and also to change the mode to the Mail Server Configuration mode. The address of the server can be in either the IPv4 or DNS name format.
  • Page 209 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Mail Server Config 5-71 port (Mail Server Config Mode) This command is used to configure the TCP port that is to be used for communication with the SMTP server.
  • Page 210 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide This command is used to configure the password used by the switch to perform authentication with the SMTP server. password password Parameters password Indicates the password string for the mail server configuration.
  • Page 211: System Utility And Clear Commands

    In the event that the factory- defaults configuration file is not present, then the application of D-LINK OS compile time defaults to the switch occurs instead. When this command is issued, a prompt appears asking for confirmation that the reset should proceed.
  • Page 212 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-76 clear counters This command is used to clear the statistics for all the ports, for a specified slot/port, or for an interface on a VLAN based on the argument. In the event that a virtual router is specified, then the statistics for the ports included on the virtual router will be cleared.
  • Page 213 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-78 clear ipv6 access-list counters This command is used to clear the counters of the specified IP ACL and the IP ACL rule. clear ipv6 access-list counters acl-name Parameters acl-name Indicates the ACL name to clear counters, up to 31 characters.
  • Page 214 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC 5-81 clear traplog This command is used to clear the trap log. clear traplog Parameters None Default The default is None.
  • Page 215 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-83 logout This command is used to close the current telnet connection or to reset the current serial connection. Note: Please be sure to save any configuration changes before logging out.
  • Page 216 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide for the payload of the transmitted Echo Requests (range: 0 to 65507 bytes). source The source parameter can be used to specify the source IP/IPv6 address or interface to be used when the Echo request packets are sent.
  • Page 217 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)#ping 192.168.254.222 count 3 interval 1 size 255 Pinging 192.168.254.222 with 255 bytes of data: Received Response: Unreachable Destination Received Response: Unreachable Destination Received Response: Unreachable Destination ----192.168.254.222 PING statistics—---...
  • Page 218 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide In the event that ONIE is installed, the os parameter will be added to the reload command. The use of this parameter will enable the user to boot back into ONIE.
  • Page 219 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Note: The maximum length for the file name is 31 characters, while the maximum length for the file path is 160 characters. For FTP, TFTP, SFTP and SCP, the ipaddr/hostname parameter consists of the host name of the server or the IP address, filepath indicates the path to the file, and filename consists of the name of the file that the user wants to upload or download.
  • Page 220 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Copy Parameters Source Destination Description Indicates the filename of the source nvram:application: sourcefilename application file. nvram:startup-config Copies the backup configuration to the nvram:backup-config startup configuration. nvram:clibanner Copies the CLI banner to a server.
  • Page 221 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Source Destination Description nvram:backup-config Downloads the configuration to the startup configuration. nvram:ca-root index Downloads the CA certificate file to the /mnt/fastpath directory and sends the index number name for the downloaded file to CAindex.pem.
  • Page 222: Ip Address Conflict Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Source Destination Description ias-users Downloads an IAS users database file to the system. When the IAS users file is downloaded, the IAS user database of the switch is replaced with the users and their attributes included in the downloaded file.
  • Page 223 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode • Global Config • Virtual Router Config 5-90 show ip address-conflict The command shows the status information for the last detected address conflict.
  • Page 224: Serviceability Packet Tracing Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Last Conflicting IP Address Display last detected IP Address conflict on any interface. Last Conflicting MAC Display last detected MAC Address conflict on any interface. Address Time Since Conflict Displays days, hours, minutes and seconds since last detected conflict.
  • Page 225 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters Capture all traffic. receive Capture only received traffic. transmit Capture only transmitted traffic. Default The default is None. Command Mode Privileged EXEC 5-93 capture stop Stop allows for manual ending of CPU packet capturing for packet trace.
  • Page 226 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide file. The file capturing function terminates any remote capture sessions and line capturing. Once activated, file capturing does not stop until the process reaches maximum file size or until function is manually stopped using the command capture stop.
  • Page 227 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 5-96 capture file size File size is used to configure file capture options. The command is persistent across a reboot cycle. The max-file-size parameter: maximum pcap file size range is 2 to 512 kB.
  • Page 228 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Capture packets displays packets captured and saved to RAM. Captured packets received or transmitted through the CPU are saved to RAM. A maximum 128 packets can be saved into RAM per capturing session.
  • Page 229 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-100 cpu-traffic direction match cust-filter CPU-traffic direction match allows custom filter configuration. The statistics and/or traces for the configured filters are obtainable at the specific offset for the packet matching configured data. The default mask is 0xFF.
  • Page 230 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters both Select to match both ingress and egress packets. Indicates the egress packet. Indicates the ingress packet. ipaddress Indicates the IP address for the srcip filter. mask mask (Optional) Select the IP address for the subnet mask.
  • Page 231 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configure the destination IP address-specific filter. The statistics and/or the traces of the configured filters are used for the matching IP/Mask packet. No command disables the configured destination IP address filter.
  • Page 232 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default: 255.255.255.255. Default The default is None. Command Mode Global Config 5-105 cpu-traffic direction match dstudp Configure the destination IP address-specific filter. The statistics and/or the traces of the configured filters are used for the matching IP/Mask packet.
  • Page 233 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Indicates the egress packet. Indicates the ingresspacket. port Indicates the port value value (0 – 65535). mask mask (Optional) Indicates the designated subnet mask address. Default: 255.255.255.255. Default The default is None.
  • Page 234 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide cpu-traffic direction {tx | rx | both} match {srctcp | dsttcp} port [mask mask] no cpu-traffic direction {tx | rx | both} match {srctcp | dsttcp} port [mask mask]...
  • Page 235 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configure CPU packet tracing. Packet is received through multiple components. When enabled and tracing is configured, the packets are traced as defined by filter. Enable dump-pkt to display the first 64 bytes of the packet and trace statistics.
  • Page 236 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Src TCP parameters........ 0 0 Dst TCP parameters........ 0 0 Src UDP parameters........ 0 0 Dst UDP parameters........ 0 0 Src IP parameters......... 0.0.0.0.0.0.0.0 Dst IP parameters......... 0.0.0.0.0.0.0.0 Src MAC parameters........ 00:00:00:00:00:00:00:00:00:00:00:00 Dst MAC parameters........
  • Page 237 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-112 show cpu-traffic summary Display summary statistics for configured filters on all interfaces. show cpu-traffic summary Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is an example of the command.
  • Page 238 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Displays traced information (all available packets or specific filter [e.g., stp, udld, arp etc]). Additionally, the source/destination (IP, TCP, UDP or MAC) with filters can be used as command option to obtain statisticsfrom history.
  • Page 239 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC 5-115 debug aaa accounting In User Manager, debug accounting configuration and functionality. No command turns off debugging of User Manager accounting functionality.
  • Page 240 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of the command. (Routing)#debug aaa authorization commands User Mgr authorization debug is enabled. (Routing)#no debug aaa authorization commands User Mgr authorization debug is Disabled.
  • Page 241 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide SCCP Select to trace SCCP packets. Select to trace SIP packets. Default The default is Disabled. Command Mode Privileged EXEC 5-119 debug clear Disable all previously enabled debug traces.
  • Page 242 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is Disabled. Command Mode Privileged EXEC 5-121 debug crashlog View information contained in the crash log file. The crash log file includes the following: • Call stack information in both primitive and verbose forms •...
  • Page 243 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is Disabled. Command Mode Privileged EXEC 5-122 debug crashlog kernel Display the dmesg log from the specified kdump slot. debug crashlog kernel crashlog-number Parameters crashlog-number Indicates the crashlog number.
  • Page 244 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-124 debug dcbx packet Enable debug tracing for Tx/Rx DCBX packets. debug dcbx packet: {receive | transmit} Parameters receive Select to turn on DCBX receive packet debug trace. transmit Select to turn on DCBX transmit packet debug trace.
  • Page 245 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide No command disables debug trace output display for DHCPV4 client activity. debug dhcp packet [transmit | receive] no debug dhcp packet [transmit | receive] Parameters transmit (Optional) Select to turn on DHCPv4 client transmit packet debug trace.
  • Page 246 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no debug dynamic ports Parameters None Default The default is None. Command Mode Privileged EXEC 5-129 debug exception Display core dump features support. No command disables the debug exception.
  • Page 247 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters packet Turns on the fip-snooping packet debug trace. dst-mac Filter trace output on match condition based on a Destination MAC Address. fip-proto-code Filter based on FIP protocol codes. Use bitmap of supported types to match on multiple types.
  • Page 248 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 01:00:5e:00:00:01 Src_IP:9.1.1.1 Dest_IP: 225.0.0.1 Type: V2_Membership_Report Group: 225.0.0.1 Display Parameters A packet transmitted by the device. lntf The interface that the packet went out on. Format used is slot/port (internal interface number).
  • Page 249 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Type The type of IGMP packet. Type can be one of the following: • Membership_Query – IGMP Membership Query • V1_Membership_Report – IGMP Version 1 Membership Report • V2_Membership_Report – IGMP Version 2 Membership Report •...
  • Page 250 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vrf vrf-name Indicates the BGP information of a virtual router. ipv4-address Indicates the IPv4 address of the peer. ipv6-address Indicates the IPv6 address of the peer. events (Optional) Trace adjacency state events.
  • Page 251 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Displays debug information about DHCPv6 client activities, additionally the command traces DHCPv6 packets to and from the local DHCPv6 client. No command disables the display for the debug trace output (DHCPv6 client activity) function.
  • Page 252 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no debug isdp packet [receive | transmit] Parameters transmit (Optional) Select to turn on ISDP transmit packet debug trace. receive (Optional) Select to turn on ISDP receive packet debug trace.
  • Page 253 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Trace received and transmitted MLD snooping packets. The following information: source address, destination address, control packet type, packet length, and the specific type of interface (received or transmitted) in which it was received.
  • Page 254 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide <15> JAN 02 11:03:31 10.50.50.1-2 OSPF[46300472]: ospf_debug.c(297) 25430 % Pkt RX – Intf:2/0/48 Src Ip:192.168.50.2 DestIp:224.0.0.5 AreaId:0.0.0.0 Type:HELLO NetMask:255.255.255.0 D esigRouter:0.0.0.0 Backup:0.0.0.0 <15> JAN 02 11:03:35 10.50.50.1-2 OSPF[46300472]: ospf_debug.c(293) 25431 % Pkt TX - Intf:2/0/48 Src Ip:10.50.50.1 DestIp:192.168.50.2 AreaId:0.0.0.0 Type:DB_DSCR Mtu:1500 Options:E...
  • Page 255 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide MTU. Options Options in the OSPF packet. Flags Could be one or more of the following: • I – lnit • M – More • MS – Master/Slave Sequence Number of the DD packet.
  • Page 256 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example A sample output of the trace message is shown below. (Routing)# debug ping packet <15> JAN 01 00:21:22 192.168.17.29-1 SIM[181040176]: sim_debug.c(128) 20 % Pkt TX – Intf: 0/1(1), SRC_IP:10.50.50.2, DEST_IP:10.50.50.1, Type:ECHO_REQUEST <15>...
  • Page 257 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide No command disables spanning tree BPDU tracing. debug spanning-tree bpdu no debug spanning-tree bpdu Parameters None Default The default is Disabled. Command Mode Privileged EXEC 5-144 debug spanning-tree bpdu receive Enable received spanning tree BPDU tracing.
  • Page 258 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters A packet received by the device. Intf The interface that the packet came in on. Format used is unit/port/slot (internal interface number). Unit is always shown as 1 for interfaces on a non-stacking device.
  • Page 259 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters A packet transmitted by the device. Intf The interface that the packet went out on. Format used is unit/port/slot (internal interface number). Unit is aslways shown as 1 for interfaces on a non-stacking device.
  • Page 260 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC 5-148 debug udld events Enable UDLD event debugging. No command disables the debugging of UDLD process events or packet events.
  • Page 261 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC 5-150 debug udld packet transmit Enable transmitted UDLD PDU debugging. Use the no form of this command to disable UDLD debugging. debug udld packet transmit...
  • Page 262 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-152 exception core-file Configure a prefix for a core-file name. The following are examples of a generated core file name with the prefix: If hostname is selected: file-name-prefix_hostname_Time_Stamp.bin lf hostname is not selected: file-name-prefix_MAC_Address_Time_Stamp.bin lf a hostname is configured, the core file name takes on the defined hostname.
  • Page 263 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Global Config 5-154 exception dump ftp-server Configure remote FTP server (address) for core file dumping. Anonymous FTP is the default for the username and password;...
  • Page 264 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Global Config 5-156 exception dump stack-ip-address Configure a remote server for the purpose of dumping the core file in the event of a device crash.
  • Page 265 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters ip-address Enter the IP address of the TFTP server. Default The default is None. Command Mode Global Config 5-158 exception kernel-dump Enable kernel crash core dumping (kdump). The system requires a reboot if the function is enabled.
  • Page 266 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Global Config 5-160 exception protocol Specify the protocol to store the core dump file. No command resets the exception protocol configuration to factory default.
  • Page 267 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is Disabled. Command Mode 5-162 Global Configshow exception kernel-dump Display the viewable kernel dump and available slot settings. show exception kernel-dump Parameters None Default The default is None.
  • Page 268 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-164 show exception kernel-dump log Display specified kdump slot dmesg log. show exception kernel-dump log crashlog-number Parameters crashlog-number Select the record number to view. Default The default is None.
  • Page 269 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide For a configured TFTP protocol, the write core test command is used to test connectivity with a TFTP server. Similarly, by configuring the protocol to nfs, it can be used to mount and unmount the file system, providing a status result.
  • Page 270 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide FTP Server IP FTP server configuration FTP user name FTP user name FTP password FTP password File path Remote file path Protocol none Switch Chip Register Dump Switch chip register dump configuration...
  • Page 271 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-170 show mbuf total Display the memory buffer (MBUF) Utilization Monitoring parameters. show mbuf total Parameters None Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command.
  • Page 272 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command. (Routing)#show msg-queue Queue Queue Messages Threads waiting Messages Send...
  • Page 273 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide e6f94874 mvr_PDU_Queue $00000000$ ????? $00000000$ ????? e6f94674 mvr_Mgmt_Queue $00000000$ ????? $00000000$ ????? e6f93e74 openflowDatapat $00000000$ ????? $00000000$ ????? e6f93cc4 OFPROTO_FP_RCV_ $00000000$ ????? $08d0df95$ run + 0x85 e6f93514 openflowProtoQu $00000000$ ????? $08d00e01$...
  • Page 274 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide e6f7d37c voip_Queue $00000000$ ????? $00000000$ ????? e6f7d17c aclEventQueue $00000000$ ????? $00000000$ ????? e6f77c54 pimsmMapDataPkt $00000000$ ????? $00000000$ ????? e6f77a4c pimsmMapCtrlPkt $00000000$ ????? $00000000$ ????? e6f777e4 pimsmMapEventsQ $00000000$ ????? $00000000$ ?????
  • Page 275 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide d9fd0dec IP_Helper_Fwd_Q $00000000$ ????? $00000000$ ????? e6f6eb44 vrrp_Queue $00000000$ ????? $00000000$ ????? f31f233c openrMsgQueue $00000000$ ????? $00000000$ ????? f31e170c ipMapArpMlagQue $00000000$ ????? $00000000$ ????? f31b8ae4 ARP Timer_q0 $00000000$ ?????
  • Page 276 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide e6f30804 snoop_MFDB_Noti $00000000$ ????? $092fd6e5$ snoopTask + 0x3b5 e6f3058c snoop_Queue $00000000$ ????? $092fd3e9$ snoopTask + 0xb9 e6f2f064 tacacs_queue $00000000$ ????? $00000000$ ????? e6f2e87c macal_Queue $00000000$ ????? $00000000$ ????? df3f8b34 dot1s_mlag_help...
  • Page 277 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide e6f1dbb4 hapiMcastAsyncC $00000000$ ????? $0812146b$ hapiBroadL3McastAsyncRouteAddDeleteHandle + 0x8b e6f1d40c hapiL3WaitQ $00000000$ ????? $00000000$ ????? e6f1d204 hapiBroadL3Link $00000000$ ????? $081c1d36$ hapiBroadL3AsyncTask + 0x106 e6f1cd2c hapiL3WakeQ $00000000$ ????? $00000000$ ????? e6f1b66c hapiL2AsyncCmdQ...
  • Page 278: Sflow Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Enable trace function for the packet trace feature. debug packet-trace Parameters None Default The default is None. Command Mode Privileged EXEC sFlow Commands sFlow monitors high-speed switch and routed networks to give complete visibility into network activity, enabling effective management and control of network resources.
  • Page 279 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide timeout rcvr_timeout Time string, in seconds (range: 0-2147483647, default: 0), states the remaining value before sampler/poller is released, no further samples are transmitted to receiver. A management entity wanting to maintain control of the sampler is responsible for setting a new value before the expiration.
  • Page 280 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-175 sflow receiver owner notimeout Configure a receiver as a non-timeout entry. The command does not have a timeout value making it persistent, it displays in running-config. As a non-timeout entry, the related sampler / poller information is displayed in the running-config.
  • Page 281 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide counts all packets, while a value of 0 disables sampling. A value of N means that out of N incoming packets, 1 packet will be sampled. Range: 1024 – 65536, 0. The default is 0.
  • Page 282 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Interface Config 5-178 sflow sampler rate Use this command to set the sampling rate for ingress/egress/flow-based sampling on this interface. Use the no command to remove the sampling rate for ingress/egress/flow-based sampling on this interface.
  • Page 283 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide tunnel tunnel-id Specifies the tunnel or interface to use as the source interface. The range of the tunnel ID is 0 to 7. vlan vlan-id Specifies the VLAN to use as the source interface.
  • Page 284 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-181 show sflow pollers Display the sFlow polling instances available on the switch. Use “-” for range. show sflow pollers Parameters None Default The default is None. Command Mode...
  • Page 285 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters index (Optional) Enter Receiver Index <1-8>. Default The default is None. Command Mode Privileged EXEC Example The following is an example of a CLI display output (sflow receivers).
  • Page 286 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Receiver Index sFlow Receiver associated with the sampler/poller. Owner String Identity string for receiver, used by FlowRcvrTable entry. Time Out The period of time (seconds) before receiver is released and transmission samples to sFlow receiver is halted.
  • Page 287 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Sampler Data Source sFlowDataSource (slot/port) for this sFlow sampler. This agent only supports Physical ports. sFlowReceiver configured for this sampler. Receiver Index Remote Agent Remote agent instance index number.
  • Page 288: Switch Database Management Template Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide lP address of interface configured for the sFlow client source interface. sFlow Client Source IPv4 Address Switch Database Management Template Commands Switch Database Management (SDM) templates allow for combinations of scaling factors in order to allocate resources.
  • Page 289 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no sdm prefer Parameters dual-ipv4-and-ipv6 alpm Lists the scaling parameters for the the Dual IPv4 and IPv6 alpm template supporting more IPv4 unicast routes. dual-ipv4-and-ipv6 data- List the scaling parameters for the Dual IPv4 and IPv6 template center supporting more ECMP next hops entries than dcvpn-data-center.
  • Page 290: Sfp Transceiver Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters dual-ipv4-and-ipv6 default (Optional) List the scaling parameters for the template supporting IPv4 and IPv6. ipv4-routing List template parameters for IPv4-only template. Default The default is None. Command Mode...
  • Page 291 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display the diagnostic information of the SFP. The values are derived from the SFP‘s A2 (Diagnostics) table using the l C interface. show fiber-ports optical-transceiver {all | slot/port} Parameters Enter all for all interfaces.
  • Page 292 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Voltage Internally measured supply voltage. Current Measured TX bias current. Output Power Measured optical output power relative to 1mW. Input Power Measured optical power received relative to 1mW. TX Fault Transmitter fault.
  • Page 293: Remote Monitoring Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ----- ---------------- -------------------- ----------------------- 0/49 DQS-5000-54SQ28 Serial Number Part Number Nominal Bit Rate [Mbps] ------------- ----------- ---------------------- ----- A7N2018414 AXM761 10300 Display Parameters Port Indicates the interface port. Vendor Name The full name of listed corporation, suggested: abbreviation of corporation name, SCSI company code, or the stock exchange symbol.
  • Page 294 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide No command deletes the RMON alarm entry. rmon alarm alarm number variable sample interval {absolute | delta} rising-threshold value [rising- event-index] falling-threshold value [falling-event-index] [startup {rising | falling | rising-falling}]...
  • Page 295 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-190 rmon hcalarm Set the RMON hcalarm entry for the High Capacity RMON alarm MIB group. No command deletes the rmon hcalarm entry. rmon hcalarm aiarm number variable sample interval {absolute | delta} rising-threshold high value...
  • Page 296 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Falling-Threshold Absolute 4294967295. The default is 0. Value High High Capacity Alarm Indicates the falling threshold’s data sign, as defined by the objects Falling-Threshold Value hcAlarmFallingThresAbsValueLow and Status hcAlarmFallingThresAbsValueHigh. Possible values are valueNotAvailable, valuePositive (default), or valueNegative.
  • Page 297 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide single event. The range is 1 to 65535. description string (Optional) A description for the event entry. The default is alarmEvent. type log (Optional) Event notification type. Possible values are None (default), Log, SNMP Trap, Log and SNMP Trap.
  • Page 298 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following is a CLI display output example. (Routing)#show rmon alarms Index Owner ------- ----------------- ------------- alarmInterval.1 MibBrowser alarmInterval.1 MibBrowser The following is a CLI display output example.
  • Page 299 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Falling Threshold Falling threshold of statistical sample. The range is 2147483648 to 2147483647. The default is 1. Rising Event Entry index used when a rising threshold is crossed. The range is 1 to 65535.
  • Page 300 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Samples Samples ----- ---------- ---------- ---------- ---------- ------------ myowner 1800 monitorHistoryControl Display Parameters Index Unique index identifing an entry in the historyControl table. The entry defines a set of samples at a particular interval for an interface on the device.
  • Page 301 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Event Index Unique index identifying an entry in the event table. Each such entry defines one event that is to be generated when the appropriate conditions occur. The range is 1 to 65535.
  • Page 302 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Time CRC Align Undersize Oversize Fragments Jabbers ---------------------- --------- --------- -------- --------- -------- Jan 01 1970 21:41:43 Jan 01 1970 21:42:14 Jan 01 1970 21:42:44 Jan 01 1970 21:43:14...
  • Page 303 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Jan 01 1970 21:44:14 Jan 01 1970 21:44:45 Jan 01 1970 21:45:15 Jan 01 1970 21:45:45 Jan 01 1970 21:46:15 Display Parameters Unique identifier in a historyControl table. Each entry defines a set of Control Index samples at a particular interval for an interface on the device.
  • Page 304 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-196 show rmon log Displays the entry list in the RMON log table. show rmon log [event-index] Parameters event-index Enter a unique Event Index (1-65535) Default The default is None.
  • Page 305 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Port: 0/1 Dropped: 0 Octets: 0 Packets: 0 Broadcast: 0 Multicast: 0 CRC Align Errors: 0 Collisions: 0 Undersize Pkts: 0 Oversize Pkts: 0 Fragments: 0 Jabbers: 0 64 Octets: 0...
  • Page 306 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 128-255 Octets Total number of packets from 128 to 255 octets in length (excluding framing bits, including FCS octets). 256-511 Octets Total number of packets from 256 to 511 octets in length (excluding framing bits, including FCS octets).
  • Page 307 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)#show rmon hcalarms Index OID Owner ----- ---------------- ------------ alarmInterval.1 MibBrowser alarmInterval.1 MibBrowser (Routing)#show rmon hcalarm 1 Alarm 1 --------------- OID: alarmInterval.1 Last Sample Value: 1 Interval: 1 Sample Type: absolute...
  • Page 308 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Rising Threshold Status This indicated data sign of the rising threshold, defined by hcAlarmRisingThresAbsValueLow and hcAlarmRisingThresAbsValueHigh objects. Possible values are valueNotAvailable, valuePositive (default), or valueNegative. Falling Threshold High The upper 32 bits of the threshold’s absolute value. The range is 0 to 4294967295.
  • Page 309 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-200 shutdown all Disables all ports. Note: Shutdown all is available for physical and port-channel (LAG) interfaces, but not for VLAN routing interfaces. Use the no command to enable all ports.
  • Page 310 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-202 show port Display port information. show port {intf-range | all} Parameters intf-range Enter interface(s) in slot/port format, use comma for a list and hyphen for ranges. advertise Show the auto negotiation advertisement information.
  • Page 311 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The following command is a port range output example. (Routing)#show port 0/1-1/6 Admin Physical Physical Link Link LACP Actor Intf Type Mode Mode Status Status Trap Mode Timeout -----...
  • Page 312 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide This command displays the interface description. show port description {slot/port | lag lag-id | loopback loopback-id | tunnel tunnel-id | VLAN vlan-id } Parameters slot/port Enter an interface in slot/port format.
  • Page 313 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The function is only available on interfaces supporting expandable ports. Note: Not avialble in interface range mode. No command returns the port to default. hardware profile portmode mode no hardware profile portmode...
  • Page 314 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following is a CLI display output example. (Routing)#show interfaces hardware profile 40G Interface 10G Interfaces Configured Mode Oper Mode...
  • Page 315: Spanning Tree Protocol Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Spanning Tree Protocol Commands This section describes the commands you use to configure Spanning Tree Protocol (STP). STP helps prevent network loops, duplicate messages, and network instability. 5-206 spanning-tree Sets the spanning-tree operational mode to enabled.
  • Page 316 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode lnterface Config 5-208 spanning-tree backbonefast Use this command to enable the detection of indirect link failures and accelerate spanning tree convergence on PVST configured switches. Backbonefast accelerates finding an alternate path when an indirect link to the root port goes down.
  • Page 317 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 5-209 spanning-tree cost Use this command to configure the external path cost for port used by a MST instance. When the auto keyword is used, the path cost from the port to the root bridge is automatically determined by the speed of the interface.
  • Page 318 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-211 spanning-tree bpdufilter default Use this command to enable BPDU Filter on all the edge port interfaces. Use the no command to disable BPDU Filter on all the edge port interfaces.
  • Page 319 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide BPDUs from all interfaces. The command forces the BPDU transmission execution. It does not change the system configuration nor does it have a “no” version. spanning-tree bpdumigrationcheck {slot/port | all}...
  • Page 320 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide spanning-tree configuration revision 0-65535 no spanning-tree configuration revision Parameters None Default The default is 0. Command Mode Global Config 5-216 spanning-tree forward-time Sets the Bridge Forward Delay parameter to a new value for the common and internal spanning tree. The forward-time value in seconds, range: 4 to 30.
  • Page 321 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None. Default The default is 20. Command Mode Global Config 5-218 spanning-tree max hops Sets the MSTP Max Hops parameter to a defined value for the common and internal spanning tree, range 1 to 127.
  • Page 322 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters Configure spanning-tree mode as mst. pvst Configure spanning-tree mode as pvst. rapid-pvst Configure spanning-tree mode as rapid-pvst. Configure spanning-tree mode as pst. rstp Configure spanning-tree mode as rstp.
  • Page 323 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-221 spanning-tree mst instance Add multiple spanning tree instances to the switch, mstid range: 1 to 4094. The range corresponds to the instance ID to be added. The maximum number of supported multiple instances is 4.
  • Page 324 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 5-223 spanning-tree mst vlan Adds an association between a multiple spanning tree instance and one or more VLANs disassociating the VLAN(s) from the common and internal spanning tree. The parameter mstid is a number that corresponds to the desired existing multiple spanning tree instance.
  • Page 325 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Interface Config 5-225 spanning-tree port mode all This command sets the Administrative Switch Port State for all ports to enabled. Use the no command to set the Administrative Switch Port State for all ports to disabled.
  • Page 326 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configures the rate at which gratuitous frames are sent (in packets per second) after switchover to an alternate PVSTP port and enables uplinkfast. The range is 0-32000 (default is 150). This command accelerates spanning-tree convergence after switchover to an alternate port.
  • Page 327 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-229 spanning-tree vlan cost Sets the path cost for a VLAN port. Values range: 1 to 200000000 or auto. If auto is selected, the path value is based on the link speed.
  • Page 328 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-231 spanning-tree vlan hello-time Configure hello time (spanning-tree) for a specified or range of VLANs. The default is 2 seconds. Set this value to a lower number to accelerate the discovery of topology changes.
  • Page 329 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-233 spanning-tree vlan port-priority Change VLAN port priority value of the VLAN port. Allows the selection of the relative importance of the VLAN port in the forwarding selection process when port is configured as point-to-point link. Set this value to a lower number to prefer a port for forwarding of frames.
  • Page 330 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-235 spanning-tree vlan root Modify the bridge priority from the default value of 32768 to a lower value as calculated to ensure the bridge is the root (or standby) and configure it to become the root bridge or standby root bridge.
  • Page 331 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Topology Change Count......0 Topology Change in progress...... False Designated Root........80:00:00:05:64:2F:0F:81 Root Path Cost........0 Root Port Identifier......00:00 Bridge Max Age........20 Bridge Max Hops........20 Bridge Tx Hold Count......6 Bridge Forwarding Delay......
  • Page 332 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide CST Regional Root Bridge Identifier of the CST Regional Root, comprised of the bridge’s priority and base MAC address of the bridge. Regional Root Path Cost Path Cost to the CST Regional Root.
  • Page 333 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Enabled 96.67 5000 Forwarding Desg 3/10 Enabled 96.75 Forwarding Desg Example 2: (Routing)#show spanning-tree active Spanning-tree enabled protocol rpvst VLAN RootID Priority 32769 Address 00:00:EE:EE:EE:EE Cost Port This switch is the root...
  • Page 334 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide RootID Priority 32769 Address 00:00:EE:EE:EE:EE Cost Port 10(3/10 Hello Time 2 Sec Max Age 20 sec Forward Delay 15 sec BridgeID Priority 32769 (priority 32768 sys-id ext 1) Address...
  • Page 335 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Privileged EXEC • User EXEC Example The following is an output example. (Routing)#show spanning-tree backbonefast Backbonefast Statistics ------------------------------ Transitions via Backbonefast (all VLANs) Inferior BPDUs received (all VLANs)
  • Page 336 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Privileged EXEC • User EXEC Example The following is a command example. (Routing)# show spanning-tree brief Bridge Priority........32768 Bridge Identifier........ 80:00:00:05:64:2F:0D:E5 Bridge Max Age........20 Bridge Max Hops........
  • Page 337 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters slot/port Enter an interface in slot/port format. lag lag-id Enter into interface lag mode. Default The default is None. Command Mode • Privileged EXEC • User EXEC Display Parameters Hello Time Port admin hello time.
  • Page 338 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters mstid A multiple spanning tree instance identifier. The value is 0-4094. Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following shows an example of the command.
  • Page 339 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Privileged EXEC • User EXEC Display Parameters MST Instance ID Existing MST instance ID. Port identifier for the specified port (selected MST instance), comprised Port Identifier of port priority and the interface number of the port.
  • Page 340 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide External Port Path Cost Cost across boundary region to reach to the root bridge of the CIST. Designated Root Identifier of the designated root within the CST. Root Path Cost Root path cost to reach the LAN.
  • Page 341 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode • Privileged EXEC • User EXEC Display Parameters MST Instance ID The associated MST instance. Interface Enter an interface in slot/port format.
  • Page 342 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Enabled Manual forwarding Disabled Display Parameters MST Instance ID MST instance ID. Interface slot/port Interface Indicates spanning tree status: enabled or disabled on the port. Type Not in use.
  • Page 343 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Associated FIDs Associated VLANs --------------- ---------------- MST Instance ID........3 Associated FIDs Associated VLANs --------------- ---------------- Display Parameters MST Instance ID List List of current multiple spanning trees IDs.
  • Page 344 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configuration Format Selector....0 MST Instances........1,2,3 Display Parameters Spanning Tree Adminmode Enabled or disabled. Spanning Tree Version Version of 802.1 currently supported (IEEE 802.1s, IEEE 802.1w, or IEEE 802.1d) based upon the Force Protocol Version parameter.
  • Page 345 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ------------------------------ Uplinkfast transitions (all VLANs)....0 Proxy multicast addresses transmitted (all VLANs)..0 Display Parameters Uplinkfast transitions The number of uplinkfast transitions on all VLANs. (all VLANs) Proxy multicast addresses The number of proxy multicast addresses transmitted on all VLANs.
  • Page 346: Vlan Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Hello Time 2 Sec Max Age 15 sec Forward Delay 15 sec Aging Time 300 Interface Role Status Cost Prio.Nbr ---------- ---------- ---------- ----- ---------- 1/0/1 Designated Forwarding 3000 128.1...
  • Page 347 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide network mgmt_vlan 1-4093 no network mgmt_vlan 1-4093 Parameters None Default The default is 1. Command Mode Privileged EXEC 5-251 vlan Create a VLAN and assign an ID-- a valid VLAN identification number, range: 1-4093 (default: 1).
  • Page 348 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no vlan acceptframe Parameters admituntaggedonly Set only untagged frames. vlanonly Admit only tagged frames. Admit all frame types. Default The default is All. Command Mode Interface Config 5-253 vlan ingressfilter Enable ingress filtering on a single or range of interfaces.
  • Page 349 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters base vlan-id VLAN ID assigned to a port-based routing interface. policy ascending Policy assignment follows an ascending scale.. policy decending Policy assignment follows a descending scale. Default The default is None.
  • Page 350 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is as follows: • VLAN ID 1 – default • Other VLANS – blank string Command Mode Global Config 5-257 vlan participation Configures the participation state for a specific or range of interfaces in a VLAN.
  • Page 351 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Global Config 5-259 vlan port acceptframe all Set the frame acceptance mode for all interfaces. No command sets the frame acceptance mode for Admit All (global). In Admit All mode, received untagged frames or priority frames on the interface are accepted and assigned the interface VLAN ID value for the port.
  • Page 352 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is Disabled. Command Mode Global Config 5-261 vlan port pvid all Change VLAN ID for all interface. No command sets the VLAN ID for all interfaces to 1.
  • Page 353 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 5-263 vlan pvid Change the VLAN ID on a single or range of interfaces. No command sets the VLAN ID on a single or range of interfaces to 1.
  • Page 354 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-265 show vlan Display configured private VLANs [including primary and secondary VLAN IDs, type (community, isolated, or primary) information] including ports which belong to a private VLAN. show vlan {vlanid | brief | internal | port [slot/port | all]| private-vlan [type] remote span}...
  • Page 355 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide standard. • Autodetect – To allow the port to be dynamically registered in this VLAN via GVRP. The port will not participate in this VLAN unless a join request is received on this port. This is equivalent to registration normal in the IEEE 802.1Q standard.
  • Page 356 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Base VLAN ID Identifies the base VLAN lD for internal allocation of VLANs to the routing interface. Allocation policy Identifies whether the system allocates VLAN IDs in ascending or descending order.
  • Page 357 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide VLAN Type Type of VLAN (default, VLAN ID = 1) static. 5-268 show vlan port Displays VLAN port information. show vlan port {slot/port | all} Parameters slot/port Enter an interface in slot/port format.
  • Page 358: Switch Ports

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Acceptable Frame Types Supported frame types, ‘VLAN only‘ and ‘Admit All‘. ‘VLAN only‘ discards received untagged or priority tagged frames. ‘Admit All‘ accepts received untagged or priority tagged frames and assigns a port VLAN ID.
  • Page 359 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide general Full 802.1q support VLAN Interface. private-vlan Set switchport mode as host or promiscuous port for the private VLAN. Default The default is General mode. Command Mode Interface Config 5-270 switchport trunk allowed vlan Configure the allowed VLAN list configured to receive and send traffic in tagged format (trunking mode).
  • Page 360 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configure the Trunk port Native VLAN (PVID) parameter. Untagged ingress packets on the port are assigned a Native VLAN tag--native VLAN must be configured in the allowed VLAN list for tagging of received untagged packets.
  • Page 361 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters slot/port Enter an interface in slot/port format. Default The default is None. Command Mode Privileged EXEC Example (Routing)#show interfaces switchport 0/1 Port: 0/1 VLAN Membership Mode: General Access Mode VLAN: 1 (default)
  • Page 362 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-274 show interfaces switchport Display the Switch port configuration for a selected interface mode. All interfaces are displayed if there is not specific selection. show interfaces switchport {access | err-disabled | trunk | general} [slot/port]...
  • Page 363: Double Vlan Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Intf PVID Ingress Acceptable Untagged Tagged Forbidden Dynamic Filtering Frame Type Vlans Vlans Vlans Vlans ----- ----- --------- ---------- -------- -------- -------- -------- Enabled Admit All 1,4-7 30-40,55 3,100-200 88,96...
  • Page 364 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters 802.1Q Configure the Ethertype as 0x8100. vman Commonly used value: 0x88A8. custom 1-65535 Custom tag value range: 1 to 65535. primary-tpid (Optional) Configure the TPID value to the default TPID at index 0 Default The default is None.
  • Page 365 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Three different EtherType tags are available: 802.1Q, which represents the commonly used value of 0x8100; vMAN representing the commonly used value of 0x88A8; Custom representing a custom tunnel value with a range of 1 to 65535.
  • Page 366: Provisioning (Ieee 802.1P) Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Mode Enable or disable the mode, default: disabled. EtherType The first 16 bits of the DVLAN tunnel are defined by a 2-byte hexEtherType. Three different EtherType tags are available: 802.1Q, which represents the commonly used value of 0x8100;...
  • Page 367: Protected Ports Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Interface Config Protected Ports Commands This section describes protected port configuration. Protected ports are not designed to forward traffic to each other, even when configured on the same VLAN. However, forwarding to unprotected ports as long as the ports are in the same group.
  • Page 368 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide switchport protected groupid no switchport protected groupid Parameters groupid Enter Group ID. Default The default is Unprotected. Command Mode Interface Config 5-283 show switchport protected Display the status of all interfaces both protected and unprotected.
  • Page 369: Port-Based Network Access Control Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide List of configured ports as protected for the group identified with groupid. List of Physical Ports The field is blank if no port is configured as protected. 5-284 show interfaces switchport Display the status of the interface (protected/unprotected) under the groupid.
  • Page 370 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configure authentication for port-based access. Authentication function is available when an error has occurred.. Possible authentication methods include: • ias. Internal authentication server database is used for authentication. This method can be used in conjunction with any one of the existing methods such as local, radius, etc.
  • Page 371 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC 5-287 clear dot1x authentication-history Clear the authentication history table of successful and unsuccessful authentication events on all or specified interface. clear dot1x authentication-history [slot/port] Parameters slot/port (Optional) Enter an interface in slot/port format.
  • Page 372 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide dot1x eapolflood no dot1x eapolflood Parameters None Default The default is Disabled. Command Mode Global Config 5-290 dot1x dynamic-vlan enable Enable the creation of VLANs dynamically when a RADIUS-assigned VLAN does not exist in the switch.
  • Page 373 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no dot1x port-control Parameters force-unauthorized Enter force-unauthorized to deny all access through the interface. force-authorized Enter force-authorized to disable authentication check. auto Enter auto - for default auto mode.
  • Page 374 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-293 dot1x system-auth-control Enable the dot1x authentication support. While disabled, the dot1x configuration is retained and can be configured when disabled. No command disables the dot1x authentication support. dot1x system-auth-control...
  • Page 375 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Add specific users to the current list providing access to the specified port or all ports. The specified user must be a configured user. No command removes the user from the list of users.
  • Page 376 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Enable Authentication Method Lists ---------------------------------------- enableList enable none enableNetList enable deny Line Login Method List Enable Method List -------- -------------------- -------------------- Console defaultList enableList Telnet networkList enableNetList networkList enableNetList...
  • Page 377 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC Example The following is a CLI display output example for the command show dot1x summary 0/1. (Routing)#show dot1x summary 0/1 Interface Control Mode Operating Control Mode...
  • Page 378 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Reauthentication Enabled Indicates reauthentication status: enabled. Port Status Indicates authorized or unauthorized status, values: authorized or unauthorized. The optional parameter 'detail slot/port‘ provides detailed dot1x configuration for the specified port.
  • Page 379 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide supplicant takes place. The value is expressed in seconds, range: 1 to 65535. Reauthentication Enabled Indicates if reauthentication is enabled on this port. Possible values are “True” or “False”.
  • Page 380 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide EAP Response/ld Frames The number of received EAP response/identity frames. Received EAP Response Frames The number of valid received EAP response frames (other than resp/id Received frames). EAP Request/ld Frames...
  • Page 381 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide RADIUS Assigned, or Montior Mode VLAN ID. Auth Status The authentication status. Reason The specified reason for a successful or faiIed authentication attempt. 5-299 show dot1x clients Display 802.1X client information as well as information regarding the number of clients that are authenticated.
  • Page 382 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Filter ID The Filter ID as defined by the RADIUS server authenticating the client. This is a configured DiffServ policy name on the switch. VLAN ID The assigned VLAN.
  • Page 383: 802.1X Supplicant Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 802.1X Supplicant Commands D-Link OS supports 802.1X (dot1x) supplicant functionality on point-to-point ports. The administrator can configure the user name and password used in authentication and capabilities of the supplicant port.
  • Page 384 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configure the number of defined attempts before ending authenticator request to find the authenticator. No command sets the max-start value to default. dot1x supplicant max-start 1-10 no dot1x supplicant max-start...
  • Page 385: Task-Based Authorization

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide EAP Resp/Id frames transmitted....0 EAP Response frames transmitted....0 EAP Req/Id frames transmitted....0 EAP Req Frames transmitted....... 0 Invalid EAPOL frames received....0 EAP length error frames received....0 Last EAPOL Frame Version......
  • Page 386 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Create a user group with the specified name and enters user group configuration mode. No command removes the user group with the specified name. usergroup usergroup-name no usergroup usergroup-name...
  • Page 387 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no username username usergroup usergroup-name Parameters username Indicates the username to assign. usergroup-name Configure participated usergroup. Default The default is None. Command Mode Global Config 5-308 description (User Group Mode) Sets a description for the user group.
  • Page 388 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters usergroup-name Inherit to this usergroup. Default The default is None. Command Mode User Group 5-310 taskgroup (User Group Mode) Associate a user group with a specified task group.
  • Page 389 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Task Group 5-312 inherit taskgroup (Task Group Mode) Set the parent task group of the current task group. The task group acquires the permissions of the specified parent task group.
  • Page 390 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Authentication, Authorization and Accounting. ospf Open Shortest Path First. Border Gateway Protocol. Default The default is No Permissions. Command Mode Task Group Example The following example gives all users in the task group tg1 read-only permissions for AAA and read, write, execute, and debug permissions for OSPF.
  • Page 391 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Description: “Example” Parent user groups: “” Contained task groups: task group#1: “tg1” Operational permissions: Task: aaa : READ WRITE EXECUTE DEBUG Task: ospf : READ WRITE EXECUTE DEBUG Task: bgp...
  • Page 392 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Description: “” Parent taskgroups: “” Configured permissions: Task: aa : READ WRITE EXECUTE DEBUG Task: ospf : READ Task: bgp : READ Operational permission: Task: aa : READ WRITE...
  • Page 393: Asymmetric Flow Control Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Asymmetric Flow Control Commands Configure settings for symmetric, asymmetric or no flow control. Asymmetric flow control allows the switch to respond to received PAUSE frames—port is unable to generate PAUSE frames. Symmetric flow control allows the switch to respond and generate MAC control PAUSE frames.
  • Page 394: Storm-Control Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is a CLI display output example. (Routing)#show flowcontrol Admin Flow Control: Symmetric Port Flow Control Oper RxPause TxPause ----- ------------------ -------- -------- Active Inactive --More-- or (q)uit...
  • Page 395 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide plane (hardware). Based on the figure, the approximate desired output when 512bytes packets are used can be calculated. 5-319 storm-control broadcast Enable broadcast storm recovery mode for all or specific interfaces (Global Config mode/Interface Config mode).
  • Page 396 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Global Config • Interface Config 5-321 storm-control broadcast level Use this command to configure the broadcast storm recovery threshold for all interfaces (Global Config mode) or one or more interfaces (Interface Config mode) as a percentage of link speed and enable broadcast storm recovery.
  • Page 397 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is 0. Command Mode • Global Config • Interface Config 5-323 storm-control multicast Enable multicast storm recovery mode for all or specific interfaces (Global Config mode/Interface Config mode).
  • Page 398 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters shutdown Enter the storm-control action to shutdown. trap Enter the storm-control action to trap. Default The default is None. Command Mode • Global Config • Interface Config 5-325 storm-control multicast level Configure the multicast storm recovery threshold for all or specific interfaces (Global Config mode/Interface Config mode) as a percentage of link speed and enables multicast storm recovery mode.
  • Page 399 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide storm-control multicast rate 0-14880000 no storm-control multicast rate Parameters None Default The default is 0. Command Mode • Global Config • Interface Config 5-327 storm-control unicast Enable unicast storm recovery mode for all or specific interfaces (Global Config mode/Interface Config mode) Enable the mode to activate unicast storm recovery.
  • Page 400 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide No command returns the unicast storm recovery action option to default for all or specified interfaces (Global Config mode/Interface Config mode). storm-control unicast action {shutdown | trap} no storm-control unicast action...
  • Page 401 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-330 storm-control unicast rate Use this command to configure the unicast storm recovery threshold for all interfaces (Global Config mode) or one or more interfaces (Interface Config mode) in packets per second. If the mode is enabled, unicast storm recovery is active, and if the rate of L2 broadcast traffic ingressing on an interface increases beyond the configured threshold, the traffic is dropped.
  • Page 402 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC Example The following is an output example. (Routing)#show storm-control Broadcast Storm Control Mode..... Disable Broadcast Storm Control Level....5 percent Broadcast Storm Control Action....None Multicast Storm Control Mode.....
  • Page 403: Link Dependency Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 0/18 Enable Trap Disable 5% None Disable None 0/19 Enable Trap Disable 5% None Disable None Display Parameters Bcast Mode Displays broadcast storm control mode. The factory default is disabled.
  • Page 404 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is Down. Command Mode Global Config 5-333 link state group downstream Add interfaces to the downstream interface list. The addition of an interface to a downstream list brings the interface down until an upstream interface is added to the group.
  • Page 405 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Interface Config 5-335 show link state group Display information for a specified or all configured link-dependency groups. show link state group group-id Parameters group-id Enter the link dependency group number (1 – 48).
  • Page 406 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Group State Indicates the current state of the link-dependency group. 5-336 no link state track This command is used to disable the link state track feature. no link state track group-id...
  • Page 407 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is a command example. (Switching)#show link state group 1 detail Groupld: Link Action: Group State: Downstream Interface State: Link Up: Link Down: 0/4-0/7,0/12-0/17 Upstream Interface State:...
  • Page 408 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Enabled Disabled Disabled Enabled Disabled Disabled Disabled Enabled Disabled Disabled Enabled Disabled Disabled Disabled Enabled Disabled Disabled Enabled Disabled Disabled Disabled Enabled Disabled Disabled Enabled Disabled Disabled Disabled Enabled...
  • Page 409: Mvr Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide PDUs. Block PAGP Shows whether the port blocks Port Aggregation Protocol (PAgP) PDUs. Block SSTP Shows whether the port blocks Secure Socket Tunneling Protocol (SSTP) PDUs. Block All Shows whether the port blocks all proprietary PDUs available for the LLDP feature.
  • Page 410 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Global Config 5-341 mvr immediate Enable MVR Immediate Leave mode. When an interface configured as a source ports, MVR immediate cannot be enabled.
  • Page 411 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide multicast data received by MVR hosts on the switch is forwarded from only joined, either by IGMP reports or by MVR static configuration, MVR data and client ports. Default The default is None.
  • Page 412 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Interface Config 5-345 mvr vlan Set the MVR multicast VLAN. No command sets the MVR multicast VLAN to default. mvr vlan 1-4093...
  • Page 413 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Interface Config 5-347 show mvr Display global MVR settings. show mvr Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is a command example.
  • Page 414 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters A.B.C.D (Optional) Indicates the MVR Group IP. Default The default is None. Command Mode Privileged EXEC Example The following is a command example. (Switching)#show mvr members MVR Group IP...
  • Page 415 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Switching)#show mvr interface Port Type Status Immediate Leave ------ ---------- --------------- -------------------- RECEIVER ACTIVE/inVLAN DISABLED (Switching)#show mvr interface 0/4 Type: NONE Status: INACTIVE/InVLAN Immediate Leave: DISABLED (Switching)#show mvr interface 0/23 members 235.0.0.
  • Page 416 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide IGMP Report V2 Transmitted....... 0 IGMP Leave Transmitted......0 IGMP Packet Receive Failures..... 0 IGMP Packet Transmit Failures....0 5-351 debug mvr trace Enable MVR debug tracing, default is disabled No command disables MVR debug tracing.
  • Page 417: Port-Channel/Lag (802.3Ad) Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Port-Channel/LAG (802.3ad) Commands This section describes port-channel configuration , also known as link aggregation groups (LAGs). Link aggregation allows multiple full-duplex Ethernet link combinations into a single logical link. Network devices treat the aggregation as a single link allowing for increased fault tolerance and load sharing.
  • Page 418 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide port-channel adminmode all no port-channel adminmode all Parameters None Default The default is None. Command Mode Global Config 5-355 port-channel linktrap This command enables link trap notifications for the port-channel (LAG). The interface is a logical slot/port for a configured port-channel.
  • Page 419 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configuration is available for single, a range, or all interfaces. No command reverts load balancing configuration to default. port-channel load-balance {1 | 2 | 3 | 4 | 5 | 6 | 7} {slot/port | all}...
  • Page 420 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is 1. Command Mode Interface Config 5-358 port-channel name Define a name for the port-channel (LAG). The interface is defined as a logical slot/port for a configured port-channel.
  • Page 421 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-360 addport (Interface Config) Add a port to the port-channel (LAG). The first interface is a logical slot/port number of a configured port- channel. To add a port range, specify the range in the Interface Config mode, example: interface 0/1-0/4.
  • Page 422 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-362 deleteport (Global Config) Delete all configured ports from the port-channel ( AG). The interface is the logical slot/port number of the configured port or range of port channel.
  • Page 423 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ip resilient-hashing no ip resilient-hashing Parameters None Default The default is None. Command Mode Global Config 5-365 port lacpmode Enable Link Aggregation Control Protocol (LACP) on a port or range of ports.
  • Page 424 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Global Config 5-367 port lacptimeout (Interface Config) Set timeout function on a physical interface or range of interfaces of a particular device type (actor or partner) to either long or short timeout.
  • Page 425 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no port lacptimeout {actor} Parameters actor Enter actor LACP device type. long Enter long timeout setting (90 seconds). short Enter short timeout setting (3 seconds). Default The default is Long.
  • Page 426 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show lacp actor {slot/port | all} Parameters slot/port Enter an interface in slot/port format. Enter all for all interfaces. Default The default is None. Command Mode Global Config Example The following shows an example of the command.
  • Page 427 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 0/28 32768 ACT|AGG|LTO 0/29 32768 ACT|AGG|LTO 0/30 32768 ACT|AGG|LTO 0/31 32768 ACT|AGG|LTO 0/32 32768 ACT|AGG|LTO 0/33 32768 ACT|AGG|LTO 0/34 32768 ACT|AGG|LTO 0/35 32768 ACT|AGG|LTO 0/36 32768 ACT|AGG|LTO 0/37 32768...
  • Page 428 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 0/78 32768 ACT|AGG|LTO Display Parameters System Priority The value of the system priority Key. Actor Admin Key The value of the actor administrative Key. Port Priority The value assigned to the Aggregation (priority) Port.
  • Page 429 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 0/10 00:00:00:00:00:00 PSV|IND|LTO 0/11 00:00:00:00:00:00 PSV|IND|LTO 0/12 00:00:00:00:00:00 PSV|IND|LTO 0/13 00:00:00:00:00:00 PSV|IND|LTO 0/14 00:00:00:00:00:00 PSV|IND|LTO 0/15 00:00:00:00:00:00 PSV|IND|LTO 0/16 00:00:00:00:00:00 PSV|IND|LTO 0/17 00:00:00:00:00:00 PSV|IND|LTO 0/18 00:00:00:00:00:00 PSV|IND|LTO 0/19 00:00:00:00:00:00...
  • Page 430 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 0/60 00:00:00:00:00:00 PSV|IND|LTO 0/61 00:00:00:00:00:00 PSV|IND|LTO 0/62 00:00:00:00:00:00 PSV|IND|LTO 0/63 00:00:00:00:00:00 PSV|IND|LTO 0/64 00:00:00:00:00:00 PSV|IND|LTO 0/65 00:00:00:00:00:00 PSV|IND|LTO 0/66 00:00:00:00:00:00 PSV|IND|LTO 0/67 00:00:00:00:00:00 PSV|IND|LTO 0/68 00:00:00:00:00:00 PSV|IND|LTO 0/69 00:00:00:00:00:00...
  • Page 431 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Privileged EXEC • User EXEC Example The following shows an example of the command. (Routing)#show port-channel brief Logical Port-Channel Min Link State Trap Type Mbr Ports...
  • Page 432 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 3/40 Down Enabled Static 3/41 Down Enabled Static 3/42 Down Enabled Static 3/43 Down Enabled Static 3/44 Down Enabled Static 3/45 Down Enabled Static 3/46 Down Enabled Static 3/47...
  • Page 433 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is a CLI display output example. (Switch)#show port-channel 3/1 Local Interface........3/1 Channel Name........ch1 Link State........
  • Page 434 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Active Ports This field lists ports that are actively participating in the port-channel (LAG). 5-374 show port-channel counter Display port-channel counters for the specified port. show port-channel slot/port counters...
  • Page 435 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Channel Name The name of this port-channel (LAG). Link State Indicates whether the Link is up or down. Admin Mode May be enabled or disabled. The factory default is enabled.
  • Page 436 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show port-channel system priority Parameters None Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command. (Routing)#show port-channel system priority System Priority........32768...
  • Page 437: Vpc Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-378 clear port-channel all counters Clear and reset counters for all port-channels and member flaps for the specified interface. clear port channel all counters Parameters None Default The default is None.
  • Page 438 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-380 feature vpc Enable VPC globally which occurs if both VPC and the keepalive state machine are enabled. Peer link must be configured for role election to occur. No command disables VPC.
  • Page 439 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configure the DCPDP transmission interval and reception timeout. Configurable interval range: 200 ms – 4000 ms (default: 1000 ms). Configurable reception timeout range: 700 ms – 14000 ms (default: 3500 ms).
  • Page 440 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode VPC Config 5-384 peer-keepalive enable Start the keepalive state machine on the VPC device, if globally enabled. No command stops the keepalive state machine of the VPC switch.
  • Page 441 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-386 role priority Configure VPC switch priority for VPC role election. The priority value is sent to the peer in the VPC keepalive messages. A VPC switch with lowered priority is converted to the Primary while the switch with the higher priority is converted as the Secondary.
  • Page 442 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-388 system-priority Manually configure a system priority for the VPC domain. System-priority configuration must be identical on both VPC peers. If the configured VPC system priority is different on VPC peers, the VPC does not come up.
  • Page 443 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode LAG Interface 5-390 show running-config vpc Display running configuration information for virtual port channels (VPC). show running-config vpc Parameters None Default The default is None. Command Mode...
  • Page 444 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode User EXEC Example The following is a command example. (Switching)#show vpc 10 VPC id#10 --------------- Config mode........Enabled Operational mode......... Enabled Port channel........3/1...
  • Page 445 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide VPC config Mode........Enabled Keepalive config mode......Enabled VPC operational Mode......Enabled Self Role........Primary Peer Role........Secondary Peer detection........Disabled Peer-Link details -------------------- Interface........3/2 Peer link status......... UP Peer-link STP Mode.......
  • Page 446 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters global Display VPC global consistency parameters. interface id Display VPC consistency parameters of a lag interface. Default The default is None. Command Mode Privileged EXEC Example The following is a command example.
  • Page 447 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameter Name Value -------------------- -------------------- Port Channel Mode Enabled STP Mode Enabled BPDU Filter Mode Enabled BPDU Flood Mode Enabled Auto-edge FALSE TCN Guard True Port Cost Edge Port...
  • Page 448 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode User EXEC Example The following is a command example. (Switching)#show vpc peer-keepalive Peer IP address........10.130.14.55 Source IP address........ 10.130.14.55 UDP port.........
  • Page 449 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ---------- VPC domain ID........1 Keepalive config mode......Enabled Keepalive operational mode....... Enabled Role Priority........100 Configured VPC MAC....... AA:BB:CC:DD:EE:FF> Operational VPC MAC......AA:BB:CC:DD:EE:FF> Configured VPC system priority....32767 Operational VPC system priority....
  • Page 450 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Total transmitted........ 123 Tx successful........118 Tx errors........5 Total received........115 Rx successful........108 Rx Errors........7 Timeout counter........6 The following shows examples of the command. (Switching)#show vpc statistics peer-link Peer link control messages transmitted...
  • Page 451 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode User EXEC Example The following is a command example. (Switching)#clear vpc statistics peer-keepalive (Switching)#clear vpc statistics peer-link 5-398 debug vpc peer-keepalive Enable debug traces of the keepalive state machine transitions.
  • Page 452 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-400 debug vpc peer-link control-message async Enable debug traces for the asynchronous reliable control messages exchanged between the MLAG devices on the peer link. For error, only the communication errors are traced. Exchanged control messages can be traced through msg.
  • Page 453 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode User EXEC 5-402 debug vpc peer-link control-message ckpt Enable debug traces for the checkpointing control messages exchanged between the MLAG devices on the peer link. . For error, only the communication errors are traced. Exchanged control messages can be traced through msg.
  • Page 454: Port Mirroring

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode User EXEC Port Mirroring Port mirroring (port monitoring) selects network traffic that you can analyze with a network analyzer, such as a SwitchProbe device or other Remote Monitoring (RMON) probe.
  • Page 455 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-405 monitor session destination Configures the probe interface for a selected monitor session. This command configures a probe port and a monitored port for monitor session (port monitoring). Rx monitors only ingress packets, while tx monitors only egress packets.
  • Page 456 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Filtering for a specified access group by IP address or MAC address is also available through the command. Note: Source and destination cannot be configured as a remote on the same device.
  • Page 457 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Remote port mirroring is configured through the RSPAN VLAN ID. At the source switch the destination is configured as RSPAN VLAN and at the destination switch the source is configured as RSPAN VLAN.
  • Page 458 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Global Config 5-409 no monitor Removes all the source and destination ports and restores the default for mirroring session mode for all the configured sessions.
  • Page 459 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-411 show monitor session Display the Port monitoring information for a particular mirroring session. Note: The session-id parameter is depicted by an integer value, the session-id parameter is always one (1).
  • Page 460 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Switch)#show monitor session all Session Admin Probe Mirrored Type Mode Port VLAN Port Port RVLAN RVLAN -------- ------ ------ ------ --------- ------ ------ ------ ----- ---- ----- Enable 0/15...
  • Page 461: Static Mac Filtering

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide MAC ACL The MAC access-list name attached to the port mirroring session. 5-412 show vlan remote-span Display the configured RSPAN VLAN. show vlan remote-span Parameters None Default The default is None.
  • Page 462 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • Multicast MAC and source ports and destination ports No command removes all filtering restriction and the static MAC filter entry for the MAC address macaddr on the VLAN vlanid. The macaddr parameter must be specified as a 6-byte hexadecimal number in the format of b1:b2:b3:b4:b5:b6.
  • Page 463 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Interface Config 5-415 macfilter adddest all Add all interfaces to the destination filter with macaddr (MAC filter) and vlanid (VLAN). The macaddr parameter must be specified as a 6-byte hexadecimal number in the format of b1:b2:b3:b4:b5:b6. The vlanid parameter must identify as a valid VLAN.
  • Page 464 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide vlanid Enter a VLAN ID (1-4093). Default The default is None. Command Mode Interface Config 5-417 macfilter addsrc all Add all interfaces using macaddr and vlanid to the source filter. The macaddr parameter must be defined as a 6-byte hexadecimal number in the format of b1:b2:b3:b4:b5:b6.
  • Page 465 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters macaddr Enter MAC address. vlanid Enter a VLAN ID (1-4093). Enter all for all Static MAC Filter entries. Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command.
  • Page 466: Dhcp L2 Relay Agent Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC Example The following shows an example of the command. (Switch)#show mac-address-table staticfiltering VLAN ID MAC Address Type Description Interfaces -------- ------------------------- ---------- ---------- --------------- 00:01:01:00:5E:00:00:01...
  • Page 467 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode • Global Config • Interface Config 5-421 dhcp l2relay trust Configure a single or range of interfaces as trusted for Option-82 reception.
  • Page 468 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Switching)#show dhcp l2relay all DHCP L2 Relay is Enabled. Interface L2RelayMode TrustMode ---------- ------------ ------------ Enabled untrusted Enabled untrusted Disabled trusted … 3/64 Enabled untrusted VLAN Id L2 Relay...
  • Page 469 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Displays DHCP L2 relay configuration specific to interfaces. show dhcp l2relay interface {all | slot/port} Parameters Display DHCP L2 Relay configuration for all interfaces. slot/port Enter an interface in slot/port format.
  • Page 470 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-426 show dhcp l2relay stats interface Display statistics specific to DHCP L2 Relay configured interface. show dhcp l2relay stats interface {all | slot/port} Parameters Display DHCP L2 Relay statistics for all interfaces.
  • Page 471 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vlan-range Display configuration for DHCP circuit-id VLAN range. Default The default is None. Command Mode Privileged EXEC Example The following is a CLI display output example. (Switching)#show dhcp l2relay agent-option vlan 5-10 DHCP L2 Relay is Enabled.
  • Page 472: Dhcp Client Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DHCP L2 Relay is Enabled. DHCP L2 Relay is enabled on the following VLANs: 5-429 clear dhcp l2relay statistics interface Reset the DHCP L2 relay counters to zero. Specify a single or all port counters to clear.
  • Page 473 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 5-431 dhcp client vendor-id-option-string Set the DHCP Vendor Option-60 string to include requests transmitted to the DHCP server by the DHCP client. No command clears DHCP Vendor Option-60 string.
  • Page 474: Dhcp Snooping Configuration Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DHCP Client Vendor Identifier Option..... Enabled DHCP Client Vendor Identifier Option String..D-LINK OSClient. DHCP Snooping Configuration Commands This section describes DHCP Snooping configuration. 5-433 ip dhcp snooping Enable DHCP Snooping globally.
  • Page 475 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 5-435 ip dhcp snooping verify mac-address Enable verification of the source MAC address with the client hardware address in the received DCHP message. No command disables verification of the source MAC address with the client hardware address.
  • Page 476 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-437 ip dhcp snooping database write-delay Use this command to configure the interval in seconds at which the DHCP Snooping database will be persisted. The interval value ranges from 15 to 86400 seconds.
  • Page 477 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-439 ip verify binding Use this command to configure static IP source guard (IPSG) entries. Use the no command to remove the IPSG static entry from the IPSG database.
  • Page 478 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Interface Config 5-441 ip dhcp snooping log-invalid Use this command to control the logging DHCP messages filtration by the DHCP Snooping application. This command can be used to configure a single interface or a range of interfaces.
  • Page 479 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-443 ip verify source Use this command to configure the IPSG source ID attribute to filter the data traffic in the hardware. Source ID is the combination of IP address and MAC address. Normal command allows data traffic filtration based on the IP address.
  • Page 480 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DHCP snooping is Enabled DHCP snooping source MAC verification is enabled DHCP snooping is enabled on the following VLANs: 11 - 30, 40 Interface Trusted Log Invalid Pkts ----------...
  • Page 481 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • User EXEC Example The following shows example CLI display output for the command. (Routing)#show ip dhcp snooping binding Total number of bindings: 2 MAC Address IP Address VLAN...
  • Page 482 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide agent url: /10.131.13.79:/sai1.txt write-delay: 5000 Display Parameters Bindings database agent URL. Agent URL The maximum waiting period in seconds before writing to the DHCP Write Delay Snooping database. The value range: 15 – 86400 seconds (default: 300).
  • Page 483 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-448 show ip dhcp snooping statistics Use this command to list statistics for DHCP Snooping security violations on untrusted ports. show ip dhcp snooping statistics Parameters None Default The default is None.
  • Page 484 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Client Ifc Mismatch List of DHCP release and denial messages from varying ports. DHCP Server Msgs Rec‘d List of DHCP server messages from untrusted ports. 5-449 clear ip dhcp snooping binding Clear all DHCP Snooping bindings on a single or all interfaces.
  • Page 485 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show ip verify source Parameters None Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following is a CLI display output example. (Routing)#show ip verify source...
  • Page 486 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters slot/port Enter an interface in slot/port format. Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following shows an example of the command.
  • Page 487: Dynamic Arp Inspection Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Privileged EXEC • User EXEC Example The following is a CLI display output example. (Routing)#show ip source binding MAC Address IP Address Type Vlan Interface -------------------...
  • Page 488 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vlan-list Enter VLAN IDs in range <1-4093>. Use '-' to specify a range, or ',' to separate VLAN IDs in a list. Spaces and zeros are not permitted.
  • Page 489 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters src-mac (Optional) Configure Source MAC validation. dst-mac (Optional) Configure Destination MAC validation. (Optional) Configure IP address validation. Default The default is Disabled. Command Mode Global Config 5-457 ip arp inspection trust Configure a single or range of interfaces as trusted for Dynamic ARP Inspection.
  • Page 490 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide vlan vlan-list Configure ARP ACL filter for a VLAN List. static (Optional) Configure if ARP ACL filter is static on a VLAN. Default The default is None. Command Mode...
  • Page 491 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode ARP Access-list Config 5-461 show ip arp inspection Display the Dynamic ARP Inspection global configuration and configuration on all the VLANs. To display the global and VLAN configuration the VLAN-list can be designated.
  • Page 492 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Source MAC Validation Displays status of Source MAC Validation of ARP frame: enabled or disabled. Destination MAC Validation Displays status of Destination MAC Validation: enabled or disabled.
  • Page 493 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide VLAN DHCP DHCP Bad Src Bad Dest Invalid Drops Drops Permits Permits ----- ----- ----- -------- -------- -------- -------- ------- Display Parameters VLAN The VLAN ID identifier. Forwarded The total number of valid ARP packets forwarded through VLAN.
  • Page 494 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-464 show ip arp inspection interfaces Display the Dynamic ARP Inspection configuration on all the DAI-enabled interfaces. An enabled interface is defined as having at least one DAI enabled VLAN. Given a slot/port interface argument, the command displays the values for that interface.
  • Page 495: Igmp Snooping Configuration Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters acl-name (Optional) Display ARP Access list configuration. Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following is a CLI display output example.
  • Page 496 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vlan_id (Optional) Indicates the VLAN identifier. Default The default is Disabled. Command Mode VLAN Config 5-467 set igmp header-validation Enable header validation for IGMP messages. When header validation is enabled, IGMP Snooping scans: •...
  • Page 497 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is Disabled. Command Mode Global Config 5-469 set igmp fast-leave Enable or disable IGMP Snooping fast-leave admin mode on a single or range interfaces or a VLAN.
  • Page 498 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no set igmp groupmembership-interval [vlan_id] Parameters vlan_id (Optional) Indicates the VLAN identifiations. Default The default is 260 seconds. Command Mode • Interface Config • Global Config • VLAN Config...
  • Page 499 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide No command sets the Multicast Router Present Expiration time to 0. The time is set for the system, on a particular interface or a VLAN. set igmp mcrtrexpiretime [vlan_id] 0-3600...
  • Page 500 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configures the interface or range of interfaces as a multicast router interface. When configured as a multicast router interface, the interface is treated as a multicast router interface in all VLANs.
  • Page 501 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-476 show igmpsnooping Display IGMP Snooping information for a given slot/port or VLAN. Configured information is displayed whether or not IGMP Snooping is enabled. show igmpsnooping [slot/port | vlan_id]...
  • Page 502 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide When you specify the slot/port values, the following information appears: IGMP Snooping Admin Indicates active status of IGMP Snooping. Mode Fast Leave Mode Indicates active status of IGMP Snooping Fast-leave.
  • Page 503 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command. (Routing)#show igmpsnooping mrouter interface 0/1 Slot/Port........0/1 Multicast Router Attached......Disable...
  • Page 504 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Interface The port on which multicast router information is being displayed. VLAN ID The list of VLANs of which the interface is a member. 5-479 show igmpsnooping ssm Display information about Source Specific Multicasting (SSM) by entry, group, or statistics.
  • Page 505: Igmp Snooping Querier Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters VLAN ID The VLAN identified as the source of the MAC address. MAC Address A multicast MAC address for which the switch has forwarding or filtering information The format is 6 two-digit hexadecimal numbers that are separated by colons, for example 01:23:45:67:89:AB.
  • Page 506 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-482 set igmp querier query-interval Set the IGMP Querier Query Interval time. It is the amount of time in seconds that the switch waits before sending another general query.
  • Page 507 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide set igmp querier version 1-2 no set igmp querier version Parameters None Default The default is 1. Command Mode Global Config 5-485 set igmp querier election participate Use this command to enable the Snooping Querier to participate in the Querier Election process when it discovers the presence of another Querier in the VLAN.
  • Page 508 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters detail (Optional) Display IGMP Snooping Querier detailed information. vlan vlanid (Optional) Display IGMP Snooping Querier VLAN information. Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command.
  • Page 509: Mld Snooping Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide state, then it is equal to the configured value. Querier Election Indicates whether the IGMP Snooping Querier participates in querier Participation election if it discovers the presence of a querier in the VLAN.
  • Page 510 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is Disabled. Command Mode • Global Config • Interface Config • VLAN Mode 5-488 set mld interfacemode Enable MLD Snooping on all interfaces. When the interface is enabled for MLD Snooping and routing or it is enlisted as a member of a port-channel (LAG), MLD Snooping functionality is disabled.
  • Page 511 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vlanid Display MLD VLAN information Default The default is Disable. Command Mode • lnterface Config • VLAN Mode 5-490 set mld groupmembership-interval Use this command to set the MLD Group Membership Interval time on a VLAN, one interface or all interfaces.
  • Page 512 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no set mld maxresponse Parameters None Default The default is 10. Command Mode • Global Config • Interface Config • VLAN Mode 5-492 set mld mcrtexpiretime Use this command to set the Multicast Router Present Expiration time. The time is set for the system, on a particular interface or VLAN.
  • Page 513 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide set mld mrouter vlanid no set mld mrouter vlanid Parameters vlanid Enter a VLAN ID. interface Configure port as a static Multicast Router. Default The default is None. Command Mode...
  • Page 514 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters slot/port (Optional) Enter an interface in slot/port format. vlanid (Optional) Display MLD Snooping valid VLAN ID information. Default The default is None. Command Mode Privileged EXEC Display Parameters When the optional arguments slot/port or vlanid are not used, the command displays the following information.
  • Page 515 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-496 show mldsnooping mrouter interface Use this command to display information about statically configured multicast router attached interfaces. show mldsnooping mrouter interface slot/port Parameters slot/port Enter an interface in slot/port format.
  • Page 516 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide VLAN ID Displays the list of VLANs of which the interface is a member. 5-498 show mldsnooping ssm entries Use this command to display the source specific multicast forwarding database built by MLD snooping.
  • Page 517 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command. (Routing)#show mldsnooping ssm stats Total Entries........508 Most SSM FDB Entries Ever Used....0 Current Entries........
  • Page 518 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Group The IPv6 multicast group address. Interface The interface on which the MLD v2 report is received. Reporter The IPv6 address of the host that sent the MLDv2 report.
  • Page 519: Mld Snooping Querier Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC MLD Snooping Querier Commands ln an IPv6 environment, MLD Snooping requires that one central switch or router periodically query all end-devices on the network to announce their multicast memberships.
  • Page 520 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide timer Configure Querier Expiry interval. expiry 60-300 Enter Querier Expiry Interval. Default The default is Disabled. Command Mode • Global Config • VLAN Mode 5-504 set mld querier query_interval Use this command to set the MLD Querier Query lnterval time.
  • Page 521 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is 60 seconds. Command Mode Global Config 5-506 set mld querier election participate Use this command to enable Snooping Querier to participate in the Querier Election process when it discovers the presence of another Querier in the VLAN.
  • Page 522 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Display Parameters When the optional argument vlanid is not used, the command displays the following information Admin Mode Indicates whether or not MLD Snooping Querier is active on the switch.
  • Page 523: Port Security Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Port Security Commands This section describes the command you use to configure Port Security on the switch. Port security, which is also known as port MAC locking, allows you to secure the network by locking allowable MAC addresses on a given port.
  • Page 524 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is 600. Command Mode Interface Config 5-510 port-security max-static This command sets the maximum number of statically locked MAC addresses allowed on a port. Use the no command to set maximum number of statically locked MAC addresses to the default value.
  • Page 525 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Interface Config 5-512 port-security mac-address move This command converts dynamically locked MAC addresses to statically locked addresses for an interface or range of interfaces. port-security mac-address move...
  • Page 526 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Global Config • Interface Config Example The following is a command example. (Routing)(ConFig)#port-security mac-address sticky (Routing)(Interface 0/1)#port-security mac-address sticky 00:00:00:00:00:01 2 5-514 mac-address-table limit This command enables VLAN port security. VLAN MAC locking allows you to secure the network by locking down allowable MAC addresses on a given VLAN.
  • Page 527 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)(Config)#mac-address-table limit action shutdown 5 vlan 20 (Routing)(Config)#mac-address-table limit notification trap 4 vlan 30 (Routing)(Config)#mac-address-table limit action shutdown notification trap 6 vlan 100 5-515 show port-security This command displays the port-security settings for the port(s). If you do not use a parameter, the command displays the Port Security Administrative mode.
  • Page 528 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Dynamic Limit Maximum dynamically allocated MAC Addresses. Static Limit Maximum statically allocated MAC Addresses. Violation Trap Mode Whether violation traps are enabled. Sticky Mode Displays whether or not mode is enabled.
  • Page 529 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command. (Routing)#show port-security static 0/1 Number of static MAC addresses configured: 2...
  • Page 530 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters MAC Address The source MAC address of the last frame that was discarded at a locked port. VLAN ID The VLAN ID, if applicable, associated with the MAC address of the last frame that was discarded at a locked port.
  • Page 531: Lldp (802.1Ab) Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide vlan Interface Mac-Address ----- ---------- -------------------- 0/28 00:00:00:00:00:11 0/28 00:00:00:00:00:12 0/28 00:00:00:00:00:13 (Routing)#show mac-address-table limit 10 Vlan MAC Locking Administration Mode: Enabled For Vlan 10 Configured mac limit 3...
  • Page 532 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-521 lldp receive Use this command to enable the LLDP receive capability on an interface or a range of interfaces. Use the no command to return the reception of LLDPDUs to the default value.
  • Page 533 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 5-523 lldp transmit-tlv Use this command to specify which optional type length values (TLVs) in the 802.1AB basic management set are transmitted in the LLDPDUs from an interface or range of interfaces. Use sys-name to transmit the system name TLV.
  • Page 534 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Interface Config 5-525 lldp notification Use this command to enable remote data change notifications on an interface or a range of interfaces.
  • Page 535 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-527 clear lldp statistics Use this command to reset all LLDP statistics, including MED-related information. clear lldp statistics Parameters None Default The default is None. Command Mode Privileged EXEC...
  • Page 536 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command. (Routing)#show lldp LLDP Global Configuration Transmit Interval........ 30 seconds Transmit Hold Multiplier......
  • Page 537 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC Example The following shows an example of the command. (Routing)#show lldp interface all LLDP Interface Configuration Interface Link Transmit Receive Notify TLVs Mgmt ---------- -----...
  • Page 538 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 0/39 Down Disabled Disabled Disabled 0/40 Down Disabled Disabled Disabled 0/41 Down Disabled Disabled Disabled 0/42 Down Disabled Disabled Disabled 0/43 Down Disabled Disabled Disabled 0/44 Down Disabled Disabled...
  • Page 539 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Transmit Shows whether the interface transmits LLDPDUs. Receive Shows whether the interface receives LLDPDUs. Notify Shows whether the interface sends remote data change notifications. TLVs Shows whether the interface sends optional TLVs in the LLDPDUs. The TLV codes can be 0 (Port Description), 1 (System Name), 2 (System Description), or 3 (System Capability).
  • Page 540 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Last Update The amount of time since the last update to the remote table in days, hours, minutes, and seconds. Total Inserts Total number of inserts to the remote data table.
  • Page 541 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Enter all for all interfaces. Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command. (Switching)#show lldp remote-device all...
  • Page 542 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-533 show lldp remote-device detail Use this command to display detailed information about remote devices that transmit current LLDP data to an interface on the system. show lldp remote-device detail slot/port...
  • Page 543 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide System Name The system name of the remote device. System Description Describes the remote system by identifying the system name and versions of hardware, operating system, and networking software supported in the device.
  • Page 544 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Interface The interface in a slot/port format. Port ID The port ID associated with this interface. Port Description The port description associated with the interface. 5-535 show lldp local-device detail Use this command to display detailed information about the LLDP data a specific interface transmits.
  • Page 545: Lldp-Med Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide LLDP-MED Commands Link Layer Discovery Protocol - Media Endpoint Discovery (LLDP-MED) (ANSI-TIA-1057) provides an extension to the LLDP standard. Specifically, LLDP-MED provides extensions for network configuration and policy, device location, Power over Ethernet (PoE) management, and inventory management.
  • Page 546 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-538 lldp med transmit-tlv Use this command to specify which optional Type Length Values (TLVs) in the LLDP MED set will be transmitted in the Link Layer Discovery Protocol Data Units (LLDPDUs) from this interface or a range of interfaces.
  • Page 547 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-540 lldp med confignotification all Use this command to configure all the ports to send the topology change notification lldp med confignotification all Parameters None Default The default is None.
  • Page 548 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide lldp med transmit-tlv all [capabilities] [ex-pd] [ex-pse] [inventory] [location] [network-policy] no lldp med transmit-tlv all [capabilities] [ex-pd] [ex-pse] [inventory] [location] [network-policy] Parameters capabilities Transmit the LLDP capabilities TLV. ex-pd Transmit the LLDP extended PD TLV.
  • Page 549 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)# 5-544 show lldp med interface Use this command to display a summary of the current LLDP MED configuration for a specific interface sot/port indicates a specific physical interface. all indicates all valid LLDP interfaces.
  • Page 550 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)#show lldp med interface 0/2 Interface Link configMED operMED ConfigNotify TLVsTx ---------- ----- ---------- ---------- -------------- ---------- Disabled Disabled Disabled TLV Codes: 0- Capabilities, 1- Network Policy 2- Location,...
  • Page 551 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Media Policy Application Type : streamin Vlan ID: 20 Priority: 1 DSCP: 2 Unknown: False Tagged: True Inventory Hardware Rev: xxx xxx xxx Firmware Rev: xxx xxx xxx Software Rev: xxx xxx xxx...
  • Page 552 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command. (Routing)#show lldp med remote-device all LLDP MED Remote Device Summary...
  • Page 553: Denial Of Service Commands

    Network Policies Denial of Service Commands This section describes the commands you use to configure Denial of Service (DoS) Control. D-LINK OS software provides support for classifying and blocking specific types of Denial of Service attacks. You can configure your system to monitor and block these types of attacks: •...
  • Page 554 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide dos-control all no dos-control all Parameters None Default The default is Disabled. Command Mode Global Config 5-549 dos-control sipdip This command enables Source IP address = Destination IP address (SIP = DIP) Denial of Service protection.
  • Page 555 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide dos-control firstfrag [0-255] no dos-control firstfrag Parameters None Default The default is Disabled (20). Command Mode Global Config 5-551 dos-control tcpfrag This command enables TCP Fragment Denial of Service protection. If the mode is enabled, Denial of Service prevention is active for this type of attack and packets that have a TCP payload in which the IP payload length minus the lP header size is less than the minimum allowed TCP header size are dropped.
  • Page 556 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide dos-control tcpflag no dos-control tcpflag Parameters None Default The default is Disabled. Command Mode Global Config 5-553 dos-control l4port This command enables L4 Port Denial of Service protections. If the mode is enabled. Denial of Service prevention is active for this type of attack.
  • Page 557 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no dos-control icmp Parameters None Default The default is Disabled (512). Command Mode Global Config 5-555 dos-control smacdmac This command enables Source MAC address = Destination MAC address (SMAC = DMAC) Denial of Service protection.
  • Page 558 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-556 dos-control tcpport This command enables TCP L4 source = destination port number (Source TCP Port = Destination TCP Port) Denial of Service protection. If the mode is enabled, Denial of Service prevention is active for this type of attack.
  • Page 559 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-558 dos-control tcpflagseq This command enables TCP Flag and Sequence Denial of Service protections. If the mode is enabled, Denial of Service prevention is active for this type of attack and packets will be dropped if the TCP Control Flags are set to 0 and the TCP Sequence Number is set to 0.
  • Page 560 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-560 dos-control tcpsyn This command enables TCP SYN and L4 source = 0-1023 Denial of Service protection. If the mode is enabled, Denial of Service prevention is active for this type of attack. If packets ingress having TCP flag SYN set and an L4 source port from 0 to 1023, the packets will be dropped if the mode is enabled.
  • Page 561 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide having TCP FIN, URG, and PSH all set and TCP Sequence Number set to 0, the packets will be dropped if the mode is enabled. Use the no command to set disables TCP FIN and URG and PSH and SEQ = 0 checking Denial of Service protections.
  • Page 562 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Use the no command to disable ICMP Fragment Denial of Service protection. dos-control icmpfrag no dos-control icmpfrag Parameters None Default The default is Disabled. Command Mode Global Config 5-565 show dos-control This command displays Denial of Service configuration information.
  • Page 563: Mac Database Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide UDP Port Mode........Disable SIPDIP Mode........Disable SMACDMAC Mode........Disable TCP FIN&URG&PSH Mode......Disable TCP Flag & Sequence Mode......Disable TCP SYN Mode........Disable TCP SYN&FIN Mode......... Disable TCP Fragment Mode........ Disable TCP Offset Mode........
  • Page 564 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Use the no command to set the forwarding database address aging timeout to the default value. bridge aging-time 10-1000000 no bridge aging-time Parameters None Default The default is 300.
  • Page 565 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-568 show mac-address-table multicast This command displays the Multicast Forwarding Database (MFDB) information. lf you enter the command with no parameter, the entire table is displayed. You can display the table entry for one MAC Address by specifying the MAC address as an optional parameter.
  • Page 566 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Type The type of the entry. Static entries are those that are configured by the end user. Dynamic entries are added to the table as a result of a learning process or protocol.
  • Page 567: Isdp Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ISDP Commands This section describes the commands you use to configure the industry standard Discovery Protocol (ISDP). 5-570 isdp run This command enables ISDP on the switch. Use the no command to disable ISDP on the switch.
  • Page 568 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-572 isdp timer This command sets the period of time between sending new ISDP packets. The range is given in seconds. isdp timer 5-254 Parameters None Default The default is 30.
  • Page 569 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide isdp enable no isdp enable Parameters None Default The default is Enabled. Command Mode Interface Config 5-575 clear isdp counters This command clears ISDP counters. clear isdp counters Parameters...
  • Page 570 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC 5-577 show isdp This command displays global ISDP settings. show isdp Parameters None Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command.
  • Page 571 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • macAddress indicates that the device uses a Layer 2 MAC address as the format for its Device ID. • other indicates that the device uses its platform-specific format as the format for its Device ID.
  • Page 572 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-579 show isdp entry This command displays ISDP entries. If the device ID is specified, then only entries for that device are shown. show isdp entry {all | deviceid} Parameters Display ISDP entries for all available devices.
  • Page 573 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters slot/port Enter an interface in slot/port format. detail Display ISDP neighbors detail table. Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command.
  • Page 574: Unidirectional Link Detection Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 5-581 show isdp traffic This command displays ISDP statistics. show isdp traffic Parameters None Default The default is None. Command Mode Privileged EXEC Display Parameters ISDP Packets Received Total number of ISDP packets received.
  • Page 575 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The purpose of the UDLD feature is to detect and avoid unidirectional links. A unidirectional link is a forwarding anomaly in a Layer 2 communication channel in which a bi-directional link stops passing traffic in one direction.
  • Page 576 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Use the no command to remove. udld timeout interval 5-60 Parameters None Default The default is 5 seconds. Command Mode Global Config 5-585 udld enable (Interface Config) Use the udld enable command in Interface Config mode to enable UDLD on the specified interface.
  • Page 577 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters aggressive Set aggressive mode on the interface. Default The default is Normal. Command Mode Interface Config 5-587 udld reset Use the udld reset command in Privileged EXEC mode to reset all interfaces that have been shut down by UDLD.
  • Page 578 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following shows example CLI display output for the command. (Routing)#show udld Admin Mode........Enabled Message Interval......... 15 seconds Timeout Interval......... 5 seconds Display Parameters Admin Mode The global administrative mode of UDLD.
  • Page 579: Interface Error Disable And Auto Recovery

    The error disabled interface does not allow any traffic until the interface is re-enabled. The error disabled interface can be manually enabled. Alternatively administrator can enable auto recovery feature. D-LINK OS Auto Recovery re-enables the interface after the expiry of configured time interval.
  • Page 580 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters Enable/Disable timer to recover from all error disable state. bpdu Enable/Disable timer to recover from spanning-tree error disable state. mac-flap Enable/Disable timer to recover from mac flapping error disable state.
  • Page 581 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is a command example. (Routing)#show errdisable recovery Errdisable Reason Auto-recovery Status -------------------- ------------------------- dhcp-rate-limit Disabled...
  • Page 582: Data Center Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Data Center Commands This chapter describes the commands to configure the data center features available in the D-LINK OS CLI. The Data Center Commands section includes the following commands:...
  • Page 583 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide lldp tlv-select dcbxp Use the lldp tlv-select dcbxp command in Interface Configuration or Global Configuration mode to send specific DCBX TLVs if LLDP is enabled to transmit on the given interface. If no parameter is given, all DCBX TLVs are enabled for transmission.
  • Page 584 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no lldp dcbx port-role Parameters auto-up Advertises a configuration, but is also willing to accept a configuration from the link-partner and propagate it internally to the auto-downstream ports as well as receive configuration propagated internally by other auto-upstr ports.
  • Page 585 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters All interfaces. slot/port A valid physical interface specifier. Default The default is None. Command Mode Privileged EXEC Example The following command shows the TLVs selected for transmission on multiple interfaces.
  • Page 586 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide slot/port A valid physical interface specifier. detail Display detailed DCBX information. status Displays a status summary. Default The default is None. Command Mode Privileged EXEC Example The following shows DCBX status.
  • Page 587: Quantized Congestion Notification Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DCBX operational status..... Disabled (Reason: LLDP Tx/Rx is disabled.) Configured DCBX version:....Auto Peer DCBX version:......Peer MAC:........Peer Description:......Auto-configuration Port Role:....Manual Peer Is configuration Source:....False Error counters: ETS incompatible configuration....
  • Page 588 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config qcn cnm-transmit-priority The qcn cnm-transmit-priority command is used in the Global Configuration mode in order to globally configure the dot1p priority value for the congestion notification messages (CNM) that are sent by the system.
  • Page 589 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide congestion unaware. This setting disables detection of congestion on the priority. Default The default is Disabled QCN Priorities. Command Mode Data Center Bridging Config qcn cnpv-priority alternate-priority The qcn cnpv-priority alternate-priority command is used in the Global Configuration mode in order to...
  • Page 590 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 6-10 qcn cnpv-priority cp-creation The qcn cnpv-priority cp-creation command is used in the Global Configuration mode to globally configure the default scope of the per port-priority defense mode choice that is made whenever a CP is newly created.
  • Page 591 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 6-12 qcn cnpv-priority The qcn cnpv-priority command is used in the Interface Config mode in order to configure a CP (port- queue) that has been mapped to the specified dot1p priority as a congestion enabled (interior), congestion disabled (disabled), or edge congestion point (edge) for a given interface that has the defense mode configured as component and a defense mode of Admin.
  • Page 592 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters cnpv-priority Enter dot1p priority, range 0-7. alternate-priority Configure priority to remark the traffic when defense-mode is edge. Default The default is Globally configured alternative-priority. Command Mode Interface Config...
  • Page 593 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters (Optional) If only the interface number is specified, then all the CNM slot/port transmit counters on that interface are cleared. cp-index (Optional) If only the cp index is specified, then CNM transmit counters for that cp index on all interfaces are cleared.
  • Page 594 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Errored port list: 0/1,0/8 LLDP mismatch port list: 0/5-8 Configured as CNPV on ports: 0/1,0/7-12 The following is an example of the CLI display output for the command. (Routing)#show qcn priority...
  • Page 595 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide admin edge component interior 6-17 show qcn active priority The show qcn active priority command is used in the Privileged EXEC mode to show the operational QCN configuration for the dot1p priority specified.
  • Page 596 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 6-18 show qcn interface The show qcn interface command is used in the Privileged EXEC mode to show the Congestion Point information for the port specified. show qcn interface slot/port [cp-index cp-index]...
  • Page 597: Fip Snooping Commands

    3. The enhancement of FCoE security/robustness through the prevention of FCoE MAC spoofing. In D-LINK OS, the FIP Snooping Bridge solution supports configuration-only of the perimeter port role and the FCF-facing port roles and is intended only for use at the edge of the switched network.
  • Page 598 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 2. FCF facing port (that is, a port that receives traffic from the FCFs targeted to the ENodes). 6-20 feature fip-snooping The feature fip-snooping command is used in the Global Configuration mode in order to globally enable Fibre Channel over Ethernet Initialization Protocol (FIP) snooping on the switch.
  • Page 599 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide fip-snooping enable no fip-snooping enable Parameters None Default The default is Disable. Command Mode VLAN Config Example The following example of the command enables FIP snooping on VLANs 2 through 8.
  • Page 600 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is 0x0efc00. Command Mode VLAN Config Example The following example of the command configures an FC map value of 0x100 on VLAN 208. (config)#vlan 208 (config)(vlan 208)#fip-snooping enable...
  • Page 601 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following example of the command configures an interface to be connected with an FCF switch. (Config)#interface 0/1 (Interface 0/1)#fip-snooping port-mode fcf (Interface 0/1)#exit The following example of the command sets an interface to be connected with the host.
  • Page 602: Priority-Based Flow Control Commands

    The priority field of the IEEE 802.1Q VLAN header differentiates among priorities, with the field identifying the given IEEE 802.1 p priority value. In D-LINK OS, it is required that these priority value be mapped to internal class-of-service (CoS) values.
  • Page 603 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide priority-flow-control mode {on | off} no priority-flow-control mode Parameters Enable PFC on the interface Disable PFC on the interface. Default The default is Priority-flow-control mode Off (disabled). Command Mode Datacenter-Bridging Config...
  • Page 604 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is Drop. Command Mode Datacenter-Bridging Config Example The following example of the command sets priority 3 to no-drop behavior. (Routing)(ConFig)#interface 0/1 (Routing)(Interface 0/1)#datacenter-bridging (Routing)(config-if-dcb)#priority-flow-control mode on...
  • Page 605 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters slot/port Indicates a valid slot/port identifier. Default The default is None. Command Mode Privileged EXEC Example The following examples of the command cause the priority flow control status and statistics to be shown.
  • Page 606: Openflow Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Interface Detail The port for which data is displayed. PFC Operational Status The operational status of the interface. PFC Configured State The administrative mode of PFC on the interface.
  • Page 607 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide openflow enable no openflow enable Parameters None Default The default is Disabled. Command Mode Global Config 6-30 openflow static-ip The openflow static-ip command is used to set the IP address that will be used for the OpenFlow feature.
  • Page 608 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide default, the connection mode is SSL. The controller table that is configured by this command will be used by the switch in the OpenFlow 1.0/1.3 modes. The no command is used to delete the specified OpenFlow Controller IP address or to delete all of the Controller addresses.
  • Page 609 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 6-33 openflow ip-mode This command is used to direct the OpenFlow feature to use the configured IP address. If this command is issued when the OpenFlow feature is already enabled, it will cause the feature to become disabled and then re-enabled with the new IP address.
  • Page 610 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 6-35 openflow variant This command is used to configure the OpenFlow feature to the variant specified. The user can configure the OpenFlow feature so that it uses one of two variants, OpenFlow 1.0 or OpenFlow 1.3. By default, the OpenFlow feature is configured to use OpenFlow 1.3.
  • Page 611 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command. (Routing)#show openflow Administrative Mode......Enable Administrative Status......
  • Page 612 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide then the status is None. IP Mode lP mode assigned by the command. The lP mode can be Auto, Static, or ServicePort IP. Static IP Address Static IP address assigned by the command.
  • Page 613 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 6-39 show openflow installed flows This command is used to show the list of configured flows on the switch. show openflow installed flows [dest_ip ip-address | dest_ip_port 1-65535 | dest_mac macaddr |...
  • Page 614 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Actions: Action: Drop Status: Duration: 2 : Idle 0 : installed in hardware Flow type “1DOT0” Match criteria: Flow table 24 : Priority Ingress port 0/0 : Ether type...
  • Page 615 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Flow Type The type of flow. (For example, 1.0 or Layer 2 Match). Flow Table The hardware table in which the flow is installed. The priority of the flow versus other flows.
  • Page 616 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Bucket Entry List: -------------------- Bucket Index 25 : Output Port Src MAC 00:00:00:00:00:AB : Dst MAC 00:00:00:00:00:CD VLAN 101 : Reference Group Id Group Id 23456789 type “All” ========================================...
  • Page 617 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Reference Group Id References the Indirect group ID and used for Select group only. 6-41 show openflow table-status This command is used to show the supported OpenFlow tables and the reported usage information for the tables.
  • Page 618: Nvgre/Vxlan Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Number of Entries........ 0 Hardware Entries......... 0 Software-Only Entries......0 Waiting For Space Entries......0 Flow Insertion Count......0 Flow Deletion Count......0 Insertion Failure Count......0 Flow Table Description: The Openflow 1.3 table matches on the packet layer-2 header, including DA-MAC, SA-MAC,...
  • Page 619 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The no command is used to disable the NVGRE mode on the switch. It also clears the switch of all existing NVGRE configurations, including all NVGRE tunnels, tenants, tenant VLAN associations, and configured forwarding entries.
  • Page 620 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide vxlan enable no vxlan enable Parameters None Default The default is None. Command Mode Global Config 6-45 vxlan source-interface loopback This command is used to specify the outer source IP address for any encapsulated packets transmitted on a VXLAN with a given virtual network ID (VNID).
  • Page 621 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 6-46 vxlan tenant-system This command is used to configure the forwarding entity for the tenant system MAC address mac-addr in the specified VN that can be reached through the access interface. The tenant systems can be configured one by one.
  • Page 622 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide destination port in the UDP header. The switch will also terminate any incoming VXLAN packets that match the specified UDP destination port. Moreover, the command also updates all of the existing VXLAN tunnels in the hardware with the newly configured UDP destination port, and no or very little traffic disruption occurs during this operation.
  • Page 623 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vnid Indicates VXLAN VNID (1-16777214). vlan-id Indicates a VLAN ID (1-4093). Default The default is None. Command Mode Global Config 6-49 vxlan vtep This command is used to configure a specific IP address to be the remote virtual tunnel endpoint (VTEP) within the VXLAN.
  • Page 624 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide tenant-system mac-addr Indicates the MAC address for the tenant system configuration. Default The default is None. Command Mode Global Config 6-50 clear counters nvgre This command is used to clear the packet and byte counters for all of the configured NVGRE virtual networks.
  • Page 625 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Packets RX Number of unicast packets received from the VTEP. Bytes TX Number of unicast bytes sent to the VTEP. Bytes RX Number of unicast bytes received from the VTEP.
  • Page 626 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Access Port Entries......1 Tunnel/Network Reference Port entries.... 2 NVGRE ID Source Address VLAN Access Port(s) Remote TEP(s) ---------- --------------- ----- --------------- --------------- 192.168.10.1 10.10.10.1 100.100.100.1 (Routing)#shcw nvgre 1 Source Address........
  • Page 627 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example (Routing)(ConFig)#show nvgre 1 nve Remote NVE Uptime (sec) Reachable Reachable Transitions ---------------------------------------------------------------------- 10.10.10.1 100.100.100.1 (Routing)(Config)#show nvgre 1 nve 10.10.10.1 NVGRE ID......... 1 Remote NVE........10.10.10.1 Reachable........NO Uptime (sec) ........0 Reachable Transitions......
  • Page 628 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vsid Indicates a NVGRE VSID (1-16777214). mac-addr (Optional) Indicates a MAC Address for the tenant systems. Default The default is None. Command Mode Privileged EXEC Example (Routing)(Config)#show nvgre 1 tenant-systems...
  • Page 629 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters local (Optional) Display local tenant systems details. remote (Optional) Display remote tenant systems details. Default The default is None. Command Mode Privileged EXEC Example (Routing)#show nvgre tenant-systems Maximum Allowed Limits or Table Sizes ------------------------------------------------------- Static Local Host Entries per Interface..
  • Page 630 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 00:00:AA:BB:CC:DD 1.1.1.1 Static 00:09:AA:BB:CC:EE 1.1.1.1 Static 00:EA:08:CA:16:45 1.1.1.1 Learned Display Parameters Tenant ID Virtual Subnet lD (VSID). Tenant MAC MAC address of a host or tenant system. IP address of NVE if the tenant system is behind the remote NVE. This is valid for the remote tenant system, otherwise it is blank..
  • Page 631 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Tunnel/Network Reference Ports Table Size..8192 Current Entries Count or Table Usage ------------------------------------------------------------ Tenant Table Entries......1 Access Port Entries......1 Tunnel/Network Reference Port entries.... 2 VXLAN ID Source Address...
  • Page 632 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide mac-addr (Optional) Indicates a MAC address identifier of tenant system. Default The default is None. Command Mode Privileged EXEC Example The following is a command example. (Routing)(Config)#show vxlan 1 tenant-systems...
  • Page 633 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following is a command example. (Routing)#show vxlan tenant-systems Maximum AllowedLimits or Table Sizes ------------------------------------------------------- Static Local Host Entries per Interface..24 Static Remote Host Entries per Tenant....
  • Page 634 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Tenant ID Virtual Subnet ID (VSID). Tenant MAC MAC address of a host or tenant system. VTEP IP address of the VTEP if the tenant system is behind the remote VTEP.
  • Page 635 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Uptime (sec)........0 Reachable Transitions......0 Unicast Counters ------------------------------------------------------- Packets Tx........0 Packets Rx........0 Bytes Tx......... 0 Bytes Rx......... 0 Display Parameters VXLAN ID Virtual Network ID (VNID).
  • Page 636: Ipv4 Routing Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide IPv4 Routing Commands This section describes the following routing commands available in the D-LINK OS CLI: Address Resolution Protocol Commands This section describes the commands to configure Address Resolution Protocol (ARP) and view ARP information.
  • Page 637 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide No command configures the default ARP cache size. arp cachesize platform specific integer value no arp cachesize Parameters platform specific integer Indicates the cache size value as an integer.
  • Page 638 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide arp purge Remove the specified IP address from the ARP cache in the specified virtual router. If a router is not specified, the ARP entry is deleted in the default. Only dynamic or gateway entry types are affected by this command.
  • Page 639 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide arp retries Configure the ARP count of maximum retry requests, represented by an integer. No command configures the default ARP count of maximum retry requests. arp retries 0-10 no arp retries...
  • Page 640 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide clear arp-cache [vrf vrf-name] [gateway] Parameters vrf vrf-name (Optional) Clears the dynamic entries from the ARP cache of a virtual router. gateway (Optional) Clears the dynamic and gateway entries from the ARP cache.
  • Page 641 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vrf vrf-name (Optional) Display ARP entries for a Virtual Router instance. Default The default is None. Command Mode Privileged EXEC Display Parameters Age Time (seconds) Time it takes for an ARP entry to age out. This is configurable.
  • Page 642 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command. (Routing) #show arp brief Age Time (seconds)....... 1200 Response Time (seconds)......1 Retries..........
  • Page 643 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command. (Routing) #show arp switch MAC Address IP Address Interface -------------------- ---------------...
  • Page 644: Ip Routing Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide IP Routing Commands This section describes the commands you use to enable and configure IP routing on the switch. 7-13 routing Enable IPv4 routing for an interface or range of interfaces.
  • Page 645 IPv4 point-to-point links, and adds the label IP address in the command. Note: The 31-bit subnet mask is only supported on routing interfaces. The feature is not supported on network port and service port interfaces because D-LINK OS acts as a host, not a router, on these management interfaces.
  • Page 646 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-16 ip address dhcp Enable the DHCPv4 client on an in-band interface so that it can acquire network information, such as the IP address, subnet mask, and default gateway, from a network DHCP server. When DHCP is enabled on the interface, the system automatically deletes all manually configured IPv4 addresses on the interface.
  • Page 647 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode • Global Config • Virtual Router Config 7-18 ip load-sharing Configure IP ECMP load balancing mode. No command removes it. ip load-sharing mode {inner | outer}...
  • Page 648 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide release dhcp {slot/port | vlan id} Parameters slot/port Enter an interface in slot/port format. vlan id Enter an interface in VLAN format. Default The default is None. Command Mode...
  • Page 649 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC 7-22 renew dhcp service-port Renew an IP address on a service port renew dhcp service-port Parameters None Default The default is None.
  • Page 650 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ip route [vrf vrf-name] ipaddr subnetmask {nexthopip | Null0 | interface {slot/port | vlan-id}} [preference] [description description] no ip route ipaddr subnetmask [{nexthopip [preference] | Null0}] Parameters vrf vrf-name Enter the VRF name which includes maximum 64 ASCII characters.
  • Page 651 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Router)(Config)#ip route 56.6.6.0 /24 9.0.0.2 Routes leaked from global routing table to VRF’s route table are: (Router)(Config)#ip route vrf Red 9.0.0.2 255.255.255.255 9.0.0.2 0/26 (Router)(Config)#ip route vrf Red 56.6.6.0 255.255.255.0 9.0.0.2 0/26 Route leaked from VRF’s route table to global routing table is:...
  • Page 652 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide assigned the original default distance. The new default distance will only be applied to static routes created after invoking the ip route distance command. No command sets the default static route preference value in the router. Lower route preference values are preferred when determining the best route.
  • Page 653 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Enable the forwarding of network-directed broadcasts on an interface or range of interfaces. No command disables the forwarding of network-directed broadcasts. When disabled, network directed broadcasts are dropped. ip netdirbcast...
  • Page 654 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-29 ip unnumbered gratuitous-arp accept Enable the configuration of static interface routes to the unnumbered peer dynamically on receiving gratuitous ARP. No command disables interface route configuration on receiving gratuitous ARP.
  • Page 655 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configure the link layer encapsulation type for the packet on an interface or range of interfaces. The encapsulation type can be ethernet or snap. Note: Routed frames are always ethernet encapsulated when a frame is routed to a VLAN.
  • Page 656 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Retry count: 0 Display Parameters IP address, Subnet mask IP address and network mask leased from the DHCP server. DHCP Lease server IPv4 address of the DHCP server that leased the address.
  • Page 657 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Maximum Routes........6000 ICMP Rate Limit Interval......1000 msec ICMP Rate Limit Burst Size....... 100 messages ICMP Echo Replies........ Enabled ICMP Redirects........Enabled Display Parameters Default Time to Live Computed TTL (Time to Live) of forwarding a packet from the local router to the final destination.
  • Page 658 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • User EXEC Example The following shows example CLI display output for the command. (Routing) #show ip interface 0/1 Routing interface status......Up Unnumbered - numbered interface....loopback 1 Unnumbered - gratuitous ARP accept....
  • Page 659 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Unnumbered For unnumbered interfaces, the IP address of the borrowed interface. Primary IP Address Primary IP address and subnet masks for the interface. This value appears only if you configure it.
  • Page 660 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vrf vrf-name Indicates an IP interface entries for a Virtual Router instance. Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following shows example CLI display output for the command.
  • Page 661 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-36 show ip load-sharing Display the currently configured IP ECMP load balancing mode. show ip load-sharing Parameters None Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command.
  • Page 662 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following shows example CLI display output for the command. (Router)#show ip protocols Routing Protocol......... BGP Router ID........6.6.6.6 Local AS Number........65001 BGPAdmin Mode........Enable Maximum Paths........Internal 32, External 32 Always compare MED.......
  • Page 663 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ..........10.0.0.0 0.255.255.255 area 1 ..........192.168.75.0 0.0.0.255 area 2 Distance......... Intra 110 Inter 110 Ext 110 Default Route Advertise......Disabled Always........... FALSE Metric........... Not configured Metric Type........External Type 2...
  • Page 664 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Prefix List In Global prefix list used to filter inbound routes from all neighbors. Prefix List Out Global prefix list used to filter outbound routes to all neighbors. Neighbors List of configured neighbors and the inbound and outbound policies configured for each.
  • Page 665 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide bgp, connected, or static. Use the all parameter to display all routes including best and non-best routes. If you do not use the all parameter, the command only displays the best route.
  • Page 666 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide When leaking connected route in the global routing table to a virtual router, the /32 host route for the leaked host is added in the virtual router instance’s route table. Leaking of non /32 connected routes into the virtual router table from global routing table is not supported.
  • Page 667 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (7001)(Config)#router bgp 65401 (7001)(Config-router)#redistribute? <cr> Press enter to execute the command. connected Configure redistribution of Connected routes kernel Configure redistribution of Kernel routes ospf Configure redistribution of ospf routes...
  • Page 668 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Code Codes for the routing protocols that created the routes. Default Gateway IP address of the default gateway. When the system does not have a more specific route to a packet’s destination, it sends the packet to the default gateway.
  • Page 669 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command. (Router)#show ip route ecmp-groups ECMP Group 1 with 2 next hops (used by 1 route) 172.20.33.100 on interface 2/33...
  • Page 670 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Route Codes: R - RIP Derived, O - OSPF Derived, C - Connected, S – Static B – BGP Derived, IA - OSPF Inter Area E1 - OSPF External Type 1, E2 —...
  • Page 671 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide N1 - OSPF NSSA External Type 1, N2 - OSPF NSSA External Type 2 S U - Unnumbered Peer, L - Leaked Route, K – Kernel P - Net Prototype 56.6.6.0/24 [1/1] via 9.0.0.2...
  • Page 672 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Best Routes (High)....... 1032(1032) Alternate Routes......... 0 Route Adds........1010 Route Modifies........1 Route Deletes........10 Unresolved Route Adds......0 Invalid Route Adds....... 0 Failed Route Adds........ 0 Hardware Failed Route Adds....... 4 Reserved Locals........
  • Page 673 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide route is a route that was not selected as the best route to its destination. Route Adds Number of routes that have been added to the routing table. Route Deletes Number of routes that have been deleted from the routing table.
  • Page 674 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide clear ip route counters Parameters None Default The default is None. Command Mode Privileged EXEC 7-44 show ip route preferences Display detailed information about the route preferences for each type of route. Route preferences are used in determining the best route.
  • Page 675 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DHCP Default Gateway......254 Display Parameters Local Local route preference value. Static Static route preference value. BGP External The BGP external route preference value. OSPF lntra OSPF lntra route preference value.
  • Page 676 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide IpInHdrErrors........0 IpInAddrErrors........0 IpForwDatagrams........0 IpInUnknownProtos........ 0 IpInDiscards........0 IpInDelivers........49798 IpOutRequests........2258 IpOutDiscards........244 IpOutNoRoutes........6 IpReasmTimeout........0 IpReasmReqds........0 IpReasmOKs........0 IpReasmFails........0 IpFragOKs........0 IpFragFails........0 IpFragCreates........
  • Page 677 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show routing heap summary Parameters None Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command. (Router)#show routing heap summary Heap Size........
  • Page 678: Ip Event Dampening Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide IP Event Dampening Commands 7-47 dampening Enable IP event dampening on a routing interface. No command disables IP event dampening on a routing interface. dampening [half-life period] [reuse-threshold suppress-threshold max-suppress-time [restart restart-...
  • Page 679 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command. (Router)#show dampening interface 2 interfaces are configured with dampening.
  • Page 680: Routing Policy Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Supp Indicates if the interface is suppressed or not. ReuseTm Number of seconds until the interface is allowed to come up again. HalfL Configured half-life period. ReuseV Configured reuse-threshold.
  • Page 681 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of this command. (Routing)(Config)#interface 0/1 (Routing)(Interface 0/1)# (Routing)(Interface 0/1)#ip policy route-map equal-access In order to disable policy based routing from an interface, use no form of this command no ip policy <route-map-name>...
  • Page 682 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide le length (Optional) If this option is configured, then a prefix is only considered a match if its network mask length is less than or equal to this value. This value must be longer than the ge length and less than or equal to 32.
  • Page 683 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 7-53 ipv6 prefix-list Create IPv6 prefix lists. An IPv6 prefix list can contain only ipv6 addresses. Prefix lists allow matching of route prefixes with those specified in the prefix list. Each prefix list includes a sequence of prefix list entries ordered by their sequence numbers.
  • Page 684 The redistribution command specifies a route map which refers to a prefix list. The prefix list identifies the prefixes that may be redistributed. D-LINK OS accepts up to 64 route maps. No command deletes a route map or one of its statements.
  • Page 685 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide sequence-number (Optional) Integer used to order the set of route maps with the same name. Route maps are ordered from lowest to greatest sequence number, with lower sequence numbers being considered first If no sequence number is specified the system assigns a value ten greater than the last statement in the route map.
  • Page 686 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-56 match community To configure a route map to match based on a BGP community list, use the match community command in Route Map Configuration mode. If the community list returns a permit action, the route is considered a match.
  • Page 687 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide routes. Up to eight prefix lists may be specified. Default The default is None. Command Mode Route Map Config 7-58 match ip address <access-list-number | access-list-name> Configure a route map in order to match based on the match criteria configured in an IP access-list. Note that an IPACL must be configured before it is linked to a route-map.
  • Page 688 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)(Config-route-map)#set ip default next-hop 192.168.6.6 (Routing)(Config-route-map)#route-map equal-access permit 20 (Routing)(Config-route-map)#match ip address 2 (Routing)(Config-route-map)#set ip default next-hop 172.16.7.7 (Routing)(Config)#interface 0/1 (Routing)(Interface 0/1)#ip address 10.1.1.1 255.255.255.0 (Routing)(Interface 0/1)#ip policy route-map equal-access (Routing)(Config)#interface 0/2 (Routing)(Interface 0/2)#ip address 192.168.6.5 255.255.255.0...
  • Page 689 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)(Config)#route-map madan (Routing)(Route-map)#match ip address 1 2 3 4 5 madan (Routing)(Route-map)#match mac-list madan mohan goud (Routing)(Route-map)#exit (Routing)(Config)#exit (Routing)#show route-map route-map madan permit 10 Match clauses: ip address (access-lists) : 1 2 3 4 5 madan...
  • Page 690 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-60 match length Configure a route map to match based on the Layer 3 packet length between specified minimum and maximum values. min specifies the packet’s minimum Layer 3 length, inclusive, allowed for a match. max specifies the packets maximum Layer 3 length, inclusive, allowed for a match.
  • Page 691 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters mac-list-name The mac-list name that identifies MAC ACLs. MAC Access-list name can be up to 31 characters in length. Default The default is as follows: no matching criteria is defined.
  • Page 692 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide To prepend one or more AS numbers to the AS-PATH in a BGP route, use the set as-path command in Route Map Configuration mode. This command is normally used to insert one or more instances of the local AS number at the beginning of the AS_PATH attribute of a BGP route.
  • Page 693 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide individually, a community list used to remove communities should not include the exact-match option on statements with multiple communities. Such statements can never match an individual community. When a route map statement includes both set community and set comm-list delete terms, the set comm-list delete term is processed first, and then the set community term (meaning that, communities are first removed, and then communities are added).
  • Page 694 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Route Map Config 7-65 set interface If the network administrator does not want to revert to normal forwarding but instead wants to drop a packet that does not match the specified criteria, a set statement needs to be configured to route the packets to interface null 0 as the last entry in the route-map.
  • Page 695 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters ip-address IP address of the next hop to which packets are output. It must be the address of an adjacent router. A maximum of 16 next-hop IP addresses can be specified in this ‘set’...
  • Page 696 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide and can be used by other QoS services, such as weighted fair queuing (WFQ) and weighted random early detection (WRED). No command resets the three IP precedence bits in the IP packet header to the default.
  • Page 697 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide MP_NLRl attribute of an UPDATE message. Default The default is None. Command Mode Route Map Config 7-70 set local-preference To set the local preference of specific BGP routes, use the set local-preference command in Route Map Configuration mode.
  • Page 698 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters value A metric value, from 0 to 4,294,967,295 (any 32-bit integer). Default The default is None. Command Mode Route Map Config 7-72 show ip policy List the route map associated with each interface.
  • Page 699 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show ip prefix-list [detail | summary] prefix-list-name [network/length] [seq sequence-number] [longer] [first-match] Parameters (Optional) Displays detailed or summarized information about all prefix detail | summary lists. prefix-list-name (Optional) Name of a specific prefix list.
  • Page 700 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)#show ip prefix-list summary fred ip prefix-list fred: count: 3, range entries: 3, sequences: 5 - 15, refcount: 0 The following shows example CLI display output for the command...
  • Page 701 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command. (Switch)#show ipv6 prefix-list apple ipv6 prefix-list apple: count: 6, range entries: 3, sequences: 5 - 30, refcount: 31...
  • Page 702 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-75 show route-map To display a route map, use the show route-map command in Privileged EXEC mode. show route-map [map-name] Parameters map-name (Optional) Name of a specific route map.
  • Page 703: Router Discovery Protocol Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following shows an example of the command. (Routing)#clear ip prefix-list orange 20.0.0.0/8 7-77 clear ipv6 prefix-list Reset and clear IPv6 prefix-list hit counters. The hit count is a value indicating the number of matches to a specific prefix list entry.
  • Page 704 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ip irdp no ip irdp Parameters None Default The default is Disabled. Command Mode Interface Config 7-79 ip irdp address Configure the address that the interface uses to send the router discovery advertisements. The valid value for ipaddr is 255.255.255.255, which is the limited broadcast address.
  • Page 705 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters maxadvertinterval Enter the holdtime in seconds. Default The default is 3 x maxadvertinterval. Command Mode Interface Config 7-81 ip irdp maxadvertinterval Configure the maximum time, in seconds, allowed between sending router advertisements from the interface.
  • Page 706 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters maxadvertinterval Enter the minadvertinterval in seconds. Default The default is 0.75 * maxadvertinterval. Command Mode Interface Config 7-83 ip irdp preference Configure the preferability of the address as a default router address, relative to other router addresses on the same subnet.
  • Page 707 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following is an example of the CLI display output for the command. (Routing) #show ip irdp all...
  • Page 708: Virtual Router Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Max Int Maximum advertise interval, which is the maximum time, in seconds, allowed between sending router advertisements from the interface. Min Int Minimum advertise interval, which is the minimum time, in seconds, allowed between sending router advertisements from the interface.
  • Page 709 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-86 maximum routes Reserve the number of routes allowed and set the maximum limit on the number of routes for a virtual router instance in the total routing table space for the router, provided there is enough free space in the router's total routing table.
  • Page 710 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no description Parameters text The descriptive text for the virtual router. A set of ASCII characters up to 512 characters in length. Default The default is None. Command Mode...
  • Page 711 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-89 show ip vrf Display information about virtual router instances. show ip vrf [{vrf-name | detail vrf-name | interfaces | memory [vrf-name]}] Parameters vrf-name (Optional) Name of virtual router instance.
  • Page 712: Virtual Lan Routing Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Description......Route Distinguisher....300:6 Maximum Routes......Not Set warning-only......FALSE Route table size....... 0 Number of interfaces....1 Interfaces: ---------- 0/10 Export VPN route-target communities RT:152:1 Import VPN route-target communities...
  • Page 713 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode VLAN Config Example Shows the command specifying a vlanid value. The interface ID argument is not used. (Routing)(Vlan)#vlan routing 14 ? <cr> Press enter to execute the command.
  • Page 714 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Interface ID 1 is already assigned to another interface The show running configuration command always lists the interface ID for each routing VLAN as shown in below. (Routing)#show running-config !Current Configuration: !System Description “DQS-5000-54SQ28 - 48 25GE + 6 100GE, 2.1.5, Linux 3.16.0-29-...
  • Page 715: Virtual Router Redundancy Protocol Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show ip vlan Parameters None Default The default is None. Command Mode • Privileged EXEC • User EXEC Display Parameters MAC Address used by MAC Address associated with the internal bridge-router interface (IBRI).
  • Page 716 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config 7-94 ip vrrp (Interface Config) Use this command in Interface Config mode to create a virtual router associated with the interface or range of interfaces. The parameter vrid is the virtual router ID which has an integer value range from 1 to 255.
  • Page 717 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Interface Config 7-96 ip vrrp ip Set the virtual router IP address value for an interface or range of interfaces. The value for ipaddr is the IP address which is to be configured on that interface for VRRP.
  • Page 718 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vrid Indicates the virtual router ID. Default The default is Disable. Command Mode Interface Config 7-98 ip vrrp authentication Set the authorization details value for the virtual router configured on a specified interface or range of interfaces.
  • Page 719 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ip vrrp vrid preempt no ip vrrp vrid preempt Parameters vrid Indicates the virtual router ID. Default The default is Enabled. Command Mode Interface Config 7-100 ip vrrp priority Set the priority of a router within a VRRP group.
  • Page 720 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide No command sets the default virtual router advertisement value for an interface or range of interfaces. ip vrrp vrid timers advertise 1-255 no ip vrrp vrid timers advertise Parameters vrid Indicates the virtual router ID.
  • Page 721 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is 10. Command Mode Interface Config 7-103 ip vrrp track ip route Track the route reachability on an interface or range of interfaces. When the tracked route is deleted, the priority of the VRRP router will be decremented by the value specified in the priority argument.
  • Page 722 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters slot/port Enter an interface in slot/port format. vlan vlan-id Enter an interface in VLAN format. vrid Indicates the virtual router ID. Default The default is None. Command Mode •...
  • Page 723 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Zero Priority Packets Total number of VRRP packets received by virtual router with a priority Received of '0'. Zero Priority Packets Sent Total number of VRRP packets sent by the virtual router with a priority of '0'.
  • Page 724 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters VRRP Admin Mode Administrative mode for VRRP functionality on the switch. Router Checksum Errors Total number of VRRP packets received with an invalid VRRP checksum value. Router Version Errors Total number of VRRP packets received with Unknown or unsupported version number.
  • Page 725 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Track Interface State DecrementPriority --------------- ---------- -------------------- <0/1> down TrackRoute (pfx/len) State DecrementPriority ------------------------- ---------- -------------------- 10.10.10.1/255.255.255.0 down Display Parameters IP Address Configured IP address for the Virtual router.
  • Page 726: Dhcp And Bootp Relay Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of the CLI display output for the command. (Router)#show ip vrrp interface brief Interface VRID IP Address Mode State ---------- ----- --------------- ----------...
  • Page 727 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Global Config • Virtual Router Config 7-109 bootpdhcprelay maxhopcount Configure the maximum allowable relay agent hops for BootP/DHCP Relay on the system. No command configures the default maximum allowable relay agent hops for BootP/DHCP Relay on the system.
  • Page 728 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Global Config • Virtual Router Config 7-111 show bootpdhcprelay Display the BootP/DHCP Relay information for the virtual router. If no router is specified, information for the default router is displayed.
  • Page 729: Ip Helper Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide IP Helper Commands This section describes the commands used to configure and monitor the IP Helper agent. IP Helper relays DHCP and other broadcast UDP packets from a local client to one or more servers which are not on the same network as the client.
  • Page 730 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Reset to zero the statistics displayed in show ip helper statistics command for the specified virtual router. If no router is specified, the command is executed for the default router.
  • Page 731 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • isakmp (port 500) • mobile-ip (port 434) • nameserver (port 42) • netbios-dgm (port 138) • netbios-ns (port 137) • ntp (port 123) • pim-auto-rp (port 496) •...
  • Page 732 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters server-address IPv4 unicast or directed broadcast address to which relayed UDP broadcast packets are sent. The server address cannot be in a subnet on the interface where the relay entry is configured, and cannot be an IP address configured on any interface of the local router.
  • Page 733 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide This command takes precedence over an ip helper-address command given in global configuration mode. With the following configuration, the relay agent relays DHCP packets received on any interface other than 0/2 and 0/17 to 192.168.40.1, relays DHCP and DNS packets received on 0/2 to 192.168.40.2,...
  • Page 734 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display the IP helper address configuration on the specified virtual router. If no virtual router is specified, the configuration of the default router is displayed. The argument slot/port corresponds to a physical routing interface or VLAN routing interface.
  • Page 735 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide discard a packet. Server Address IPv4 address of the server to which packets are relayed. 7-117 show ip helper statistics Display the number of DHCP and other UDP packets processed and relayed by the UDP relay agent on the specified virtual router.
  • Page 736: Open Shortest Path First Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide addresses. DHCP client messages Number of DHCP client messages relayed to a server. If a message is relayed relayed to multiple servers, the count is incremented once for each server.
  • Page 737 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide router ospf [vrf vrf-name] Parameters vrf vrf-name (Optional) Virtual router on which to enable OSPF routing. Default The default is None. Command Mode Global Config 7-119 enable (OSPF) Reset the default administrative mode of OSPF in the router (active).
  • Page 738 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters ip-address Enter an IP Address. wildcard-mask IP-address-type mask that includes “don't-care bits”. area-id Identifies the OSPF Router Area identification. Default The default is Disabled. Command Mode Router OSPF Config 7-121 1583compatibility Enable OSPF 1583 compatibility.
  • Page 739 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Router OSPF Config 7-123 area nssa (OSPF) Configure the specified areaid to function as an NSSA. No command disables nssa from the specified area ID.
  • Page 740 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide non-comparable Configure the Metric Type as non-comparable. Default The default is None. Command Mode Router OSPF Config 7-125 area nssa no-redistribute (OSPF) Configure the NSSA Area Border router (ABR) so that learned external routes will not be redistributed to the NSSA.
  • Page 741 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Router OSPF Config 7-127 area nssa translator-role (OSPF) Configure the translator role of the NSSA. A value of always causes the router to assume the role of the translator the instant it becomes a border router and a value of candidate causes the router to participate in the translator election process when it attains border router status.
  • Page 742 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters areaid Indicates an area ID. stabilityinterval Enter an integer for the Translator Stability interval (0-3600). Default The default is None. Command Mode Router OSPF Config 7-129 area range (OSPF) Use the area range command in Router Configuration mode to configure a summary prefix that an area border router advertises for a specific area.
  • Page 743 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide configured for type 7 to type 5 translation, a type 5 LSA is sent if the metric is set to 16,777,215; however other routers will not compute a route from a type 5 LSA with this metric.
  • Page 744 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters areaid Indicates an area ID. Default The default is None. Command Mode Router OSPF Config 7-131 area stub no-summary (OSPF) Configure the Summary LSA mode for the stub area identified by areaid. Use this command to prevent LSA Summaries from being sent.
  • Page 745 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters areaid Indicates an area ID. neighbor Enter the router ID of the virtual neighbor. Default The default is None. Command Mode Router OSPF Config 7-133 area virtual-link authentication Configure the authentication type and key for the OSPF virtual interface identified by areaid and neighbor.
  • Page 746 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configure the dead interval for the OSPF virtual interface on the virtual interface identified by areaid and neighbor. The neighbor parameter is the Router ID of the neighbor. No command configures the default dead interval for the OSPF virtual interface on the virtual interface identified by areaid and neighbor.
  • Page 747 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-136 area virtual-link retransmit-interval (OSPF) Configure the retransmit interval for the OSPF virtual interface on the virtual interface identified by areaid and neighbor. The neighbor parameter is the Router ID of the neighbor.
  • Page 748 OSPF or indirectly by an application wishing to distribute information throughout the OSPF domain. D-LINK OS supports the storing and flooding of Opaque LSAs of different scopes. The default value of enabled means that OSPF will forward opaque LSAs by default. If you want to upgrade from a previous release, where the default was disabled, opaque LSA forwarding will be enabled.
  • Page 749 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Router Config 7-140 clear ip ospf Disable and reenable OSPF for the specified virtual router. If no virtual router is specified, the default router is disabled and re-enabled.
  • Page 750 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide clear ip ospf counters [vrf vrf-name] Parameters vrf vrf-name (Optional) Indicates the OSPF protocol of a virtual router. Default The default is None. Command Mode Privileged EXEC 7-143 clear ip ospf neighbor Drop the adjacency with all OSPF neighbors for the specified virtual router.
  • Page 751 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters slot/port Enter an interface in slot/port format. vlan vlan Enter an interface in VLAN format. Default The default is None. Command Mode Privileged EXEC 7-145 clear ip ospf redistribution Flush all self-originated external LSAs for the specified virtual router.
  • Page 752 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide metric 0-16777214 (Optional) The range of the metric is 0-16777214. metric-type {1 | 2} (Optional) Specify the Open Shortest Path First (OSPF) external type 1, equivalent to the link-state metric, or external type 2, cost assigned by the AS boundary router, metric.
  • Page 753 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters intra-area 1-255 Indicates the intra-area route (1 to 255). inter-area 1-255 Indicates the inter-area route (1 to 255). external 1-255 Indicates the number of external OSPF routes (1 to 255).
  • Page 754 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no exit-overflow-interval Parameters seconds Indicates the interval in seconds (0-2147483647). Default The default is 0 second. Command Mode Router OSPF Config 7-151 external-lsdb-limit (OSPF) Configure the external LSDB limit for OSPF. If the value is -1, then there is no limit. When the number of non-defaultAS-external-LSAs in a router’s link-state database reaches the external LSDB limit, the router...
  • Page 755 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no log-adjacency-changes [detail] Parameters detail (Optional) When this keyword is specified, all adjacency state changes are logged. Otherwise OSPF only logs transitions to FULL state and when a backwards transition Occurs.
  • Page 756 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide prefix-suppression no prefix-suppression Parameters None Default The default is as follows: prefix suppression is disabled. Command Mode Router OSPFv3 Config 7-155 router-id (OSPF) Set a 4-digit dotted-decimal number uniquely identifying the router OSPF ID. The ipaddress is a configured value.
  • Page 757 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters Source protocol is BGP. static Source protocol is static. connected Source protocol is connected. metric 0-16777214 (Optional) Configures the OSPF route redistribution metric. metric-type {1 I 2} (Optional) Configures the OSPF route redistribution metric type.
  • Page 758 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Enable global passive mode by default for all interfaces. It overrides any interface level passive mode. OSPF will not form adjacencies over a passive interface. No command disables the global passive mode by default for all interfaces. Any interface previously configured to be passive reverts to non-passive mode.
  • Page 759 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide To adjust the rate at which OSPFv2 sends LS Update packets, use the timers pacing flood command in router OSPFv2 global configuration mode. OSPF distributes routing information in Link State Advertisements (LSAs), which are bundled into Link State Update (LS Update) packets.
  • Page 760 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode OSPFv2 Router Config 7-162 timers spf Configure the SPF delay time and hold time. The valid range for both parameters is 0-65535 seconds. timers spf delay-time hold-time...
  • Page 761 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • retransmit packets • virt-packets • state-change if-state-change • neighbor-state-change • virtif-state-change • virtneighbor-state-change Use the No command to remove. • To enable the individual flag, enter the group name followed by that particular flag.
  • Page 762: Ospf Interface Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide packets Packet retransmission on non virtual interfaces. virt-packets Packet retransmission on virtual interfaces. state-change Enable/Disable state change traps. Enable/Disable all Traps. if-state-change Non virtual interface state changes. neighbor-state-change Neighbor state changes on non virtual interfaces.
  • Page 763 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-165 bandwidth By default, OSPF computes the link cost of an interface as the ratio of the reference bandwidth to the interface bandwidth. Reference bandwidth is specified with the auto-cost command. For the purpose of the OSPF link cost calculation, use the bandwidth command to specify the interface bandwidth.
  • Page 764 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Interface Config 7-167 ip ospf cost Configure the cost on an OSPF interface or range of interfaces. No command configures the default cost on an OSPF interface.
  • Page 765 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-169 ip ospf dead-interval Set the OSPF dead interval for the specified interface or range of interfaces. The value for seconds is a valid positive integer, which represents the length of time in seconds that a router's Hello packets have not been seen before its neighbor routers declare that the router is down.
  • Page 766 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-171 ip ospf network Configure OSPF to treat an interface or range of interfaces as a point-to-point rather than broadcast interface. The broadcast option sets the OSPF network type to broadcast. The point-to-point option sets the OSPF network type to point-to-point.
  • Page 767 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters disable Disable prefix-suppression on the interface. Default The default is as follows: prefix-suppression is not configured. Command Mode Interface Config 7-173 ip ospf priority Set the OSPF priority for the specified router interface or range of interfaces. The priority of the interface is a priority integer from 0 to 255.
  • Page 768 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters seconds Indicates interval time in seconds. Default The default is 5. Command Mode Interface Config 7-175 ip ospf transmit-delay Set the OSPF Transit Delay for the specified interface or range of interfaces. The transmit delay is specified in seconds.
  • Page 769: Ospf Graceful Restart Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is Enabled. Command Mode Interface Config OSPF Graceful Restart Commands The OSPF protocol can be configured to participate in the checkpointing service, so that these protocols can execute a “graceful restart”...
  • Page 770 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is Disabled. Command Mode OSPF Router Config 7-178 nsf helper Enable helpful neighbor functionality for the OSPF protocol. You can enable this functionality for planned or unplanned restarts, or both.
  • Page 771: Ospfv2 Stub Router Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-180 nsf helper strict-Isa-checking The restarting router is unable to react to topology changes. In particular, the restarting router will not immediately update its forwarding table; therefore, a topology change may introduce forwarding loops or black holes that persist until the graceful restart completes.
  • Page 772 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Use the no command in OSPFv2 Router Configuration mode to disable stub router mode. The command clears either type of stub router mode (always or on-startup) and resets the summary-Isa option. If OSPF is configured to enter global configuration mode on startup, and during normal operation you want to immediately place OSPF in stub router mode, issue the command no max-metric router-Isa on-startup.
  • Page 773: Ospf Show Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC OSPF Show Commands 7-183 show ip ospf Display OSPF global configuration information for the specified virtual router. If no router is specified, it displays information for the default router.
  • Page 774 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default Route Advertise......Disabled Always......... False Metric......... Not configured Metric Type........External Type 2 Number of Active Areas......1 (1 normal, 0 stub, 0 nssa) ABR Status........Disable ASBR Status........Disable Stub Router........
  • Page 775 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide on an interface. This is the value configured with the command “timers pacing flood”. LSA Refresh Group Pacing Size in seconds of the LSA refresh group window. This is the value configured with the command...
  • Page 776 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Stub Router Duration Time elapsed since the router last entered the stub router mode. The row is only listed if stub router is active and the router entered stub mode because of a resource limitation.
  • Page 777 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show ip ospf abr [vrf vrf-name] Parameters vrf vrf-name (Optional) Display the OSPF Area Border Routers information of a virtual router. Default The default is None. Command Mode •...
  • Page 778 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters areaid Indicates the area ID. vrf vrf-name (Optional) Display the OSPF Area Border Routers information of a virtual router. Default The default is None. Command Mode • Privileged EXEC •...
  • Page 779 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Import Summary LSAs Shows whether to import summary LSAs into the NSSA. Redistribute into NSSA Shows whether to redistribute information into the NSSA. Default Information Shows whether to advertise a default route into the NSSA.
  • Page 780 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-187 show ip ospf database Display information about the link state database when OSPF is enabled for the specified virtual router. If no router is specified, it displays information for the default router. If you do not enter any parameters, the command displays the LSA headers for all areas.
  • Page 781 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following shows an example of the command. (Router) #show ip ospf database Router Link States (Area 0.0.0.100) Link Id Adv Router Sequence Chksm Options Rtr Opt --------------- ---------------...
  • Page 782 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Number representing the age of the link state advertisement in seconds. Sequence Number that represents which LSA is more recent. Checksum Total number LSA checksum. Options This is an integer. It indicates that the LSA receives special handling during routing calculations.
  • Page 783 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Network.......... 16 Summary Net........0 Summary ASBR........0 Type-7 Ext........0 Opaque Link........0 Opaque area........0 Type-5 Ext........0 Self-Originated Type-5 Ext..... 0 Opaque AS........0 Total..........24...
  • Page 784 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following shows example CLI display output for the command when the OSPF Admin Mode is disabled.
  • Page 785 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Dead Interval Number representing the OSPF Dead lnterval for the specified interface. LSA Ack Interval Number representing the OSPF LSA Acknowledgment lnterval for the specified interface. Transmit Delay Number representing the OSPF Transmit Delay lnterval for the specified interface.
  • Page 786 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode • Privileged EXEC • User EXEC Display Parameters Interface slot/port OSPF Admin Mode States whether OSPF is enabled or disabled on a router interface.
  • Page 787 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following shows an example of the command. (Routing) #show ip ospf interface stats 0/49 OSPF Area ID........100 Area Border Router Count......0 AS Border Router Count......0 Area LSA Count........
  • Page 788 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Neighbor Events Number of times this neighbor relationship has changed state, or an error has occurred. Sent Packets Number of OSPF packets transmitted on the interface. Received Packets Number of valid OSPF packets received on the interface.
  • Page 789 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide LS Update LS Acknowledgment 7-192 show ip ospf Isa-group Display the number of self-originated LSAs within each LSA group for the specified virtual router. If no router is specified, it displays information for the default router.
  • Page 790 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 1019 1020 1079 1080 1139 1140 1199 1200 1259 1260 1319 1320 1379 1380 1439 1440 1499 1500 1559 1560 1619 1620 1679 1680 1739 1740 1799 1800 1859...
  • Page 791 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vrf vrf-name (Optional) Display the VRF name which includes maximum 64 ASCII characters. slot/port (Optional) Enter an interface in slot/port format. vlan (Optional) Indicates an interface in VLAN format (1-4093).
  • Page 792 • Unrecognized - a value not defined in RFC 3623 When D-LINK OS sends a grace LSA, it sets the Restart Reason to Software Restart on a planned warm restart (when the initiate failover command is invoked), and to Unknown on an unplanned warm restart.
  • Page 793 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide If an IP address is not specified, a table with the following columns displays for all neighbors or the neighbor associated with the interface that you specify. Router ID 4-digit dotted-decimal number of the neighbor router.
  • Page 794 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters areaid Identifies the area ID for the range. vrf vrf-name (Optional) Display OSPF area range information of a virtual router. Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command.
  • Page 795 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vrf vrf-name (Optional) Display the statistics of a virtual router. Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command.
  • Page 796 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • N – new network LSA • SN – new network summary LSA • SA – new ASBR summary LSA • X – new external LSA 7-196 show ip ospf stub table Display the OSPF stub table for the virtual router.
  • Page 797 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters vrf vrf-name (Optional) Display the statistics of a virtual router. Default The default is None. Command Mode Privileged EXEC Example The following shows example CLI display output for the command.
  • Page 798 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters OSPFv2 Packet Statistics Number of packets of each type sent and received since OSPF counters were last cleared. LSAs Retransmitted Number of LSAs retransmitted by this router since OSPF counters were last cleared.
  • Page 799 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Hello lnterval Configured hello interval for the OSPF virtual interface. Dead Interval Configured dead interval for the OSPF virtual interface. Interface Transmit Delay Configured transmit delay for the OSPF virtual interface.
  • Page 800: Icmp Throttling Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ICMP Throttling Commands This section describes the commands you use to configure options for the transmission of various types of ICMP messages. 7-200 ip unreachable Enable the generation of ICMP Destination Unreachable messages on an interface or range of interfaces.
  • Page 801 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-202 ipv6 redirects Enable the generation of lCMPv6 Redirect messages by the router. You can use this command to configure an interface, a range of interfaces, or all interfaces.
  • Page 802: Bidirectional Forwarding Detection Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The burst-interval specifies how often the token bucket is initialized with burst-size tokens. Burst-interval is from 0 to 2147483647 milliseconds (msec). The burst-size is the number of ICMP error messages that can be sent during one burst-interval.
  • Page 803 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is Disabled. Command Mode Router OSPF Config Example Do the following to trigger BFD processing through OSPF globally on all the interfaces that are associated with it.
  • Page 804 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide bfd echo no bfd echo Parameters None Default The default is Disable. Command Mode Interface Config Example The following shows an example of the command. (Router)(Config)#interface 0/1 (Router)(Interface 0/1)#no bfd echo...
  • Page 805 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode • Global Config • Interface Config Example The following steps configure BFD session parameters on the device, in Privileged EXEC mode. (Router)#configure...
  • Page 806 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-210 ip ospf bfd Enable BFD on interfaces associated with the OSPF process. No command disables BFD on interfaces associated with the OSPF process. ip ospf bfd no ip ospf bfd...
  • Page 807 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 7-212 show bfd neighbors Display the BFD adjacency list showing the active BFD neighbors. show bfd neighbors [details] Parameters details (Optional) Provides additional details with the routing protocol BFD has registered and displays the Admin Mode status as Enabled or Disabled.
  • Page 808 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide My discriminator......... 1 Your discriminator....... 1 Tx Count......... 105 Rx Count......... 107 Drop Count........0 Display Parameters Our IP address Current IP address. Neighbor lP address IP address of the active BFD neighbor.
  • Page 809 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC 7-214 debug bfd packet Display BFD control packet debugging information. debug bfd packet Parameters None Default The default is None.
  • Page 810: Ipv6 Routing Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide IPv6 Routing Commands Loopback Interface Commands The commands described in this section are used to create, delete, and otherwise manage loopback interfaces. A loopback interface is expected to be up on a constant basis, provides the source address for sent packets, and can be used to receive both local and remote packets.
  • Page 811: Tunnel Interface Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command. (Routing) #show interface loopback Loopback Id Interface IP Address ------------ ----------- ----------------------------------- loopback 50 10.1.1.1...
  • Page 812 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Global Config tunnel source Specifies the source transport address for the tunnel, either by reference to an interface or explicitly.
  • Page 813 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Interface Config tunnel mode ipv6ip Specifies the mode of the tunnel. By using the optional 6to4 argument, the tunnel mode can be set to 6to4 automatic. If the optional 6to4 argument is not used, the tunnel mode is configured.
  • Page 814: Ipv6 Routing Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ---------- ---------- ---------- --------------- -------------------- tunnel 1 6to4 192.168.1.1 192.168.2.1 Display Parameters lf a tunnel ID is not specified, the following information is shown for each configured tunnel: Tunnel ID The tunnel identification number.
  • Page 815 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config ipv6 unicast-routing Enables the forwarding of IPv6 unicast datagrams. The no command disables the forwarding of IPv6 unicast datagrams. ipv6 unicast-routing no ipv6 unicast-routing Parameters...
  • Page 816 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-11 ipv6 address Configures an IPv6 address on a single interface or a range of interfaces, including tunnel and loopback interfaces, enables IPv6 processing on the interface or interfaces. Multiple globally reachable addresses can be assigned to an interface by using this command.
  • Page 817 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-12 ipv6 address autoconfig Allows an in-band interface to obtain an IPv6 address through the IPv6 Neighbor Discovery Protocol (NDP) and by using Router Advertisement messages. The no command sets the IPv6 autoconfiguration status of an interface to the default value.
  • Page 818 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide the prefix_length. The next-hop-address field indicates the IPv6 address of the next hop that can be utilized to reach the specified network. Specifying Null0 in the nexthop fields adds a static reject route.
  • Page 819 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The no command resets the default static route preference value for the router to the original default preference. When determining the best route, lower route preference values are preferred.
  • Page 820 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-17 ipv6 mtu Sets the maximum transmission unit (MTU) size, in bytes, of IPv6 packets for a single interface or a range of interfaces. More specifically, using this command replaces the default or link MTU value with a new MTU value.
  • Page 821 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-19 ipv6 nd managed-config-flag Sets the “managed address configuration” flag used in router advertisements on a given interface or a range of interfaces. The end nodes use DHCPv6 when the value is set to true. In contrast, the end nodes automatically configure addresses when the value is set to false.
  • Page 822 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-21 ipv6 nd other-config-flag Sets the “other stateful configuration” flag used in router advertisements sent from the given interface. The no command resets the “other stateful configuration” flag used in router advertisements sent from the given interface back to its default value.
  • Page 823 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ipv6 nd raguard attach-policy no ipv6 nd raguard attach-policy Parameters None Default Non configured. Command Mode Interface Config 8-24 ipv6 nd ra-lifetime Sets the value, in seconds, for the Router Lifetime field of the router advertisements sent from the given interface or a range of interfaces.
  • Page 824 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ipv6 nd ra hop-limit unspecified no ipv6 nd ra hop-limit unspecified Parameters None Default The default is Disabled. Command Mode Interface Config 8-26 ipv6 nd reachable-time Sets the amount of router advertisement time used to consider a neighbor reachable after neighbor discovery confirmation.
  • Page 825 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters Indicates the low preference for Default Router use. medium Indicates the medium preference for Default Router use. high Indicates the high preference for Default Router use. Default The default is medium.
  • Page 826 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The ipv6 nd prefix command also allows the user to preconfigure RA prefix values before the user configures the associated interface address. ln order for a prefix to be included in the RAs, the user must configure an address that matches the prefix by utilizing the IPv6 address command.
  • Page 827 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide slot/port The slot/port for the interface. vlan 1-4093 The VLAN for the interface. macaddr The MAC address for the neighbor. Default The default is None. Command Mode Global Config...
  • Page 828 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters backoff-multiple Sets the exponential backoff multiple to calculate time outs in NS transmissions during NUD. The value ranges from 1 to 5. 1 is the default. The next timeout value is limited to a maximum value of 60 seconds if the value with exponential backoff calculation is greater than 60 seconds.
  • Page 829 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide with the same sequence number. The value ranges from 1 to 4,294,967,294. permit Permit routes whose destination prefix matches the statement. deny Deny routes whose destination prefix matches the statement.
  • Page 830 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Interface Config 8-35 ipv6 unresolved-traffic Controls the rate at which IPv6 data packets are transmitted into the CPU, with rate limiting being disabled by default. When rate limiting is enabled, the rate allowed can range from 50 to 1024 packets per second.
  • Page 831 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is as follows: • burst-interval of 1000 msec. • burst-size of 100 messages Command Mode Global Config 8-37 show ipv6 brief Displays the IPv6 status of the forwarding mode and the IPv6 unicast routing mode.
  • Page 832 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide node. For more information, see “ipv6 hop-limit”. ICMPv6 Rate Limit Error Shows how often the token bucket is initialized with burst-size tokens. Interval For more information, see “ipv6 icmp error-interval”.
  • Page 833 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command. (Routing)#show ipv6 interface brief Interface Oper.Mode...
  • Page 834 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Autonomous Flag........Enabled Display Parameters If the brief parameter is used, then the following information is shown for all configured IPv6 interfaces: lnterface The interface in slot/port format. IPv6 Operational Mode Shows whether the mode is enabled or disabled.
  • Page 835 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Router Advertisement Shows whether router advertisements are suppressed (enabled) or sent Suppress Flag (disabled). IPv6 Destination Shows whether lCMPv6 Destination Unreachable messages may be Unreachables sent (enabled) or not (disabled). For more information, see “ipv6...
  • Page 836 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Server DUID DHCPv6 Unique Identifier of the DHCPv6 Server on this interface. T1 Time The T1 time specified by the DHCPv6 server. After the client has held the address for this length of time, the client tries to renew the lease.
  • Page 837 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Role The associated device role for the interface. 8-41 show ipv6 neighbors Displays information regarding the IPv6 neighbors. show ipv6 neighbor [interface {slot/port | tunnel 0-7 | vlan 1-4093}]...
  • Page 838 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Last Updated The time in seconds that has elapsed since an entry was added to the cache. Type The type of neighbor entry. The type is Static if the entry is manually configured and Dynamic if dynamically resolved.
  • Page 839 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command. (Router)#show ipv6 protocols Routing Protocol......... BGP BGP Router ID........1.1.1.1 Local AS Number........1 BGP Admin Mode........
  • Page 840 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters BGP Section: Routing Protocol BGP. Router ID The router ID configured for BGP. Local AS Number The AS number that the local router is in. BGP Admin Mode Whether BGP is globally enabled or disabled.
  • Page 841 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Metric Type The metric type for the default route. 8-44 show ipv6 route Displays the IPv6 routing table The ipv6-address parameter is used to specify an IPv6 address for which the best-matching route will be displayed.
  • Page 842 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide O - OSPF Intra, OI - OSPF Inter, OE1 - OSPF Ext 1, OE2 - OSPF Ext 2 ON1 - OSPF NSSA Ext Type 1, ON2 - OSPF NSSA Ext Type 2, K - kernel P - Net Prototype The following is an example of the CLI display output for the command indicating a truncated route.
  • Page 843 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (router)#show ipv6 route IPV6 Routing Table - 1 entries Codes: C - connected, S - static, 6To4 - 6to4 Route, B - BGP Derived O - OSPF Intra, OI - OSPF Inter, OE1 - OSPF Ext 1, OE2 - OSPF Ext 2 ON1 - OSPF NSSA Ext Type 1, ON2 - OSPF NSSA Ext Type 2, K –...
  • Page 844 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide interface. A flag appended to an IPv6 route to indicate that it is an ECMP route, but only one of its next hops has been installed in the forwarding table.
  • Page 845 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-46 show ipv6 route hw-failure Displays the routes for which failure to be added to the hardware occurred due to hash errors or a table full condition. show ipv6 route hw-failure...
  • Page 846 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 3001:0:0:2::/64 [0/1] via 2001::4, 00h:00m:04s, 0/1 hw-failure 3001:0:0:3::/64 [0/1] via 2001::4, 00h:00m:04s, 0/1 hw-failure 8-47 show ipv6 route net-prototype Shows the net-prototype routes, which are displayed with a P.
  • Page 847 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Privileged EXEC Example The following provides an example of the command. (1b6m)#show route preferences Local..........0 Static........... 1 OSPF Intra........110 OSPF Inter........
  • Page 848 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters (Optional) Display all (best and non-best) routes. Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following is an example of the CLI display output for the command.
  • Page 849 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Routes with 3 Next Hops......1 Routes with 4 Next Hops......10 Number of Prefixes: /64: 17 Display Parameters Connected Routes Total number of connected routes in the routing table.
  • Page 850 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Reserved Locals The number of routing table entries reserved for a local subnet on a routing interface that is down. Space for local routes is always reserved so that local routes can be installed when a routing interface bounces.
  • Page 851 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-51 show ipv6 snooping counters Shows the counters that are associated with IPv6 RA GUARD feature. The number of router redirect packets and router advertisements that are dropped by the switch globally due to RA GUARD feature are shown in the command output.
  • Page 852 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Privileged EXEC • User EXEC Example The following is an example of the CLI display output for the command. (Routing) #show ipv6 vlan MAC Address used by Routing VLANs:...
  • Page 853 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show ipv6 traffic [{slot/port | vlan 1-4093 | loopback loopback-id | tunnel tunnet-id}] Parameters slot/port (Optional) Enter an interface in slot/port format. vlan 1-4093 (Optional) Enter an interface in VLAN format.
  • Page 854 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide include datagrams discarded while awaiting reassembly. Received Datagrams Number of IPv6 fragments received which needed to be reassembled at Reassembly Required this interface. Note that this counter increments at the interface to which these fragments were addressed, which might not be necessarily the input interface for some of the fragments.
  • Page 855 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide lCMPv6 Messages Number of ICMP destination unreachable/communication Prohibited Administratively administratively prohibited messages received by the interface. lCMPv6 Time Exceeded Number of ICMP Time Exceeded messages received by the interface.
  • Page 856 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ICMPv6 Echo Request Number of ICMP Echo (request) messages sent by the interface.lCMP Messages Transmitted echo messages sent. ICMPv6 Echo Reply Number of ICMP Echo Reply messages sent by the interface.
  • Page 857: Ospfv3 Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-55 clear ipv6 statistics Clears the IPv6 statistics for all the interfaces or for a specified interface, whether a loopback, tunnel, or VLAN interface. The IPv6 statistics are displayed in the output for the show ipv6 traffic command. If an interface is not specified, the counters for all the IPv6 traffic statistics will be reset to zero.
  • Page 858 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode Global Config 8-57 area default-cost (OSPFv3) Configures the monetary default cost for a stub area. The area ID and an integer value of from 1 to 16777215 must be specified.
  • Page 859 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Router OSPFv3 Config 8-59 area nssa default-info-originate (OSPFv3) Configures the metric type and metric type for the default route advertised into the NSSA. The optional metric parameter is used to specify the metric value for the default route and must fall within the range of 1-16777214.
  • Page 860 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Router OSPFv3 Config 8-61 area nssa no-summary (OSPFv3) Configures the NSSA such that summary LSAs will not be advertised into the NSSA. The no command disables NSSA from the summary LSAs.
  • Page 861 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Router OSPFv3 Config 8-63 area nssa translator-stab-intv (OSPFv3) Configures the translator stabilityinterval parameter of the NSSA. The stabilityinterval parameter indicates the period of time for which a selected translator continues the performance of its duties after it has determined that its translator status has been taken over by another router.
  • Page 862 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide nssaexternallink When this keyword is given, the area range is used when translating type 7 LSAs to type 5 LSAs. advertise (Optional) When this keyword is given, the summary prefix is advertised when the area range is active.
  • Page 863 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The no command sets the Summary LSA importation mode back to the default for the stub area specified by the areaid. area areaid stub no-summary no area areaid stub no-summary...
  • Page 864 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The no command configures the default dead interval for the OSPF virtual interface located on the virtual interface specified by the areaid and neighbor parameters. area areaid virtual-link neighbor dead-interval 1-65535...
  • Page 865 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configures the retransmit interval for the OSPF virtual interface located on the virtual interface specified by the areaid and neighbor parameters. The neighbor parameter indicates the Router ID of the neighbor.
  • Page 866 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-72 auto-cost reference-bandwidth (OSPFv3) The OSPF computes, by default, the link cost of each interface from the interface bandwidth. Faster links will have lower metrics, which makes them better options in route selection. The configuration parameters for the auto-cost reference bandwidth and bandwidth commands give the user control over the default link cost.
  • Page 867 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-74 clear ipv6 ospf configuration Resets the OSPF configuration back to the factory defaults. clear ipv6 ospf configuration Parameters None Default The default is None. Command Mode Privileged EXEC...
  • Page 868 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide neighbor-id (Optional) Indicates the ID of the interface to restrict. Default The default is None. Command Mode Privileged EXEC 8-77 clear ipv6 ospf neighbor interface Use the optional parameter [slot/port] to drop adjacency with all neighbors on a specific interface. The slot/port argument corresponds to either a physical routing interface or a VLAN routing interface.
  • Page 869 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC 8-79 default-information originate (OSPFv3) Controls the advertisement of default routes. The no command resets the advertisement of default routes. default-information originate [always] [metric 0-16777214] [metric-type {1 | 2}]...
  • Page 870 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Router OSPFv3 Config 8-81 distance ospf (OSPFv3) Sets the route preference value for the OSPF route types in the router. When determining the best route, lower route preference values are preferred.
  • Page 871 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is Enabled. Command Mode Router OSPFv3 Config 8-83 exit-overflow-interval (OSPFV3) Configures the exit overflow interval for the OSPF. Specifically, it indicates the number of seconds that a router will wait after entering the overflow state before attempting to exit the overflow state.
  • Page 872 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is -1. Command Mode Router OSPFv3 Config 8-85 maximum-paths (OSPFv3) Sets the number of paths that the OSPF can report for a specific destination where the maxpaths value is platform-dependent.
  • Page 873 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is Disabled. Command Mode Router OSPFv3 Config 8-87 passive-interface (OSPFv3) Sets the specified interface or tunnel to be passive. The slot/port argument corresponds to either a physical routing interface or a VLAN routing interface.
  • Page 874 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide redistribute {static | connected | bgp} [metric 0-16777214] [metric-type {1 | 2}] [tag 0- 4294967295] no no redistribute {static | connected | bgp} [metric] [metric-type] [tag] Parameters static Indicates the redistribution of the static route.
  • Page 875 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-90 timers pacing Isa-group Adjusts how OSPFv3 groups LSAs for the purposes of a periodic refresh. OSPFv3 will refresh self- originated LSAs around once every 30 minutes. When OSPFv3 refreshes LSAs, it takes into consideration all self-originated LSAs with an age from 1800 to 1800 plus the pacing group size.
  • Page 876 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide spf-hold Indicates the initial SPF “wait interval” in milliseconds. Value range is 1 to 600000 milliseconds. spf-maximum Indicates the maximum SPF “wait interval" in milliseconds. Value range is 1 to 600000 milliseconds.
  • Page 877 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The no command resets to the default reference bandwidth. • To disable an individual flag, enter the group name followed by the name of that particular flag. • To disable all of the flags in a group, enter the group name followed by all.
  • Page 878: Ospfv3 Interface Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide if-state-change This trap signifies that there has been a change in the state of a non- virtual OSPF interface. neighbor-state-change This trap signifies that there has been a change in the state of a nonvirtual OSPF neighbor.
  • Page 879 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no ipv6 ospf cost Parameters None Default The default is 10. Command Mode Interface Config 8-95 ipv6 ospf dead-interval Sets the OSPF dead interval used for the specified interface or range of interfaces, which represents the length of time in seconds that a router’s Hello packets have not been seen before its neighbor routers...
  • Page 880 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is 10. Command Mode Interface Config 8-97 ipv6 ospf link-Isa-suppression Enables Link LSA Suppression on a given interface. No Link LSA protocol packets are originated (transmitted) on a point-to-point (P2P) interface when Link LSA Suppression is enabled on the interface.
  • Page 881 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide no ipv6 ospf mtu-ignore Parameters None Default The default is Enabled. Command Mode Interface Config 8-99 ipv6 ospf network Changes the default OSPF network type for a specific interface or a range of interfaces. The network type is normally determined according to the physical IP network type, and all Ethernet networks are, by default, OSPF type broadcast.
  • Page 882 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide By using the disable option, prefix-suppression can be disabled at the interface level. This option is useful if the user wants to exclude specific interfaces from performing prefix-suppression in the event that the feature is enabled globally.
  • Page 883 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-102 ipv6 ospf retransmit-interval Sets the OSPF retransmit interval, which is specified in seconds, for the given interface or a range of interfaces. The value indicates the number of seconds between retransmissions of link-state advertisement for adjacencies belonging to the given router interface.
  • Page 884: Ospfv3 Graceful Restart Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide OSPFV3 Graceful Restart Commands The OSPFv3 protocol can be configured so that it participates in the checkpointing service, such that the protocol can execute a “graceful restart” if the management unit fails. In a graceful restart, the hardware will continue forwarding IPv6 packets by using OSPFv3 routes at the same time that a backup switch takes over management unit responsibility.
  • Page 885 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Enables helpful neighbor functionality for the OSPF protocol. This functionality can be enabled for planned restarts, unplanned restarts, or both. The no command disables helpful neighbor functionality for OSPF.
  • Page 886: Ospfv3 Stub Router Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide routing around the restarting router. A helpful neighbor will consider a link down with the restarting router to constitute a topology change, regardless of the strict LSA checking configuration.
  • Page 887 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide metric with the external-Isa, inter-area-Isas, or summary-Isa option router-Isa summary-Isa causes the OSPF to send summary LSAs with metrics calculated using normal procedures. max-metric router-lsa [external-lsa 1-16777215] [inter-area lsas 1-16777215] [on-startup 5-86466]...
  • Page 888: Ospfv3 Show Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide OSPFv3 Show Commands 8-110 show ipv6 ospf Shows information relevant to the OSPF router. show ipv6 ospf Parameters None Default The default is None. Command Mode • Privileged EXEC •...
  • Page 889 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide NSF Helper Strict LSA Checking....Enabled Display Parameters Note: Some of the information below is only shown if the user enables OSPF and configures certain features. Router ID A 32-bit integer in dotted decimal format identifying the router, about which information is displayed.
  • Page 890 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide NSF help Strict LSA Indicates whether strict LSA checking has been enabled. lf enabled, checking then an OSPF helpful neighbor will exit helper mode whenever a topology change occurs. If disabled, an OSPF neighbor will continue as a helpful neighbor in spite of topology changes.
  • Page 891 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters areaid Indicates the area ID. Default The default is None. Command Mode • Privileged EXEC • User EXEC Display Parameters Area ID The area ID of the requested OSPF area.
  • Page 892 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-113 show ipv6 ospf asbr Shows the internal OSPFv3 routes used to reach Autonomous System Boundary Routers (ASBR). show ipv6 ospf asbr Parameters None Default The default is None.
  • Page 893 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show ipv6 ospf [areaid] database [{external | inter-area {prefix | router} | link | network | nssa- external | prefix | router | unknown {area | as | link}}] [lsid] [{adv-router [rtrid] | self-originate}]...
  • Page 894 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Interface The interface for the link. Rtr Count The number of routers attached to the network. 8-115 show ipv6 ospf database database-summary Shows the number of each type of LSA in the database, as well as the total number of LSAs in the database.
  • Page 895 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Total Total number of router LSAs in the OSPFv3 link state database. 8-116 show ipv6 ospf interface Shows the information for an IFO object or for virtual interface tables. The slot/port argument corresponds to either a physical routing interface or a VLAN routing interface.
  • Page 896 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Interface Transmit Delay The number of seconds the interface adds to the age of LSA packets before transmission. Authentication Type The type of authentication the interface performs on LSAs it receives.
  • Page 897 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Interface The routing interface associated with the rest of the data in the row. OSPF Admin Mode States whether OSPF is enabled or disabled on a router interface.
  • Page 898 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide IP Address The IP address associated with this OSPF interface. OSPFv3 Interface Events The number of times the specified OSPF interface has changed its state, or an error has occurred.
  • Page 899 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show ipv6 ospf lsa-group Parameters None Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following provides an example of the command. (Routing)#show ipv6 ospf lsa-group...
  • Page 900 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 1560 1619 1620 1679 1680 1739 1740 1799 1800 1859 1860 1919 Display Parameters Total self-originated LSAs The number of LSAs the router is currently originating. Average LSAs per group The number of self-originated LSAs divided by the number of LSA groups.
  • Page 901 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Advertise external-LSAs with metric 16711680 8-121 show ipv6 ospf neighbor Shows information regarding OSPF neighbors. If a neighbor IP address is not specified, summary information is displayed in a table. If an interface or tunnel is specified, then only information about that interface or tunnel will be displayed.
  • Page 902 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • Attempt – no recent information has been received from the neighbor but a more concerted effort should be made to contact the neighbor. • lnit – an Hello packet has recently been seen from the neighbor, but bidirectional communication has not yet been established.
  • Page 903 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide neighbor is unreachable. State The state of the neighboring routers. Events Number of times this neighbor relationship has changed state, or an error has occurred. Retransmission Queue An integer representing the current length of the retransmission queue Length of the specified neighbor router ID of the specified interface.
  • Page 904 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following is an example of the CLI display output for the command.
  • Page 905 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Reason The event or events that triggered the SPF. The reason codes are as follows: • R: New router LSA • N: New network LSA • SN: New network (inter-area prefix) summary LSA •...
  • Page 906 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Shows the OSPF Virtual Interface information for a specific area and neighbor. The areaid parameter specifies the area, while the neighbor parameter specifies the neighbor's Router ID. show ipv6 ospf virtual-link areaid neighbor...
  • Page 907: Dhcpv6 Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following is an example of the CLI display output for the command. (Routing) #show ipv6 ospf virtual-link brief...
  • Page 908 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ipv6 dhcp client pd [rapid-commit] no ipv6 dhcp client pd Parameters rapid-commit (Optional) Indicates the IPv6 DHCP Client Preference. Default The default is Disabled on an interface. Command Mode...
  • Page 909 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Interface Config 8-129 ipv6 dhcp relay destination Configures DHCPv6 relay functionality for a single interface or a range of interfaces. The destination keyword can be used to set the relay server IPv6 address.
  • Page 910 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-130 ipv6 dhcp pool This command is used in the Global Config mode in order to enter the IPv6 DHCP Pool Config mode. The exit command can then be used to return to the Global Config mode. Also, enter CTRL+Z to return to the User EXEC mode.
  • Page 911 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide lifetime (Optional) Sets a length of time for the hosts to remember router advertisements. If configured, both valid and preferred lifetimes must be configured. valid-lifetime The amount of time, in seconds, the prefix remains valid for the requesting router to use.
  • Page 912 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-133 dns-server (IPv6) Sets the IPv6 DNS server address that is provided to a DHCPv6 client by a DHCPv6 server. A DNS server address is configured to provide stateless server support. A DHCPv6 pool can include multiple domain names, up to a maximum of 8.
  • Page 913 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide infinite (Optional) Sets Preferred Lifetime to be infinite. valid-lifetime (Optional) Indicates a valid lifetime value (0-4294967295). prefix/prefix-delegation DUID Enter Preferred Lifetime in the range of 0 to 4294967295 seconds (configuring 0 equates to selecting 4294967295).
  • Page 914 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DHCPv6 Relay-forward Packets Received.... 0 DHCPv6 Relay-reply Packets Received....0 DHCPv6 Malformed Packets Received....0 Received DHCPv6 Packets Discarded....0 Total DHCPv6 Packets Received....0 DHCPv6 Advertisement Packets Transmitted..0 DHCPv6 Reply Packets Transmitted....
  • Page 915 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DHCPv6 Relay-reply Number of relay-reply sent statistics. Packets Transmitted DHCPv6 Relay-forward Number of relay-forward sent statistics. Packets Transmitted Total DHCPv6 Packets Total number of DHCPv6 sent statistics. Transmitted 8-136 show ipv6 dhcp interface Shows the DHCPv6 information for all the relevant interfaces or for a specified interface.
  • Page 916 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Relay Address The IPv6 address of the relay server. Relay Interface Number The relay server interface in slot/port format. Relay Remote ID lf configured, shows the name of the relay remote.
  • Page 917 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Shows the configured DHCP pool. show ipv6 dhcp pool pool-name Parameters pool-name Enter a Pool Name up to 32 alphanumeric characters in length. Default The default is None. Command Mode...
  • Page 918 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • User EXEC Example The following is an example of the CLI display output for the command. (Switching)#show network ipv6 dhcp statistics DHCPv6 Client Statistics ------------------------- DHCPv6 Advertisement Packets Received....... 0 DHCPv6 Reply Packets Received.......
  • Page 919 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide DHCPv6 Release Packets The number of DHCPv6 Release packets transmitted on the network Transmitted interface. Total DHCPv6 Packets The total number of DHCPv6 packets transmitted on the network Transmitted interface.
  • Page 920 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters DHCPV6 Advertisement The number of DHCPv6 Advertisement packets received on the service Packets Received port interface. DHCPv6 Reply Packets The number of DHCPv6 Reply packets received on the service port Received interface.
  • Page 921 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC 8-142 clear ipv6 dhcp binding Deletes a given automatic address binding from the DHCP server database. The address parameter must be a valid IPv6 address.
  • Page 922: Dhcpv6 Snooping Configuration Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC 8-144 clear serviceport ipv6 dhcp statistics Clears the DHCPv6 client statistics from the service port interface. clear serviceport ipv6 dhcp statistics Parameters None Default The default is None.
  • Page 923 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8-146 ipv6 dhcp snooping vlan Enables DHCP Snooping on a list of VLAN ranges separated by commas. The no command disables DHCP Snooping on VLANs. ipv6 dhcp snooping vlan vlan-list...
  • Page 924 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ipv6 dhcp snooping database {local | tftp://hostIP/filename | write delay interval} Parameters local Configure DHCP snooping binding url in the form local. tftp://hostIP/filename Configure DHCP snooping binding url in the form tftp://host/filename.
  • Page 925 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters macaddr Indicates the MAC address. vlan Indicates a VLAN ID (1-4093). ipv6-address Indicates an IPv6 Address. interface interface id Indicates an interface ID to bind. Default The default is None.
  • Page 926 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is Disabled. Command Mode Interface Config 8-153 ipv6 dhcp snooping limit Controls the rate at which the DHCP Snooping messages arrive at a specific interface or a range of interfaces.
  • Page 927 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ipv6 verify source {port-security} no ipv6 verify source Parameters port-security Filter incoming packets by source MAC address. Default The default is as follows:the IP address indicates the source ID.
  • Page 928 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following is an example of the CLI display output for the command.
  • Page 929 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show ipv6 dhcp snooping binding [{static | dynamic}] [interface slot/port] [vlan 1-4093] Parameters static (Optional) Restricts the output according to static entries. dynamic (Optional) Restricts the output according to DCHP snooping.
  • Page 930 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following is an example of the CLI display output for the command.
  • Page 931 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Interface Trust State Rate Limit(pps) Burst Interval(seconds) ---------- ------------ --------------- ------------------------- 1/g1 1/g2 1/g3 (switch)#show ip dhcp snooping interfaces ethernet 0/1 Interface Trust State Rate Limit(pps) Burst Interval(seconds) ----------...
  • Page 932 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 0/12 0/13 0/14 0/15 0/16 0/17 0/18 0/19 0/20 Display Parameters Interface The IPv6 address of the interface in slot/port format. MAC Verify Failures Represents the number of DHCP messages that were filtered on an untrusted interface because of source MAC address and client hardware address mismatch.
  • Page 933 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide clear ipv6 dhcp snooping statistics Parameters None Default The default is None. Command Mode • Privileged EXEC • User EXEC 8-163 show ipv6 verify Shows the IPv6 configuration for a specified slot/port...
  • Page 934 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • IPv6-mac: User has configured MAC address filtering on this interface. • IPv6: Only IPv6 address filtering on this interface. IPv6 Address IPv6 address of the interface. If MAC address filtering is not configured on the interface, the MAC MAC Address Address field is empty.
  • Page 935 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • IPv6: Only IPv6 address filtering on this interface. IPv6 Address IPv6 address of the interface. If MAC address filtering is not configured on the interface, the MAC MAC Address Address field is empty.
  • Page 936 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Type Entry type; statically configured from CLI or dynamically learned from DHCP Snooping. VLAN VLAN for the entry. Interface IP address of the interface in slot/port format.
  • Page 937: Ip Multicast Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide IP Multicast Commands In this chapter, the IP Multicast commands made available in the D-LINK OS CLI are described. The following sections are contained in this IP Multicast Commands chapter: •...
  • Page 938 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ip mroute Configures an IPv4 Multicast Static Route for a specific source The no command removes the configured IPv4 Multicast Static Route. ip mroute src-ip-addr src-mask rpf-ip-addr preference no ip mroute src-ip-addr...
  • Page 939 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ip multicast ttl-threshold This command is exclusive to IPv4 and is used to apply a given Time-to-Live threshold value to a specific routing interface or a range of interfaces. The ttl-threshold indicates the TTL threshold that is to be applied to those multicast Data packets that are forwarded from the interface or interfaces in question.
  • Page 940 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of the CLI display output for the command. (Routing)#show ip mcast Admin Mode........Disabled Protocol State........Non-Operational Table Max Size ........2048 Protocol......... No protocol enabled.
  • Page 941 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of the CLI display output for the command. (Routing)#show ip mcast boundary 0/1 MULTICAST BOUNDARY Interface Group IP Mask Ethernet1- -192.50.10.10----255.255.255.0— Display Parameters...
  • Page 942 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Interface slot/port The time-to-live value for this interface. show ip mroute Shows a summary of or all of the details of the multicast table. Note: This command supersedes any previous show ip mcast mroute command.
  • Page 943 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (*,22S.6.6.6) 00:00:41/000 RP: 1.1.1.1 Joins/Prunes: 0/0 Incoming interface: RPF nbr: 0.0.0.0 Outgoing interface list: 00:00:00/218 Joins: Flags: C (*,22S.7.7.7) 00:00:36/000 RP: 1.1.1.1 Joins/Prunes: 0/0 Incoming interface: RPF nbr: 0.0.0.0...
  • Page 944 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Incoming interface: RPF nbr::: Outgoing interface list: 00:00:41/219 Joins: Flags: C ( *,ff24::6) 00:00:22/000 RP: 2001::1 Joins/Prunes: 0/0 Incoming interface: RPF nbr::: Outgoing interface list: 00:00:41/219 Joins: Flags: C...
  • Page 945 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (192.0.2.20, 229.10.0.1), 00:04:35/177, Flags: T Joins/Prunes:20/1, Reg/Reg-Stop:100/0 Incoming interface: VLAN 2, RPF Address: 0.0.0.0 Outgoing interface list: VLAN 5 00:03:25/0 Joins:20 VLAN 6 00:00:10/0 Joins:5 The following is an example of the output for the source parameter in the PIM Sparse mode.
  • Page 946 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide • Registers: indicates the number of register messages received for the given (S,G) entry. • Register Stops: lndicates the number of register stop messages received for the given (S,G) entry.
  • Page 947 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show ip mroute group Shows the multicast configuration settings – including the flags, timer settings, RPF neighboring routers, incoming and outgoing interfaces, and expiration times – for all of the entries included in the multicast mroute table that contains the given groupipaddr.
  • Page 948 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide groupipaddr Indicates the source IP address. detail Display the multicast routing table details. Default The default is None. Command Mode • Privileged EXEC • User EXEC Display Parameters If the groupipaddr parameter is used, then the following column headings will be displayed in the output...
  • Page 949 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters sourceipaddr (Optional) Indicates the source IP address. Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following is an example of the CLI display output for the command.
  • Page 950: Dvmrp Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode Privileged EXEC Example Issuing the following command will delete all of the entries from the IP multicast routing table. (Routing)#clear ip mroute * Issuing the following command will delete all of the entries from the IP multicast routing table that match with the multicast group address provided (that is, 224.1 .2.1), regardless of which source is responsible...
  • Page 951 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 9-14 ip dvmrp metric Configures the metric for a specific interface or a range of interfaces. The value of the metric is used in the DVMRP messages to indicate the cost to reach this network.
  • Page 952 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ip dvmrp no ip dvmrp Parameters None Default The default is Disabled. Command Mode Interface Config 9-17 show ip dvmrp Shows the system-wide information for the DVMRP. show ip dvmrp...
  • Page 953 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Disabled Non-Operational Disabled Non-Operational Display Parameters Admin Mode Indicates whether DVMRP is enabled or disabled. Version String The version of DVMRP being used. Number of Routes The number of routes in the DVMRP routing table.
  • Page 954 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Interface Metric ........ 1 Local Address ........192.150.2.2 Display Parameters Interface Mode Indicates whether DVMRP is enabled or disabled on the specified interface. Metric Displays the specified value for the interface metric. The value range is between 1 to 32.
  • Page 955 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Privileged EXEC • User EXEC Display Parameters Iflndex The value of the interface used to reach the neighbor. Nbr IP Addr The IP address of the DVMRP neighbor for which this entry contains information.
  • Page 956 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters Source IP The sources for which this entry specifies a next hop on an outgoing interface. Source Mask The IP Mask for the sources for which this entry specifies a next hop on an outgoing interface.
  • Page 957: Pim Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is None. Command Mode • Privileged EXEC • User EXEC Display Parameters Source Address The multicast address of the source group. Source Mask The IP Mask for the source group.
  • Page 958 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is Disabled. Command Mode Global Config Example The following provides an example of the command. (Routing)(Config)#ip pim dense 9-24 ip pim sparse Enables the PIM Sparse mode across the router administratively.
  • Page 959 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is Disabled. Command Mode Interface Config Example The following is an example of the CLI display output for the command. (Routing)(Interface 9/1)#ip pim 9-26 ip pim hello-interval Configures the transmission frequency of PIM hello messages on a specific interface.
  • Page 960 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ip pim bsr-border no ip pim bsr-border Parameters None Default The default is Disabled. Command Mode Interface Config Example The following provides an example of the command. (Routing)(Interface 0/1)#ip pim bsr-border...
  • Page 961 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide interval interval (Optional) Indicates the BSR candidate advertisement interval. The range is from 1 to 16383 seconds. The default value is 60 seconds. Default The default is Disabled. Command Mode...
  • Page 962 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The no command resets the length of the join/prune interval on the given interface back to the default value. Note: Only when the PIM-SM is configured as the PIM mode will this command take effect.
  • Page 963 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Global Config Example The following provides an example of the command. (Routing)(Config)#ip pim rp-address 192.168.10.1 224.1.2.0 255.255.255.0 9-32 ip pim rp-candidate Configures a router to advertise itself to the bootstrap router (BSR) as a PIM candidate rendezvous point (RP) for a specified multicast group range.
  • Page 964 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide (Routing)(Config)#ip pim rp-candidate interface 0/1 224.1.2.0 Z55.255.255.0 interval 9-33 ip pim ssm Defines the range of Source Specific Multicast (SSM) IP multicast addresses for the router. The no command removes the range of Source Specific Multicast (SSM) IP multicast addresses for the router.
  • Page 965 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is Disabled. Command Mode Global Config 9-35 show ip mfc Shows mroute entries in the multicast forwarding (MFC) database. show ip mfc Parameters None Default The default is None.
  • Page 966 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide MFC IPv6 Mode Enabled when IPv6 Multicast routing is operational. MFC Entry Count The number of entries present in MFC. Current multicast IPv4 The current operating IPv4 multicast routing protocol.
  • Page 967 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Interface Interface Mode Operational Status ---------- --------------- -------------------- Enabled Operational Disabled Non-Operational PIM Mode - Sparse (Routing)#show ip pim PIM Mode Sparse Interface Interface Mode Operational Status ---------- ---------------...
  • Page 968 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following is an example of the CLI display output for the command. (Routing)#show ip pim ssm...
  • Page 969 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of the CLI display output for the command. (Routing)#show ip pim interface Interface..........0/1 Mode........Sparse Hello Interval (secs).......30 Join Prune Interval (secs)....60 DR Priority.........1 BSR Border........Disabled...
  • Page 970 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 9-39 show ip pim neighbor Shows the PIM neighbors discovered by PlMv2 Hello messages. The slot/port argument corresponds to either a physical routing interface or to a VLAN routing interface. The keyword VLAN is utilized, instead of the slot/port format, to directly specify the VLAN ID of the routing VLAN.
  • Page 971 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Expiry Time (hh:mm:ss) Time remaining for the neighbor to expire. DR Priority The DR Priority configured on this Interface (PIM-SM only). Note: DR Priority is applicable only when sparse-mode configured routers are neighbors.
  • Page 972 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters BSR Address IP address of the BSR. BSR Priority Priority as configured in the ip pim bsr-candidate command. BSR Hash Mask Length Length of a mask (maximum 32 bits) that is to be ANDed with the group address before the hash function is called.
  • Page 973 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters RP Address The IP address of the RP for the group specified. Type Indicates the mechanism (BSR or static) by which the RP was selected. 9-42 show ip pim rp mapping For the PIM group, shows the mapping to the active Rendezvous points (RP) that the router is aware of (whether they were configured or learned from the bootstrap router (BSR)).
  • Page 974 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Group Address 229.2.0.0 Group Mask 255.255.0.0 Origin Static (Routing)#show ip pim rp mapping candidate RP Address........192.168.10.1 Group Address ......224.1.2.1 Group Mask ......... 255.255.0.0 Origin ........BSR C-RP Advertisement Interval (secs) ..60 Next Candidate RP Advertisement(hh:mm:ss) ..
  • Page 975 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode • Privileged EXEC • User EXEC Example (Routing)#show ip pim statistics ===================================================================================== Interface Stat Hello Register Reg-Stop Join/Pru Assert ===================================================================================== Vl10 Invalid Packets Received - 0 -------------------------------------------------------------------------------------...
  • Page 976: Internet Group Message Protocol Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Display Parameters • Stat Rx: Packets received • Tx: Packets transmitted Interface The PIM-enabled routing interface. Hello The number of PIM Hello messages. Register The number of PIM Register messages.
  • Page 977 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Configures the version of IGMP used for a single interface or a range of interfaces. The value for the version parameter must be 1, 2, or 3. The no command resets the version of IGMP used to the default value.
  • Page 978 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide ip igmp last-member-query-interval 0-255 no ip igmp last-member-query-interval Parameters None Default The default is 1 second. Command Mode Interface Config 9-48 ip igmp query-interval Configures the query interval for a single interface or a range of interfaces. The query interval defines the frequency with which IGMP Host-Query packets are transmitted on the given interface.
  • Page 979 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters None Default The default is 100 tenths of a second. Command Mode Interface Config 9-50 ip igmp robustness Configures the robustness, which is the tuning for the expected packet loss on a subnet, for an interface or a range of interfaces.
  • Page 980 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is 2. Command Mode Interface Config 9-52 ip igmp startup-query-interval Sets the interval between General Queries that are sent upon startup of a single interface or a range of interfaces.
  • Page 981 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example The following is an example of the CLI display output for the command. (Routing) #show ip igmp IGMP admin mode........Disabled IGMP header validation......Disabled IGMP INTERFACE STATUS...
  • Page 982 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Command Mode Privileged EXEC Example The following is an example of the CLI display output for the command. (Routing)#show ip igmp groups IP Address........225.1.1.1 Subnet Mask........255.255.255.255 Interface Mode........Enabled Querier Status........
  • Page 983 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 9-55 show ip igmp interface Shows the IGMP information for the given interface. The slot/port argument corresponds to either a physical routing interface or to a VLAN routing interface. The keyword VLAN is utilized, instead of the slot/port format, to directly specify the VLAN ID of the routing VLAN.
  • Page 984 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide IGMP Version The version of IGMP running on the interface. This value can be configured to create a router capable of running either IGMP version 1 or 2. Query Interval The frequency at which IGMP Host-Query packets are transmitted on this interface.
  • Page 985 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Group Compatibility Mode The group compatibility mode (v1, v2 or v3) for the specified group on this interface. Source Filter Mode The source filter mode (Include/Exclude) for the specified group on this interface.
  • Page 986: Igmp Proxy Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Querier IP Address The IP address of the IGMP Querier on the IP subnet to which this interface is attached. Querier Up Time The time since the interface Querier was last changed.
  • Page 987 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide The no command resets the length of the unsolicited report interval for the IGMP Proxy router back to the default value. ip igmp-proxy unsolicit-rprt-interval 1-260 no ip igmp-proxy unsolicit-rprt-interval...
  • Page 988 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Default The default is None. Command Mode • Privileged EXEC • User EXEC Example The following is an example of the CLI display output for the command. (Routing)#show igmp-proxy Interface Index........
  • Page 989 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Shows a detailed list of information regarding the host interface status parameters. The command will cause the following parameters to be displayed only when the user has enabled the IGMP Proxy.
  • Page 990 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 9-63 show ip igmp-proxy groups Shows information regarding the subscribed multicast groups that the IGMP Proxy has reported. The command will cause a table of entries with the following parameters given as the fields of each column to be displayed.
  • Page 991 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Filter Mode Possible values are Include or Exclude. Sources The number of sources attached to the multicast group. 9-64 show ip igmp-proxy groups detail Shows complete information regarding the multicast groups that the IGMP Proxy has reported. The command will cause a table of entries with the following parameters given as the fields of each column to be displayed.
  • Page 992 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 8.1.2.3 00:01:44 Group Address Last Reporter Up Time Member State Filter Mode Sources ------------- ------------- ---------- ------------- ------------ ---------- 227.4.4.4 5.5.5.48 00:02:21 DELAY_MEMBER Exclude 228.4.4.4 5.5.5.48 00:03:21 DELAY_MEMBER Include...
  • Page 993: 10. Ipv6 Multicast Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 10. IPv6 Multicast Commands In this chapter, the IPv6 Multicast commands available in the D-LINK OS CLI are described. The commands described in this chapter belong to one of the three following functional groups: •...
  • Page 994 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide This command is used to show the mroute entries that are specific for IPv6. (The command is essentially the IPv6 counterpart to the IPv4 show ip mcast mroute command.)
  • Page 995 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Group IP Addr The IP address of the destination of the multicast packet. Protocol The multicast routing protocol by which the entry was created. Incoming Interface The interface on which the packet for the source/group arrives.
  • Page 996 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide show ipv6 mroute source source-address {grpaddr | summary} Parameters grpaddr Indicates the group source IPv6 address. summary Indicates the IPv6 multicast routing table summary. Default The default is None.
  • Page 997 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Parameters source-address Indicates the source IPv6 address. Default The default is None. Command Mode • Privileged EXEC • User EXEC Display Parameters Source Address IP address of the multicast source network.
  • Page 998: Ipv6 Pim Commands

    5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide Example Issuing the following command will delete all entries from the IPv6 multicast routing table. (Routing)#clear ipv6 mroute * Issuing the following command will delete all entries from the IPv6 multicast routing table that matches the multicast group address provided (that is, FF4E::1), regardless of which source is sending for this group.
  • Page 999 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 10-8 ipv6 pim sparse Enables the administrative mode of the PIM-SM in the router. The no command disables the administrative mode of the PIM-SM in the router. ipv6 pim sparse...
  • Page 1000 5000 Series Layer 2/3 Managed Data Center Switch CLI Reference Guide 10-10 ipv6 pim hello-interval Configures the PIM hello interval for a specific router interface or a range of interfaces. The no command resets the PIM hello interval back to the default value.

Table of Contents