Page 1 FTOS Command Line Reference Guide FTOS 8.4.2.7 E-Series TeraScale, C-Series, S-Series (S50/S25)
Page 2 Information in this publication is subject to change without notice. © 2012 Dell Force10. All rights reserved. Reproduction of these materials in any manner whatsoever without the written permission of Dell Inc. is strictly forbidden. © 2012 Dell Inc. Trademarks used in this text: Dell(TM), the Dell logo, Dell Boomi(TM), Dell Precision(TM) , OptiPlex(TM), Latitude(TM), PowerEdge(TM), PowerVault(TM), PowerConnect(TM), OpenManage(TM), EqualLogic(TM), Compellent(TM), KACE(TM), FlexAddress(TM), Force10(TM) and Vostro(TM) are trademarks of Dell Inc.
Page 3 Preface About this Guide ............13 Objectives .
Page 4 Upgrading the C-Series FPGA ..........56 4 BOOT_USER Mode Overview .
Page 5 Commands ............301 12 Border Gateway Protocol IPv4 (BGPv4) Overview .
Page 6 20 GARP VLAN Registration (GVRP) Overview ............525 Commands .
Page 7 27 IPv6 Border Gateway Protocol (IPv6 BGP) Overview ............733 IPv6 BGP Commands .
Page 8 36 Neighbor Discovery Protocol (NDP) Overview ............977 Commands .
Page 9 Important Points to Remember ........1142 45 Private VLAN (PVLAN) Overview .
Page 10 SSH Server and SCP Commands ........1310 Trace List Commands .
Page 11 60 Uplink Failure Detection (UFD) Overview ............1445 Commands .
Page 12 66 S-Series Debugging and Diagnostics Offline Diagnostic Commands ......... . .1575 Important Points to Remember .
Page 13 Preface About this Guide This book provides information on the FTOS Command Line Interface (CLI). It includes some information on the protocols and features found in FTOS and on the Dell Force10 systems supported by FTOS (C-Series , E-Series , and S-Series This chapter includes: •...
Page 14 Keywords and parameters within braces must be entered in the CLI. Keywords and parameters within brackets are optional. x | y Keywords and parameters separated by bar require you to choose one. x||y Keywords and parameters separated by a double bar enables you to choose any or all of them. Information Symbols Table 1-1 describes symbols contained in this guide.
Page 15 CLI Basics This chapter describes the command structure and command modes. FTOS commands are in a text-based interface that allows you to use launch commands, change the command modes, and configure interfaces and protocols. This chapter covers the following topics: •...
Page 16 Multiple Configuration Users When a user enters the CONFIGURATION mode and another user(s) is already in that configuration mode, generates an alert warning message similar to the following: Figure 2-2. Configuration Mode User Alert FTOS#conf % Warning: The following users are currently configuring the system: User ""...
Page 17 Table 2-1. Command Prompt and Corresponding Command Mode Prompt CLI Command Mode FTOS(conf-if)#12 INTERFACE FTOS(conf-if-gi-0/0)# FTOS(conf-if-te-0/0)# FTOS(conf-if-lo-0)# FTOS(conf-if-nu-0)# FTOS(conf-if-po-0)# FTOS(conf-if-vl-0)# FTOS(conf-if-so-0/0)# FTOS(conf-if-ma-0/0)# FTOS(conf-if-range)# FTOS(config-ext-nacl)# IP ACCESS LIST FTOS(config-std-nacl)# FTOS(config-line-aux)# LINE FTOS(config-line-console)# FTOS(config-line-vty)# FTOS(config-ext-macl)# MAC ACCESS LIST FTOS(config-std-macl)# FTOS(config-mon-sess)# MONITOR SESSION FTOS(config-span)# FTOS(config-mstp)# MULTIPLE SPANNING TREE...
Page 18 — Type a keyword followed by a space and a ? • Type a partial keyword followed by a ? — A display of keywords beginning with the partial keyword is listed. Figure 2-3 illustrates the results of entering ip ? at the prompt. Figure 2-3.
Page 19 Use the left and right arrow keys to navigate left or right in the FTOS command line. Table 2-2 defines the key combinations valid at the FTOS command line. Table 2-2. Short-cut Keys and their Actions Combination Action CNTL-A Moves the cursor to the beginning of the command line. CNTL-B Moves the cursor back one character.
Page 20 except— display only text that does not match the pattern (or regular expression) • • find — search for the first occurrence of a pattern grep — display text that matches a pattern • no-more — do not paginate the display output •...
Page 21 EXEC Mode When you initially log in to the switch, by default, you are logged into the EXEC mode. This mode allows you to view settings and to enter the EXEC Privilege mode to configure the device. While you are in the EXEC mode, the > prompt is displayed following the “hostname” prompt, as described above.
Page 22 Table 2-3. Interface prompts Prompt Interface Type FTOS(conf-if-nu-0)# Null Interface followed by zero FTOS(conf-if-po-0)# Port-channel interface number FTOS(conf-if-vl-0)# VLAN Interface followed by VLAN number (range 1 to 4094) FTOS(conf-if-so-0/0)# SONET interface followed by slot/port information. FTOS(conf-if-ma-0/0)# Management Ethernet interface followed by slot/port information FTOS(conf-if-range)# Designated interface range (used for bulk configuration;...
Page 23 IP ACCESS LIST Mode While in the CONFIGURATION mode, use the ip access-list standard or ip access-list extended command to enter the IP ACCESS LIST mode and configure either standard or extended access control lists (ACL). To enter IP ACCESS LIST mode: Verify that you are logged in to the CONFIGURATION mode.
Page 24 IP COMMUNITY LIST Mode Use the IP COMMUNITY LIST mode to configure an IP Community ACL on the E-Series. See Chapter 9, Access Control Lists (ACL). To enter IP COMMUNITY LIST mode: 1. Verify that you are logged in to the CONFIGURATION mode. 2.
Page 25 RAPID SPANNING TREE Mode Use PVST+ mode to enable and configure the RSTP protocol, as described in Chapter 50, Rapid Spanning Tree Protocol (RSTP). To enter RSTP mode: Verify that you are logged into the CONFIGURATION mode. Enter the protocol spanning-tree rstp command. You can return to the CONFIGURATION mode by entering the exit command.
Page 26 ROUTER RIP Mode Use the ROUTER RIP mode to configure RIP on the C-Series or E-Series, as described in Chapter 48, Router Information Protocol (RIP). To enter ROUTER RIP mode: 1. Verify that you are logged into the CONFIGURATION mode. 2.
Page 27 File Management Overview This chapter contains commands needed to manage the configuration files and includes other file management commands found in FTOS. This chapter contains these sections: • Basic File Management Commands • Upgrading the C-Series FPGA Basic File Management Commands The commands included in this chapter are: •...
Page 28 (copy running-config startup-config or write). Dell FTOS strongly recommends using local files for configuration (RPM0 or RPM1 flash or slot0). When you specify a file as the boot config file, it is listed in the boot variables (bootvar) as LOCAL .
Page 29 Output for show bootvar with no boot configuration configured FTOS#show bootvar PRIMARY IMAGE FILE = flash://FTOS-EF-8.2.1.0.bin SECONDARY IMAGE FILE = flash://FTOS-EF-7.6.1.0.bin DEFAULT IMAGE FILE = flash://FTOS-EF-7.5.1.0.bin LOCAL CONFIG FILE = variable does not exist PRIMARY HOST CONFIG FILE = variable does not exist SECONDARY HOST CONFIG FILE = variable does not exist PRIMARY NETWORK CONFIG FILE =...
Page 30 Related show bootvar Display the variable settings for the E-Series boot parameters Commands boot network Set the location of the configuration file in a remote network. Syntax boot network {primary | secondary} remote-url Parameters primary primary Enter the keywords to attempt to load the primary network configuration files. secondary secondary Enter the keywords...
Page 31 secondary rpm0 rpm1 secondary After entering , enter the keyword to configure boot parameters used if the primary operating system boot selection is not available. file-url To boot from a file: flash:// • on the internal Flash, enter followed by the filename. ftp://user:password hostip/filepath •...
Page 32 Parameters directory (OPTONAL) Enter one of the following: flash: • (internal Flash) or any sub-directory slot0: • (external Flash) or any sub-directory (C-Series and E-Series only) Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on S-Series History Version 7.5.1.0 Introduced on C-Series E-Series original Command change bootflash-image Change boot flash image from which to boot.
Page 33 Parameters file-url Enter the following location keywords and information: flash:// • To copy a file from the internal FLASH, enter followed by the filename. ftp://user:password hostip/filepath • To copy a file on an FTP server, enter rpm0flash://filepath • To copy a file from the internal FLASH on RPM0, enter rpm0slot0://filepath •...
Page 34 Syntax copy source-url target-url [boot-image [synchronize-rpm [external]]] Parameters source-url Enter the source file in url format. The source file is a valid Dell Force10 release image. Image validation is automatic. target-url Enter the local target file in url format. boot-image...
Page 35 Usage In this streamline copy command, the source image is copied to the primary RPM and then, if Information specified, to the standby RPM. After the copy is complete, the new image file path on each RPM is automatically configured as the primary image path for the next boot. The current system image (the one from which the RPM booted) is automatically configured as the secondary image path.
Page 36 c e s Display the files in a file system. The default is the current directory. Syntax dir [filename | directory name:] Parameters (OPTIONAL) Enter one of the following: filename directory name: flash:// • For a file or directory on the internal Flash, enter followed by the filename or directory name.
Page 37 download alt-full-image Download an alternate FTOS image to the chassis. download alt-full-image file-url Syntax Command Modes EXEC Privilege Command Version 7.7.1.0 Removed form E-Series History Version 6.5.1.0 Introduced Usage Starting with FTOS 7.7.1.0, the functions of this command are incorporated into the upgrade Information command.
Page 38 dosFs1.0 dosFs1.0 Enter the keyword to format in DOS 1.0 (the default) dosFs2.0 dosFs2.0 Enter the keyword to format in DOS 2.0 Default DOS 1.0 (dosFs1.0) Command Modes EXEC Privilege Command Version 7.5.1.0 Introduced on C-Series History E-Series original Command Usage When you format flash: Information...
Page 39 Related copy Copy the current configuration to either the startup-configuration file or the Commands terminal. show file Display contents of a text file in the local filesystem. show file-systems Display information about the file systems on the system. logging coredump Enable coredump.
Page 40 type Enter the password type: • Enter 0 to enter an unencrypted password. • Enter 7 to enter a password that has already been encrypted using a Type 7 hashing algorithm. password Enter a password to access the target server. Defaults Crash kernel files are uploaded to flash by default.
Page 41 rename Rename a file in the local file system. rename url url Syntax Parameters Enter the following keywords and a filename: flash:// • For a file on the internal Flash, enter followed by the filename. slot0:// • For a file on the external Flash, enter followed by the filename.
Page 42 Example FTOS#show boot system all Current system image information in the system: ============================================= Type Boot Type ---------------------------------------------------------------- DOWNLOAD BOOT invalid invalid DOWNLOAD BOOT invalid invalid DOWNLOAD BOOT invalid invalid linecard 0 is not present. linecard 1 DOWNLOAD BOOT invalid invalid linecard 2 DOWNLOAD BOOT 4.7.5.387 6.5.1.8...
Page 43 boot network Set the location of configuration files from a remote network. boot system Set the location of FTOS image files. boot system gateway Specify the IP address of the default next-hop gateway for the management subnet. show file Display contents of a text file in the local filesystem. Syntax show file filesystem Parameters...
Page 44 show file-systems Display information about the file systems on the system. Syntax show file-systems Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on S-Series History Version 7.5.1.0 Introduced on C-Series E-Series original Command Example Command Output example: show file-system FTOS#show file-systems Size(b) Free(b) Feature...
Page 45 show linecard View the current linecard status. show linecard [number | all | boot-information] Syntax Parameters number Enter a number to view information on that linecard. Range: 0 to 6. (OPTIONAL) Enter the keyword to view a table with information on all present linecards.
Page 46 Command Version 7.6.1.0 Introduced on S-Series History Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Note: A filepath that contains a dot ( . ) is not supported. Information Example Command output example (E-Series): show os-version FTOS#show os-version RELEASE IMAGE INFORMATION : --------------------------------------------------------------------- Platform Version...
Page 47 Parameters entity (OPTIONAL) Enter one of the keywords listed below to display that entity’s current (non-default) configuration. Note that, if nothing is configured for that entity, nothing is displayed and the prompt returns: • for the current AAA configuration • for the current ACL configuration •...
Page 48 snmp • for the current SNMP configuration spanning-tree • for the current spanning tree configuration static • for the current static route configuration tacacs+ • for the current TACACS+ configuration tftp • for the current TFTP configuration trace-group • for the current trace-group configuration trace-list •...
Page 49 Parameters number Enter a number to view information on that SFM. Range: 0 to 8. (OPTIONAL) Enter the keyword to view a table with information on all present SFMs. brief brief (OPTIONAL) Enter the keyword to view a list with SFM status. Note: The brief option is not available on C-Series.
Page 50 Command output example: show sfm all FTOS#show sfm all Switch Fabric State: Switch Fabric Modules Slot Status --------------------------------------------------------------------------- active active active active active active active active active FTOS# show startup-config c e s Display the startup configuration. Syntax show startup-config Command Modes EXEC Privilege Command...
Page 51 Command Version 7.6.1.0 Introduced on S-Series History Version 7.5.1.0 Introduced on C-Series E-Series original Command E-Series Example Command output example on E-Series: show version FTOS#show version Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.0 Force10 Application Software Version: 5.3.1.0 Copyright (c) 1999-2004 by Force10 Networks, Inc.
Page 52 show version Command Fields Lines beginning with Description 128K bytes... Amount and type of memory on system. 1 Route Processor... Hardware configuration of the system, including the number and type of physical interfaces available. S-Series Example Command output example on an S50V: show version FTOS#show version Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.0...
Page 53 booted Enter this keyword to upgrade using the image packed with the currently running FTOS image. file-url Enter the following location keywords and information to upgrade using an FTOS image other than the one currently running: Enter the transfer method and file location: flash://filename ftp://userid password...
Page 54 linecard number Enter the keyword to upgrade the system image of a selector image on all processors on the RPM. repair Enter this keyword to upgrade a line card newly inserted into an already system-image upgraded chassis. This option is only available with the keyword.
Page 55 upgrade (S-Series management unit) Upgrade the bootflash image or system image of the S-Series management unit. upgrade {boot | system} {ftp: | scp: | tftp:} file-url Syntax Parameters boot Enter this keyword to change the boot image. system Enter this keyword to change the system image. ftp: After entering this keyword you can either follow it with the location of the source file in this //userid:password@hostip/filepath...
Page 56 Parameters Enter the keyword to upgrade the FPGA on the SFMs. Enter the keyword to upgrade all processors on the RPM. Enter the keyword to upgrade the FPGA on all the SFMs. Enter the keyword to upgrade the FPGA on all a specific SFM. Enter the path to the upgrade source.
Page 57 Defaults None. Command Mode EXEC Privilege Command primary-fpga-flash fpga-image Version 7.7.1.0 Renamed keyword History Version 7.5.1.0 Introduced on C-Series Example Command example: restore fpga-image FTOS#restore fpga-image linecard 4 Current FPGA information in the system: ======================================= Card FPGA Name Current Version New Version ------------------------------------------------------------------------ 48 Port 1G LCM FPGA...
Page 58 (OPTIONAL) Enter to upgrade only the system FPGA on a fiber linecard. Contact the Dell Force10 TAC before using this keyword. link-fpga link-fpga (OPTIONAL) Enter to upgrade only the link FPGA on a fiber linecard. Contact the Dell Force10 TAC before using this keyword.
Page 59 Most of the commands in this chapter are in Configuration mode, except for format, which is in the BOOT_ADMIN mode. The exception to this is that on the Dell Force10 S50 platform. On the S50, the commands are accessed from the BOOT_USER mode. Command support on Dell Force10 platforms is indicated by the characters that appear below each command heading: •...
Page 60 • show bootvar • show default-gateway • show interface management ethernet Note: You cannot use the Tab key to complete commands in this mode. Note: The question mark (?) key to get help does not work in this mode. Instead, enter help. boot change c es Change the primary, secondary, or default FTOS boot configuration.
Page 61 Figure 4-1. First Field in the boot change Command BOOT_USER # boot change primary '.' = clear field; '-' = clear non-essential field boot device : ftp Figure 4-2 shows the completed command: Figure 4-2. Completed boot change Command Example BOOT_USER # boot change primary '.' = clear field;...
Page 62 Parameters Enter the keyword to select the boot code in partition A. Enter the keyword to select the boot code in partition B. Defaults None. Command Modes BOOT_USER Usage To view the current boot flash image, enter the show boot selection command. Information Related boot change...
Page 63 Figure 4-3. Completed boot zero Command Example BOOT_USER # boot zero primary BOOT_USER # boot zero secondary BOOT_USER # boot zero default BOOT_USER # show bootvar PRIMARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== No Operating System boot parameters specified! SECONDARY OPERATING SYSTEM BOOT PARAMETERS: ========================================== No Operating System boot parameters specified! DEFAULT OPERATING SYSTEM BOOT PARAMETERS:...
Page 64 BOOT_USER # enable Change the privilege level of user access to FTOS commands. Syntax enable {user | admin} Parameters admin Used only by Dell Force10 TAC personnel. user Used only by Dell Force10 TAC personnel. Defaults Not configured. Command Modes BOOT_USER...
Page 65 Usage Only Dell Force10 TAC staff use this command. Information format Format the internal or external flash memory. Syntax format file-url Parameters file-url Enter the location keywords and information: flash:// • For a file on the internal Flash, enter followed by the filename.
Page 66 ignore startup-config During a reload, do not load the startup-config file. Syntax ignore startup-config Defaults disabled Command Modes BOOT_USER Command Version 7.8.1.0 Introduced on S-Series History Usage This command might be used if a the user has authentication procedures in the startup-config other Information than the enable-password setting.
Page 67 interface management ethernet mac-address Assign a MAC address to the Management Ethernet interface. interface management ethernet mac-address mac-address Syntax Parameters mac-address Enter a MAC address in standard format (xx:xx:xx:xx:xx:xx). Defaults Not configured. Command Modes BOOT_USER Command Version 7.8.1.0 Introduced on S-Series History Usage Use this command to assign a MAC address if FTOS cannot find a default MAC address.
Page 68 Parameters half-duplex half-duplex Enter the keyword to set the Management interface to half-duplex mode. full-duplex full-duplex Enter the keyword to set the Management interface to full-duplex mode. Enter the keyword to set the speed on the Management interface to 10 Mb/ 100m 100m Enter the keyword...
Page 69 Introduced on S-Series History Usage A basic difference between S-Series and other Dell Force10 platforms is that, on the S-Series, FTOS Information does not save configurations into NVRAM while the user enters them in the BLI. Instead, the configurations are saved in a software cache and are written into NVRAM only on the execution of this save command or of the reload command.
Page 70 Example Figure 4-5. show boot selection Command Example BOOT_USER # show boot selection ROM BOOTSTRAP SELECTOR PARMETERS: ================================ Current ROM bootstrap selection set to Bootflash partition B. Last ROM bootstrap occurred from Bootflash partition B. BOOT_USER # Related boot change Change the primary, secondary or default boot image configuration Commands boot selection...
Page 71 Command Version 7.8.1.0 Introduced on S-Series History Example Figure 4-7. show bootvar Command Example BOOT_USER # show bootvar PRIMARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== boot device : ftp file name : tt/latestlabel Management Ethernet IP address : 10.16.1.181/24 Server IP address : 10.16.1.209 username : amsterdam...
Page 72 show interface management ethernet c es Display the IP address configured for the Management interface. Syntax show interface management ethernet Command Modes BOOT_USER Command Version 7.8.1.0 Introduced on S-Series History Example Figure 4-9. show interface management ethernet Command Example BOOT_USER # show interfaces management ethernet Management ethernet IP address: 10.16.1.181/24 BOOT_USER # On the S-Series, the output of this command includes the MAC address and port number of the...
Page 73 Control and Monitoring Overview This chapter contains the following commands to configure and monitor the system, including Telnet, c e s FTP, and TFTP as they apply to platforms Commands audible cut-off send banner exec service timestamps banner login show alarms banner motd show chassis cam-audit linecard...
Page 74 ip ftp source-interface show switch links ip ftp username show system (S-Series) ip telnet server enable show tech-support (C-Series and E-Series) ip telnet source-interface show tech-support (S-Series) ip tftp source-interface ssh-peer-rpm line telnet linecard telnet-peer-rpm module power-off terminal length motd-banner terminal xml ping traceroute...
Page 75 Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Optionally, use the banner exec command to create a text string that is displayed when the user Information accesses the EXEC mode. The exec-banner command toggles that display. Example FTOS(conf)#banner exec ? LINE c banner-text c, where 'c' is a delimiting character FTOS(conf)#banner exec %...
Page 76 Command keyboard-interactive Version 8.2.1.0 Introduced keyword History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage A login banner message is displayed only in EXEC Privilege mode after entering the enable Information command followed by the password.
Page 77 Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage A MOTD banner message is displayed only in EXEC Privilege mode after entering the enable Information command followed by the password. These banners are not displayed to users in EXEC (non-privilege) mode.
Page 78 Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage This command clear alarms that are no longer active. If an alarm situation is still active, it is seen in the Information system output. clear command history c e s Clear the command history log. Syntax clear command history Command Modes...
Page 79 Excessive traffic is received by CPU and traffic will be rate controlled. Note: This command must be enabled before the show cpu-traffic-stats command will display . Dell traffic statistics Force10 recommends that you disable debugging (no debug cpu-traffic-stats) once troubleshooting is complete...
Page 80 debug ftpserver c e s View transactions during an FTP session when a user is logged into the FTP server. Syntax debug ftpserver Command Modes EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command...
Page 81 Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.1.1.0 Introduced on E-Series Usage The following commands are not supported by the do command: Information • enable • disable • exit •...
Page 82 enable xfp-power-updates c e s Enable XFP power updates for SNMP. Syntax enable xfp-power-updates interval seconds To disable XFP power updates, use the no enable xfp-power-updates command. Parameters interval interval seconds Enter the keyword followed by the polling interval in seconds. Range: 120 to 6000 seconds Default: 300 seconds (5 minutes) Defaults...
Page 83 When using 9 SFMs in an ExaScale chassis, the 10.4 setting is line rate; the 2.4 setting reduces throughput. Dell Force10 recommends using the 10.4 setting when the system has 9 SFMs. Using 8 SFMs in an ExaScale chassis reduces throughput at any epoch setting.
Page 84 exec-banner c e s Enable the display of a text string when the user enters the EXEC mode. Syntax exec-banner Defaults Enabled on all lines (if configured, the banner appears). Command Modes LINE Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series...
Page 85 Example Figure 5-4. FTOS time-out display FTOS con0 is now available Press RETURN to get started. FTOS> exit ce s Return to the lower command mode. Syntax exit Command Modes EXEC Privilege, CONFIGURATION, LINE, INTERFACE, TRACE-LIST, PROTOCOL GVRP, SPANNING TREE, MULTIPLE SPANNING TREE, MAC ACCESS LIST, ACCESS-LIST, AS-PATH ACL, COMMUNITY-LIST, PREFIX-LIST, ROUTER OSPF, ROUTER RIP, ROUTER ISIS, ROUTER BGP Command...
Page 86 Usage After you enable FTP server functions with the ftp-server enable command, Dell Force10 recommends Information that you specify a top-level directory path. Without a top-level directory path specified, the FTOS directs users to the flash directory when they log in to the FTP server.
Page 87 ftp-server username c e s Create a user name and associated password for incoming FTP server sessions. ftp-server username username password [encryption-type] password Syntax Parameters username Enter a text string up to 40 characters long as the user name. password password password Enter the keyword followed by a string up to 40 characters long as...
Page 88 ip ftp password c e s Specify a password for outgoing FTP connections. Syntax ip ftp password [encryption-type] password Parameters encryption-type (OPTIONAL) Enter one of the following numbers: • 0 (zero) for an unecrypted (clear text) password • 7 (seven) for hidden text password password Enter a string up to 40 characters as the password.
Page 89 ip ftp source-interface c e s Specify an interface’s IP address as the source IP address for FTP connections. ip ftp source-interface interface Syntax Parameters interface Enter the following keywords and slot/port or number information: GigabitEthernet • For an 100/1000 Ethernet interface, enter the keyword followed by the slot/port information.
Page 90 Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage You must also configure a password with the ip ftp password command. Information Related ip ftp password Set the password for FTP connections. Commands ip telnet server enable c e s Enable the Telnet server on the switch.
Page 91 Defaults The IP address on the system that is closest to the Telnet address is used in the outgoing packets. Command Modes CONFIGURATION Command Version 8.2.1.0 Increased number of VLANs on ExaScale to 4094 (was 2094) History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0...
Page 92 line c e s Enable and configure console and virtual terminal lines to the system. This command accesses LINE mode, where you can set the access conditions for the designated line. Syntax line {aux 0 | console 0 | vty number [end-number]} Parameters aux 0 aux 0...
Page 93 Command Version 8.1.1.2 Introduced on E-Series ExaScale E600i History Version 8.1.1.0 Introduced on E-Series ExaScale E1200i Version 7.5.1.0 Introduced on C-Series E-Series original Command Figure 5-6. Command Example: show linecard on C-Series FTOS#show linecard 0 -- Line card 0 -- Status : online Next Boot : online Required Type : E48VB - 48-port GE 10/100/1000Base-T line card with RJ45 interfaces and PoE (CB)
Page 94 Figure 5-7. Command Example: show linecard on E-Series FTOS#show linecard 0 -- Line card 0 -- Status : online Next Boot : online Required Type : E48VB - 48-port GE 10/100/1000Base-T line card with RJ45 interfaces and PoE (CB) Current Type : E48VB - 48-port GE 10/100/1000Base-T line card with RJ45 interfaces and PoE (CB) Hardware Rev : 2.0 Num Ports : 48 Up Time : 1 min, 56 sec...
Page 95 module power-off Turn off power to a line card at next reboot. module power-off linecard number Syntax Parameters linecard number line card followed Enter the keyword by the line card slot number C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300.
Page 96 Parameter (OPTIONAL) E-Series Only: Enter the VRF Instance name of the device to which you are testing connectivity. host (OPTIONAL) Enter the host name of the devices to which you are testing connectivity. ip-address (OPTIONAL) Enter the IPv4 address of the device to which you are testing connectivity.
Page 97 pattern pattern (IPv4 only) Enter the IPv4 data pattern. Range: 0-FFFF 0xABCD Default: sweep-min-size Enter the minimum size of datagram in sweep range. Range: 52-15359 bytes sweep-max-size Enter the maximum size of datagram in sweep range. Range: 53-15359 bytes sweep-interval Enter the incremental value for sweep size.
Page 98 Usage When you enter the ping command without specifying an IP/IPv6 address (Extended Ping), you are Information prompted for a target IP/IPv6 address, a repeat count, a datagram size (up to 1500 bytes), a timeout in seconds, and for Extended Commands. See Appendix , for information on the ICMP message codes that return from a ping command.
Page 99 Related power-on Power on a line card or standby SFM. Commands power-on Turn on power to a line card or the standby (extra) Switch Fabric Module (SFM). Syntax power-on {linecard number | sfm sfm-slot-id} Parameters linecard number linecard Enter the keyword and a number for the line card slot number.
Page 100 reset Reset a line card, RPM, a standby SFM (EtherScale only), or a failed SFM (TeraScale only). Syntax reset {linecard number [hard | power-cycle] | rpm number [hard | power-cycle ] | sfm slot number | standby} Parameters linecard number linecard Enter the keyword and a number for the line card slot number.
Page 101 Parameters rpm slot number Enter the slot number E1200i: 0-13 E600i: 0-6 on |off Toggles the LED on the RPM on or off. Defaults Command Modes EXEC Command Version 8.2.1.0 Introduced on the E-Series ExaScale History Usage The LED setting is not saved through power cycles. Information send c e s...
Page 102 service timestamps c e s Add time stamps to debug and log messages. This command adds either the uptime or the current time and date. Syntax service timestamps [debug | log] [datetime [localtime] [msec] [show-timezone] | uptime] Parameters debug debug (OPTIONAL) Enter the keyword to add timestamps to debug messages.
Page 103 Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command E-Series Example Figure 5-10. Command Example: show alarms on E-Series FTOS# show alarms Minor Alarms Alarm Type Duration ---------------------------------------------------- RPM 0 PEM A failed or rmvd 7 hr, 37 min SFM 0 PEM A failed or rmvd...
Page 104 Example Figure 5-11. Command Example: show chassis brief on C-Series FTOS#show chassis -- Manufacturing Info -- Chassis Type : C150 Chassis Mode : 1.0 Chassis MAC : 00:01:e8:51:a7:e3 Serial Number : TY000002776 Part Number : 7520036800 Vendor Id : 04 Date Code : 01082008 Country Code : 01 Product Rev : 03...
Page 105 Information command-history trace log is saved to a file upon an RPM failover. This file can be analyzed by the Dell Force10 TAC to help identify the root cause of an RPM failover. Figure 5-13. Command Example: show command-history Example...
Page 106 Related Commands clear command history command history log. Clear the show command-tree c e s Display the entire CLI command tree, and optionally, display the utilization count for each commands and its options. Syntax show command-tree [count | no] Parameters count Display the command tree with a usage counter for each command.
Page 107 Parameters number Enter the line card slot number. Range: 0–7 for the C300 Range: 0–13 for the E1200 Range: 0–6 for the E600 Range: 0–5 for the E300 Defaults None Command Mode EXEC EXEC Privilege Command Version 7.5.1.0 Introduced on C-Series History E-Series original Command Usage...
Page 108 E-Series Example Figure 5-14. Command Example: show cpu-traffic-stats on the E-Series FTOS#show cpu-traffic-stats Processor : CP -------------- Received 100% traffic on GigabitEthernet 8/2 Total packets:100 LLC:0, SNAP:0, IP:100, ARP:0, other:0 Unicast:100, Multicast:0, Broadcast:0 Processor : RP1 --------------- Received 62% traffic on GigabitEthernet 8/2 Total packets:500 LLC:0, SNAP:0, IP:500, ARP:0, other:0 Unicast:500, Multicast:0, Broadcast:0...
Page 109 Example Figure 5-15. Command Example: show debugging FTOS#show debug Generic IP: IP packet debugging is on for ManagementEthernet 0/0 Port-channel 1-2 Port-channel 5 GigabitEthernet 4/0-3,5-6,10-11,20 GigabitEthernet 5/0-1,5-6,10-11,15,17,19,21 ICMP packet debugging is on for GigabitEthernet 5/0,2,4,6,8,10,12,14,16 FTOS# show environment (C-Series and E-Series) View the system component status (for example, temperature, voltage).
Page 110 Examples Figure 5-16. Command Example: show environment for the E1200 FTOS#show environment Fan Status Tray Status Temp Volt Speed PEM0 PEM1 Fan1 Fan2 Fan3 -------------------------------------------------------------------------------- < 50C 12-16V low/2100-2700 RPM < 50C 12-16V low/2100-2700 RPM < 50C 12-16V low/2100-2700 RPM <...
Page 111 Figure 5-18. Command Example: show environment fan on the C300 FTOS#show env fan Fan Status ------------------------------------------------------------------- Tray ------------------------------------------------------------------- FanNumber Speed Status 4170 4140 3870 4140 3870 3810 FTOS# show environment (S-Series) View S-Series system component status (for example, temperature, voltage). Syntax show environment [all | fan | stack-unit unit-id | pem] Parameters...
Page 112 Example Figure 5-19. Command Example: show environment all on the S-Series FTOS#show environment all Status -------------------------------------------------------------------------------- Unit TrayStatus Fan0 Fan1 Fan2 Fan3 Fan4 Fan5 Power Supplies Unit Status Type --------------------------------------------------------------------------- absent -- Unit Environment Status Unit Status Temp Voltage --------------------------------------------------------------------------- online * Management Unit Fan Status...
Page 113 show inventory (C-Series and E-Series) Display the chassis type, components (including media), FTOS version including hardware identification numbers and configured protocols. Syntax show inventory [media slot] Parameters media slot media (OPTIONAL) Enter the keyword followed by the slot number. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300 Defaults No default behavior or values...
Page 114 Figure 5-23. Example output of show inventory for C300 (C-Series) FTOS#sh inventory Chassis Type : C150 Chassis Mode : 1.0 Software Version : E8-4-2-399 Slot Item Serial Number Part Number Piece Part ID Svc Tag Exprs Svc Code ---------------------------------------------------------------------------------- C150 TY000002776 7520036800 US-021R1D-76991-1BA-2776...
Page 115 E-Series Example Figure 5-24. Example output of show inventory for E-Series FTOS#show inventory Chassis Type : E1200 Chassis Mode : TeraScale Software Version : E8-4-2-399 Slot Item Serial Number Part Number Piece Part ID Svc Tag Exprs Svc Code ---------------------------------------------------------------------------------------------- ------------- E1200 FX000003180...
Page 116 Example Figure 5-25. Example output of show inventory media slot (partial) FTOS#show inventory media 3 Slot Port Type Media Serial Number F10Qualified ---------------------------------------------------------------------------- 11 SFP 1000BASE-SX U9600L0 Example Figure 5-26. Example Output of show inventory media FTOS#show inventory media Slot Port Type Media Serial Number F10Qualified ----------------------------------------------------------------------------...
Page 117 Example Figure 5-27. Example output of show inventory for S-Series FTOS#show inventory System Type : S50N System Mode : 1.0 Software Version : E8-4-2-399 -------------------------------------------------------------------------------- ------------------------------ S50-01-GE-48T-AC DL257430183 7590005600 CN-0RVY43-28298-82B-0456 SVCTGCH 628 458 864 65 S50-01-12G-2S S50-PWR-AC S50-FAN * - Management Unit Related show interfaces interface configuration.
Page 118 E-Series Example Figure 5-28. Command Example: show linecard on E-Series FTOS#show linecard 0 -- Line card 0 -- Status : online Next Boot : online Required Type : E48TF - 48-port 10/100/1000Base-T line card with RJ-45 interfaces (EF) Current Type : E48TF - 48-port 10/100/1000Base-T line card with RJ-45 interfaces (EF) Hardware Rev : Base - 1.1 PP0 - 1.1 PP1 - 1.1 Num Ports : 48...
Page 119 C-Series Figure 5-29. Command Example: show linecard on C-Series Example FTOS#show linecard 11 Line card 11 -- Status : online Next Boot : online Required Type : E48PF - 48-port GE line card with SFP optics (EF) Current Type : E48PF - 48-port GE line card with SFP optics (EF) Hardware Rev : Base - 1.0...
Page 120 Table 5-1 list the definitions of the fields shown in Figure 5-28 Table 5-1. Descriptions for show linecard output Field Description show linecard all Line card Displays the line card slot number (only listed in command output). Status Displays the line card’s status. Next Boot Displays whether the line card is to be brought online at the next system reload.
Page 121 Figure 5-30. Command Example: show linecard brief FTOS#show linecard 11 brief Line card 11 -- Status : online Next Boot : online Required Type : E48PF - 48-port GE line card with SFP optics (EF) Current Type : E48PF - 48-port GE line card with SFP optics (EF) Hardware Rev : Base - 1.0...
Page 122 Table 5-2 defines the fields in Figure 5-31. Table 5-2. Descriptions for show linecard boot-information output Field Description Displays the line card slot numbers, beginning with slot 0. The number of slots listed is dependent on your chassis: E-Series: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300.
Page 123 Parameters (OPTIONAL) Enter the keyword to view information on the Control Processor on the RPM. lp slot-number (OPTIONAL) Enter the keyword and the slot number to view information on the line-card processor in that slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/E1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300.
Page 124 Table 5-3 defines the fields displayed in Figure 5-32 Table 5-3. Descriptions for show memory output Field Description Lowest Displays the memory usage the system went to in the lifetime of the system. Indirectly, it indicates the maximum usage in the lifetime of the system: Total minus Lowest. Largest The current largest available.
Page 125 (OPTIONAL) Enter the keyword to view CPU usage of the Route Processor 2. Note: This option is supported on the E-Series only. lp linecard 1-99 (OPTIONAL) Enter the keyword followed by the line card number to display the CPU usage of that line card. 1-99 The optional variable sets the number of tasks to display in order of...
Page 126 Example 2 Figure 5-35. Command Example: show processes cpu rp1 FTOS#show processes cpu rp1 CPU utilization for five seconds: 0%/0%; one minute: 0%; five minutes: 0% Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 0x0000007c 10000 0.00% 0.00% 0.00% ospf 0x00000077 10000 0.00%...
Page 127 show processes cpu (S-Series) Display CPU usage information based on processes running in an S-Series. show processes cpu [management-unit 1-99 [details] | stack-unit 0-7 | summary | ipc | Syntax memory [stack-unit 0-7]] Parameters management-unit1-99 (OPTIONAL) Display processes running in the control processor. The 1-99 details variable sets the number of tasks to display in order of the highest...
Page 128 Example 2 Figure 5-38. Command Example: show processes cpu management-unit on S-Series FTOS#show processes cpu management-unit 0 CPU utilization for five seconds: 1%/0%; one minute: 10%; five minutes: 2% Runtime(ms) Invoked uSecs 5Sec 1Min 5Min Process 10000 0.00% 0.00% 0.00% topoDPC 0.00% 0.00%...
Page 129 Example 3 Figure 5-39. Command Example: show processes cpu stack-unit on S-Series FTOS#show processes cpu stack-unit 0 CPU Statistics On Unit0 Processor =============================== CPU utilization for five seconds: 0%/0%; one minute: 0%; five minutes: 0% Runtime(ms) Invoked uSecs 5Sec 1Min 5Min Process 8260...
Page 130 Example 4 Figure 5-40. Command Example: show processes memory on S-Series FTOS#show processes memory Memory Statistics On Unit 0 Processor (bytes) ========================================== start Total 160231424, MaxUsed 130596864 [09/19/2007 03:11:17] CurrentUsed: 130596864, CurrentFree: 29634560 SharedUsed : 14261872, SharedFree : 6709672 Process ResSize Size Allocs...
Page 131 show hardware system-flow Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe. show interfaces stack-unit Display information on all interfaces on a specific S-Series stack member. show processes memory Display CPU usage information based on processes running in an S-Series (S-Series) show processes ipc flow-control c e s...
Page 132 Example 1 Figure 5-42. Command Example: show processes ipc flow-control from C-Series FTOS# show processes ipc flow-control cp Q Statistics on CP Processor TxProcess RxProcess High Time Retr Aval Mark Sent Rcvd Retra Retra ACL0 RTM0 ACL0 DIFFSERV0 ACL0 IGMP0 ACL0 PIM0 ACL0...
Page 133 Table 5-4 list the definitions of the fields shown in Figure 5-42 Figure 5-43. Table 5-4. Description of show processes ipc flow-control cp output Field Description Source QID /Tx Process Source Service Identifier Destination QID/Rx Process Destination Service Identifier Cur Len Current number of messages enqueued High Mark Highest number of packets in the queue at any point of time...
Page 134 Example 4 Figure 5-46. Command Example: show processes ipc flow-control on S-Series FTOS#show processes ipc flow-control Q Statistics on CP Processor TxProcess RxProcess High Time Retr Aval Mark Sent Rcvd Retra Retra ACL0 RTM0 ACL0 DIFFSERV0 ACL0 IGMP0 ACL0 PIM0 LACP0 IFMGR0 RTM0...
Page 135 Parameters (OPTIONAL) Enter the keyword to view memory usage of the Control Processor. (OPTIONAL) Enter the keyword and the slot number to view information on the slot-number line-card processor in that slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/E1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300.
Page 136 Example Figure 5-47. Command Example: show processes memory (partial) FTOS#show processes memory Memory Statistics On CP Processor (bytes) ========================================== Total: 452689184, MaxUsed: 64886986, CurrentUsed: 64873866, Current TaskName TotalAllocated TotalFreed MaxHeld CurrentHolding tRootTask 39083408 1395840 38143920 37687568 tARL tBcmTask tPortmapd 18560 18560 18560 tShell...
Page 137 Example Figure 5-49. Command Example: show processes memory rp2 FTOS#show processes memory rp2 Total 953700352, MaxUsed 149417984 [3/8/2006 12:33:6] CurrentUsed: 149417984, CurrentFree: 804282368 SharedUsed : 7847200, SharedFree : 13124344 Process ResSize Size Allocs Frees Current 145 vrrp 3870720 266240 297324 297324 297324 141 fvrp...
Page 138 show processes memory (S-Series) Display memory usage information based on processes running in the S-Series system. Syntax show processes memory {management-unit | stack unit {0–7 | all | summary}} Parameters management-unit management-unit Enter the keyword for CPU memory usage of the stack management unit.
Page 139 Example Figure 5-51. Command Example: show processes memory management-unit FTOS#show processes management-unit Total 151937024, MaxUsed 111800320 [2/25/2008 4:18:53] CurrentUsed: 98848768, CurrentFree: 53088256 SharedUsed : 13007848, SharedFree : 7963696 Process ResSize Size Allocs Frees Current 337 KernLrnAgMv 117927936 331 vrrp 5189632 249856 50572 50572...
Page 140 show processes switch-utilization Show switch fabric utilization. Syntax show processes switch-utilization Command Mode EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History E-Series original Command Example Figure 5-52. Command Example: show processes switch-utilization FTOS#show processes switch-utilization Switch fabric utilization 5Sec 1Min 5Min...
Page 141 E-Series Example Figure 5-53. Command Example: show rpm on E-Series FTOS#show rpm 0 -- RPM card 0 -- Status : active Next Boot : online Card Type : RPM - Route Processor Module (LC-EF-RPM) Hardware Rev : 2.2i Num Ports : 1 Up Time : 4 min, 37 sec Last Restart : reset by user FTOS Version : 8-4-2-399...
Page 142 C-Series Figure 5-54. Command Example: show rpm on C-Series Example FTOS#show rpm 0 -- RPM card 0 -- Status : active Next Boot : online Card Type : RPM - Route Processor Module (LC-CB-RPM) Hardware Rev : 2.0 Num Ports : 1 Up Time : 1 min, 58 sec Last Restart : reset by user FTOS Version : 8-4-2-399...
Page 143 Table 5-7. Descriptions of show rpm output (continued) Field Description Last Restart States the reason for the last RPM reboot. C-Series possible values: reset power-cycle • “normal power-cycle” ( command) • “reset by master” (peer RPM reset by master RPM) •...
Page 144 show software ifm Display interface management (IFM) data. Syntax show software ifm {clients [summary] | ifagt number | ifcb interface | stack-unit unit-ID | trace-flags} Parameters clients clients Enter the keyword to display IFM client information. summary summary (OPTIONAL) Enter the keyword to display brief information about IFM clients.
Page 145 S-Series Example Figure 5-55. Command Example: show software ifm clients summary on S-Series FTOS#show software ifm clients summary ClntType Inst svcMask subSvcMask tlvSvcMask tlvSubSvc swp 0x00000000 0x00000000 0x90ff71f3 0x021e0e81 31 0x00000000 0x00000000 0x800010ff 0x01930000 43 VRRP 0x00000000 0x00000000 0x803330f3 0x00400000 39 L2PM 0x00000000 0x00000000 0x87ff79ff 0x0e032200 45 0x00000000 0x00000000 0x867f50c3 0x000f0218 44...
Page 146 Example Figure 5-56. Command Example: show switch links backplane FTOS# show switch links backplane Switch fabric backplane link status: SFM0 Links Status SFM1 Links Status LC SlotID Port0 | Port1 | Port2 | Port3 | Port4 | Port5 | Port6 | Port7 down down...
Page 147 Example Figure 5-57. Command Example: show system brief FTOS#show system brief Stack MAC : 0:1:e8:d6:4:70 Stack Info Unit UnitType Status ReqTyp CurTyp Version Ports --------------------------------------------------------------------------- Member not present Standby online S50V S50V 7.7.1.0 Mgmt online S50V S50V 7.7.1.0 Member not present Member not present Member...
Page 148 Example Figure 5-58. Command Example: show system stack-unit 2 FTOS#show system stack-unit 2 -- Unit 2 -- Unit Type : Management Unit Status : online Next Boot : online Required Type : S50N - 48-port E/FE/GE (SB) Current Type : S50N - 48-port E/FE/GE (SB) Master priority : 0 Hardware Rev : 2.0 Num Ports : 52...
Page 149 (C-Series and E-Series) Display, or save to a file, a collection of data from other show commands, the information necessary for Dell Force10 technical support to perform troubleshooting. Syntax show tech-support [linecard 0-6 | page] | {display | except | find | grep | no-more | save}...
Page 150 C-Series Figure 5-59. Command Example: show tech-support (partial) on C-Series Example FTOS#show tech-support page ----------------------------------- show version ------------------------------- Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.0 Force10 Application Software Version: FTOS 7.5.1.0 Copyright (c) 1999-2007 by Force10 Networks, Inc. Build Time: Tue Sep 12 15:39:17 IST 2006 Build Path: /sites/maa/work/sw//C-SERIES/SW/SRC Force10 uptime is 18 minutes...
Page 151 E-Series Example Figure 5-60. Command Example: show tech-support save (partial) on E-Series FTOS#show tech-support ? linecard Line card page Page through output Pipe through a command <cr> FTOS#show tech-support linecard 3 | ? display Display additional information except Show only text that does not match a pattern find Search for the first occurrence of a pattern grep...
Page 152 Display memory usage based on running processes. (C-Series and E-Series) show tech-support (S-Series) Display a collection of data from other show commands, necessary for Dell Force10technical support to perform troubleshooting on S-Series switches. Syntax show tech-support [stack-unit unit-id | page]...
Page 153 S-Series Figure 5-61. Command Example: show tech-support save (partial) on S-Series Examples FTOS#show tech-support ? page Page through output stack-unit Unit Number Pipe through a command <cr> FTOS#show tech-support stack-unit 1 ? Pipe through a command <cr> FTOS#show tech-support stack-unit 1 | ? except Show only text that does not match a pattern find...
Page 154 Figure 5-62. Command Example: show tech-support (partial) on S-Series FTOS#show tech-support stack-unit 0 ----------------------------------- show version ------------------------------- Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.0 Force10 Application Software Version: FTOS 7.6.1.0 Copyright (c) 1999-2007 by Force10 Networks, Inc. Build Time: Tue Sep 12 15:39:17 IST 2006 Build Path: /sites/maa/work/sw/purushothaman/cser-latest/depot/main/Dev/Cyclone/ Force10 uptime is 18 minutes...
Page 155 • show ip protocols • show ip route summary • show processes cpu • show processes memory • show redundancy • show running-conf • show version Related show version Display the FTOS version. Commands show system (S-Series) Display the current switch status. show environment (S-Series) Display system component status.
Page 156 Parameters host Enter the name of a server. ip-address Enter the IPv4 address in dotted decimal format of the server. ipv6-address x:x:x:x::x Enter the IPv6 address in the format followed by the prefix length in prefix-length format. Range: /0 to /128 Note: The notation specifies successive hexadecimal fields of zeros vrf instance...
Page 157 Command Version 8.2.1.0 Introduced on E-Series ExaScale (IPv6) History Increased number of VLANs on ExaScale to 4094 (was 2094) Version 8.1.1.0 Introduced on E-Series ExaScale (IPv4) Version 7.9.1.0 Introduced VRF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and added support for IPv6 address on E-Series only Usage Telnet to link-local addresses is not supported.
Page 158 terminal length c e s Configure the number of lines displayed on the terminal screen. Syntax terminal length screen-length To return to the default values, enter terminal no length. Parameters screen-length Enter a number of lines. Entering zero will cause the terminal to display without pausing.
Page 159 traceroute c e s View a packet’s path to a specific device. traceroute {host | vrf instance | ip-address | ipv6-address} Syntax Parameters host Enter the name of device. vrf instance (Optional) E-Series Only: Enter the keyword followed by the VRF Instance name. ip-address Enter the IP address of the device in dotted decimal format.
Page 160 Example Figure 5-63. Command Example: traceroute (IPv4) FTOS#traceroute www.force10networks.com Translating "www.force10networks.com"...domain server (10.11.0.1) [OK] Type Ctrl-C to abort. ------------------------------------------------------------------------------------------ Tracing the route to www.force10networks.com (10.11.84.18), 30 hops max, 40 byte packets ------------------------------------------------------------------------------------------ TTL Hostname Probe1 Probe2 Probe3 10.11.199.190 001.000 ms 001.000 ms 002.000 ms gwegress-sjc-02.force10networks.com (10.11.30.126) 005.000 ms...
Page 161 undebug all c e s Disable all debug operations on the system. undebug all Syntax Defaults No default behavior or values Command Modes EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command upload trace-log...
Page 162 virtual-ip Configure a virtual IP address for the active management interface. Virtual addresses can be configured both for IPv4 and IPv6 independently. Syntax virtual-ip {ipv4-address | ipv6-address} Parameters {ipv4-address | Enter the IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::) of the active management interface.
Page 163 Related save Save configurations created in BOOT_USER mode (BLI). Commands Usage The write memory command saves the running-configuration to the file labeled Information startup-configuration. When using a other than the startup-config not named LOCAL CONFIG FILE “startup-configuration” (for example, you used a specific file during the boot config command) the running-config is not saved to that file;...
Page 164 Control and Monitoring...
Page 165 802.1ag Overview 802.1ag is available only on platform: Commands This chapter contains the following commands: • ccm disable • ccm transmit-interval • clear ethernet cfm traceroute-cache • database hold-time • disable • domain • ethernet cfm • ethernet cfm mep •...
Page 166 ccm disable Disable CCM. Syntax ccm disable Enter no ccm disable to enable CCM. Defaults Disabled Command Modes ECFM DOMAIN Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series ccm transmit-interval Configure the transmit interval (mandatory). The interval specified applies to all MEPs in the domain. Syntax ccm transmit-interval seconds Parameters...
Page 167 Syntax database hold-time minutes Parameters minutes Enter a hold-time. Range: 100-65535 minutes Defaults 100 minutes Command Modes ECFM DOMAIN Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series disable Disable Ethernet CFM without stopping the CFM process. disable Syntax Defaults...
Page 168 Specify whether the MEP is up or down facing. Up-MEP: monitors the forwarding path internal to an bridge on the customer or provider edge; on Dell Force10 systems the internal forwarding path is effectively the switch fabric and forwarding engine.
Page 169 Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series mep cross-check Enable cross-checking for an MEP. Syntax mep cross-check mep-id Parameters mep-id Enter the MEP ID Range: 1-8191 Defaults None Command Modes ECFM DOMAIN Command Version 8.3.7.0 Introduced on the S4810.
Page 170 Command Modes ETHERNET CFM Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series ping ethernet Send a Loopback message. Syntax ping ethernet domain [name l level] ma-name m a-name remote {dest-mep-id | mac-addr mac-address} source {src-mep-id | port interface} Parameters name level...
Page 171 Example FTOS# show ethernet cfm domain Domain Name: customer Level: 7 Total Service: 1 Services MA-Name VLAN CC-Int X-CHK Status My_MA enabled Domain Name: My_Domain Level: 6 Total Service: 1 Services MA-Name VLAN CC-Int X-CHK Status Your_MA enabled show ethernet cfm maintenance-points local Display configured MEPs and MIPs.
Page 172 expired Enter this keyword to view MEP entries that have expired due to connectivity failure. waiting Enter this keyword to display MEP entries waiting for response. Defaults None Command Modes EXEC Privilege Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series Example...
Page 173 Command Modes EXEC Privilege Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series Example FTOS#show ethernet cfm statistics Domain Name: Customer Domain Level: 7 MA Name: My_MA MPID: 300 CCMs: Transmitted: 1503 RcvdSeqErrors: LTRs: Unexpected Rcvd: LBRs: Received: Rcvd Out Of Order:...
Page 174 Syntax show ethernet cfm traceroute-cache Defaults None Command Modes EXEC Privilege Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series Example FTOS#show ethernet cfm traceroute-cache Traceroute to 00:01:e8:52:4a:f8 on Domain Customer2, Level 7, MA name Test2 with VLAN ------------------------------------------------------------------------------ Hops Host...
Page 175 Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series traceroute cache size Set the size of the Link Trace Cache. Syntax traceroute cache size entries Parameters entries Enter the number of entries the Link Trace Cache can hold. Range: 1 - 4095 entries Defaults 100 entries...
Page 176 802.1ag...
Page 177 802.3ah Overview 802.3ah is available only on platform: Commands This chapter contains the following commands: • clear ethernet oam statistics • ethernet oam (enable/disable) • ethernet oam (parameters) • ethernet oam event-log size • ethernet oam link-monitor frame • ethernet oam link-monitor frame-seconds •...
Page 178 clear ethernet oam statistics Clear Link Layer OAM statistics. Syntax clear ethernet oam statistics interface interface Parameters interface gig 0/1 Enter the interface for which you want to clear statistics, for example Parameters None Defaults None Command Mode EXEC Privilege Command Version 8.4.1.0 Introduced on S-Series...
Page 179 ethernet oam event-log size Specify the size of the event log. Syntax ethernet oam event-log size entries Parameters entries Enter the number of entries for the log size. Range: 0 to 200. Default: 50. Defaults Command Mode CONFIGURATION Command Version 8.4.1.0 Introduced on S-Series History ethernet oam link-monitor frame...
Page 180 Parameters Specify the high threshold value for frame error seconds per time high milliseconds none period, or disable the high threshold. Range: 1-900 Default: None Specify the low threshold for frame error seconds per time period. low milliseconds Range: 1-900 Default: 1 window milliseconds Specify the time period for error second per time period condition.
Page 181 ethernet oam link-monitor supported Enable support for link performance monitoring on an interface. To disable support for link monitoring, enter the no ethernet oam link-monitor supported command. Support for link monitoring is enabled on an interface by default when you enable Ethernet OAM with ethernet oam command.
Page 182 Defaults Active Command Mode INTERFACE Command Version 8.4.1.0 Introduced on S-Series History ethernet oam remote-failure Block or disable an interface when a particular critical link event occurs. Syntax ethernet oam remote-failure critical-event dying-gasp link-fault action error-block-interface error-disable-interface Parameters critical-event An unspecified critical event occurred. dying-gasp An unrecoverable local failure condition occurred.
Page 183 ethernet oam remote-loopback (interface) Enable support for OAM loopback on an interface and configure a timeout value. Syntax ethernet oam remote-loopback { supported timeout seconds Parameters supported Start or stop a loopback operation on a peer. Specify the number of seconds that the local peer waits to receive a returned frame timeout seconds before considering a remote peer to be non-operational.
Page 184 Example FTOS# show ethernet oam discovery interface <interface-name> Local client __________ Administrative configurations: Mode:active Unidirection:not supported Link monitor:supported (on) Remote loopback:not supported MIB retrieval:not supported Mtu size:1500 Operational status: Port status:operational Loopback status:no loopback PDU permission:any PDU revision:1 Remote client ___________ MAC address:0030.88fe.87de Vendor(OUI):0x00 0x00 0x0C...
Page 185 Example FTOS# show ethernet oam statistics interface <interface-name> <interface-name> Counters: _________ Information OAMPDU Tx: 3439489 Information OAMPDU Rx: 9489 Unique Event Notification OAMPDU Tx: 0 Unique Event Notification OAMPDU x: 0 Duplicate Event Notification OAMPDU Tx: 0 Duplicate Event Notification OAMPDU Rx: 0 Loopback Control OAMPDU Tx: 0 Loopback Control OAMPDU Rx: 2 Variable Request OAMPDU Tx: 0...
Page 186 show ethernet oam status Display Link Layer OAM status per interface. Syntax show ethernet oam status interface interface Parameters interface gig 0/1 Enter the interface for which you want to display status, for example Defaults None Command Mode EXEC Privilege Command Version 8.4.1.0 Introduced on S-Series...
Page 187 show ethernet oam summary Display Link Layer OAM sessions. Syntax show ethernet oam summary Defaults None Command Mode EXEC Privilege Command Version 8.4.1.0 Introduced on S-Series History Example FTOS# show ethernet oam summary Output format : Symbols:* - Master Loopback State, # - Slave Loopback State Capability codes:L - Link Monitor, R - Remote Loopback U - Unidirection,V - Variable Retrieval LocalRemote...
Page 188 802.3ah...
Page 189 802.1X The 802.1X Port Authentication commands are: • debug dot1x • dot1x auth-type mab-only • dot1x authentication (Interface) • dot1x auth-fail-vlan • dot1x auth-server • dot1x guest-vlan • dot1x host-mode • dot1x mac-auth-bypass • dot1x max-eap-req • dot1x max-supplicants • dot1x port-control •...
Page 190 • If 802.1X authorization is enabled and all information from the RADIUS server is valid, the port is placed in the specified VLAN after authentication. • If port security is enabled on an 802.1X port with VLAN assignment, the port is placed in the RADIUS server assigned VLAN.
Page 191 dot1x auth-type mab-only Use only the host MAC address to authenticate a device with MAC authentication bypass (MAB). dot1x auth-type mab-only Syntax Defaults Disabled Command Modes INTERFACE Command Version 8.4.2.1 Introduced on the C-Series and S-Series History Usage The prerequisites for enabling MAB-only authentication on a port are: Information •...
Page 192 dot1x authentication (Interface) c e s Enable dot1x on an interface; dot1x must be enabled both globally and at the interface level. Syntax dot1x authentication To disable dot1x on an interface, use the no dot1x authentication command. Defaults Disabled Command Modes INTERFACE Command Version 7.6.1.0...
Page 193 dot1x auth-server c e s Configure the authentication server to RADIUS. dot1x auth-server radius Syntax Defaults No default behavior or values Command Modes CONFIGURATION Command Version 7.6.1.0 Introduced on C-Series and S-Series History Version 7.4.1.0 Introduced on E-Series dot1x guest-vlan c e s Configure a guest VLAN for limited access users or for devices that are not 802.1X capable.
Page 194 dot1x host-mode Enable single-host or multi-host authentication. Syntax dot1x host-mode {single-host | multi-host | multi-auth} Parameters single-host Enable single-host authentication. multi-host Enable multi-host authentication. multi-auth Enable multi-supplicant authentication. Defaults single-host Command Modes INTERFACE Command The multi-auth option was introduced on the C-Series and S-Series. Version 8.4.1.0 History The single-host and multi-host options were introduced on the C-Series,...
Page 195: Table Of Contents
dot1x max-eap-req c e s Configure the maximum number of times an EAP (Extensive Authentication Protocol) request is transmitted before the session times out. Syntax dot1x max-eap-req number To return to the default, use the no dot1x max-eap-req command. Parameters number Enter the number of times an EAP request is transmitted before a session time-out.
Page 196: Parameters
Parameters force-authorized force-authorized Enter the keyword to forcibly authorize a port. auto auto Enter the keyword to authorize a port based on the 802.1X operation result. force-unauthorized force-unauthorized Enter the keyword to forcibly de-authorize a port. Defaults No default behavior or values Command Modes INTERFACE Command...
Page 197 Parameters interval interval seconds (Optional) Enter the keyword followed by the interval time, in seconds, after which re-authentication will be initiated. Range: 1 to 31536000 (1 year) Default: 3600 (1 hour) Defaults 3600 seconds (1 hour) Command Modes INTERFACE Command Version 7.6.1.0 Introduced on C-Series and S-Series History...
Page 198 dot1x server-timeout c e s Configure the amount of time after which exchanges with the server time out. Syntax dot1x server-timeout seconds To return to the default, use the no dot1x server-timeout command. Parameters seconds Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant.
Page 199 dot1x supplicant-timeout c e s Configure the amount of time after which exchanges with the supplicant time out. dot1x supplicant-timeout seconds Syntax To return to the default, use the no dot1x supplicant-timeout command. Parameters seconds Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant.
Page 200 show dot1x cos-mapping interface Display the CoS priority-mapping table provided by the RADIUS server and applied to authenticated supplicants on an 802.1X-enabled port. Syntax show dot1x cos-mapping interface interface [mac-address mac-address] Parameters interface Enter one of the following keywords and slot/port or number information: For a Gigabit Ethernet interface, enter the keyword GigabitEthernet •...
Page 201 show dot1x interface c e s Display the 802.1X configuration of an interface. show dot1x interface interface [mac-address mac-address] Syntax Parameters interface Enter one of the following keywords and slot/port or number information: For a Gigabit Ethernet interface, enter the keyword GigabitEthernet •...
Page 202 Figure 8-3. show dot1x interface mac-address Command Example FTOS#show dot1x interface gig 2/21 mac-address 00:00:01:00:07:00 802.1x information on Gi 2/21: ----------------------------- Dot1x Status: Enable Port Control: AUTO Re-Authentication: Disable Guest VLAN: Disable Guest VLAN id: NONE Auth-Fail VLAN: Disable Auth-Fail VLAN id: NONE Auth-Fail Max-Attempts: NONE...
Page 203 Figure 8-4. show dot1x interface (with Multi-Supplicant Authentication enabled) Example FTOS#show dot1x interface g 0/21 802.1x information on Gi 0/21: ----------------------------- Dot1x Status: Enable Port Control: AUTO Re-Authentication: Disable Guest VLAN: Enable Guest VLAN id: Auth-Fail VLAN: Disable Auth-Fail VLAN id: NONE Auth-Fail Max-Attempts: NONE...
Page 204 802.1X...
Page 205 Access Control Lists (ACL) Overview c e s Access Control Lists (ACLs) are supported on platforms FTOS supports the following types of Access Control List (ACL), IP prefix list, and route map: • Commands Common to all ACL Types • Common IP ACL Commands •...
Page 206: Command Modes Interface
description c e s Configure a short text string describing the ACL. Syntax description text Parameters text Enter a text string up to 80 characters long. Defaults Not enabled. Command Modes CONFIGURATION-STANDARD-ACCESS-LIST CONFIGURATION-EXTENDED-ACCESS-LIST CONFIGURATION-MAC ACCESS LIST-STANDARD CONFIGURATION-MAC ACCESS LIST-EXTENDED Command Version 8.1.1.0 Introduced on E-Series ExaScale History...
Page 207 The following example shows the use of the remark command twice within the CONFIGURATION-STANDARD-ACCESS-LIST mode. Here, the same sequence number was used for the remark and for an associated ACL rule. The remark will precede the rule in the running-config because it is assumed that the remark is for the rule with the same sequence number, or the group of rules that follow the remark.
Page 208 platforms support Ingress IP ACLs only. The following commands allow you to clear, display, and assign IP ACL configurations. • access-class • clear counters ip access-group • ip access-group • show ip access-lists • show ip accounting access-list Note: See also Commands Common to all ACL Types.
Page 209: Range: 1 To
ip access-group c e s Assign an IP access list (IP ACL) to an interface. ip access-group access-list-name {in | out} [implicit-permit] [vlan vlan-id] Syntax Parameters access-list-name Enter the name of a configured access list, up to 140 characters. Enter the keyword to apply the ACL to incoming traffic.
Page 210 show ip access-lists c e s Display all of the IP ACLs configured in the system, whether or not they are applied to an interface, and the count of matches/mismatches against each ACL entry displayed. Syntax show ip access-lists [access-list-name] [interface interface] [in |out] Parameters access-list-name Enter the name of a configured MAC ACL, up to 140 characters.
Page 211 Command Modes EXEC EXEC Privilege Command Version 7.6.1.0 Support added for S-Series History Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced Example Figure 9-3. Command Example: show ip accounting access-lists FTOS#show ip accounting access FILTER1 interface gig 1/6 Extended IP access list FILTER1 seq 5 deny ip any 191.1.0.0 /16 count (0x00 packets) seq 10 deny ip any 191.2.0.0 /16 order 4 seq 15 deny ip any 191.3.0.0 /16...
Page 212: Default
deny c e s Configure a filter to drop packets with a certain IP address. Syntax deny {source [mask] | any | host ip-address} [count [byte] | log] [dscp value] [order] [monitor] [fragments] To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number •...
Page 213 Usage The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Information Service” chapter of the FTOS Configuration Guide for more information. When you use the log option, CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’...
Page 214 Example Figure 9-4. Command Example: ip access-list standard FTOS(conf)#ip access-list standard TestList FTOS(config-std-nacl)# Related ip access-list extended Create an extended access list. Commands show config Display the current configuration. permit c e s Configure a filter to permit packets from a specific source IP address to leave the switch. Syntax permit {source [mask] | any | host ip-address} [count [byte] | log] [dscp value] [order] [monitor]...
Page 215 Command Version 8.3.1.0 Add DSCP value for ACL matching. History Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 monitor Added support for non-contiguous mask and added the...
Page 216 Command Version 8.2.1.0 Introduced on E-Series ExaScale (IPv6) History Version 8.1.1.0 Introduced on E-Series ExaScale (IPv4) Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.0...
Page 217 c e s Assign a sequence number to a deny or permit filter in an IP access list while creating the filter. seq sequence-number {deny | permit} {source [mask] | any | host ip-address}} [count Syntax [byte] | log] [dscp value] [order] [monitor] [fragments] Parameters sequence-number Enter a number from 0 to 4294967290.
Page 218 monitor Version 7.4.1.0 Added support for non-contiguous mask and added the option. Version 6.5.10 order Expanded to include the optional QoS priority for the ACL entry. Usage The monitor option is relevant in the context of flow-based monitoring only. See Chapter 44, Port Information Monitoring.
Page 219 • permit ether-type • permit icmp • permit tcp • permit udp • resequence access-list • resequence prefix-list ipv4 • seq arp • seq ether-type • Note: See also Commands Common to all ACL Types Common IP ACL Commands. deny c e s Configure a filter that drops IP packets meeting the filter criteria.
Page 220 order order (OPTIONAL) Enter the keyword to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
Page 221 deny arp Configure an egress filter that drops ARP packets on egress ACL supported line cards (see your line card documentation). Syntax deny arp {destination-mac-address mac-address-mask | any} vlan vlan-id {ip-address | any | opcode code-number} [count [byte] | log] [order] [monitor] To remove this filter, use one of the following: •...
Page 222 Command Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. History Version 8.1.1.0 Introduced on E-Series ExaScale monitor Version 7.4.1.0 Added option order Version 6.5.10 Expanded to include the optional QoS priority for the ACL entry. Usage The order option is relevant in the context of the Policy QoS feature only.
Page 223 vlan vlan-id vlan Enter the keyword followed by the VLAN ID to filter traffic associated with a specific VLAN. Range: 1 to 4094, 1-2094 for ExaScale (can used IDs 1-4094) To filter all VLAN traffic specify VLAN 1. source-mac-address Enter a MAC address and mask in the nn:nn:nn:nn:nn format. mac-address-mask For the MAC address mask, specify which bits in the MAC address must match.
Page 224 You cannot include IP, TCP or UDP (Layer 3) filters in an ACL configured with ARP or Ether-type (Layer 2) filters. Apply Layer 2 ACLs (ARP and Ether-type) to Layer 2 interfaces only. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value.
Page 225 Defaults Not configured Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Command dscp Version 8.3.1.0 Added keyword. History Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale monitor Version 7.4.1.0 Added support for non-contiguous mask and added the option.
Page 226 Table 9-2. ICMP Message Type Keywords Keyword ICMP Message Type Name mask-reply Mask replies mask-request Mask requests mobile-redirect Mobile host redirect net-redirect Network redirect net-tos-redirect Network redirect for TOS net-tos-unreachable Network unreachable for TOS net-unreachable Network unreachable network-unknown Network unknown no-room-for-option Parameter required but no room option-missing...
Page 227 • Use the no deny tcp {source mask | any | host ip-address} {destination mask | any | host ip-address} command. Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous.
Page 228 monitor monitor (OPTIONAL) Enter the keyword when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule will be applied to the monitored interface. For details, see the section “Flow-based Monitoring”...
Page 229 For example, an ACL rule with TCP port range 4000 - 8000 uses 8 entries in the CAM: Rule# Data Mask From #Covered 0000111110100000 1111111111100000 4000 4031 0000111111000000 1111111111000000 4032 4095 0001000000000000 1111100000000000 4096 6143 2048 0001100000000000 1111110000000000 6144 7167 1024 0001110000000000 1111111000000000 7168 7679...
Page 230: Range
operator (OPTIONAL) Enter one of the following logical operand: • = equal to • = not equal to • = greater than • = less than range • = inclusive range of ports port port (OPTIONAL) Enter the application layer port number. Enter two port numbers if range using the logical operand.
Page 231 The C-Series and S-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. The monitor option is relevant in the context of flow-based monitoring only. See the Chapter 44, Port Monitoring. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value.
Page 232 Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced on E-Series Usage...
Page 233 byte byte (OPTIONAL) Enter the keyword to count bytes processed by the filter. (OPTIONAL, E-Series only) Enter the keyword to enter ACL matches in the log. dscp dcsp (OPTIONAL) Enter the keyword to match to the IP DSCP values. order order (OPTIONAL) Enter the keyword to specify the QoS order of priority...
Page 234 permit arp Configure a filter that forwards ARP packets meeting this criteria.This command is supported only on 12-port GE line cards with SFP optics; refer to your line card documentation for specifications. Syntax permit arp {destination-mac-address mac-address-mask | any} vlan vlan-id {ip-address | any | opcode code-number} [count [byte] | log] [order] [monitor] [fragments] To remove this filter, use one of the following: •...
Page 235 Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Command Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. History Version 8.1.1.0 Introduced on E-Series ExaScale monitor Version 7.4.1.0 Added support for non-contiguous mask and added the option. order Version 6.5.10 Expanded to include the optional QoS priority for the ACL entry.
Page 236 vlan vlan-id vlan Enter the keyword followed by the VLAN ID to filter traffic associated with a specific VLAN. Range: 1 to 4094, 1-2094 for ExaScale (can used IDs 1-4094) To filter all VLAN traffic specify VLAN 1. source-mac-address Enter a MAC address and mask in the nn:nn:nn:nn:nn format. mac-address-mask For the MAC address mask, specify which bits in the MAC address must match.
Page 237 permit icmp Configure a filter to allow all or specific ICMP messages. permit icmp {source mask | any | host ip-address} {destination mask | any | host Syntax ip-address} [dscp] [message-type] [count [byte] | log] [order] [monitor] [fragments] To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number •...
Page 238 monitor Version 7.4.1.0 Added support for non-contiguous mask and added the option. Version 6.5.10 order Expanded to include the optional QoS priority for the ACL entry. Usage The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Information Service”...
Page 239 operator (OPTIONAL) Enter one of the following logical operand: • = equal to • = not equal to • = greater than • = less than range port • = inclusive range of ports (you must specify two port for the parameter.) port port Enter the application layer port number.
Page 240 Usage The order option is relevant in the context of the Policy QoS feature only. See the Quality of Service Information chapter of the FTOS Configuration Guide for more information. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value.
Page 241 permit udp c e s Configure a filter to pass UDP packets meeting the filter criteria. permit udp {source mask | any | host ip-address} [operator port [port]] {destination mask | Syntax any | host ip-address} [dscp] [operator port [port]] [count [byte] | log] [order] [monitor] [fragments] To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number...
Page 242 Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Command dscp Version 8.3.1.0 Added keyword. History Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 monitor Added support for non-contiguous mask and added the...
Page 243 Related ip access-list extended Configure an extended ACL. Commands permit Assign a permit filter for IP packets. permit tcp Assign a permit filter for TCP packets. resequence access-list c e s Re-assign sequence numbers to entries of an existing access-list. Syntax resequence access-list {ipv4 | mac} {access-list-name StartingSeqNum Step-to-Increment}...
Page 244 Parameters prefix-list-name Enter the name of configured prefix list, up to 140 characters long. StartingSeqNum Enter the starting sequence number to resequence. Range: 0 – 65535 Step-to-Increment Enter the step to increment the sequence number. Range: 1 – 65535 Defaults No default values or behavior Command Modes EXEC...
Page 245 vlan vlan-id vlan Enter the keyword followed by the VLAN ID to filter traffic associated with a specific VLAN. Range: 1 to 4094, 1-2094 for ExaScale (can used IDs 1-4094) To filter all VLAN traffic specify VLAN 1. ip-address Enter an IP address in dotted decimal format (A.B.C.D) as the target IP address of the ARP.
Page 246 • If the sequence-number is configured, then the sequence-number is used as a tie breaker for rules with the same order. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. You cannot include IP, TCP or UDP (Layer 3) filters in an ACL configured with ARP or Ether-type (Layer 2) filters.
Page 247 order order (OPTIONAL) Enter the keyword to specify the QoS priority for the ACL entry. Range: 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
Page 248 c e s Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter. Syntax seq sequence-number {deny | permit} {ip-protocol-number | icmp | ip | tcp | udp} {source mask | any | host ip-address} {destination mask | any | host ip-address} [operator port [port]] [count [byte] | log] [dscp value] [order] [monitor] [fragments] Parameters sequence-number...
Page 249 (OPTIONAL, E-Series only) Enter the keyword to enter ACL matches in the log. Supported on Jumbo-enabled line cards only. dscp dcsp (OPTIONAL) Enter the keyword to match to the IP DCSCP values. order order (OPTIONAL) Enter the keyword to specify the QoS priority for the ACL entry.
Page 250 If the sequence-number is configured, then the sequence-number is used as a tie breaker for rules with the same order. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Related deny Configure a filter to drop packets.
Page 251 mac access-group c e s Apply a MAC ACL to traffic entering or exiting an interface. mac access-group access-list-name {in [vlan vlan-range] | out} Syntax Parameters access-list-name Enter the name of a configured MAC access list, up to 140 characters. vlan vlan vlan-range (OPTIONAL) Enter the keyword...
Page 252 Parameters access-list-name Enter the name of a configured MAC ACL, up to 140 characters. interface interface interface Enter the keyword followed by the one of the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 253 Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Example Figure 9-6. Command Example: show mac accounting access-list FTOS#show mac accounting access-list mac-ext interface po 1 Extended mac access-list mac-ext on GigabitEthernet 0/11 seq 5 permit host 00:00:00:00:00:11 host 00:00:00:00:00:19 count (393794576 packets)
Page 254 • Use the no deny {any | mac-source-address mac-source-address-mask} command. Parameters Enter the keyword to specify that all traffic is subject to the filter. mac-source-address Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-source-address-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match).
Page 255 mac access-list standard c e s Name a new or existing MAC access control list (MAC ACL) and enter the MAC ACCESS LIST mode to configure a standard MAC ACL. See Commands Common to all ACL Types Common MAC Access List Commands.
Page 256 To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number • Use the no permit {any | mac-source-address mac-source-address-mask} command. • Parameters Enter the keyword to forward all packets received with a MAC address.
Page 257 c e s Assign a sequence number to a deny or permit filter in a MAC access list while creating the filter. seq sequence-number {deny | permit} {any | mac-source-address Syntax [mac-source-address-mask]} [count [byte]] [log] [monitor] Parameters sequence-number Enter a number between 0 and 65535. deny deny Enter the keyword...
Page 258 Extended MAC ACL Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. platforms support Ingress MAC ACLs only. The following commands configure Extended MAC ACLs. • deny • mac access-list extended •...
Page 259 ethertype operator (OPTIONAL) To filter based on protocol type, enter one of the following Ethertypes: • - is the Ethernet II frame format. • - is the IEEE 802.3 frame format. snap • - is the IEEE 802.3 SNAP frame format. count count (OPTIONAL) Enter the keyword...
Page 260 Command Modes CONFIGURATION Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series...
Page 261 Parameters Enter the keyword to forward all packets. host host Enter the keyword followed by a MAC address to forward packets with that host address. mac-source-address Enter the source MAC address in nn:nn:nn:nn:nn:nn format. mac-source-address-mask Specify which bits in the MAC address must be matched. The MAC ACL supports an inverse mask, therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly.
Page 262 Related deny Configure a filter to drop traffic based on the MAC address. Commands Configure a filter with specific sequence numbers. c e s Configure a filter with a specific sequence number. Syntax seq sequence-number {deny | permit} {any | host mac-address | mac-source-address mac-source-address-mask} {any | host mac-address | mac-destination-address mac-destination-address-mask} [ethertype operator] [count [byte]] [log] [monitor] Parameters...
Page 263 Command Modes CONFIGURATION-MAC ACCESS LIST-STANDARD Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series monitor Version 7.4.1.0 Added option pre-Version 6.1.1.0 Introduced for E-Series Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value.
Page 264 Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Default...
Page 265 ip prefix-list c e s Enter the PREFIX-LIST mode and configure a prefix list. ip prefix-list prefix-name Syntax Parameters prefix-name Enter a string up to 16 characters long as the name of the prefix list, up to 140 characters long. Command Modes CONFIGURATION Command...
Page 266 Usage Sequence numbers for this filter are automatically assigned starting at sequence number 5. Information If the options ge or le are not used, only packets with an exact match to the prefix are filtered. Related deny Configure a filter to drop packets. Commands Configure a drop or permit filter with a specified sequence number.
Page 267 show config c e s the current PREFIX-LIST configurations. Display show config Syntax Command Modes PREFIX-LIST Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Example Figure 9-9.
Page 268 Example Figure 9-10. Command Example: show ip prefix-list detail FTOS#show ip prefix-list detail Prefix-list with the last deletion/insertion: filter_ospf ip prefix-list filter_in: count: 3, range entries: 3, sequences: 5 - 10 seq 5 deny 1.102.0.0/16 le 32 (hit count: 0) seq 6 deny 2.1.0.0/16 ge 23 (hit count: 0) seq 10 permit 0.0.0.0/0 le 32 (hit count: 0) ip prefix-list filter_ospf:...
Page 269 Route Map Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. The following commands allow you to configure route maps and their redistribution criteria. • continue • description • match as-path •...
Page 270 Command Modes ROUTE-MAP Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.0 Introduced Usage The continue feature allows movement from one route-map entry to a specific route-map entry (the Information sequence number).
Page 271 Parameters description Enter a description to identify the route map (80 characters maximum). Defaults No default behavior or values Command Modes ROUTE-MAP Command Version 8.1.1.0 Introduced on E-Series ExaScale History pre-Version 7.7.1.0 Introduced Related route-map Enable a route map Commands match as-path c e s Configure a filter to match routes that have a certain AS number in their BGP path.
Page 272 Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Related ip community-list Configure an Community Access list. Commands set community Specify a COMMUNITY attribute. neighbor send-community Send COMMUNITY attribute to peer or peer group.
Page 273 match route-type Redistribute routes that match a route type. match tag Redistribute routes that match a specific tag. match ip address c e s Configure a filter to match routes based on IP addresses specified in an access list. Syntax match ip address prefix-list-name Parameters prefix-list-name...
Page 274 Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Related...
Page 275 match metric c e s Configure a filter to match on a specified value. match metric metric-value Syntax Parameters metric-value Enter a value to match. Range: zero (0) to 4294967295. Defaults Not configured. Command Modes ROUTE-MAP Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Support added for S-Series...
Page 276 match route-type c e s Configure a filter to match routes based on the how the route is defined. Syntax match route-type {external [type-1 | type-2] | internal | level-1 | level-2 | local} Parameters external type-1| type-2 external type-1 type-2 Enter the keyword followed by either...
Page 277 Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Related match interface Redistribute routes that match the next-hop interface. Commands match ip address Redistribute routes that match an IP address. match ip next-hop Redistribute routes that match the next-hop IP address. match ip route-source Redistribute routes that match routes advertised by other routers.
Page 278 Prior to 7.8.1.0, names are up to 16 characters long. Related show config Display the current configuration. Commands set as-path c e s Configure a filter to modify the AS path for BGP routes. Syntax set as-path prepend as-number [... as-number] Parameters prepend as-number prepend...
Page 279 Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Related set level Specify the OSPF area for route redistribution. Commands set metric Specify the metric value assigned to redistributed routes. set metric-type Specify the metric type assigned to redistributed routes. set tag Specify the tag assigned to redistributed routes.
Page 280 set community c e s Allows you to assign a BGP COMMUNITY attribute. Syntax set community {community-number | local-as | no-advertise | no-export | none} [additive] To delete a BGP COMMUNITY attribute assignment, use the no set community {community-number | local-as | no-advertise | no-export | none} command. Parameters community-number Enter the community number in AA:NN format where AA is the AS number (2...
Page 281 set level c e s Configure a filter to specify the IS-IS level or OSPF area to which matched routes are redistributed. set level {backbone | level-1 | level-1-2 | level-2 | stub-area} Syntax Parameters backbone backbone Enter the keyword to redistribute matched routes to the OSPF backbone area (area 0.0.0.0).
Page 282 Usage set local-preference command changes the LOCAL_PREF attribute for routes meeting the Information bgp default route map criteria. To change the LOCAL_PREF for all routes, use the local-preference command. Related bgp default local-preference Change default LOCAL_PREF attribute for all routes. Commands set metric c e s...
Page 283 Command Modes ROUTE-MAP Command Version 8.3.1.0 internal Implemented keyword History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Related set automatic-tag Compute the tag value of the route. Commands set level Specify the OSPF area for route redistribution.
Page 284 set origin c e s Configure a filter to manipulate the BGP ORIGIN attribute. Syntax set origin {igp | egp | incomplete} Parameters Enter the keyword to set routes originating from outside the local AS. Enter the keyword to set routes originating within the same AS. incomplete incomplete Enter the keyword...
Page 285 set weight c e s Configure a filter to add a non-RFC compliant attribute to the BGP route to assist with route selection. set weight weight Syntax Parameters weight Enter a number as the weight to be used by the route meeting the route map specification. Routes with a higher weight are preferred when there are multiple routes to the same destination.
Page 286 Parameters map-name (OPTIONAL) Enter the name of a configured route map, up to 140 characters. Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long.
Page 287 deny Create a filter to drop routes that match the route’s AS-PATH attribute. Use regular expressions to identify which routes are affected by the filter. Syntax deny as-regular-expression Parameters as-regular-expression Enter a regular expression to match BGP AS-PATH attributes. Use one or a combination of the following: •...
Page 288 Example Figure 9-15. Command Example: ip as-path access-list FTOS(conf)#ip as-path access-list TestPath FTOS(config-as-path)# Usage Use the match as-path neighbor filter-list commands to apply the AS-PATH ACL to BGP Information routes. Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters.
Page 289 show config the current configuration. Display show config Syntax Command Mode AS-PATH ACL Command Version 8.1.1.0 Introduced on E-Series ExaScale History pre-Version 6.1.1.0 Introduced for E-Series Example Figure 9-16. Command Example: show config (AS-PATH ACL) FTOS(config-as-path)#show config ip as-path access-list snickers deny .3 FTOS(config-as-path)# show ip as-path-access-lists...
Page 290 • ip community-list • permit • show config • show ip community-lists deny Create a filter to drop routes matching a BGP COMMUNITY number. Syntax deny {community-number | local-AS | no-advertise | no-export | quote-regexp regular-expressions-list | regexp regular-expression} Parameters community-number Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system.
Page 291 ip community-list Enter COMMUNITY-LIST mode and create an IP community-list for BGP. ip community-list comm-list-name Syntax To delete a community-list, use the no ip community-list comm-list-name command. Parameters comm-list-name Enter a text string as the name of the community-list, up to 140 characters. Command Modes CONFIGURATION Example...
Page 292 no-export no-export Enter the keywords to drop all routes containing the well-known community attribute of NO_EXPORT. All routes with the NO_EXPORT (0xFFFFFF01) community attribute must not be advertised outside a BGP confederation boundary. regexp regexp Enter the keyword followed by a regular expression. Use one or a regular-expression combination of the following: •...
Page 293 show ip community-lists configured IP community lists in alphabetic order. Display Syntax show ip community-lists [name] Parameters name (OPTIONAL) Enter the name of the standard or extended IP community list, up to 140 characters. Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History...
Page 294 Access Control Lists (ACL)
Page 295 ACL VLAN Group Overview The ACL VLAN Group feature is available only on the E-Series, as indicated by this symbol under each command heading: Since VLAN ACLs exist as multiple ACLs in the CAM, the size of the ACLs can be limited in the CAM.
Page 296 Command Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 History characters long. Version 6.3.1.0 Introduced on E-Series Usage You can have up to 8 different ACL VLAN groups at any given time. Information Related show acl-vlan-group...
Page 297 member vlan Add VLAN member(s) to an ACL VLAN group. member vlan {VLAN-range} Syntax Parameters VLAN-range Enter the comma separated VLAN ID set. For example, 1-10,400-410,500 Defaults No default behavior or values Command Modes CONFIGURATION (conf-acl-vl-grp) Command Version 6.3.1.0 Introduced on E-Series History Usage At a maximum, there can be only 32 VLAN members in all ACL VLAN groups.
Page 298 Figure 10-1. Command Example: show acl-vlan-group FTOS#show acl-vlan-group Group Name Egress IP Acl Vlan Members TestGroupSeventeenTwenty SpecialAccessOnlyExperts 100,200,300 CustomerNumberIdentifica AnyEmployeeCustomerEleve 2-10,99 HostGroup Group5 1,1000 FTOS# Truncated Group and Access List Names Figure 10-2 shows the table style display when using the show acl-vlan-group group-name option. Note that the access list name is truncated.
Page 299 EXEC Privilege Command Version 7.8.1.0 Introduced on E-Series History Usage Notes The output for this command is shown in a line-by-line format. This allows the ACL-VLAN-Group names (or the Access List Group Names) to display in their entirety. Example Figure 10-4. Command Example: show acl-clan-group FTOS(conf-acl-vl-grp)#show config acl-vlan-group group1 description Acl Vlan Group1...
Page 300 Command Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 History characters long. Version 6.3.1.0 Introduced on E-Series Example Figure 10-6. show running-config acl-vlan-group Command Example Output FTOS#show running-config acl-vlan-group acl-vlan-group group1 description Acl Vlan Group1 member vlan 1-10,400-410,500...
Page 301 Bidirectional Forwarding Detection (BFD) Overview Bidirectional Forwarding Detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The FTOS implementation is based on the standards specified in the IETF Draft draft-ietf-bfd-base-03 and supports BFD on all Layer 3 physical interfaces including VLAN interfaces and port-channels.
Page 302 bfd all-neighbors Enable BFD sessions with all neighbors discovered by Layer 3 protocols IS-IS, OSPF, or BGP on router interfaces, and (optionally) reconfigure the default timer values. Syntax bfd all-neighbors [interval min_rx multiplier role {active | passive}] interval min_rx value Parameters interval milliseconds (OPTIONAL) Enter this keyword to specify non-default BFD session...
Page 303 • Neighbors that have been explicitly enabled or disabled for a BFD session with the bfd neighbor neighbor bfd disable commands in ROUTER BGP mode do not inherit the global BFD enable/ disable values configured with the bfd all-neighbors command or configured for the peer group to which a neighbor belongs.
Page 304 bfd enable (Interface) Enable BFD on an interface. Syntax bfd enable Defaults BFD is enabled on all interfaces when you enable BFD from CONFIGURATION mode. Command Modes INTERFACE Command Version 8.2.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series bfd interval...
Page 305 Example Figure 11-1. bfd interval Command Example FTOS(conf-if-gi-0/3)#bfd interval 250 min_rx 300 multiplier 4 role passive FTOS(conf-if-gi-0/3)# bfd neighbor Establish a BFD session with a neighbor. Syntax bfd neighbor ip-address Parameters ip-address Enter the IP address of the neighbor in dotted decimal format (A.B.C.D). Defaults None Command Modes...
Page 306 clear bfd counters Clear all BFD counters, or counters for a particular interface. Syntax clear bfd counters [interface] Parameters interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: gigabitethernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 307 debug bfd Enable BFD debugging. Syntax debug bfd {detail | event | packet} {all | interface} [mode] [count number] Parameters detail (OPTIONAL) Enter this keyword to display detailed information about BFD packets. event mode (OPTIONAL) Enter this keyword to display information about BFD state. The option is not available with this option.
Page 308 ip route bfd Enable BFD for all neighbors configured through static routes. Syntax ip route bfd [interval min_rx multiplier role {active | passive}] interval min_rx value Parameters interval milliseconds (OPTIONAL) Enter this keyword to specify non-default BFD session parameters beginning with the transmission interval. Range:50-1000 Default:100 min_rx milliseconds...
Page 309 min_rx milliseconds Enter this keyword to specify the minimum rate at which the local system would like to receive control packets from the remote system. Range:50-100 Default:100 multiplier value Enter this keyword to specify the number of packets that must be missed in order to declare a session down.
Page 310 Usage When you enable a BFD session with a specified BGP neighbor or peer group using the bfd neighbor Information command, the default BFD session parameters are used (interval: 100 milliseconds, min_rx: 100 milliseconds, multiplier: 3 packets, and role: active) if no parameters have been specified with the command.
Page 311 show bfd counters Display BFD counter information. Syntax show bfd counters [bgp | isis | ospf | vrrp | static-route] [interface] Parameters interface Enter one of the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
Page 312 Example Figure 11-2. show bfd counters Command Example FTOS#show bfd counters Interface GigabitEthernet 1/3 FTOS# show bfd neighbors Display BFD neighbor information on all interfaces or a specified interface. Syntax show bfd neighbors interface [detail] Parameters interface Enter one of the following keywords and slot/port or number information: •...
Page 313 Example Figure 11-3. show bfd neighbors Command FTOS#show bfd neighbors - Active session role Ad Dn - Admin Down - CLI - ISIS - OSPF - Static Route (RTM) LocalAddr RemoteAddr Interface State Rx-int Tx-int Mult Clients * 10.1.3.2 10.1.3.1 Gi 1/3 FTOS# Example...
Page 314 vrrp bfd Establish a VRRP BFD session. Syntax vrrp bfd {all-neighbors | neighbor } [interval min_rx multiplier ip-address interval min_rx role {active | passive}] value Parameters all-neighbors Establish BFD sessions with all BFD neighbors on an interface. neighbor Enter the IP address of the BFD neighbor. ip-address interval milliseconds (OPTIONAL) Enter this keyword to specify non-default BFD session...
Page 315 Border Gateway Protocol IPv4 (BGPv4) Overview BGPv4 is supported as shown in the following table. FTOS version Platform support 8.1.1.0 E-Series ExaScale 7.8.1.0 S-Series 7.7.1.0. C-Series pre-7.7.1.0 E-Series TeraScale For detailed information on configuring BGP, refer to the BGP chapter in the FTOS Configuration Guide.
Page 316 The following commands enable you to configure and enable BGP. • address-family • aggregate-address • bgp always-compare-med • bgp asnotation • bgp bestpath as-path ignore • bgp bestpath med confed • bgp bestpath med missing-as-best • bgp bestpath router-id ignore •...
Page 317 • neighbor default-originate • neighbor description • neighbor distribute-list • neighbor ebgp-multihop • neighbor fall-over • neighbor filter-list • neighbor graceful-restart • neighbor local-as • neighbor maximum-prefix • neighbor next-hop-self • neighbor password • neighbor peer-group (assigning peers) • neighbor peer-group (creating group) •...
Page 318 • show ip bgp paths community • show ip bgp peer-group • show ip bgp regexp • show ip bgp summary • show running-config bgp • timers bgp address-family c e s Enable the IPv4 multicast or the IPv6 address family. Syntax address-family [ipv4 multicast| ipv6unicast] Parameters...
Page 319 Command Modes ROUTER BGP ADDRESS FAMILY ROUTER BGP ADDRESS FAMILY IPv6 Usage At least one of the routes included in the aggregate address must be in the BGP routing table for the Information configured aggregate to become active. Do not add the as-set parameter to the aggregate, if routes within the aggregate are constantly changing as the aggregate will flap to keep track of the changes in the AS_PATH.
Page 320 bgp asnotation c e s Enables you to implement a method for AS Number representation in the CLI. Syntax bgp asnotation [asplain | asdot+ | asdot] To disable a dot or dot+ representation and return to ASPLAIN, enter no bgp asnotation. Defaults asplain Command Modes...
Page 321 bgp bestpath as-path ignore c e s Ignore the AS PATH in BGP best path calculations. bgp bestpath as-path ignore Syntax To return to the default, enter no bgp bestpath as-path ignore. Defaults Disabled (that is, the software considers the AS_PATH when choosing a route as best). Command Modes ROUTER BGP Usage...
Page 322 Usage The MED is a 4-Byte unsigned integer value and the default behavior is to assume a missing MED as Information 4294967295. This command causes a missing MED to be treated as 0. During the path selection, paths with a lower MED are preferred over those with a higher MED. Command Version 7.8.1.0 Introduced support on S-Series...
Page 323 bgp cluster-id c e s Assign a cluster ID to a BGP cluster with more than one route reflector. bgp cluster-id {ip-address | number} Syntax To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command. Parameters ip-address Enter an IP address as the route reflector cluster ID.
Page 324 The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. The next hop, MED, and local preference information is preserved throughout the confederation. FTOS accepts confederation EBGP peers without a LOCAL_PREF attribute.
Page 325 bgp dampening c e s Enable BGP route dampening and configure the dampening parameters. bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] Syntax To disable route dampening, use the no bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] command. Parameters half-life (OPTIONAL) Enter the number of minutes after which the Penalty is decreased.
Page 326 bgp default local-preference c e s Change the default local preference value for routes exchanged between internal BGP peers. Syntax bgp default local-preference value To return to the default value, enter no bgp default local-preference. Parameters value Enter a number to assign to routes as the degree of preference for those routes. When routes are compared, the higher the degree of preference or local preference value, the more the route is preferred.
Page 327 Version 7.7.1.0 Introduced support for C-Series Version 7.4.1.0 Introduced bgp fast-external-fallover c e s Enable the fast external fallover feature, which immediately resets the BGP session if a link to a directly connected external peer fails. Syntax bgp fast-external-fallover To disable fast external fallover, enter no bgp fast-external-fallover. Defaults Enabled.
Page 328 bgp graceful-restart c e s Enable graceful restart on a BGP neighbor, a BGP node, or designate a local router to support graceful restart as a receiver only. Syntax bgp graceful-restart [restart-time seconds] [stale-path-time seconds] [role receiver-only] To return to the default, enter the no bgp graceful-restart command. Parameters restart-time seconds restart-time...
Page 329 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series bgp non-deterministic-med c e s Compare MEDs of paths from different Autonomous Systems. Syntax bgp non-deterministic-med To return to the default, enter no bgp non-deterministic-med. Defaults Disabled (that is, paths/routes for the same destination but from different ASs will not have their MEDs compared).
Page 330 Related clear ip bgp ipv4 unicast soft Clear and reapply policies for IPv4 routes without resetting the TCP Commands connection; that is, perform BGP soft reconfiguration. Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced bgp regex-eval-optz-disable...
Page 331 Example Figure 12-2. Command Example: no bgp regex-eval-optz-disable (conf-router_bgp)#no bgp regex-eval-optz-disable (conf-router_bgp)#do show ip protocols Routing Protocol is "ospf 22222" Router ID is 2.2.2.2 Area Routing for Networks 10.10.10.0/00 Routing Protocol is "bgp 1" Cluster Id is set to 10.10.10.0 Router Id is set to 10.10.10.0 Fast-external-fallover enabled Regular expression evaluation optimization enabled...
Page 332 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series bgp soft-reconfig-backup c e s Use this command only when route-refresh is not negotiated between peers to avoid having a peer resend BGP updates. Syntax bgp soft-reconfig-backup To return to the default setting, use the no bgp soft-reconfig-backup command.
Page 333 Related capture bgp-pdu max-buffer-size Specify a size for the capture buffer. Commands show capture bgp-pdu neighbor Display BGP packet capture information Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.5.1.0 Introduced capture bgp-pdu max-buffer-size c e s Set the size of the BGP packet capture buffer.
Page 334 soft Reapply only inbound policies. Note: If you enter , without an option, both inbound and outbound policies are reset. soft Reapply only outbound policies. Note: If you enter , without an option, both inbound and outbound policies are reset. Command Modes EXEC Privilege Command...
Page 335 clear ip bgp flap-statistics c e s Clear BGP flap statistics, which includes number of flaps and the time of the last flap. clear ip bgp flap-statistics [ip-address mask | filter-list as-path-name | regexp Syntax regular-expression] Parameters ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and the prefix mask in slash format (/x) to reset only that prefix.
Page 336 Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group peer-group Enter the keyword followed by the name of the peer group. peer-group-name (OPTIONAL) Enter the keyword to view only information on inbound BGP routes. (OPTIONAL) Enter the keyword to view only information on outbound BGP routes.
Page 337 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series debug ip bgp events c e s Display information on local BGP state changes and other BGP events. Syntax debug ip bgp [ip-address | peer-group peer-group-name] events [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] events command.
Page 338 Usage Enter no debug ip bgp command to remove all configured debug commands for BGP. Information Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series debug ip bgp notifications c e s Enables you to view information about BGP notifications received from neighbors. Syntax debug ip bgp [ip-address | peer-group peer-group-name] notifications [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name]...
Page 339 Command Modes EXEC Privilege Usage This command turns on BGP soft-reconfiguration inbound debugging for IPv4 unicast routes. If no Information neighbor is specified, debug is turned on for all neighbors. Command Version 8.4.1.0 Introduced support for IPv4 multicast and IPv6 unicast routes History Version 7.8.1.0 Introduced support on S-Series...
Page 340 Defaults Command Modes ROUTER BGP Usage default-metric command in BGP sets the value of the BGP MULTI_EXIT_DISC (MED) attribute Information for redistributed routes only. Related bgp always-compare-med Enable comparison of all BGP MED attributes. Commands redistribute Redistribute routes from other routing protocols into BGP. Command Version 7.8.1.0 Introduced support on S-Series...
Page 341 = 20; internal-distance = 200; local-distance = 200. Command Modes ROUTER BGP Caution: Dell Force10 recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. Usage The higher the administrative distance assigned to a route means that your confidence in that route is Information low.
Page 342 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series neighbor activate c e s This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI (Address Family Identifier/Subsequent Address Family Identifier). Syntax neighbor [ip-address | peer-group-name] activate To disable, use the no neighbor [ip-address | peer-group-name] activate command.
Page 343 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series neighbor advertisement-start c e s Set the minimum interval before starting to send BGP routing updates. Syntax neighbor {ip-address} advertisement-start seconds To return to the default value, use the no neighbor {ip-address} advertisement-start command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
Page 344 neighbor default-originate c e s Inject the default route to a BGP peer or neighbor. Syntax neighbor {ip-address | peer-group-name} default-originate [route-map map-name] To remove a default route, use the no neighbor {ip-address | peer-group-name} default-originate command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group.
Page 345 neighbor distribute-list c e s Distribute BGP information via an established prefix list. neighbor {ip-address | peer-group-name} distribute-list prefix-list-name {in | out} Syntax To delete a neighbor distribution list, use the no neighbor {ip-address | peer-group-name} distribute-list prefix-list-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
Page 346 Command Modes ROUTER BGP Usage To prevent loops, the neighbor ebgp-multihop command will not install default routes of the multihop Information peer. Networks not directly connected are not considered valid for best path selection. Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series...
Page 347 as-path-name Enter the name of an established AS-PATH access list (up to 140 characters). If the AS-PATH access list is not configured, the default is permit (allow routes). Enter the keyword to filter inbound BGP routes. Enter the keyword to filter outbound BGP routes. Defaults Not configured.
Page 348 Usage This feature is advertised to BGP neighbors through a capability advertisement. In receiver only mode, Information BGP saves the advertised routes of peers that support this capability when they restart. Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series neighbor local-as c e s...
Page 349 Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. maximum Enter a number as the maximum number of prefixes allowed for this BGP router. Range: 1 to 4294967295. threshold maximum (OPTIONAL) Enter a number to be used as a percentage of the...
Page 350 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series neighbor password c e s Enable Message Digest 5 (MD5) authentication on the TCP connection between two neighbors. Syntax neighbor {ip-address | peer-group-name} password [encryption-type] password To delete a password, use the no neighbor {ip-address | peer-group-name} password command.
Page 351 neighbor peer-group (assigning peers) c e s Enables you to assign one peer to a existing peer group. neighbor ip-address peer-group peer-group-name Syntax To delete a peer from a peer group, use the no neighbor ip-address peer-group peer-group-name command. Parameters ip-address Enter the IP address of the router to be included in the peer group.
Page 352 To delete a peer group, use the no neighbor peer-group-name peer-group command. Parameters peer-group-name Enter a text string up to 16 characters long as the name of the peer group. Defaults Not configured. Command Modes ROUTER BGP Usage When a peer group is created, it is disabled (shut mode). Information Related neighbor peer-group (assigning peers)
Page 353 Related neighbor soft-reconfiguration inbound Assign a subnet to a dynamically-configured BGP neighbor. Commands Command Version 8.4.2.0 Added support for the match-af keyword History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor remote-as c e s Create and specify the remote peer to the BGP neighbor.
Page 354 Parameters ip-address Enter the IP address of the neighbor to remove the private AS numbers. peer-group-name Enter the name of the peer group to remove the private AS numbers Defaults Disabled (that is, private AS number are not removed). Command Modes ROUTER BGP Usage Applies to EBGP neighbors only.
Page 355 If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. Command Version 7.8.1.0 Introduced support on S-Series...
Page 356 neighbor route-reflector-client c e s Configure the router as a route reflector and the specified neighbors as members of the cluster. Syntax neighbor {ip-address | peer-group-name} route-reflector-client To remove one or more neighbors from a cluster, use the no neighbor {ip-address | peer-group-name} route-reflector-client command.
Page 357 neighbor send-community c e s Send a COMMUNITY attribute to a BGP neighbor or peer group. A COMMUNITY attribute indicates that all routes with that attribute belong to the same community grouping. Syntax neighbor {ip-address | peer-group-name} send-community To disable sending a COMMUNITY attribute, use the no neighbor {ip-address | peer-group-name} send-community command.
Page 358 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series neighbor soft-reconfiguration inbound c e s Enable a BGP soft-reconfiguration and start storing inbound route updates. Syntax neighbor {ipv4-address | ipv6-address | peer-group-name} soft-reconfiguration inbound Parameters ipv4-address | Enter the IP address of the neighbor for which you want to start storing inbound routing updates.
Page 359 neighbor subnet c e s Enable passive peering so that the members of the peer group are dynamic neighbor peer-group-name subnet subnet-number mask Syntax To remove passive peering, use the no neighbor peer-group-name subnet subnet-number mask command. Parameters subnet-number Enter a subnet number in dotted decimal format (A.B.C.D.) as the allowable range of addresses included in the Peer group.
Page 360 When two neighbors, configured with different keepalive and holdtime values, negotiate for new values, the resulting values will be as follows: the lower of the holdtime values is the new holdtime value, and • whichever is the lower value; one-third of the new holdtime value, or the configured keepalive •...
Page 361 peer-group-name Enter the name of the peer group to disable all routers within the peer group. weight Enter a number as the weight. Range: 0 to 65535 Default: 0 Defaults Command Modes ROUTER BGP Usage In the FTOS best path selection process, the path with the highest weight value is preferred. Information Note: Reset the neighbor connection...
Page 362 Usage FTOS software resolves the network address configured by the network command with the routes in Information the main routing table to ensure that the networks are reachable via non-BGP routes and non-default routes. Related redistribute Redistribute routes into BGP. Commands Command Version 7.8.1.0...
Page 363 static static Enter the keyword to redistribute manually configured routes. These routes are treated as incomplete routes. route-map route-map (OPTIONAL) Enter the keyword followed by the name of an established map-name route map. Only the following ROUTE-MAP mode commands are supported: •...
Page 364 level-1-2 level-1-2 (OPTIONAL) Enter the keyword to independently redistributed into Level 1 and Level 2 routes. This is the default. level-2 level-2 (OPTIONAL) Enter the keyword to independently redistributed into Level 2 routes only metric metric-value metric (OPTIONAL) Enter the keyword followed by the metric value used for the redistributed route.
Page 365 Parameters process-id Enter the number of the OSPF process. Range: 1 to 65535 match external (OPTIONAL) Enter the keywords match external to redistribute OSPF external routes. You can specify 1 or 2 to redistribute those routes only. match internal match internal (OPTIONAL) Enter the keywords to redistribute OSPF internal routes only.
Page 366 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Usage At least one interface must be in Layer 3 mode for the router bgp command to be accepted. If no Information interfaces are enabled for Layer 3, an error message appears: % Error: No router id configured show capture bgp-pdu neighbor...
Page 367 show config c e s View the current ROUTER BGP configuration. show config Syntax Command Modes ROUTER BGP Example Figure 12-6. show config Command Example (conf-router_bgp)#show confi router bgp 45 neighbor suzanne peer-group neighbor suzanne no shutdown neighbor sara peer-group neighbor sara shutdown neighbor 13.14.15.20 peer-group suzanne neighbor 13.14.15.20 shutdown...
Page 368 Example Figure 12-7. show ip bgp Command Example (Partial) >show ip bgp BGP table version is 847562, local router ID is 63.114.8.131 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop...
Page 369 Parameters ipv4 unicast ipv4 unicast (OPTIONAL) Enter the keywords to view information only related to ipv4 unicast routes. cluster-id (OPTIONAL) Enter the cluster id in dotted decimal format. Command Modes EXEC EXEC Privilege Example Figure 12-8. Command Example: show ip bgp cluster-list (Partial) #show ip bgp cluster-list BGP table version is 64444683, local router ID is 120.1.1.1 Status codes: s suppressed, d damped, h history, * valid, >...
Page 370 show ip bgp community c e s View information on all routes with Community attributes or view specific BGP community groups. Syntax show ip bgp [ipv4 unicast] community [community-number] [local-as] [no-export] [no-advertise] Parameters ipv4 unicast ipv4 unicast (OPTIONAL) Enter the keywords to view information only related to ipv4 unicast routes.
Page 371 Example Figure 12-9. show ip bgp community Command Example (Partial) >show ip bgp community BGP table version is 3762622, local router ID is 63.114.8.48 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop...
Page 372 Parameters ipv4 unicast ipv4 unicast (OPTIONAL) Enter the keywords to view information only related to ipv4 unicast routes. community-list-name Enter the name of a configured IP community list. (max 16 chars) exact-match Enter the keyword for an exact match of the communities. Command Modes EXEC EXEC Privilege...
Page 373 Example Figure 12-11. Command Example: show ip bgp dampened-paths >show ip bgp damp BGP table version is 210708, local router ID is 63.114.8.2 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network From...
Page 374 Example Figure 12-12. Command Example: show ip bgp detail R2#show ip bgp detail Detail information for BGP Node bgpNdP 0x41a17000 : NdTmrP 0x41a17000 : NdKATmrP 0x41a17014 : NdTics 74857 : NhLocAS 1 : NdState 2 : NdRPMPrim 1 : NdListSoc 13 NdAuto 1 : NdEqCost 1 : NdSync 0 : NdDefOrg 0 NdV6ListSoc 14 NdDefDid 0 : NdConfedId 0 : NdMedConfed 0 : NdMedMissVal -1 : NdIgnrIllId 0 : NdRRC2C 1 : NdClstId 33686273 : NdPaTblP 0x41a19088...
Page 375 show ip bgp extcommunity-list c e s View information on all routes with Extended Community attributes. show ip bgp [ipv4 unicast] extcommunity-list [list name] Syntax Parameters ipv4 unicast ipv4 unicast (OPTIONAL) Enter the keywords to view information only related to ipv4 unicast routes. list name Enter the extended community list name you wish to view.
Page 376 Example Figure 12-13. Command Example: show ip bgp filter-list #show ip bgp filter-list hello BGP table version is 80227, local router ID is 120.1.1.1 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network...
Page 377 show ip bgp flap-statistics c e s View flap statistics on BGP routes. show ip bgp [ipv4 unicast] flap-statistics [ip-address [mask]] [filter-list as-path-name] Syntax [regexp regular-expression] Parameters ipv4 unicast ipv4 unicast (OPTIONAL) Enter the keywords to view information only related to ipv4 unicast routes. ip-address (OPTIONAL) Enter the IP address (in dotted decimal format) of the BGP network to view information only on that network.
Page 378 Table 12-7 defines the information displayed in Figure 12-14. Table 12-7. show ip bgp flap-statistics Command Example Fields Field Description Network Displays the network ID to which the route is flapping. From Displays the IP address of the neighbor advertising the flapping route. Flaps Displays the number of times the route flapped.
Page 379 Table 12-8. show ip bgp inconsistent-as Command Example Fields Fields Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table.
Page 380 Command Modes EXEC EXEC Privilege Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series detail Version 7.5.1.0 Added option and output now displays default MED value Version 7.2.1.0 Added received and denied route options Version 6.3.10 The output is changed to display the total number of advertised prefixes Example 1 Figure 12-16.
Page 381 Example 2 Figure 12-17. Command Example: show ip bgp neighbors advertised-routes >show ip bgp neighbors 192.14.1.5 advertised-routes BGP table version is 74103, local router ID is 33.33.33.33 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete...
Page 382 Table 12-9. Command Example fields: show ip bgp neighbors Lines beginning with Description BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state. Last read This line displays the following information: •...
Page 383 show ip bgp next-hop c e s View all next hops (via learned routes only) with current reachability and flap status. This command only displays one path, even if the next hop is reachable by multiple paths. Syntax show ip bgp next-hop Command Modes EXEC EXEC Privilege...
Page 384 Parameters regexp Enter a regular expression then use one or a combination of the following characters to match: regular-expression . = (period) any single character (including a white space) = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences).
Page 385 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series show ip bgp paths as-path c e s View all unique AS-PATHs in the BGP database Syntax show ip bgp paths as-path Command Modes EXEC EXEC Privilege Example Figure 12-22.
Page 386 Command Modes EXEC EXEC Privilege Example Figure 12-23. Command Example: show ip bgp paths community (Partial) E1200-BGP>show ip bgp paths community Total 293 Communities Address Hash Refcount Community 0x1ec88a5c 4 209:209 209:6059 209:31272 3908:900 19092:300 0x1e0f10ec 4 209:209 209:3039 209:31272 3908:900 19092:300 0x1c902234 2 209:209 209:7193 209:21362 3908:900 19092:300 0x1f588cd4...
Page 387 detail detail (OPTIONAL) Enter the keyword to view detailed status information of the peers in that peer group. summary summary (OPTIONAL) Enter the keyword to view status information of the peers in that peer group. The output is the same as that found in show ip bgp summary command Command Modes...
Page 388 Related neighbor peer-group (assigning peers) Assign peer to a peer-group. Commands neighbor peer-group (creating group) Create a peer group. show ip bgp peer-group (multicast) View information on the BGP peers in a peer group. Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series...
Page 389 Example Figure 12-25. Command Example: show ip bgp regexp (Partial) #show ip bgp regexp ^2914+ BGP table version is 3700481, local router ID is 63.114.8.35 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop...
Page 390 Example Figure 12-26. Command Example: show ip bgp summary #show ip bgp summary BGP router identifier 120.10.10.1, local AS number 100 BGP table version is 34, main routing table version 34 9 network entrie(s) using 1372 bytes of memory 5 paths using 380 bytes of memory 4 denied paths using 164 bytes of memory BGP-RIB over all using 385 bytes of memory 2 BGP path attribute entrie(s) using 168 bytes of memory...
Page 391 Table 12-16. Command Example fields: show ip bgp summary Field Description Up/Down Displays the amount of time that the neighbor is in the Established stage. If the neighbor has never moved into the Established stage, the word never is displayed. The output format is: Time Established----------Display Example <...
Page 392 Parameters keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. Range: 1 to 65535 Default: 60 seconds holdtime Enter a number for the time interval, in seconds, between the last keepalive message and declaring the router dead.
Page 393 • neighbor default-originate • neighbor distribute-list • neighbor filter-list • neighbor maximum-prefix • neighbor next-hop-self • neighbor remove-private-as • neighbor route-map • neighbor route-reflector-client • neighbor soft-reconfiguration inbound • network • redistribute • redistribute ospf • show ip bgp ipv4 multicast •...
Page 394 aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table. Syntax aggregate-address ip-address mask [advertise-map map-name] [as-set] [attribute-map map-name] [summary-only] [suppress-map map-name] Parameters ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.D) and mask in / prefix format (/x).
Page 395 bgp dampening Enable MBGP route dampening. Syntax bgp dampening [half-life time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life time] [route-map map-name] command. Parameters half-life time (OPTIONAL) Enter the number of minutes after which the Penalty is decreased.
Page 396 Command Version 8.4.1.0 Added support for IPv4 multicast and IPv6 unicast address families History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced clear ip bgp dampening Clear information on route dampening. Syntax clear ip bgp dampening ipv4 multicast network network-mask Parameters dampening dampening...
Page 397 filter-list filter-list list (OPTIONAL) Enter the keyword followed by the name of a configured AS-PATH list (max 16 characters). regexp regexp regexp (OPTIONAL) Enter the keyword followed by regular expressions. Use one or a combination of the following: . = (period) any single character (including a white space) = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences).
Page 398 Command Version 8.4.1.0 Added BGP Soft Reconfiguration support for IPv4 unicast and IPv6 routes History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced debug ip bgp dampening View information on routes being dampened. Syntax debug ip bgp ipv4 multicast dampening To disable debugging, enter no debug ip bgp ipv4 multicast dampening...
Page 399 Command Version 8.4.1.0 Introduced support for IPv4 multicast and IPv6 unicast routes History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced debug ip bgp peer-group updates View information about BGP peer-group updates. debug ip bgp peer-group peer-group-name updates [in | out] To disable debugging, enter no debug ip bgp peer-group peer-group-name updates [in | out] command.
Page 400 = 20; internal-distance = 200; local-distance = 200. Command Modes ROUTER BGP (conf-router_bgp_af) Caution: Dell Force10 recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. Usage The higher the administrative distance assigned to a route means that your confidence in that route is Information low.
Page 401 Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name (OPTIONAL) Enter the name of the peer group activate activate Enter the keyword to enable the neighbor/peer group in the new AFI/SAFI. Defaults Disabled Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Usage By default, when a neighbor/peer group configuration is created in the Router BGP context, it is...
Page 402 neighbor default-originate Inject the default route to a BGP peer or neighbor. Syntax neighbor {ip-address | peer-group-name} default-originate [route-map map-name] To remove a default route, use the no neighbor {ip-address | peer-group-name} default-originate command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group.
Page 403 neighbor filter-list Assign a AS-PATH list to a neighbor or peer group. neighbor route-map Assign a route map to a neighbor or peer group. Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series neighbor filter-list Configure a BGP filter based on the AS-PATH attribute.
Page 404 neighbor maximum-prefix Control the number of network prefixes received. Syntax neighbor ip-address | peer-group-name maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor ip-address | peer-group-name maximum-prefix maximum command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name (OPTIONAL) Enter the name of the peer group.
Page 405 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series neighbor remove-private-as Remove private AS numbers from the AS-PATH of outgoing updates. Syntax neighbor ip-address | peer-group-name remove-private-as To return to the default, use the no neighbor ip-address | peer-group-name remove-private-as command.
Page 406 Usage When you apply a route map to outbound routes, only routes that match at least one section of the route Information map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command.
Page 407 Parameters ipv4-address | Enter the IP address of the neighbor for which you want to start storing inbound routing updates. ipv6-address peer-group-name Enter the name of the peer group for which you want to start storing inbound routing updates. Defaults Disabled Command Modes ROUTER BGP ADDRESS FAMILY (conf-router_bgp_af)
Page 408 Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Usage resolves the network address configured by the network command with the routes in the main FTOS Information routing table to ensure that the networks are reachable via non-BGP routes and non-default routes. Related redistribute Redistribute routes into BGP.
Page 409 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series redistribute ospf Redistribute OSPF routes into BGP. Syntax redistribute ospf process-id [[match external {1 | 2}] [match internal]] [route-map map-name] To stop redistribution of OSPF routes, use the no redistribute ospf process-id command.
Page 410 Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series show ip bgp community c e s View information on all routes with Community attributes or view specific BGP community groups. Syntax show ip bgp ipv4 multicast community [community-number] [local-as] [no-export] [no-advertise]...
Page 411 Parameters community-list-name Enter the name of a configured IP community list. Command Modes EXEC EXEC Privilege Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series show ip bgp dampened-paths View BGP routes that are dampened (non-active). Syntax show ip bgp ipv4 multicast dampened-paths Command Modes...
Page 412 Parameters ip-address (OPTIONAL) Enter the IP address (in dotted decimal format) of the BGP network to view information only on that network. mask (OPTIONAL) Enter the network mask (in slash prefix (/x) format) of the BGP network address. filter-list as-path-name filter-list (OPTIONAL) Enter the keyword followed by the name of a...
Page 413 show ip bgp ipv4 multicast View the current MBGP routing table for the system. Syntax show ip bgp ipv4 multicast [detail | network [network-mask] [length]] Parameters detail detail (OPTIONAL) Enter the keyword to display BGP internal information for the IPv4 Multicast address family. network (OPTIONAL) Enter the network address (in dotted decimal format) of the BGP network to view information only on that network.
Page 414 Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series Version 7.8.1.0 Introduced support on S-Series show ip bgp ipv4 multicast neighbors Displays information on IPv4 multicast routes exchanged by BGP neighbors. Syntax show ip bgp ipv4 multicast neighbors [ipv4-neighbor-addr | ipv6-neighbor-addr] [advertised-routes | dampened-routes | detail | flap-statistics | routes | received-routes [network [network-mask]] | denied-routes [network [network-mask]]] Parameters...
Page 415 Example 1 Figure 12-28. Command Example: show ip bgp ipv4 multicast neighbors #show ip bgp ipv4 multicast neighbors BGP neighbor is 25.25.25.25, remote AS 6400, internal link BGP version 4, remote router ID 25.25.25.25 BGP state ESTABLISHED, in this state for 00:02:18 Last read 00:00:16, hold time is 180, keepalive interval is 60 seconds Received 1404 messages, 0 in queue 3 opens, 1 notifications, 1394 updates...
Page 416 Table 12-18. Command Example fields: show ip bgp ipv4 multicast neighbors Lines beginning with Description BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state. Last read This line displays the following information: •...
Page 417 Parameters peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. detail detail (OPTIONAL) Enter the keyword to view detailed status information of the peers in that peer group. summary summary (OPTIONAL) Enter the keyword to view status information of the peers in that peer group.
Page 418 Table 12-19. Command Example fields: show ip bgp ipv4 multicast summary Field Description network entries Displays the number of network entries and route paths and the amount of memory used to process those entries. BGP path attribute entries Displays the number of BGP path attributes and the amount of memory used to process them.
Page 419 BGP Extended Communities (RFC 4360) BGP Extended Communities, as defined in RFC 4360, is an optional transitive BGP attribute. It provides two major advantages over Standard Communities: • The range is extended from 4-octet (AA:NN) to 8-octet (Type:Value) to provide enough number communities.
Page 420 Related permit Configure to add (permit) rules Commands show ip extcommunity-list Display the Extended Community list Command Version 7.8.1.0 Introduced on S-Series History Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series deny regex c e s This features enables you to specify an extended communities to reject (deny) using a regular expressions (regex).
Page 421 Command Modes CONFIGURATION (conf-ext-community-list) Command Version 7.8.1.0 Introduced on S-Series History Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series ip extcommunity-list c e s Use this feature to enter the Extended Community-list mode. Syntax ip extcommunity-list word To exit from this mode, use the exit command. Parameters word Enter a community list name (maximum 16 characters).
Page 422 Example Figure 12-32. Command Example: match extcommunity (config-route-map)#match extcommunity Freedombird (config-route-map)# Command Version 7.8.1.0 Introduced on S-Series History Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series permit c e s Use this feature to add rules (permit) from the two types of extended communities, Route Origin (rt) or Site-of-Origin (soo).
Page 423 Parameters regex Enter a regular expression. Defaults Not configured Command Modes CONFIGURATION (conf-ext-community-list) Usage Duplicate commands are silently accepted. Information Figure 12-33. Command Example: permit regexp Example (conf-ext-community-list)#permit regexp 123 (conf-ext-community-list)# Related deny regex Deny a community using a regular expression Commands Command Version 7.8.1.0...
Page 424 • If rt options comes after soo, without the additive option, then rt overrides the communities set by soo If rt with additive option comes after soo, then rt adds the communities set by soo • Related set extcommunity soo Set extended community site-of-origin in route-map.
Page 425 show ip bgp ipv4 extcommunity-list c e s Use this feature to display IPv4 routes matching the extended community list name. show ip bgp [ipv4 [multicast | unicast] | ipv6 unicast] extcommunity-list name Syntax Parameters multicast multicast Enter the keyword to display the multicast route information.
Page 426 show ip bgp paths extcommunity c e s Use this feature to display all BGP paths having extended community attributes. Syntax show ip bgp paths extcommunity Command Modes EXEC EXEC Privilege Example Figure 12-35. Command Example: show ip bgp paths community (Partial) #show ip bgp paths extcommunity Total 1 Extended Communities Address...
Page 427 Example Figure 12-36. Command Example: show ip extcommunity-list #show ip extcommunity-list test ip extcommunity-list test deny RT:1234:12 permit regexp 123 deny regexp 234 deny regexp 123 Command Version 7.8.1.0 Introduced on S-Series History Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series show running-config extcommunity-list c e s...
Page 428 Border Gateway Protocol IPv4 (BGPv4)
Page 429 Warning: If you are using these features for the first time, contact the Dell Force10 Technical Assistance Center (TAC) for guidance. For information on contacting Dell Force10 TAC, visit the Dell Force10 website at www.force10networks.com/support...
Page 430 Important Points to Remember • CAM Profiles are available on FTOS versions 6.3.1.1 and later for the E-Series TeraScale. Refer Chapter 13, Content Addressable Memory (CAM) for ExaScale for information on the commands for the E-Series ExaScale platform. • FTOS versions 7.8.1.0 and later support CAM allocations on the C-Series and S-Series. •...
Page 431 cam-acl (Configuration) Allocate CAM for IPv4 and IPv6 ACLs cam-acl {default | Syntax number number number, number number, l2acl ipv4acl ipv6acl ipv4qos l2qos l2pt number ipmacacl number ecfmacl number [ vman-qos vman-dual-qos number} Parameters default Use the default CAM profile settings, and set the CAM as follows. •...
Page 432 cam-acl (EXEC Privilege) Adjust line card CAM setting to match chassis settings. This command is deprecated as of FTOS 8.3.1.0 Syntax cam-acl {chassis |linecard} Command Modes EXEC Privilege Command Version 8.3.1.0 COMMAND DEPRECATED History Version 7.8.1.0 Introduced on the C-Series cam-optimization Optimize CAM utilization for QoS Entries by minimizing require policy-map CAM space.
Page 433 cam-profile (Config) Set the default CAM profile and the required microcode. cam-profile profile microcode microcode Syntax Parameters profile Choose one of the following CAM profiles: Enter the keyword default to specify the default CAM profile. • • Enter the keyword eg-default to specify the default CAM profile for EG (dual-CAM) line cards.
Page 434 Command Version 8.4.1.0 Added support for l2-switched-pbr microcode. History Version 8.2.1.0 profile. Added support for the ipv4-64k-ipv6 Version 7.9.1.0 Added support for VRF protocols. Version 7.5.1.0 Added the l2-ipv4-inacl CAM profile Version 7.4.2.0 Added the unified-default CAM profile and lag-hash-align microcode Version 7.4.1.0 Added the lag-hash-mpls microcode Version 6.5.1.0...
Page 435 Example Figure 13-1. Command Output: show cam-acl (default) FTOS#show cam-acl -- Chassis Cam ACL -- Current Settings(in block sizes) L2Acl Ipv4Acl Ipv6Acl Ipv4Qos L2Qos -- Line card 4 -- Current Settings(in block sizes) L2Acl Ipv4Acl Ipv6Acl Ipv4Qos L2Qos FTOS# Figure 13-2. Command Output: show cam-acl (non-default) FTOS#show cam-acl -- Chassis Cam ACL -- Current Settings(in block sizes)
Page 436 Parameters profile (OPTIONAL) Choose a single CAM profile to display: default • Enter the keyword to specify the default CAM profile. eg-default • Enter the keyword to specify the default CAM profile for EG (dual-CAM) line cards. ipv4-320k that provides 320K •...
Page 437 Example 1 Figure 13-3. Command Output: show cam-profile summary FTOS#show cam-profile summary -- Chassis CAM Profile -- : Current Settings : Next Boot Profile Name : Default : Default MicroCode Name : Default : Default : Current Settings : Next Boot -- Line card 1 -- Profile Name : Default...
Page 438 Parameters (OPTIONAL) Enter this keyword to display Layer 2 and Layer 3 ACL CAM usage. router (OPTIONAL) Enter this keyword to display Layer 3 CAM usage. switch (OPTIONAL) Enter this keyword to display Layer 2 CAM usage. Defaults None Command Modes EXEC Privilege Command Version 6.5.1.0...
Page 439 Example Figure 13-7. Command Example: show cam-usage router FTOS#show cam-usage router Linecard|Portpipe| CAM Partition | Total CAM Used CAM |Available CAM ========|========|=================|=============|=============|============== | IN-L3 ACL 8192 8189 | IN-L3 FIB 196607 196606 | IN-L3-SysFlow 2878 2878 | IN-L3-TrcList 1024 1024 | IN-L3-McastFib 9215 9215...
Page 440 QoS Optimization for IPv6 ACLs does not impact the CAM usage for applying a policy on a single (or the first of several) interfaces. It is most useful when a policy is applied across multiple interfaces; it can reduce the impact to CAM usage across subsequent interfaces. Example The following examples show some sample output when using the test cam-usage command.
Page 441 Figure 13-10. Command Example: test cam-usage (S-Series) FTOS#test cam-usage service-policy input LauraIn stack-unit all Stack-Unit | Portpipe | CAM Partition | Available CAM | Estimated CAM per Port | Status ------------------------------------------------------------------------------------------ 0 | IPv4Flow 102 | 0 | Allowed 1 | IPv4Flow 102 | 0 | Allowed FTOS#...
Page 442 cam ipv4flow (EXEC Privilege) Configure the amount of CAM space in IPv4flow sub-regions. This command is deprecated as of FTOS 8.3.1.0 Syntax cam ipv4flow {chassis all | linecard number} {default | acl value multicast-fib value pbr value qos value system-flow value trace-list value} Command Modes EXEC Privilege Command...
Page 443 Command Version 6.3.1.0 Introduced on E-Series History Usage CAM profile changes take effect after the next chassis reboot. Information Related copy Save the running configuration. Commands show cam-ipv4flow Display the CAM IPv4flow entries. show cam-ipv4flow Display details about the IPv4Flow sub-regions. show cam-ipv4flow Syntax Command Modes...
Page 444 Related cam-ipv4flow Configure the amount of CAM space in IPv4flow sub-regions. Commands (CONFIGURATION) CAM Layer 2 ACL Commands IPv4Flow sub-partitions are supported on the E-Series TeraScale platform The CAM Layer 2 ACL commands are: • cam l2acl (EXEC Privilege) • cam-l2acl (CONFIGURATION) •...
Page 445 Parameters default Enter this keyword to reset the Layer 2 ACL CAM sub-partition space allocations to the default values (Sysflow: 6, L2ACL: 14, PVST: 50, QoS: 12, L2PT: 13, FRRP: 5). system-flow Allocate a percentage of the Layer 2 ACL CAM space for system flow system-flow percentage entries.
Page 446 Example Figure 13-12. Command Example: show cam-l2acl FTOS#show cam-l2acl -- Chassis Cam L2-ACL -- Current Settings(in percent) Sysflow L2Acl Pvst L2pt Frrp -- Line card 1 -- Current Settings(in percent) Sysflow L2Acl Pvst L2pt Frrp -- Line card 5 -- Current Settings(in percent) Sysflow L2Acl...
Page 447 Configuration Rollback Overview The Configuration Rollback feature is enabled on the C-Series and E-Series . Configuration Rollback enables you to archive your running configurations for future use. This feature also enables you to replace your running configuration with an archived running configuration without rebooting the chassis.
Page 448 archive Enter the CONFIGURATION ARCHIVE mode. Syntax archive To exit the CONFIGURATION ARCHIVE mode, use the exit command at the CONFIGURATION ARCHIVE mode prompt (conf-archive). Defaults No default values or behavior Command Modes CONFIGURATION ARCHIVE (conf-archive) Command Version 7.6.1.0 Introduced on C-Series and E-Series. History Example FTOS#conf...
Page 449 Parameters comment comment Describe the configuration that you are archiving using up to 30 characters. Defaults No default values or behavior Command Modes EXEC Privilege Command Version 7.7.1.0 Comment option added History Version 7.6.1.0 Introduced on C-Series and E-Series Usage Archive files are stored on flash in a hidden directory named CFGARCH.
Page 450 Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on C-Series and E-Series History Related show archive Display the archive Commands configure replace Replace the running configuration with a specified file. Syntax configure replace {flash://filepath | startup-config [force | time seconds]} Parameters flash://filepath flash:...
Page 451 Related configuration mode exclusive Enable exclusive configuration. Commands configuration mode exclusive Enable exclusive configuration mode. Syntax configuration mode exclusive {auto | manual} To negate the configuration, use the no configuration mode exclusive {auto | manual} command. Parameters auto auto Enter to set the exclusive mode to auto.
Page 452 Example FTOS(conf)#configuration mode exclusive auto FTOS(conf)#exit 3d23h35m: %RPM0-P:CP %SYS-5-CONFIG_I: Configured from console by console FTOS#config! Locks configuration mode exclusively. FTOS(conf)# Note: When your session times out and you return to EXEC mode, the lock is no longer set. Related configure terminal When configuration is set to manual, use this command to set the exclusive Commands mode.
Page 453 show archive Display the content of the archive. show archive Syntax Defaults No default values or behavior Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on C-Series and E-Series History Example Figure 14-3. show archive Command Output FTOS#show archive Archive directory: flash:/CFGARCH_DIR Archive Date Time...
Page 454 show configuration lock Show the configuration lock status. Syntax show configuration lock Defaults None Command Modes EXEC Privilege Command Version 7.7.1.0 Introduced on C-Series and E-Series History Example Figure 14-4. show configuration lock Command Output FTOS# show configuration lock Configure exclusively locked by the following line: Line vty 0 Line number...
Page 455 Example Figure 14-5. show run diff archive Command Example FTOS#show run diff archive_7 running-config ------- < policy-map-input test running-config ------- < archive < maximum 3 flash:/CFGARCH_DIR/archive_7 ------- > archive FTOS# time-period Set a time period to automatically save an archive file. Syntax time-period {minutes} To stop the auto-save, use the no time-period {minutes} command.
Page 456 Configuration Rollback...
Page 457 Dynamic Host Configuration Protocol (DHCP) Overview Dynamic Host Configuration Protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on configuration policies determined by network administrators. • Commands to Configure the System to be a DHCP Server •...
Page 458 clear ip dhcp Reset DHCP counters. Syntax clear ip dhcp [binding {address} | conflict | server statistics] Parameters binding Enter this keyword to delete all entries in the binding table. address Enter the IP address to clear the binding entry for a single IP address. conflicts Enter this keyword to delete all of the log entries created for IP address conflicts.
Page 459 Parameters events Enter this keyword to display DHCP state changes. packet Enter this keyword to display packet transmission/reception. Command Mode EXEC Privilege Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History default-router Assign a default gateway to clients based on address pool. Syntax default-router address [address2...address8] Parameters...
Page 460 Parameters address Enter the a list of DNS servers that may service clients on the subnet. You may list up to 8 servers, in order of preference. Command Mode DHCP <POOL> Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History domain-name Assign a domain to clients based on address pool.
Page 461 Parameters address Enter the hardware address of the client. Command Mode DHCP <POOL> Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History host For manual (rather than automatic) configurations, assign a host to a single-address pool. Syntax host address Parameters address/mask Enter the host IP address and subnet mask.
Page 462 option policy Command Mode Default Command Version 8.2.1.0 Introduced on C-Series and S-Series. History lease Specify a lease time for the addresses in a pool. Syntax lease {days [hours] [minutes] | infinite} Parameters days Enter the number of days of the lease. Range: 0-31 hours Enter the number of hours of the lease.
Page 463 Specify the NetBIOS node type for a Microsoft DHCP client. Dell Force10 recommends specifying clients as hybrid. Syntax netbios-node-type type Parameters type Enter the NETBIOS node type. Broadcast: Enter the keyword b-node. Hybrid: Enter the keyword h-node. Mixed: Enter the keyword m-node.
Page 464 show ip dhcp binding Display the DHCP binding table. Syntax show ip dhcp binding Command Mode EXEC Privilege Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History show ip dhcp configuration Display the DHCP configuration. Syntax show ip dhcp configuration [global | pool name] Parameters pool name Display the configuration for a DHCP pool.
Page 465 Command Mode EXEC Privilege Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History show ip dhcp server Display the DHCP server statistics. Syntax show ip dhcp server statistics Command Mode EXEC Privilege Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History Commands to Configure Secure DHCP DHCP as defined by RFC 2131 provides no authentication or security mechanisms.
Page 466 Default Disabled Command Version 8.3.1.0 Introduced on E-Series. History Version 8.2.1.0 Introduced on C-Series and S-Series Related arp inspection-trust Specify a port as trusted so that ARP frames are not validated against Commands the binding table. arp inspection-trust c e s Specify a port as trusted so that ARP frames are not validated against the binding table.
Page 467 Command Modes CONFIGURATION Default Disabled Command Version 8.3.1.0 Introduced on E-Series. History Version 8.2.1.0 Introduced on C-Series and S-Series for Layer 2 interfaces. Version 7.8.1.0 Introduced on C-Series and S-Series on Layer 3 interfaces. Usage When enabled, no learning takes place until snooping is enabled on a VLAN. Upon disabling DHCP Information Snooping the binding table is deleted, and Option 82, IP Source Guard, and Dynamic ARP Inspection are disabled.
Page 468 interface type interface Enter the keyword followed by the type of interface to which the host is connected. For an 10/100 Ethernet interface, enter the keyword fastethernet. • • For a Gigabit Ethernet interface, enter the keyword gigabitethernet. • For a SONET interface, enter the keyword sonet. •...
Page 469 Command Version 8.3.1.0 Introduced on E-Series. History Version 7.8.1.0 Introduced on C-Series and S-Series ip dhcp source-address-validation c e s Enable IP Source Guard. Syntax [no] ip dhcp source-address-validation [ipmac] Parameters ipmac Enable IP+MAC Source Address Validation (Not available on E-Series). Command Modes INTERFACE Default...
Page 470 ip dhcp relay c e s Enable Option 82. Syntax ip dhcp relay information-option [trust-downstream] Parameters trust-downstream Configure the system to trust Option 82 when it is received from the previous-hop router. Command Modes CONFIGURATION Default Disabled Command Version 8.3.1.0 Introduced on E-Series.
Page 471 Command Version 8.3.1.0 Introduced on E-Series. History Version 8.2.1.0 Introduced on C-Series and S-Series Dynamic Host Configuration Protocol (DHCP) | 471...
Page 472 Dynamic Host Configuration Protocol (DHCP)
Page 473 Equal Cost Multi-Path Overview The characters that appear below command headings indicate support for the associated Dell Force10 platform, as follows: • C-Series: • E-Series: • S-Series: Commands The ECMP commands are: • hash-algorithm • hash-algorithm ecmp • hash-algorithm seed •...
Page 474 Parameters algorithm-number Enter the algorithm number. Range: 0 to 47 Note: For EtherScale, range 0 to 15 is valid; 16 to 47 will be considered as 15. ecmp hash algorithm ecmp TeraScale and ExaScale Only: Enter the keyword followed by the ECMP value hash algorithm value.
Page 475 FTOS(conf)#hash-algorithm linecard 5 ip-sa-mask ff ip-da-mask % Error: This command is not supported in the current microcode configuration. In addition, the linecard number ip-sa-mask value ip-da-mask value option has the following behavior to maintain bi-directionality: When hashing is done on both IPSA and IPDA, the ip-sa-mask and ip-da-mask values must be •...
Page 476 hash-algorithm ecmp Change the hash algorithm used to distribute traffic flows across an ECMP (equal-cost multipath routing) group. Syntax hash-algorithm ecmp {crc-upper} | {dest-ip} | {lsb} To return to the default hash algorithm, use the no hash-algorithm ecmp command. Parameters crc-upper Uses the upper 32 bits of the key for the hash computation Default: crc-lower...
Page 477 Command Modes CONFIGURATION Command Version 8.3.1.0 Introduced on E-Series. History Usage Deterministic ECMP sorts ECMPs in order even though RTM provides them in a random order. Information However, the hash algorithm uses as a seed the lower 12 bits of the chassis MAC, which yields a different hash result for every chassis.
Page 478 With 8 or less ECMPs, the ordering is lexicographic and deterministic. With more than 8 ECMPs, ordering is deterministic, but it is not in lexicographic order. Syntax ipv6 ecmp-deterministic Defaults Disabled Command Modes CONFIGURATION Command Version 8.3.1.0 Introduced on E-Series. History Usage After enabling IPv6 Deterministic ECMP, traffic loss occurs for a few milliseconds while FTOS sorts...
Page 479 Far-End Failure Detection (FEFD) Overview FTOS supports Far-End Failure Detection (FEFD) on the Ethernet interfaces of the E-Series, as indicated by the character that appears below each command heading. This feature detects and reports far-end link failures. • FEFD is not supported on the Management interface. •...
Page 480 packets packets Enter the keyword to enable debugging of FEFD to view information on packets sent and received. interface (OPTIONAL) Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 481 fefd-global Enable FEFD globally on the system. fefd-global [mode {normal | aggressive}] Syntax To disable FEFD globally, use the no fefd-global [mode {normal | aggressive}] command syntax. Parameters mode normal mode normal (OPTIONAL) Enter the keywords to change the link state to “unknown”...
Page 482 Parameters seconds Enter a number as the time between FEFD control packets. Range: 3 to 300 seconds Default: 15 seconds Defaults 15 seconds Command Modes INTERFACE fefd-global interval Configure an interval between FEFD control packets. Syntax fefd-global interval seconds To return to the default value, enter no fefd-global interval. Parameters seconds Enter a number as the time between FEFD control packets.
Page 483 Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. sonet • For a SONET interface, enter the keyword followed by the slot/port information.
Page 484 Far-End Failure Detection (FEFD)
Page 485 • FRRP is media- and speed-independent. • FRRP is a Dell Force10 proprietary protocol that does not interoperate with any other vendor. • Spanning Tree must be disabled on both primary and secondary interfaces before Resilient Ring protocol is enabled.
Page 486 clear frrp Clear the FRRP statistics counters. Syntax clear frrp [ring-id] Parameters ring-id (Optional) Enter the ring identification number. Range: 1 to 255 Defaults No default values or behavior Command Modes EXEC Command Version 8.2.1.0 Introduced for the C-Series History Version 7.5.1.0 Introduced Example...
Page 487 Parameters event event Enter the keyword to display debug information related to ring protocol transitions. packet packet Enter the keyword to display brief debug information related to control packets. detail detail Enter the keyword to display detailed debug information related to the entire ring protocol packets.
Page 488 Command Modes CONFIGURATION (conf-frrp) Command Version 8.2.1.0 Introduced for the C-Series History Version 7.4.1.0 Introduced interface Configure the primary, secondary, and control-vlan interfaces. Syntax interface {primary interface secondary interface control-vlan vlan-id} To return to the default, use the no interface {primary interface secondary interface control-vlan vlan-id} command.
Page 489 Command Version 8.2.1.0 Introduced for the C-Series History Version 7.4.1.0 Introduced Usage This command causes the Ring Manager to take ownership of these two ports after the configuration is Information validated by the IFM. Ownership is relinquished for a port only when the interface does not play a part in any control VLAN, that is, the interface does not belong to any ring.
Page 490 protocol frrp Enter the Resilient Ring Protocol and designate a ring identification. Syntax protocol frrp {ring-id} To exit the ring protocol, use the no protocol frrp {ring-id} command. Parameters ring-id Enter the ring identification number. Range: 1 to 255 Defaults No default values or behavior Command Modes CONFIGURATION...
Page 491 Example 2 Figure 18-3. show frrp ring-id Command Example FTOS#show frrp 1 Ring protocol 1 is in Master mode Ring Protocol Interface: Primary : GigabitEthernet 0/16 State: Forwarding Secondary: Port-channel 100 State: Blocking Control Vlan: 1 Ring protocol Timers: Hello-Interval 50 msec Dead-Interval 150 msec Ring Master's MAC Address is 00:01:e8:13:a3:19 Topology Change Statistics: Tx:110 Rx:45 Hello Statistics: Tx:13028 Rx:12348...
Page 492 Usage The hello interval is the interval at which ring frames are generated from the primary interface of the Information master node. The dead interval is the time that elapses before a timeout occurs. FTOS Resilient Ring Protocol (FRRP)
Page 493 FTOS Service Agent Overview The FTOS Service Agent (FTSA), commonly called a call-home service, collects information from the chassis manager, constructs email messages, and sends the messages to the recipients that you configure. For details on the use of FTSA commands and the structure of FTSA messages, see the Service Agent (FTSA) chapter in the FTOS Configuration Guide.
Page 494 • enable-all • encrypt • frequency • keyadd • log-messages • log-only • match • message-format • policy • policy-action-list • policy-test-list • pr-number • recipient • run-cpu • sample-rate • server • show configuration • show debugging • show keys •...
Page 495 action-list Specify an action list for the associated policy and enter the conf-call-home-actionlist-name mode. Syntax [no] action-list word Parameters word action-list policy action Enter the keyword followed by the name of a configured list Defaults none Command Modes config-callhome-policy-name Command Version 7.7.1.0 Introduced on C-Series and E-Series History...
Page 496 Related call-home Start FTSA and Enter the FTSA mode. Commands domain-name Specify the domain name to be used for the Administrator’s email address. server Configure a recipient. smtp server-address Identify the local SMTP (Simple Mail Transfer Protocol) server from which FTSA email messages will be forwarded.
Page 497 case-number Specify a case number for the associated policy. Syntax [no] case-number word Parameters word case-number Enter the keyword followed by a case number in the format C-xxxxx or c-xxxxx, where x = 0 to 9. Range: 1 to 20 characters. Defaults none Command Modes...
Page 498 seq cli-action Configure an action to execute an FTOS command for one-time operation, triggered as part of the selected action list. Syntax seq number cli-action command Parameters seq number Use the keyword followed by a number that FTOS uses to execute the list of actions in numerical order.
Page 499 If the debug command has spaces, such as debug ip bgp events, put the words following debug in double quotes. Related action-list Specify an action list for the associated policy and enter the Commands conf-call-home-actionlist-name mode. seq cli-show Configure an action to collect the output of the designated show command a designated number of times at a designated time interval.
Page 500 contact-address Enter your customer address (up to 100 characters) to be included in type 5 FTSA messages. Syntax contact-address string Defaults none Command Modes CALL-HOME Command Version 7.7.1.0 Introduced on C-Series and E-Series History Related call-home Start FTSA and enter CONFIGURATION (conf-callhome) mode. Commands contact-email Enter a customer email address (up to 60 characters) to be included in type 5 FTSA messages.
Page 501 contact-notes Enter comments (up to 100 characters) to be included in the configuration database and in type 5 FTSA messages. Syntax contact-notes string Defaults none Command Modes CALL-HOME Command Version 7.7.1.0 Introduced on C-Series and E-Series History Related call-home Start FTSA and enter CONFIGURATION (conf-callhome) mode. Commands contact-phone Enter a customer phone number (up to 50 characters) to be included in type-5 FTSA messages.
Page 502 debug call-home Monitor FTSA email messages through the CLI. Syntax debug call-home To turn message monitoring off, use the no debug call-home command. Defaults no debug call-home Command Modes EXEC EXEC Privilege Command Version 7.6.1.0 Introduced on C-Series History Version 6.3.1.0 Introduced for E-Series Related show debugging...
Page 503 default-test Invoke one of three preset system-monitoring test groups. Syntax default-test {hardware | software | exception} Parameters hardware hardware Enter the keyword to monitor hardware conditions. See the FTOS Configuration Guide for the list of conditions monitored by this keyword. software software Enter the keyword...
Page 504 domain-name Specify the domain name for the Administrator’s email address. Syntax domain-name domain_name To remove the domain name, use the no domain-name command. Parameters domain name domain-name Enter the keyword followed by the complete domain name of the Administrator’s email address, for example, domain_name.com. Defaults The domain name specified in the admin-email command Command Modes...
Page 505 Related admin-email Specify the Administrator’s email address. Commands call-home Start FTSA and Enter the FTSA mode. smtp server-address Configure the SMTP server detail. enable-all Enable (start) the sending of FTSA email messages to all designated recipients. Syntax enable-all To disable (end) the sending of FTSA email messages to all designated recipients, use the no enable command.
Page 506 Usage Encryption is supported through PGP (Pretty Good Privacy). Encryption cannot be enabled without a Information public key for the server. On E-Series chassis, this command is only supported for TeraScale cards. Note: Execute the encrypt command only after the keyadd command is executed. Related call-home Start FTSA and Enter the FTSA mode.
Page 507 However, if the Dell Force10 public key is changed, a notification will be made to download the new key from the Dell Force10 website and to replace the old key with that new key. Also, if you set up other recipients, use this command to enter their key filenames.
Page 508 The default severity level of 7 is the recommended severity level. Lower values will result in partial log data sent to the server because messages with higher values are filtered out. Related call-home Start FTSA and Enter the FTSA mode. Commands log-only Select the information collection action that matches the selected test group.
Page 509 match This command enables you to execute the configured action list based on one of three test list criteria. Syntax match {any | all | simultaneous} Parameters Entering this keyword will require that all conditions in the test list be matched in order to execute the associated action list.
Page 510 Example <action_list_message> <AgentInfo> <messagetype>Type - 5</messagetype> <time>Oct 18 15:05:34.699 UTC</time> <serialnum>E000000001664</serialnum> </AgentInfo> <contact_info> <contact-name> name </contact-name> <contact-email> email </contact-email> <contact-phone> phone </contact-phone> <contact-address> address </contact-address> <contact-notes> notes </contact-notes> </contact_info> <F10_info> <policy_name>xxxxxxx</policy_name> <case_number>xxxxx</case_number> <pr_number>xxxxx</pr_number> </F10_info> <action_list_name> name </action_list_name> <test_list_match> <match> keyword : value </match> <match>...
Page 511 Create an entry for a PR number in policy mode. The PR number is the issue identifier (bug ID) maintained by Dell Force10, and is associated with the test list. test-list Enter the name of a configured policy test list to be associated with the selected policy.
Page 512 Enter a PR (problem report) number associated with the selected policy. The number is the issue identifier (bug ID) maintained by Dell Force10. Syntax pr-number number Parameters number Enter a 5-digit PR number, as supplied by Dell Force10. Defaults none Command Mode config-callhome-policy-name Command Version 7.8.1.0...
Page 513 run-cpu Set whether the action list associated with the selected test list should be executed, as a function of utilization. Syntax run-cpu {cpu | rpm-any} {less-than | greater-than} percentage Parameters percentage Enter a CPU utilization percentage. Range: 0–100 Select a CPU: CP, LP, RP1, or RP2 rpm-any run-cpu Monitor all RPM CPUs for the...
Page 514 FTOS(conf-callhome-freedom_bird)#? Usage The Dell Force10 server name is configured for FTSA messages to be sent by default to Dell Force10 Support at ftsa@force10networks.com. If you want to change that address, enter the command server FTOS. You will be placed at that server-specific prompt (conf-callhome-FTOS), where you would then use the recipient command to enter a new address.
Page 515 If you want to use encryption for a particular recipient’s email messages, the server name must match the user ID that is in the encryption file that the recipient will use to decrypt the messages. Use the keyadd command to designate the encryption file. Related call-home Start FTSA and Enter the FTSA mode.
Page 516 Example Figure 19-3. show debugging (FTSA) Command Example FTOS(conf-callhome)#show debugging CALLHOME: Callhome service debugging is on FTOS(conf-callhome)# Related debug call-home Monitor FTSA email messages through the CLI. Commands show keys Display the email encryption (PGP) keys. On E-Series chassis, this command is only supported for TeraScale cards.
Page 517 smtp server-address Identify the local SMTP (Simple Mail Transfer Protocol) server from which FTSA email messages will be forwarded. Syntax smtp server-address server-address [smtp-port port number] To remove the SMTP address, use the no smtp server-address command. This action will disable email messaging until you enter a new SMTP server address.
Page 518 test-condition (comparing samples) Configure an action to collect and compare multiple samples of a statistic. Syntax test-condition statistic operator sample {cpu | rpm-any} number Parameters test-condition statistic test-condition Enter the keyword , followed by one of the following statistic request types: cpu-1-min •...
Page 519 Examples FTOS(conf-call-home-testlist-test)#test-condition cpu-1-min increase number ? <0-100> Enter the boolean comparision value FTOS(conf-call-home-testlist-test)#test-condition cpu-1-min increase number 80 sample 5 FTOS(conf-callhome-testlist-test)#test-condition cpu-5-min decrease ? <0-100> Enter the boolean comparision value FTOS(conf-callhome-testlist-test)#test-condition cpu-5-min decrease 10 In this next example, the configuration is to subtract the bit rate that was found in the second sample from the bit rate found in the first sample.
Page 520 Parameters test-condition statistic test-condition Enter the keyword , followed by one of the following statistic request types: cpu-1-min : Average CPU utilization for 1 minute cpu-5-min : Average CPU utilization for 5 minutes interface-bit-rate input | output slot# : Instantaneous bit rate on a given line card interface-crc interface: Number of CRC errors on a given interface...
Page 521 test-condition Collect multiple samples of a statistic and compare them using the specified (comparing samples) comparator and hurdle value. test-condition show Search for a stated value in the output of the designated command or message-text message type. (deprecated) test-condition message-text (deprecated) Configure a search for a stated value in the output of the designated show command or message type —...
Page 522 Example FTOS(conf-callhome-testlist-test)#test-condition message-text ? command Enter the show command FTOS(conf-callhome-testlist-test)#test-condition message-text command ? WORD Enter the show command FTOS(conf-callhome-testlist-test)#test-condition message-text command "show interfaces gi 1/0 | display xml" ? equal-to Keyword boolean value equal to FTOS(conf-callhome-testlist-test)#test-condition message-text command "show interfaces gi 1/0 | display xml" equal-to ? string Enter the search string pattern FTOS(conf-callhome-testlist-test)#test-condition message-text command "show...
Page 523 test-limit Set the number of times that the test list should be executed. Syntax test -limit number Parameters number Set the number of times the test list matches that should be attempted. Range: 0–256 Default none. If the test-limit number is removed or not configured, there is no limit for how many times to test for the condition.
Page 524 test-list Enter the name of a configured test list to be associated with the selected policy. Syntax test-list word Parameters word test-list Enter the keyword followed by the name of a configured test list. Defaults No default behavior or values Command Mode config-callhome-policy-name Command...
Page 525 GARP VLAN Registration (GVRP) Overview GARP VLAN Registration (GVRP) is supported on platforms , and Commands The GVRP commands are: • bpdu-destination-mac-address • clear gvrp statistics • debug gvrp • disable • garp timers • gvrp enable • gvrp registration •...
Page 526 Important Points to Remember • GVRP is supported on Layer 2 ports only. • All VLAN ports added by GVRP are tagged. • GVRP is supported on untagged ports belonging to a default VLAN, and tagged ports. • GVRP cannot be enabled on untagged ports belonging to a non-default VLAN unless native VLAN is turned on.
Page 527 clear gvrp statistics c e s Clear GVRP statistics on an interface. clear gvrp statistics interface interface Syntax Parameters interface interface Enter the following keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information.
Page 528 Defaults Disabled Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on C, E, and S-Series History disable c e s Globally disable GVRP. Syntax disable To re-enable GVRP, use the no disable command. Defaults Enabled Command Modes CONFIGURATION-GVRP Command Version 7.6.1.0 Introduced on C, E, and S-Series History Related...
Page 529 Command Modes CONFIGURATION-GVRP Command Version 7.6.1.0 Introduced on C, E, and S-Series History Usage Join Timer—Join messages announce the willingness to register some attributes with other Information participants. Each GARP application entity sends a Join message twice, for reliability, and uses a join timer to set the sending interval.
Page 530 Parameters fixed fixed Enter the keyword followed by the VLAN range in a comma separated VLAN ID set. normal normal Enter the keyword followed by the VLAN range in a comma separated VLAN ID set. This is the default forbidden forbidden Enter the keyword followed by the VLAN range in a comma...
Page 531 Command Modes CONFIGURATION-GVRP Command Version 7.6.1.0 Introduced on C, E, and S-Series History Related gvrp enable Enable GVRP on physical interfaces and LAGs. Commands protocol gvrp Access GVRP protocol. show garp timers c e s Display the GARP timer settings for sending GARP messages. Syntax show garp timers Defaults...
Page 532 Parameters brief brief (OPTIONAL) Enter the keyword to display a brief summary of the GVRP configuration. interface (OPTIONAL) Enter the following keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information.
Page 533 Parameters interface interface interface Enter the keyword followed by one of the interface keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information. GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 534 • An entry for a new GVRP VLAN could not be created in the GVRP database. Related show gvrp Display the GVRP configuration Commands GARP VLAN Registration (GVRP)
Page 535 High Availability (HA) Overview High Availability (HA) in FTOS is configuration synchronization to minimize recovery time in the event of a Route Processor Module (RPM) failure. The feature is available on the C-Series and E-Series where noted by these symbols under command headings: FTOS on the E-Series supports RPM 1 + 1 redundancy.
Page 536 patch flash://RUNTIME_PATCH_DIR Insert an In-Service Modular Hot-Fix patch. Syntax patch flash://RUNTIME_PATCH_DIR/patch-filename To remove the patch, enter no patch flash://RUNTIME_PATCH_DIR/patch-filename Defaults None Command Modes CONFIGURATION Command Version 8.2.1.0 Introduced History Usage The patch filename includes the FTOS version, the platform, the cpu, and the process it affects Information (FTOS-platform-cpu-process-patchversion.rtp).
Page 537 Related show processes restartable Commands redundancy auto-failover-limit Specify an auto-failover limit for RPMs. When an non-recoverable fatal error is detected, an automatic RPM failover occurs. This command does not affect user-initiated (manual) failovers. Syntax redundancy auto-failover-limit [count number [period minutes] | period minutes]] To disable the auto-failover limit control, enter no redundancy auto-failover-limit.
Page 538 Command Version 8.3.1.0 Added the option History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on E-Series Usage Enabling this command will keep the failed RPM in the failed state. If there are two RPMs in the Information system, enabling this command prevents the failed RPM from becoming a working Standby RPM. If there is only one RPM in the system, the failed RPM will not recover—this will effect the system.
Page 539 Example Figure 21-2. redundancy force-failover sfm (EtherScale only) Command Example FTOS#redundancy force-failover sfm 0 %TSM-6-SFM_FAILOVER: Standby switch to SFM 8 Standby switch to SFM 0 FTOS# redundancy primary Set an RPM as the primary RPM. Syntax redundancy primary [rpm0 | rpm1] To delete a configuration, enter no redundancy primary.
Page 540 Related show lacp Display the lacp configuration Commands show redundancy Display the current redundancy configuration. redundancy reset-counter Reset failover counter and timestamp information displayed in the show redundancy command output. Syntax redundancy reset-counter Defaults Not configured Command Modes EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale...
Page 541 Example Figure 21-3. redundancy sfm standby Command Example FTOS#show sfm Switch Fabric State: Switch Fabric Modules Slot Status --------------------------------------------------------------------------- active active FTOS#configure FTOS(conf)#redundancy sfm standby Taking secondary SFM offline... FTOS(conf)#do show sfm all Switch Fabric State: Switch Fabric Modules Slot Status --------------------------------------------------------------------------- active...
Page 542 show patch Display the system patches loaded with the In-Service Modular Hot Fix Command. Syntax show patch Command Modes EXEC Command Version 8.2.1.0 Introduced on E-Series History Related patch flash:// Insert an In-Service Modular Hot-Fix patch. Commands RUNTIME_PATCH_DIR show processes restartable Display the processes and tasks configured for restartability.
Page 543 Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.5.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series Example Figure 21-4. show redundancy Command Example FTOS#show redundancy RPM Status ------------------------------------------------ RPM Slot ID: RPM Redundancy Role: Primary RPM State: Active...
Page 544 Table 21-1. show redundancy Command Example Fields (continued) Field Description RPM Redundancy Displays the following information: Configuration • which RPM is the preferred Primary on next boot (redundancy primary command) • the data sync method configured (redundancy synchronize command). • the failover type (you cannot change this;...
Page 545 Internet Group Management Protocol (IGMP) Overview The platforms on which a command is supported is indicated by the character — for the E-Series, for the C-Series, and for the S-Series — that appears below each command heading. This chapter contains the following sections: •...
Page 546 • ip igmp ssm-map • ip igmp static-group • ip igmp version • show ip igmp groups • show ip igmp interface • show ip igmp ssm-map clear ip igmp groups c e s Clear entries from the group cache table. Syntax clear ip igmp groups [group-address | interface] Parameters...
Page 547 Parameters group-address (OPTIONAL) Enter the IP multicast group address in dotted decimal format. interface (OPTIONAL) Enter the following keywords and slot/port or number information: Defaults Disabled Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on S-Series History Version 7.5.1.0 Introduced on C-Series E-Series legacy command Usage IGMP commands accept only non-VLAN interfaces—specifying a VLAN will not yield results.
Page 548 ip igmp group-join-limit c e s Use this feature to limit the number of IGMP groups that can be joined in a second. Syntax ip igmp group-join-limit number Parameters number Enter the number of IGMP groups permitted to join in a second. Range: 1 to 10000 Defaults No default values or behavior...
Page 549 ip igmp last-member-query-interval c e s Change the last member query interval, which is the Max Response Time inserted into Group-Specific Queries sent in response to Leave Group messages. This interval is also the interval between Group-Specific Query messages. Syntax ip igmp last-member-query-interval milliseconds To return to the default value, enter no ip igmp last-member-query-interval.
Page 550 ip igmp query-interval c e s Change the transmission frequency of IGMP general queries sent by the Querier. Syntax ip igmp query-interval seconds To return to the default values, enter no ip igmp query-interval. Parameters seconds Enter the number of seconds between queries sent out. Default: 60 seconds Range: 1 to 18000 Defaults...
Page 551 ip igmp ssm-map c e s Use a statically configured list to translate (*,G) memberships to (S,G) memberships. ip igmp ssm-map std-access-list source-address Syntax Undo this configuration, that is, remove SSM map (S,G) states and replace them with (*,G) states using the command ip igmp ssm-map std-access-list source-address command.
Page 552 exclude include Version 7.5.1.0 Expanded to support the options E-Series legacy command Usage A group in the include mode should have at least one source address defined. In exclude mode if no Information source address is specified, FTOS implicitly assumes all sources are included. If neither include or exclude is specified, FTOS implicitly assumes a IGMPv2 static join.
Page 553 Parameters group-address (OPTIONAL) Enter the group address in dotted decimal format to view information on that group only. interface (OPTIONAL) Enter the interface type and slot/port information: gigabitethernet • For a 100/1000 Ethernet interface, enter the keyword followed by the slot/port information. gigabitethernet •...
Page 554 show ip igmp interface c e s View information on the interfaces participating in IGMP. Syntax show ip igmp interface [interface] Parameters interface (OPTIONAL) Enter the interface type and slot/port information: gigabitethernet • For a 100/1000 Ethernet interface, enter the keyword followed by the slot/port information.
Page 555 Use a statically configured list to translate (*,G) memberships to (S,G) memberships. Commands ssm-map IGMP Snooping Commands FTOS supports IGMP Snooping version 2 and 3 on all Dell Force10 systems: • ip igmp snooping enable • ip igmp snooping fast-leave •...
Page 556 • IGMP snooping reacts to Layer 2 topology changes triggered by MSTP by sending a general query on the interface that comes in FWD state. Important Points to Remember for IGMP Querier • The IGMP snooping Querier supports version 2. •...
Page 557 ip igmp snooping fast-leave c e s Enable IGMP snooping fast leave for this VLAN. ip igmp snooping fast-leave Syntax To disable IGMP snooping fast leave, use the no igmp snooping fast-leave command. Defaults Not configured Command Modes INTERFACE VLAN—(conf-if-vl-n) Command Version 7.6.1.0 Introduced on S-Series...
Page 558 ip igmp snooping last-member-query-interval c e s The last member query interval is the “maximum response time” inserted into Group-Specific queries sent in response to Group-Leave messages. This interval is also the interval between successive Group-Specific Query messages. Use this command to change the last member query interval. Syntax ip igmp snooping last-member-query-interval milliseconds To return to the default value, enter no ip igmp snooping last-member-query-interval.
Page 559 Usage FTOS provides the capability of statically configuring interface to which a multicast router is attached. Information To configure a static connection to the multicast router, enter the ip igmp snooping mrouter interface command in the VLAN context. The interface to the router must be a part of the VLAN where you are entering the command.
Page 560 Example Figure 22-3. show ip igmp snooping mrouter Command Example FTOS#show ip igmp snooping mrouter Interface Router Ports Vlan 2 Gi 13/3, Po 1 FTOS# Related show ip igmp groups Use this IGMP command to view groups Commands Internet Group Management Protocol (IGMP)
Page 561 UDP Broadcast c e s The symbols under command headings indicate which Dell Force10 platforms — C-Series, E-Series, or S-Series, respectively — support the command. Although all interfaces are supported on E-Series ExaScale, some interface functionality is supported on E-Series ExaScale ex with FTOS 8.2.1.0. and later. When this is the case that is noted in the command history.
Page 562 • ipg (10 Gigabit Ethernet interfaces) • keepalive • lfs enable (EtherScale) • link debounce-timer • monitor • • negotiation auto • portmode hybrid • rate-interval • show config • show config (from INTERFACE RANGE mode) • show interfaces • show interfaces configured •...
Page 563 Parameters interface (OPTIONAL) Enter any of the following keywords and slot/port or number to clear counters from a specified interface: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. loopback • For a Loopback interface, enter the keyword followed by a number from 0 to 16383.
Page 564 clear dampening c e s Clear the dampening counters on all the interfaces or just the specified interface. Syntax clear dampening [interface] Parameters interface (Optional) Enter one of the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Page 565 Defaults medium Mode Interface Command Version 7.7.1.0 Introduced on S-Series History Usage This command only works on ports that the system recognizes as CX4 ports. The figure below shows Information an attempt to configure an XFP port in an S25P with the command after inserting a CX4 converter into the port: Note: When using a long CX4 cable between the C-Series and the S-Series, configure the...
Page 566 Parameters half-life Enter the number of seconds after which the penalty is decreased. The penalty is decreased by half after the half-life period expires. Range: 1 to 30 seconds Default: 5 seconds reuse threshold Enter a number as the reuse threshold, the penalty value below which the interface state is changed to “up”.
Page 567 description c e s Assign a descriptive text string to the interface. description desc_text Syntax To delete a description, enter no description. Parameters desc_text Enter a text string up to 240 characters long. Defaults No description is defined. Command Modes INTERFACE Command Version 8.1.1.0...
Page 568 duplex (Management) Set the mode of the Management interface. Syntax duplex {half | full} To return to the default setting, enter no duplex. Parameters half half Enter the keyword to set the Management interface to transmit only in one direction. full full Enter the keyword...
Page 569 Usage This command applies to any physical interface with speed set to 10/100. Information Note: Starting with FTOS 7.8.1.0, when a copper SFP2 module with catalog number GP-SFP2-1T is used in the S25P model of the S-Series, its speed can be manually set with the speed command.
Page 570 Important Points to Remember • Do not enable tx pause when buffer carving is enabled. Consult Dell Force10 TAC for information and assistance. • Asymmetric flow control (rx on tx off or rx off tx on) setting for the interface port less than 100 Mb/s speed is not permitted.
Page 571 The table below displays how FTOS negotiates the flow control values between two Dell Force10 chassis connected back-to-back using 1G copper ports. Table 23-1. Negotiated Flow Control Values Configured Negotiated LocRxConf LocTxConf RemoteRxConf RemoteTxConf LocNegRx LocNegTx RemNegRx RemNegTx Related show running-config Display the flow configuration parameters (non-default values only).
Page 572 interface c e s Configure a physical interface on the switch. Syntax interface interface Parameters interface Enter one of the following keywords and slot/port or number information: GigabitEthernet • For 100/1000 Ethernet interface, enter the keyword followed by the slot/port information. GigabitEthernet •...
Page 573 Parameters number Enter a number as the interface number. Range: 0 to 16383. Defaults Not configured. Command Modes CONFIGURATION Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.1.0 Introduced Example Figure 23-6.
Page 574 If two RPMs are installed in your system, use the show redundancy command to display which RPM is the Primary RPM. Related management route Configure a static route that points to the Management interface or a Commands forwarding router. duplex (Management) Clear FIB entries on a specified line card.
Page 575 interface range c e s This command permits configuration of a range of interfaces to which subsequent commands are applied (bulk configuration). Using the interface range command, identical commands can be entered for a range of interface. Syntax interface range interface , interface , ... Parameters interface , interface range...
Page 576 Example Figure 23-9. Bulk Configuration Warning Message FTOS(conf)#interface range so 2/0 - 1 , te 10/0 , gi 3/0 , fa 0/0 % Warning: Non-existing ports (not configured) are ignored by interface-range Example Figure 23-10. Interface Range prompt with Multiple Ports FTOS(conf)#interface range gi 2/0 - 23 , gi 2/1 - 10 FTOS(conf-if-range-gi-2/0-23# Example...
Page 577 The following figure shows how to use commas to add SONET, VLAN, and port-channel interfaces to the range. Example Figure 23-14. Multiple Range Bulk Configuration with SONET, VLAN, and port channel FTOS(config-if)# interface range gigabitethernet 5/1 - 23, tengigabitethernet 1/1 – 2, Vlan 2 –...
Page 578 Command Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.2.1.1 Introduced Example Figure 23-15. define interface-range macro Command Example FTOS(config)# define interface-range test tengigabitethernet 0/0 - 3 , gigabitethernet 5/0 - 47 , gigabitethernet 13/0 - 89 FTOS# show running-config | grep define...
Page 579 Related interface range Configure a range of command (bulk configuration) Commands interface range macro (define) Define a macro for an interface range (bulk configuration) interface vlan c e s Configure a VLAN. You can configure up to 4094 VLANs. Syntax interface vlan vlan-id To delete a VLAN, use the no interface vlan vlan-id command.
Page 580 ipg (Gigabit Ethernet interfaces) Set the Inter-packet gap (IPG) to 8 bytes for traffic on a Gigabit Ethernet interface. Syntax ipg 8 To return to the default setting, enter no ipg. Parameters Enter the keyword to set the IPG to 8 bytes. Defaults 12 bytes Command Modes...
Page 581 keepalive c e s On SONET interfaces, send keepalive packets periodically to keep an interface alive when it is not transmitting data. Syntax keepalive [seconds] To stop sending SONET keepalive packets, enter no keepalive. Parameters seconds (OPTIONAL) For SONET interfaces with PPP encapsulation enabled, enter the number of seconds between keepalive packets.
Page 582 link debounce-timer Assign the debounce time for link change notification on this interface. Syntax link debounce [milliseconds] Parameters milliseconds Enter the time to delay link status change notification on this interface. Range: 100-5000 ms • Default for copper is 3100 ms •...
Page 583 Example Figure 23-18. monitor Command Example of a Single Interface systest-3 Monitor time: 00:00:06 Refresh Intvl.: 2s Time: 03:26:26 Interface: Gi 0/3, Enabled, Link is Up, Linespeed is 1000 Mbit Traffic statistics: Current Rate Delta Input bytes: 9069828 43 Bps Output bytes: 606915800 43 Bps...
Page 584 Table 23-2. monitor Command Menu Options Description systest-3 Displays the host name assigned to the system. monitor time Displays the amount of time since the monitor command was entered. time Displays the amount of time the chassis is up (since last reboot). Change the view from a single interface to all interfaces on the line card or visa-versa.
Page 585 When you enter the no command, FTOS reduces the IP MTU value to 1536 bytes. On the E-Series, to return the IP MTU value to the default, enter no ip mtu. Link MTU and IP MTU considerations for port channels and VLANs are as follows. port channels: •...
Page 586 The no negotiation auto command is only available if you first manually set the speed of a port to 10Mbits or 100Mbits. The negotiation auto command provides a mode option for configuring an individual port to forced-master/forced slave once auto-negotiation is enabled Note: The mode option is not available on non-10/100/1000 Base-T Ethernet line cards.
Page 587 The following table details the possible speed and auto-negotiation combinations for a line between two 10/100/1000 Base-T Ethernet interfaces. Table 23-4. Auto-negotiation and Link Speed Combinations Link Status between Port 0 Port 1 Port 1 and Port 2 auto-negotiation enabled* auto-negotiation enabled* Up at 1000 Mb/s speed 1000 or auto...
Page 588 Usage The figure above sets a port as hybrid, makes the port a tagged member of VLAN 20, and an untagged Information member of VLAN 10, which becomes the native VLAN of the port. The port will now accept: • untagged frames and classify them as VLAN 10 frames •...
Page 589 Defaults 299 seconds Command Modes INTERFACE Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.1.1.0 Introduced The configured rate interval is displayed, along with the collected traffic data, in the output of show Usage Information interfaces commands.
Page 590 Version 7.5.1.0 Introduced on C-Series Version 6.1.1.0 Introduced on E-Series Example Figure 23-26. show config (Bulk Configuration) Command Example FTOS(conf)#interface range gigabitethernet 1/1 - 2 FTOS(conf-if-range-gi-1/1-2)#show config interface GigabitEthernet 1/1 no ip address switchport no shutdown interface GigabitEthernet 1/2 no ip address switchport no shutdown FTOS(conf-if-range-gi-1/1-2)#...
Page 591 Version 6.4.1.0 Changed organization of display output Version 6.3.1.0 Added Pluggable Media Type field in E-Series TeraScale output Usage Use this show interfaces command for details on a specific interface. Use the show interfaces linecard command for details on all interfaces on the designated line card. Note that, in an E-Series EtherScale chassis, the show interfaces command output does not include details about installed SFP or XFP transceivers.
Page 592 Table 23-5. Lines in show interfaces Command Example (EtherScale) (continued) Line Description Input Statistics: Displays all the input statistics including: • Number of packets and bytes into the interface • Number of packets with IP headers, VLAN tagged headers and MPLS headers Note: The sum of the number of packets may not be as expected since a VLAN tagged IP packet counts as both a VLAN packet and an...
Page 593 Unknown, Non-qualified— if wavelength is reading error, and F10 ID is not present Dell Force10 allows unsupported SFP and XFP transceivers to be used, but FTOS might not be able to retrieve some data about them. In that case, typically when the output of this field is “Pluggable media present, Media type is unknown”, the Medium and the XFP/SFP receive power reading data...
Page 594 Table 23-6. Fields in show interfaces Command Example (TeraScale) Line Description Queuing strategy... States the packet queuing strategy. FIFO means first in first out. Input Statistics: Displays all the input statistics including: • Number of packets and bytes into the interface •...
Page 595 Example Figure 23-29. show interfaces Command Example for 1G SFP Interface FTOS#show interfaces gigabitethernet 2/0 GigabitEthernet 2/0 is up, line protocol is down Hardware is Force10Eth, address is 00:01:e8:41:77:95 Current address is 00:01:e8:41:77:95 Pluggable media present, SFP type is 1000BASE-SX Wavelength is 850nm Interface index is 100974648 Port will not be disabled on partial SFM failure...
Page 596 Usage On the C-Series and S-Series, the interface counter “over 1023-byte pkts” does not increment for Information packets in the range 9216 > x < 1023. The Management port is enabled by default shutdown). If necessary, use the ip address command to assign an IP address to the Management port.
Page 597 show interfaces configured c e s any interface with a non-default configuration. Display show interfaces configured Syntax Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.1.0 Changed organization of display output Example...
Page 598 show interfaces dampening c e s interface dampening information. Display Syntax show interfaces dampening [[interface] [summary] [detail]] Parameters interface (Optional) Enter one of the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Page 599 show interfaces debounce Display information on interfaces with debounce timer configured. show interfaces debounce interface Syntax Parameters interface Enter one of the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. TenGigabitEthernet •...
Page 600 Command Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Example Figure 23-34. show interfaces description Command Example FTOS>...
Page 601 The following figure shows a line card that has an XFP interface. The type, medium, wavelength, and receive power details are displayed. When a device that is not certified by Dell Force10 is inserted, it might work, but its details might not be readable by FTOS and not displayed here.
Page 602 show interfaces phy c e s Display auto-negotiation and link partner information. Syntax show interfaces gigabitethernet slot/port phy Parameters gigabitethernet gigabitethernet Enter the keyword followed by the slot/port information. Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on C-Series and S-Series...
Page 603 Table 23-8. Lines in show interfaces gigabitethernet Command Example Line Description AutoNegotiation Remote Displays the control words advertised by the remote interface during Partner’s Ability negotiation. Duplex is either half or full. Asym- and Sym Pause is the types of flow control supported by the remote interface AutoNegotiation Expansion ParallelDetectionFault is the handshaking scheme in which the link partner...
Page 604 Command Version 7.6.1.0 Introduced for S-Series only History Example Figure 23-37. show interfaces status Command Example FTOS#show interfaces stack-unit 0 GigabitEthernet 0/1 is down, line protocol is down Hardware is Force10Eth, address is 00:01:e8:4c:f2:82 Current address is 00:01:e8:4c:f2:82 Pluggable media not present Interface index is 34129154 Internet address is not set MTU 1554 bytes, IP MTU 1500 bytes...
Page 605 Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.5.1.0 Introduced on E-Series Example Figure 23-38. show interfaces status Command Example FTOS#show interfaces status Port Description Status Speed Duplex Vlan...
Page 606 Parameters interface Enter one of the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for...
Page 607 Table 23-9. Items in show interfaces switchport Command Example Items Description Name Displays the interface’s type, slot and port number. 802.1QTagged Displays whether if the VLAN tagged (“True”), untagged (“False”), or hybrid (“Hybrid”, which supports both untagged and tagged VLANs by port 13/0. Vlan membership Lists the VLANs to which the interface is a member.
Page 608 Example Figure 23-40. show interfaces gigabitethernet transceiver Command Example FTOS#show interfaces gigabitethernet 1/0 transceiver SFP is present. SFP 0 Serial Base ID fields SFP 0 Id = 0x03 SFP 0 Ext Id = 0x04 SFP 0 Connector = 0x07 SFP 0 Transciever Code = 0x00 0x00 0x00 0x01 0x20 0x40 0x0c 0x05 SFP 0 Encoding = 0x01...
Page 609 Table 23-10. Diagnostic Data in show interfaces transceiver Line Description Rx Power measurement type Output depends on the vendor, typically either “Average” or “OMA” (Receiver optical modulation amplitude). Temp High Alarm threshold Factory-defined setting, typically in Centigrade. Value differs between SFPs and SFP+.
Page 610 Table 23-10. Diagnostic Data in show interfaces transceiver (continued) Line Description Tx Power Present Tx power of the SFP. If this crosses Tx power alarm/warning thresholds, then the Tx power high alarm/warning flag is set to true. If it falls below the low alarm/warning thresholds, then the Tx power low alarm/ warning flag is set to true.
Page 611 Table 23-10. Diagnostic Data in show interfaces transceiver (continued) Line Description Tx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Rx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above.
Page 612 Related interface Configure a physical interface on the switch. Commands show ip interface Displays Layer 3 information about the interfaces. show interfaces Display information on a specific physical interface or virtual interface. shutdown c e s Disable an interface. Syntax shutdown To activate an interface, enter no shutdown.
Page 613 speed (for 10/100/1000 interfaces) c e s Set the speed for 10/100/1000 Base-T Ethernet interfaces. Both sides of a link must be set to the same speed (10/100/1000) or to auto or the link may not come upSyntax speed {10 | 100 | 1000 | auto} To return to the default setting, use the no speed {10 | 100 | 1000} command.
Page 614 speed (Management interface) Set the speed for the Management interface. Syntax speed {10 | 100 | auto} To return to the default setting, use the no speed {10 | 100} command. Parameters Enter the keyword to set the interface’s speed to 10 Mb/s. Enter the keyword to set the interface’s speed to 100 Mb/s.
Page 615 Defaults Disabled (The interface is in Layer 3 mode.) Command Modes INTERFACE Command Version 8.4.1.0 Added support for port-channel interfaces (port-channel number option). History Version 8.1.1.0 Introduced on E-Series ExaScale Added backup interface option. Version 7.7.1.0 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.0...
Page 616 Example Figure 23-42. wanport Command with shutdown Command Example interface TenGigabitEthernet 13/0 no ip address no shutdown FTOS(conf-if-te-13/0)# FTOS(conf-if-te-13/0)#wanport % Error: Port should be in shutdown mode, config ignored Te 13/0. FTOS(conf-if-te-13/0)# FTOS(conf-if-te-13/0)#shutdown FTOS(conf-if-te-13/0)# FTOS(conf-if-te-13/0)#wanport FTOS(conf-if-te-13/0)# Related ais-shut Send LAIS on shutdown Commands alarm-report Enable reporting of a selected alarm...
Page 617 • show interfaces port-channel • show port-channel-flow Note: The FTOS implementation of LAG or Port Channel requires that you configure a LAG on both switches manually. For information on FTOS Link Aggregation Control Protocol (LACP) for dynamic LAGs, refer to Chapter 29, Link Aggregation Control Protocol (LACP).
Page 618 When an interface is removed from a Port Channel with the no channel-member command syntax, the interface reverts to its configuration prior to joining the Port Channel. An interface can belong to only one Port Channel. On the E-Series TeraScale, you can add up to 16 interfaces to a Port Channel; E-Series ExaScale can have up to 64.
Page 619 Related port-channel failover-group Access the PORT-CHANNEL FAILOVER-GROUP mode to configure a Commands LAG failover group. show interfaces port-channel Display information on configured Port Channel groups. interface port-channel c e s Create a Port Channel interface, which is a link aggregation group containing up to 16 physical interfaces on E-Series, eight physical interfaces on C-Series and S-Series.
Page 620 Related channel-member Add a physical interface to the LAG. Commands interface Configure a physical interface. interface loopback Configure a Loopback interface. interface null Configure a null interface. interface vlan Configure a VLAN. shutdown Disable/Enable the port channel. minimum-links c e s Configure the minimum number of links in a LAG (Port Channel) that must be in “oper up”...
Page 621 Usage This feature groups two LAGs to work in tandem as a supergroup, so that, for example, if one LAG Information goes down, the other LAG is taken down automatically, providing an alternate path to reroute traffic, avoiding oversubscription on the other LAG. You can use both static and dynamic (LACP) LAGs to configure failover groups.
Page 622 Version 7.5.1.0 Introduced for C-Series E-Series legacy command Example Figure 23-45. show interfaces port-channel Command Example (EtherScale) FTOS#show interfaces port-channel 20 Port-channel 20 is up, line protocol is up (Failover-group 1 is down) Hardware address is 00:01:e8:01:46:fa Port-channel is part of failover-group 1 Internet address is 1.1.120.1/24 MTU 1554 bytes, IP MTU 1500 bytes LineSpeed 2000 Mbit...
Page 623 Table 23-12. show interfaces port-channel Command Example Fields (continued) Field Description 0 64-byte... Displays the size of packets and the number of those packets entering that interface. This information is displayed over two lines. Received 0... Displays the type and number of errors or other specific packets received. This information is displayed over three lines.
Page 624 show port-channel-flow c e s Display an egress port in a given port-channel flow. Syntax show port-channel-flow outgoing-port-channel number incoming-interface interface {source-ip address destination-ip address} | protocol number icmp {source-port number destination-port number} | {source-mac address destination-mac address} Parameters outgoing-port-channel outgoing-port-channel Enter the keyword followed by the...
Page 625 Usage Since this command calculates based on a Layer 2 hash algorithm, use this command to display flows Information for switched Layer 2 packets, not for routed packets (use the show ip flow command to display routed packets). The show port-channel-flow command returns the egress port identification in a given port-channel, if a valid flow is entered.
Page 626 TDR is useful for troubleshooting an interface that is not establishing a link; either it is flapping or not coming up at all. TDR detects open or short conditions of copper cables on 100/1000 Base-T modules. • tdr-cable-test • show tdr Important Points to Remember •...
Page 627 show tdr c e s Display the TDR test results. show tdr interface Syntax Parameters interface GigabitEthernet Enter the keyword followed by the slot/port information for the 100/1000 Ethernet interface. Defaults No default behavior or settings Command Modes EXEC Command Version 8.2.1.0 Introduced on E-Series ExaScale History...
Page 628 Important Points to Remember • This feature is available only on the E-Series platform, as noted by this symbol under each command heading: • This feature applies only to E-Series Layer 3 physical or VLAN interfaces. • Routing Information Protocol (RIP) is not supported with the UDP Broadcast feature. •...
Page 629 ip udp-broadcast-address Configure an IP UDP address for broadcast. ip udp-broadcast-address address Syntax To delete the configuration, use the no ip udp-broadcast-address address command. Parameters address Enter an IP broadcast address in dotted decimal format (A.B.C.D). Defaults Not Configured Command Modes INTERFACE (config-if) Usage When a UDP broadcast packet is flooded out of an interface, and the outgoing interface is configured...
Page 630 show ip udp-helper Display the configured UDP helper(s) on all interfaces. Syntax show ip udp-helper Defaults No default configuration or values Command Modes EXEC Example Figure 23-50. show ip udp-helper Command Example FTOS#show ip udp-helper -------------------------------------------------- Port UDP port list -------------------------------------------------- Gi 10/0 656, 658...
Page 631 IPv4 Routing Overview The characters that appear below command headings indicate support for the associated Dell Force10 platform, as follows: • C-Series: • E-Series: • S-Series: Commands IPv4-related commands are described in this chapter. They are: • • arp learn-enable •...
Page 632 • ip name-server • ip proxy-arp • ip redirects • ip route • ip source-route • ip unreachables • ip vlan-flooding • load-balance (C-Series and S-Series) • load-balance (E-Series) • management route • show arp • show arp retries • show hosts •...
Page 633 mac-address Enter a MAC address in nnnn.nnnn.nnnn format. interface Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. ManagementEthernet • For the Management interface, enter the keyword followed by the slot/port information.
Page 634 At time t=2 FTOS installs an ARP entry for A.B.C.D only on RP2. Beginning with version 8.3.1.0, when a Gratuitous ARP is received, FTOS installs an ARP entry on all 3 CPUs. arp retries c e s Set the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request.
Page 635 Related show interfaces Displays the ARP timeout value for all available interfaces. Commands clear arp-cache c e s Clear the dynamic ARP entries from a specific interface or optionally delete (no-refresh) ARP entries from CAM. Syntax clear arp-cache [vrf name | interface | ip ip-address] [no-refresh] Parameters vrf name E-Series Only: Clear only the ARP cache entries tied to the VRF process.
Page 636 clear host c e s Remove one or all dynamically learnt host table entries. Syntax clear host name Parameters name Enter the name of the host to delete. Enter * to delete all host table entries. Command Modes EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale...
Page 637 clear ip route c e s Clear one or all routes in the routing table. clear ip route {* | ip-address mask | vrf vrf instance} Syntax Parameters Enter an asterisk ( ) to clear all learned IP routes. ip-address mask Enter a specific IP address and mask in dotted decimal format to clear that IP address from the routing table.
Page 638 debug arp c e s View information on ARP transactions. Syntax debug arp [interface] [count value] To stop debugging ARP transactions, enter no debug arp. Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: gigabitethernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 639 Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.10 Introduced on E-Series Example Figure 24-1. debug ip dhcp Command Example FTOS#debug ip dhcp 00:12:21 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP Request, hops = 0, XID = 0xbf05140f, secs = 0, hwaddr = 00:60:CF:20:7B:8C, giaddr = 0.0.0.0 00:12:21 : %RELAY-I-BOOTREQUEST: Forwarded BOOTREQUEST for 00:60:CF:20:7B:8C to 14.4.4.2 00:12:26 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP...
Page 640 Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. ManagementEthernet • For the Management interface, enter the keyword followed by the slot/port information. The slot range is 0 and the port range is 0-1. port-channel •...
Page 641 Parameters access-group access-group name Enter the keyword followed by the access list name (maximum 16 characters) to limit the debug output based on the defined rules in the ACL. count value count (OPTIONAL) Enter the keyword followed by the count value. Range: 1 to 65534 Default: Infinity interface...
Page 642 Example Figure 24-3. debug ip packet Command Example (Partial) IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 54, sending TCP src=23, dst=40869, seq=2112994894, ack=606901739, win=8191 ACK PUSH IP: s=10.1.2.206 (Ma 0/0), d=10.1.2.62, len 40, rcvd TCP src=0, dst=0, seq=0, ack=0, win=0 IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 226, sending TCP src=23, dst=40869, seq=2112994896, ack=606901739, win=8192 ACK PUSH IP: s=10.1.2.216 (Ma 0/0), d=10.1.2.255, len 78, rcvd...
Page 643 • Internet Control Message Protocol* icmp * but not the ICMP message type (0-255) • Any Internet Protocol • Transmission Control Protocol* * but not on the rst, syn, or urg bit • User Datagram Protocol In the case of ambiguous access control list rules, the debug ip packet access-control command will be disabled.
Page 644 ip directed-broadcast c e s Enables the interface to receive directed broadcast packets. Syntax ip directed-broadcast To disable the interface from receiving directed broadcast packets, enter no ip directed-broadcast. Defaults Disabled (that is, the interface does not receive directed broadcast packets) Command Modes INTERFACE Command...
Page 645 ip domain-lookup c e s Enable dynamic host-name to address resolution (that is, DNS). ip domain-lookup Syntax To disable DNS lookup, use the no ip domain-lookup. Defaults Disabled. Command Mode CONFIGURATION Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series...
Page 646 • enable DNS with the ip domain-lookup command. To view current bindings, use the show hosts command. Related ip domain-list Configure additional names. Commands ip fib download-igp-only Configure the E-Series to download only IGP routes (for example, OSPF) on to line cards. When the command is configured or removed, it clears the routing table (similar to clear ip route command) and...
Page 647 Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series Usage You can add multiple DHCP servers by entering the ip helper-address command multiple times. If Information multiple servers are defined, an incoming request is sent simultaneously to all configured servers and the reply is forwarded to the DHCP client.
Page 648 Parameters name Enter a text string to associate with one IP address. ip-address Enter an IP address, in dotted decimal format, to be mapped to the name. Defaults Not configured. Command Modes CONFIGURATION Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Added support for S-Series...
Page 649 Defaults 1500 bytes Command Modes INTERFACE (Gigabit Ethernet and 10 Gigabit Ethernet interfaces) Command Version 8.1.1.0 Introduced on E-Series ExaScale History pre-Version 6.1.1.0 Introduced for E-Series Usage When you enter no mtu command, FTOS reduces the ip mtu value to 1536 bytes. To return the IP Information MTU value to the default, enter no ip mtu.
Page 650 ip name-server c e s Enter up to 6 IPv4 addresses of name servers. The order you enter the addresses determines the order of their use. Syntax ip name-server ipv4-address [ipv4-address2...ipv4-address6] To remove a name server, use the no ip name-server ip-address command. Parameters ipv4-address Enter the IPv4 address, in dotted decimal format, of the name server to be used.
Page 651 ip redirects Enable the interface to send ICMP redirect messages. ip redirects Syntax To return to default, enter no ip redirects. Defaults Disabled Command Modes INTERFACE Command Version 8.1.1.0 Introduced on E-Series ExaScale History pre-Version 6.1.1.0 Introduced for E-Series Usage This command is available for physical interfaces and port-channel interfaces on the E-Series.
Page 652 interface Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. loopback • For a loopback interface, enter the keyword followed by a number from zero (0) to 16383. null •...
Page 653 Related show ip route View the switch routing table. Commands ip source-route c e s Enable FTOS to forward IP packets with source route information in the header. Syntax ip source-route To drop packets with source route information, enter no ip route-source. Defaults Enabled.
Page 654 Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.4.1.0 Introduced on E-Series Usage By default this command is disabled. When enabled, all the Layer 3 unicast routed data traffic going Information through a VLAN member port is flooded across all the member ports of that VLAN. There might be some ARP table entries which are resolved through ARP packets which had Ethernet MAC SA different from MAC information inside the ARP packet.
Page 655 Usage By default, FTOS distributes incoming traffic based on a hash algorithm using the following criteria: Information • IP source address • IP destination address • TCP/UDP source port • TCP/UDP destination port Related hash-algorithm ecmp Commands load-balance (E-Series) By default, for E-Series chassis, FTOS uses an IP 5-tuple to distribute IP traffic over members of a Port Channel as well as equal cost paths.
Page 656 • IP source address • IP destination address • IP Protocol type • TCP/UDP source port • TCP/UDP destination port Note: For IPV6, only the first 32 bits (LSB) of IP Source Address and IP Destination Address are used for hash generation. lists the load balance command options and how the command combinations effect the The table below distribution of traffic.
Page 657 Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Usage When a static route (or a protocol route) overlaps with Management static route, the static route (or a Information protocol route) is preferred over the Management Static route. Also, Management static routes and the Management Connected prefix are not reflected in the hardware routing tables.
Page 658 dynamic dynamic (OPTIONAL) Enter the keyword to view dynamic entries. summary summary (OPTIONAL) Enter the keyword to view a summary of ARP entries. Command Modes EXEC Privilege Command Version 8.2.1.0 Support 4094 VLANs on E-Series ExaScale (prior limit was 2094) History Version 8.1.1.0 Introduced on E-Series ExaScale...
Page 659 Figure 24-7. show arp cpu cp Command Example FTOS#sho arp cpu cp Protocol Address Age(min) Hardware Address Interface VLAN -------------------------------------------------------------------------------- Internet 10.1.2.206 00:a0:80:00:15:b8 Ma 0/0 Internet 182.16.1.20 00:30:19:24:2d:70 Gi 8/0 Internet 100.10.10.10 00:30:19:4f:d3:80 Gi 8/12 Internet 10.1.2.209 00:a0:80:00:12:6c Ma 0/0 FTOS# Table 24-4.
Page 660 Syntax show arp retries Command Modes EXEC EXEC Privilege Command Version 8.3.1.0 Introduced History Related arp retries Set the number of ARP retries in case the system does not receive an ARP reply Commands in response to an ARP request. show hosts c e s View the host table and DNS configuration.
Page 661 Table 24-6. show hosts Command Example Fields (continued) Field Description Flags Classifies the entry as one of the following: • perm - the entry was manually configured and will not time out • temp - the entry was learned and will time out after 72 hours of inactivity. Also included in the flag is an indication of the validity of the route: •...
Page 662 Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series Example Figure 24-10. show ip cam Command Example on E-Series FTOS#show ip cam linecard 13 port-set 0 Index Destination EC CG V C Next-Hop Mac-Addr Port ------ --------------- -- -- - - --------------- ---- ---------------- ------- 3276 6.6.6.2 0 0 1 1 0.0.0.0...
Page 663 Example Figure 24-11. show ip cam summary Command Example FTOS#show ip cam linecard 4 port-set 0 summary Total Number of Routes in the CAM is 13 Total Number of Routes which can be entered in CAM is 131072 Prefix Len Current Use Initial Sz ---------- ----------- ---------- 37994 1312...
Page 664 ip-address mask (OPTIONAL) Enter the IP address and mask of a route to CAM entries for that route only. longer-prefix longer-prefixes Enter the keyword to view routes with a common prefix. summary summary (OPTIONAL) Enter the keyword to view a table listing route prefixes and the total number routes which can be entered in to CAM.
Page 665 Parameters vrf instance (OPTIONAL) E-Series Only: Enter the keyword followed by the VRF INstance name to show the FIB cache entries tied to that VRF instance. slot-number Enter the number of the line card slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, 0 to 5 on a E300 ip-address mask (OPTIONAL) Enter the IP address of the network destination to view only information on that destination.
Page 666 Related clear ip fib linecard Clear FIB entries on a specified line card. Commands show ip fib stack-unit View all Forwarding Information Base (FIB) entries. show ip fib stack-unit 0-7 [ip-address [mask] [longer-prefixes] | summary] Syntax Parameters Enter the S-Series stack unit ID, from 0 to 7. ip-address mask (OPTIONAL) Enter the IP address of the network destination to view only information on that destination.
Page 667 Related clear ip fib linecard Clear FIB entries on a specified line card. Commands show ip flow c e s Show how a Layer 3 packet is forwarded when it arrives at a particular interface. Syntax show ip flow interface [vrf vrf instance] interface {source-ip address destination-ip address} {protocol number [tcp | udp] | icmp} {src-port number destination-port number} Parameters vrf instance...
Page 668 S-Series produces the following error message: %Error: Unable to read IP route table C-Series produces the message: %Error: FIB cannot compute the egress port with the current trunk hash setting. Example Figure 24-15. Command Example show ip flow on E-Series FTOS#show ip flow interface Gi 1/8 189.1.1.1 63.0.0.1 protocol tcp source-port 7898 destination-port 8976 flow: 189.1.1.1 63.0.0.1 protocol 6 7868 8976 Ingress interface: Gi 1/20...
Page 669 linecard linecard (OPTIONAL) Enter the keyword followed by the number of the line card slot-number slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300 Note: This keyword is not available on the S-Series.
Page 670 Figure 24-17. show ip interface brief Command Example (Partial) FTOS#show ip int brief Interface IP-Address OK? Method Status Protocol GigabitEthernet 1/0 unassigned Manual administratively down down GigabitEthernet 1/1 unassigned Manual administratively down down GigabitEthernet 1/2 unassigned YES Manual up GigabitEthernet 1/3 unassigned YES Manual up GigabitEthernet 1/4...
Page 671 Example Figure 24-18. show ip management route Command Example FTOS#show ip management-route Destination Gateway State ----------- ------- ----- 10.1.2.0/24 ManagementEthernet 0/0 Connected 172.16.1.0/24 10.1.2.4 Active FTOS# show ipv6 management-route Display the IPv6 static routes configured for the management interface. Syntax show ipv6 management-route [all | connected | summary | static] Parameters Enter the keyword...
Page 672 Example Figure 24-19. show ip protocols Command Example FTOS#show ip protocols Routing Protocol is "bgp 1" Cluster Id is set to 20.20.20.3 Router Id is set to 20.20.20.3 Fast-external-fallover enabled Regular expression evaluation optimization enabled Capable of ROUTE_REFRESH For Address Family IPv4 Unicast BGP table version is 0, main routing table version 0 Distance: external 20 internal 200 local 200 Neighbor(s):...
Page 673 Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.9.1.0 Introduced VRF on the E-Series Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 24-20. show ip route all Command Example Example FTOS#show ip route all Codes: C - connected, S - static, R - RIP...
Page 674 Table 24-14. show ip route all Command Example Fields Field Description (undefined) Identifies the type of route: • = connected • = static • = RIP • = BGP • = internal BGP • = external BGP • = Locally Originated •...
Page 675 Related ip prefix-list Enter the CONFIGURATION-IP PREFIX-LIST mode and configure a Commands prefix list. show ip prefix-list summary Display a summary of the configured prefix lists. Example Figure 24-22. show ip route summary Command Example FTOS#show ip route list test Codes: C - connected, S - static, R - RIP, B - BGP, IN - internal BGP, EX - external BGP,LO - Locally Originated, O - OSPF, IA - OSPF inter area, N1 - OSPF NSSA external type 1,...
Page 676 Table 24-15. show ip route summary Column Headings Description Column Heading Route Source Identifies how the route is configured in FTOS. Active Routes Identifies the best route if a route is learned from two protocol sources. Non-active Routes Identifies the back-up routes when a route is learned by two different protocols. If the best route or active route goes down, the non-active route will become the best route.
Page 677 Example Figure 24-24. show ip traffic Command Example (partial) FTOS#show ip traffic Control Processor IP Traffic: IP statistics: Rcvd: 23857 total, 23829 local destination 0 format errors, 0 checksum errors, 0 bad hop count 0 unknown protocol, 0 not a gateway 0 security failures, 0 bad options Frags: 0 reassembled, 0 timeouts, 0 too big 0 fragmented, 0 couldn't fragment...
Page 678 Table 24-16. show ip traffic output definitions Keyword Definition ...no port broadcasts The incoming broadcast/multicast packet did not have any listener..socket full The applications buffer was full and the incoming packet had to be dropped. Usage The F10 Monitoring MIB provides access to the statistics described below. Information Table 24-17.
Page 679 Command Version 8.1.1.2 Introduced support for E-Series ExaScale E600i History Version 8.1.1.0 Introduced on E-Series ExaScale Version 6.4.1.0 Introduced Example Figure 24-25. show protocol-termination-table Command Output FTOS#show protocol-termination-table linecard 2 port-set 0 Index Protocol Src-Port Dst-Port Queue Blk-Hole VlanCPU EgPort ----- -------- --------...
Page 680 Enter the keyword to view only TCP statistics from Route Processor 1. Enter the keyword to view only TCP statistics from Route Processor 2. Command Modes EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 6.4.1.0 Introduced Example Figure 24-26.
Page 681 Table 24-18. show tcp statistics cp Command Example Fields (continued) Field Description 10184 ack... Displays the number of acknowledgement packets and bytes received. Sent: Displays the total number of TCP packets sent and the number of urgent packets sent. 25 control packets... Displays the number of control packets sent and the number retransmitted.
Page 682 IPv4 Routing...
Page 683 IPv6 Access Control Lists (IPv6 ACLs) Overview c e s IPv6 ACLs and IPv6 Route Map commands are supported on platforms: • IPv6 ACL Commands • IPv6 Route Map Commands Note: For IPv4 ACL commands, see Chapter 9, Access Control Lists (ACL).
Page 684 IPv6 ACL Commands The following commands configure IPv6 ACLs: • cam-acl • clear counters ipv6 access-group • deny • deny icmp • deny tcp • deny udp • ipv6 access-group • ipv6 access-list • permit • permit icmp • permit tcp •...
Page 685 Command Modes CONFIGURATION Command Version 8.4.2.0 Introduced on the E-Series TeraScale History Version 8.2.1.0 Introduced on the S-Series Version 7.8.1.0 Introduced on the C-Series Usage You must save the new CAM settings to the startup-config (write-mem or copy run start) then Information reload the system for the new settings to take effect.
Page 686 deny c e s Configure a filter that drops IPv6 packets that match the filter criteria. Syntax deny {ipv6-protocol-number | icmp | ipv6 | tcp | udp} To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number •...
Page 687 deny icmp c e s Configure a filter to drop all or specific ICMP messages. deny icmp {source address mask | any | host ipv6-address} {destination address | any | Syntax host ipv6-address} [message-type] [count [byte]] | [log] [monitor] To remove this filter, you have two choices: •...
Page 688 Usage The C-Series cannot count both packets and bytes, so when you enter the count byte options, only Information bytes are incremented. The following table lists the keywords displayed in the CLI help and their corresponding ICMP Message Type Name. Table 25-1.
Page 689 deny tcp c e s Configure a filter that drops TCP packets that match the filter criteria. deny tcp {source address mask | any | host ipv6-address} [operator port [port]] {destination Syntax address | any | host ipv6-address} [bit] [operator port [port]] [count [byte]] | [log] [monitor] To remove this filter, you have two choices: •...
Page 690 count count (OPTIONAL) Enter the keyword to count packets processed by the filter. byte byte (OPTIONAL) Enter the keyword to count bytes processed by the filter. (OPTIONAL) Enter the keyword to enter ACL matches in the log. Supported on Jumbo-enabled line cards only. monitor monitor (OPTIONAL) Enter the keyword...
Page 691 deny udp c e s Configure a filter to drop UDP packets meeting the filter criteria. deny udp {source address mask | any | host ipv6-address} [operator port [port]] {destination Syntax address | any | host ipv6-address} [operator port [port]] [count [byte]] | [log] [monitor] To remove this filter, you have two choices: •...
Page 692 Command Version 8.4.2.1 Introduced on the S-Series History Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.8.1.0 Introduced on the C-Series Version 7.4.1.0 Introduced on the E-Series TeraScale monitor Added option Usage The C-Series cannot count both packets and bytes, so when you enter the count byte options, only Information bytes are incremented.
Page 693 implicit-permit implicit-permit (OPTIONAL) Enter the keyword to change the default action of the IPv6 ACL from implicit-deny to implicit-permit (that is, if the traffic does not match the filters in the IPv6 ACL, the traffic is permitted instead of dropped). vlan range vlan (OPTIONAL) Enter the keyword...
Page 694 Usage The number of entries allowed per ACL is hardware-dependent. Refer to your line card documentation Information for detailed specification on entries allowed per ACL. Related show config View the current configuration. Commands permit Select an IPv6 protocol number, ICMP, IPv6, TCP, or UDP to configure a filter that match the filter criteria.
Page 695 Enter the keyword to specify that all routes are subject to the filter. host ipv6-address host Enter the keyword followed by the IPv6 address of the host in the x:x:x:x::x format. notation specifies successive hexadecimal fields of zero destination address Enter the IPv6 address of the network or host to which the packets are sent in x:x:x:x::x format followed by the prefix length in the...
Page 696 Parameters source address Enter the IPv6 address of the network or host from which the packets were sent x:x:x:x::x in the format followed by the prefix length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format ( Enter the keyword...
Page 697 Command Version 8.4.2.1 Introduced on the S-Series History Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.8.1.0 Introduced on the C-Series Version 7.4.1.0 Introduced on the E-Series TeraScale monitor Added option Usage The C-Series cannot count both packets and bytes, so when you enter the count byte options, only Information bytes are incremented.
Page 698 Parameters source address Enter the IPv6 address of the network or host from which the packets were sent x:x:x:x::x in the format followed by the prefix length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format ( Enter the keyword...
Page 699 For example, an ACL rule with TCP port range 4000 - 8000 uses 8 entries in the CAM: Rule# Data Mask From #Covered 0000111110100000 1111111111100000 4000 4031 0000111111000000 1111111111000000 4032 4095 0001000000000000 1111100000000000 4096 6143 2048 0001100000000000 1111110000000000 6144 7167 1024 0001110000000000 1111111000000000 7168 7679...
Page 700 remark c e s Enter a description for an IPv6 ACL entry. Syntax remark remark number [description] To delete the description, use the no remark remark number command (it is not necessary to include the remark description that you are deleting). Parameters remark number Enter the remark number.
Page 701 resequence access-list c e s Re-assign sequence numbers to entries of an existing access-list. resequence access-list {ipv4 | ipv6 | mac} {access-list-name StartingSeqNum Syntax Step-to-Increment} Parameters ipv4 |ipv6 | mac ipv4, ipv6 Enter the keyword to identify the access list type to resequence.
Page 702 resequence prefix-list ipv6 c e s Re-assign sequence numbers to entries of an existing prefix list. Syntax resequence prefix-list ipv6 {prefix-list-name StartingSeqNum Step-to-increment} Parameters prefix-list-name Enter the name of configured prefix list, up to 140 characters. Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long.
Page 703 c e s Assign a sequence number to a deny or permit filter in an IPv6 access list while creating the filter. seq sequence-number {deny | permit} {ipv6-protocol-number | icmp | ip | tcp | udp} Syntax {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} [operator port [port]] [count [byte]] | [log] [monitor] To delete a filter, use the no seq sequence-number command.
Page 704 destination address Enter the IPv6 address of the network or host to which the packets are sent in x:x:x:x::x format followed by the prefix length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zero. message-type (OPTIONAL) Enter an ICMP message type, either with the type (and code, if necessary) numbers or with the name of the message type.
Page 705 show cam-acl c e s Show space allocated for IPv6 ACLs. show cam-acl Syntax Command Modes EXEC EXEC Privileged Command Version 8.4.2.1 Introduced on the S-Series History Version 8.4.2.0 Introduced on the E-Series TeraScale Version 7.8.1.0 Introduced on the C-Series Related cam-acl Configure CAM profiles to support IPv6 ACLs...
Page 706 show config c e s View the current IPv6 ACL configuration. Syntax show config Command Modes ACCESS-LIST Command Version 8.4.2.1 Introduced on the S-Series History Version 8.4.2.0 Introduced on the E-Series TeraScale Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.8.1.0 Introduced on the C-Series Example Figure 25-5.
Page 707 Version 7.8.1.0 Introduced on the C-Series Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.4.1.0 Introduced on the E-Series TeraScale Example Figure 25-6. Command Example: show ipv6 accounting access-lists FTOS#show ipv6 accounting access-list Ingress IPv6 access list AclList1 on GigabitEthernet 9/0 Total cam count 15...
Page 708 test cam-usage c e s Verify that enough ACL CAM space is available for the IPv6 ACLs you have created. Syntax test cam-usage service-policy input input policy name linecard {number | all} Parameters policy-map name Enter the name of the policy-map to verify. number number Enter...
Page 709 Example The following example shows the output shown when using the test cam-usage command. Figure 25-8. Command Example: test cam-usage (C-Series) FTOS#test cam-usage service-policy input LauraMapTest linecard all Linecard | Portpipe | CAM Partition | Available CAM | Estimated CAM per Port | Status ------------------------------------------------------------------------------------------ 1 | IPv4Flow 232 |...
Page 710 IPv6 Route Map Commands The following commands allow you to configure route maps and their redistribution criteria. • match ipv6 address • match ipv6 next-hop • match ipv6 route-source • route-map • set ipv6 next-hop • show config • show route-map match ipv6 address c e s Configure a filter to match routes based on IPv6 addresses specified in an access list.
Page 711 Defaults Not configured. Command Modes ROUTE-MAP Command Version 8.4.2.1 Introduced on the S-Series History Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.0 Introduced support on the C-Series Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long.
Page 712 route-map c e s Designate a IPv6 route map name and enter the ROUTE-MAP mode. Syntax route-map map-name To delete a route map, use the no route-map map-name command. Parameters map-name Enter a text string to name the route map, up to 140 characters. Defaults Not configured Command Modes...
Page 713 Command Version 8.4.2.1 Introduced on the S-Series History Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.0 Introduced support on the C-Series Version 7.4.1.0 Introduced support on the E-Series TeraScale Usage set ipv6 next-hop command is the only way to set an IPv6 Next-Hop. Information show config c e s...
Page 714 Example Figure 25-11. Command Example: show route-map FTOS#show route-map route-map Rmap1, permit, sequence 10 Match clauses: ip address: v4plist ipv6 address: plist1 ipv6 next-hop prefix-lists: plist2 ipv6 route-source prefix-lists: plist3 Set clauses: next-hop 1.1.1.1 ipv6 next-hop 3333:2222:: Related route-map Configure a route map. Commands IPv6 Access Control Lists (IPv6 ACLs)
Page 715 IPv6 Basics Overview c e s IPv6 Basic Commands are supported on platforms: Note: Basic IPv6 basic commands are supported on all platforms. See Table 23-2 on page 506 Chapter 23, IPv6 Addressing for information on the FTOS version and platform that supports IPv6 in each software feature.
Page 716 clear ipv6 fib c e s Clear (refresh) all FIB entries on a linecard. clear ipv6 fib linecard slot Syntax Parameters slot Enter the slot number to clear the FIB for a linecard. Command Mode EXEC Privilege Command Version 8.2.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0...
Page 717 Command Version 8.4.1.0 Support added on the management Ethernet port. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series TeraScale Example Figure 26-1. Command Example: ipv6 address FTOS(conf)#interface gigabitethernet 10/0 FTOS(conf-if-gi-10/0)#ipv6 address ? X:X:X:X::X IPv6 address...
Page 718 ipv6 host c e s Assign a name and IPv6 address to be used by the host-to-IP address mapping table. Syntax ipv6 host name ip-address Parameters name Enter a text string to associate with one IP address. ipv6-address Enter an IPv6 address (X:X:X:X::X) to be mapped to the name. Defaults Not configured.
Page 719 ipv6 nd prefix-advertisement c e s Specify which IPv6 prefixes are include in Neighbor Advertisements. By default, all prefixes configured as addresses on the interface are advertised. This command allows control over the individual parameters per prefix; the default keyword can be used to use the default parameters for all prefixes.
Page 720 ipv6 route c e s Establish a static IPv6 route. Syntax ipv6 route ipv6-address prefix-length {interface | ipv6-address} [distance] [tag value] [permanent] To remove the IPv6 route, use the no ipv6 route ipv6-address prefix-length {interface | ipv6-address} [distance] [tag value] [permanent] command. Parameters ipv6-address x:x:x:x::x...
Page 721 Example Figure 26-2. Command Example: ipv6 route FTOS(conf)#ipv6 route 44::0 /64 33::1 ? <1-255> Distance metric for this route permanent Permanent route Set tag for this route FTOS(conf)#ipv6 route 55::0 /64 ? X:X:X:X::X Forwarding router's address gigabitethernet Gigabit Ethernet interface loopback Loopback interface null...
Page 722 ipv6 unicast-routing c e s Enable IPv6 Unicast routing. Syntax ipv6 unicast-routing To disable unicast routing, use the no ipv6 unicast-routing command. Defaults Enabled Command Modes CONFIGURATION Command Version 8.4.2.1 Introduced on S-Series History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series Version 7.4.1.0...
Page 723 show ipv6 cam linecard c e s Displays the IPv6 CAM entries for the specified line card. show ipv6 cam linecard slot-number port-set {0-1} [summary | index | ipv6 address] Syntax Parameters slot-number Enter the line card slot ID number. Range: 0 to 13 on the E1200;...
Page 724 Examples Figure 26-3. Command Example: show ipv6 cam linecard fib (C or E-Series) FTOS#show ipv6 cam linecard 13 fib Neighbor Mac-Addr Port ---------------------------------------------- ----------------- --------- ---- 31] 2002:44:1:1::11 00:00:01:1a:1e:d5 Gi 13/2 Prefix Next-Hop Mac-Addr Port ------------------------------- ------------------------------- ----------------- --------- ---- -- [ 3147] 100::/64 0] 2002:44:1:1::11 Gi 0/0...
Page 725 show ipv6 cam stack-unit c e s Displays the IPv6 CAM entries for the specified stack-unit. show ipv6 cam stack-unit unit-number port-set {0-1} [summary | index | ipv6 address] Syntax Parameters unit-number Enter the stack unit’s ID number. Range: 0 to 7 port-set Enter the Port Set to summary...
Page 726 show ipv6 fib linecard View all Forwarding Information Base entries. Syntax show ipv6 fib linecard slot-number {summary | ipv6-address} Parameters slot-number Enter the number of the line card slot. E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300 summary summary (OPTIONAL) Enter the keyword...
Page 727 show ipv6 interface c e s Display the status of interfaces configured for IPv6. show ipv6 interface interface [brief] [configured] [gigabitethernet slot | slot/port] [linecard Syntax slot-number] [loopback interface-number] [managementethernet slot/port] [port-channel number] [tengigabitethernet slot | slot/port] [vlan vlan-id] Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information:...
Page 728 Example Figure 26-5. Command Example: show ipv6 interface FTOS#show ipv6 interface gigabitethernet 1/1 GigabitEthernet 1/1 is up, line protocol is up IPV6 is enabled Link Local address: fe80::201:e8ff:fe04:62c4 Global Unicast address(es): 2001::1, subnet is 2001::/64 2002::1, subnet is 2002::/120 2003::1, subnet is 2003::/120 2004::1, subnet is 2004::/32 Global Anycast address(es): Joined Group address(es):...
Page 729 show ipv6 route c e s Displays the IPv6 routes. show ipv6 route [ipv6-address prefix-length] [hostname] [all] [bgp as number] Syntax [connected] [isis tag] [list prefix-list name] [ospf process-id] [rip] [static] [summary] Parameter ipv6-address x:x:x:x::x (OPTIONAL) Enter the IPv6 address in the format followed by the prefix-length prefix length in the...
Page 730 Example Figure 26-9. Command Example: show ipv6 route summary FTOS#show ipv6 route summary Route Source Active Routes Non-active Routes connected static Total Total 5 active route(s) using 952 bytes Table 26-1. show ipv6 route Command Example Fields Field Description (undefined) Identifies the type of route: •...
Page 731 trust ipv6-diffserv c e s Allows the dynamic classification of IPv6 DSCP. trust ipv6-diffserv Syntax To remove the definition, use the no trust ipv6-diffserv command. Defaults This command has no default behavior or values. Command Modes CONFIGURATION-POLICY-MAP-IN Command Version 8.4.2.1 Introduced on C-Series and S-Series History Version 8.2.1.0...
Page 732 IPv6 Basics...
Page 733 IPv6 Border Gateway Protocol (IPv6 BGP) Overview IPv6 Border Gateway Protocol (IPv6 BGP) is supported on platforms: This chapter includes the following commands: • IPv6 BGP Commands • IPv6 MBGP Commands IPv6 BGP Commands Border Gateway Protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between Autonomous Systems (AS).
Page 734 • bgp regex-eval-optz-disable • bgp router-id • bgp soft-reconfig-backup • capture bgp-pdu neighbor (ipv6) • capture bgp-pdu max-buffer-size • clear ip bgp as-number • clear ip bgp ipv6-address • clear ip bgp peer-group • clear ip bgp ipv6 dampening • clear ip bgp ipv6 flap-statistics •...
Page 735 • neighbor update-source • neighbor weight • network • network backdoor • redistribute • redistribute isis • redistribute ospf • router bgp • show capture bgp-pdu neighbor • show config • show ip bgp ipv6 unicast • show ip bgp ipv6 unicast cluster-list •...
Page 736 Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 6.5.1.0 Introduced on E-Series TeraScale Usage Enter ipv6 unicast to enter the BGP for IPv6 mode (CONF-ROUTER_BGPv6_AF). Information aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table. aggregate-address ipv6-address prefix-length [advertise-map map-name] [as-set] Syntax [attribute-map map-name] [summary-only] [suppress-map map-name]...
Page 737 In route maps used in the suppress-map parameter, routes meeting the deny clause are not suppress; in other words, they are allowed. The opposite is true: routes meeting the permit clause are suppressed. If the route is injected via the network command, that route will still appear in the routing table if the summary-only parameter is configured in the...
Page 738 Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage If you enable this command, use the capture bgp-pdu max-buffer-size * command to recompute the Information best path. bgp bestpath med confed Enable MULTI_EXIT_DISC (MED) attribute comparison on paths learned from BGP confederations. bgp bestpath med confed Syntax To disable MED comparison on BGP confederation paths, enter no bgp bestpath med confed.
Page 739 bgp client-to-client reflection Allows you to enable route reflection between clients in a cluster. Syntax bgp client-to-client reflection To disable client-to-client reflection, enter no bgp client-to-client reflection. Defaults Enabled when a route reflector is configured. Command Modes ROUTER BGP Command Version 8.4.2.1 Introduced on C-Series and S4810.
Page 740 Related bgp client-to-client reflection Enable route reflection between route reflector and clients. Commands neighbor route-reflector-client Configure a route reflector and clients. show ip bgp ipv6 unicast View paths with a cluster ID. cluster-list bgp confederation identifier Configure an identifier for a BGP confederation. Syntax bgp confederation identifier as-number To delete a BGP confederation identifier, use the no bgp confederation identifier as-number...
Page 741 Command Modes ROUTER BGP Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage The Autonomous Systems configured in this command are visible to the EBGP neighbors. Each Information Autonomous System is fully meshed and contains a few connections to other Autonomous Systems.
Page 742 Command Modes ROUTER BGPV6-ADDRESS FAMILY Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage If you enter bgp dampening, the default values for half-life, reuse, suppress, and Information max-suppress-time are applied.
Page 743 Command Modes ROUTER BGP Usage This is enabled by default, that is for all updates received from EBGP peers, BGP ensures that the first Information AS of the first AS segment is always the AS of the peer. If not, the update is dropped and a counter is incremented.
Page 744 Usage Routers supporting 4-Byte ASNs advertise that function in the OPEN message. The behavior of a Information 4-Byte router will be slightly different depending on whether it is speaking to a 2-Byte router or a 4-Byte router. When creating Confederations, all the routers in the Confederation must be 4 or 2 byte identified routers.
Page 745 bgp log-neighbor-changes Enable logging of BGP neighbor resets. Syntax bgp log-neighbor-changes To disable logging, enter no bgp log-neighbor-changes. Defaults Enabled Command Modes ROUTER BGP Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage bgp log-neighbor-changes...
Page 746 bgp recursive-bgp-next-hop Enable next-hop resolution through other routes learned by BGP. Syntax bgp recursive-bgp-next-hop To disable next-hop resolution, use the no bgp recursive-bgp-next-hop command. Defaults Enabled Command Modes ROUTER BGP Usage This command is a knob to disable BGP next-hop resolution via BGP learned routes. During the Information next-hop resolution, only the first route that the next-hop resolves through is verified for the route’s protocol source and is checked if the route is learned from BGP or not.
Page 747 Related show ip protocols View information on all routing protocols enabled and active on the Commands E-Series. Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale bgp router-id Assign a user-given ID to a BGP router.
Page 748 Related clear ip bgp ipv6 unicast soft Activate inbound policies for IPv6 routes without resetting the BGP TCP Commands session. Command Version 8.4.1.0 Added support for IPv4 multicast and IPv6 unicast address families History Version 7.8.1.0 Introduced support on S4810 Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0...
Page 749 Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Related capture bgp-pdu neighbor (ipv6) Enable capture of an IPv6 BGP neighbor packet. Commands show capture bgp-pdu neighbor Configure a route reflector and clients.
Page 750 Parameters as-number Enter an autonomous system (AS) number to reset neighbors belonging to that AS. If used without a qualifier, the keyword resets all neighbors belonging to that AS. Range: 1 to 65535 flap-statistics flap-statistics (OPTIONAL) Enter the keyword to clear all flap statistics belonging to that AS or a specified address family within that AS.
Page 751 multicast multicast (OPTIONAL) Enter the keyword to select the multicast option within the selected address family. Multicast is supported on IPv4 only soft soft (OPTIONAL) Enter the keyword to configure and activate policies without resetting the BGP TCP session, that is, BGP Soft Reconfiguration. Note: clear ip bgp ip6-address soft If you enter...
Page 752 Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage After you enter this command, the software deletes history routes and returns suppressed routes to Information active state. clear ip bgp ipv6 flap-statistics Clear BGP flap statistics, which includes number of flaps and the time of the last flap. clear ip bgp ipv6 unicast flap-statistics [ipv6-address | filter-list as-path-name | regexp Syntax regular-expression]...
Page 753 clear ip bgp ipv6 unicast soft Clear and reapply policies for IPv6 unicast routes without resetting the TCP connection; that is, perform BGP soft reconfiguration. Syntax clear ip bgp {* | as-number | ipv4-neighbor-addr | ipv6-neighbor-addr | peer-group name} ipv6 unicast soft [in | out] Parameters Clear and reapply policies for all BGP sessions.
Page 754 (OPTIONAL) Enter the keyword to view only information on inbound BGP routes. (OPTIONAL) Enter the keyword to view only information on outbound BGP routes. Command Modes EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage...
Page 755 Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage Enter the no debug ip bgp command to remove all configured debug commands for BGP. Information debug ip bgp ipv6 dampening View information on IPv6 routes being dampened. Syntax debug ip bgp ipv6 unicast dampening [in | out] To disable debugging, enter no debug ip bgp ipv6 unicast dampening.
Page 756 Command Modes EXEC Privilege Usage This command turns on BGP soft-reconfiguration inbound debugging for IPv6 unicast routes. If no Information neighbor is specified, debug is turned on for all neighbors. Command Version 8.4.1.0 Added support for IPv4 multicast and IPv6 unicast routes History Version 7.8.1.0 Introduced support on S4810...
Page 757 To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] notifications [in | out] command. Parameters ipv6-address x:x:x:x::x (OPTIONAL) Enter the IPv6 address in the format followed by the prefix length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zeros.
Page 758 Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage Enter the no debug ip bgp command to remove all configured debug commands for BGP. Information default-metric Allows you to change the metrics of redistributed routes to locally originated routes. Use this command with the redistribute command.
Page 759 Version 7.4.1.0 Introduced on E-Series TeraScale Caution: Dell Force10 recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. Usage The higher the administrative distance assigned to a route means that your confidence in that route is Information low.
Page 760 Syntax maximum-paths {ebgp | ibgp} number To return to the default values, enter no maximum-paths. Parameters ebgp ebgp Enter the keyword to enable multipath support for External BGP routes. ibgp ibgp Enter the keyword to enable multipath support for Internal BGP routes. number Enter a number as the maximum number of parallel paths.
Page 761 neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group. Syntax neighbor {ipv6-address | peer-group-name} advertisement-interval seconds To return to the default value, use the no neighbor {ipv6-address | peer-group-name} advertisement-interval command. Parameters ipv6-address x:x:x:x::x Enter the IPv6 address in the format.
Page 762 Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale neighbor default-originate Inject the default route to a BGP peer or neighbor. neighbor {ipv6-address | peer-group-name} default-originate [route-map map-name] Syntax To remove a default route, use the no neighbor {ipv6-address | peer-group-name} default-originate [route-map map-name] command.
Page 763 Command Modes ROUTER BGP Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale neighbor distribute-list Distribute BGP information via an established prefix list. Syntax neighbor {ipv6-address | peer-group-name} distribute-list prefix-list-name {in | out} To delete a neighbor distribution list, use the no neighbor {ipv6-address | peer-group-name} distribute-list prefix-list-name {in | out} command.
Page 764 Parameters ipv6-address x:x:x:x::x Enter the IPv6 address in the format. notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. (OPTIONAL) Enter the number of hops as the Time to Live (ttl) value. Range: 1 to 255. Default: 255 Defaults Disabled.
Page 765 neighbor filter-list Configure a BGP filter based on the AS-PATH attribute. Syntax neighbor {ipv6-address | peer-group-name} filter-list as-path-name {in | out} To delete a BGP filter, use the no neighbor {ipv6-address | peer-group-name} filter-list as-path-name {in | out} command. Parameters ipv6-address x:x:x:x::x Enter the IPv6 address in the...
Page 766 threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage maximum of the value, the E-Series software sends a message. Range: 1 to 100 percent. Default: 75 warning-only warning-only (OPTIONAL) Enter the keyword...
Page 767 neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. (This command is used for IBGP). Syntax neighbor {ipv6-address | peer-group-name} next-hop-self To return to the default setting, use the no neighbor {ipv6-address | peer-group-name} next-hop-self command.
Page 768 Usage You can assign up to 64 peers to one peer group. Information When you add a peer to a peer group, it inherits all the peer group’s configured parameters. A peer cannot become part of a peer group if any of the following commands are configured on the peer: •...
Page 769 neighbor remote-as Assign a indirectly connected AS to a neighbor or peer group. neighbor shutdown Disable a peer or peer group. neighbor peer-group passive Enable passive peering on a BGP peer group, that is, the peer group does not send an OPEN message, but will respond to one.
Page 770 Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage If the number parameter is the same as the AS number used in the router bgp command, the remote Information AS entry in the neighbor is considered an internal BGP peer entry.
Page 771 Syntax neighbor {ipv6-address | peer-group-name} route-map map-name {in | out} To remove the route map, use the no neighbor {ipv6-address | peer-group-name} route-map map-name {in | out} command. Parameters ipv6-address x:x:x:x::x Enter the IPv6 address in the format. notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group.
Page 772 Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage The first time you enter this command it configures the neighbor as a route reflector and members of Information the route-reflector cluster.
Page 773 Defaults Enabled (that is, BGP neighbors and peer groups are disabled.) Command Modes ROUTER BGP Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage Peers that are enabled within a peer group are disabled when their peer group is disabled. Information neighbor shutdown command terminates all BGP sessions on the BGP neighbor or BGP peer...
Page 774 neighbor subnet Enable passive peering so that the members of the peer group are dynamic Syntax neighbor peer-group-name subnet subnet-number mask To remove passive peering, use the no neighbor peer-group-name subnet subnet-number mask command. Parameters subnet-number Enter a subnet number in dotted decimal format (A.B.C.D.) as the allowable range of addresses included in the Peer group.
Page 775 Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage Timer values configured with the neighbor timers command override the timer values configured with Information timers bgp command. When two neighbors, configured with different keepalive and holdtime values, negotiate for new values, the resulting values will be as follows: the lower of the holdtime values is the new holdtime value, and...
Page 776 neighbor weight Assign a weight to the neighbor connection, which is used to determine the best path. Syntax neighbor {ipv6-address | peer-group-name} weight weight To remove a weight value, use the no neighbor {ipv6-address | peer-group-name} weight weight command. Parameters ipv6-address x:x:x:x::x Enter the IPv6 address in the...
Page 777 mask Enter the mask of the IP address in the slash prefix length format (for example, /24). The mask appears in command outputs in dotted decimal format (A.B.C.D). route-map map-name route-map (OPTIONAL) Enter the keyword followed by the name of an established route map.
Page 778 Usage Though FTOS does not generate a route due to backdoor config, there is an option for injecting/ Information sourcing a local route in presence of network backdoor config on a learned route. redistribute Redistribute routes into BGP. redistribute {connected | static} [route-map map-name] Syntax To disable redistribution, use the no redistribution {connected | static} command.
Page 779 Parameters level-1 | level-1-2 (OPTIONAL) Enter the type (level) of routes to redistribute. | level-2] metric Assign metric to an interface for use with IPv6 information (OPTIONAL) metric-type (OPTIONAL) The external link type associated with the default route advertised into a routing domain.
Page 780 Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage When you enter redistribute ospf process-id command without any other parameters, FTOS Information redistributes all OSPF internal routes, external type 1 routes, and external type 2 routes.
Page 781 Related capture bgp-pdu neighbor (ipv6) Enable capture of an IPv6 BGP neighbor packet. Commands capture bgp-pdu max-buffer-size Specify a size for the capture buffer. show config View the current ROUTER BGP configuration. Syntax show config Command Modes ROUTER BGPV6-ADDRESS FAMILY Example Figure 27-1.
Page 782 Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage When you enable bgp non-deterministic-med command, the show ip bgp command output for a Information BGP route does not list the INACTIVE reason. show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster.
Page 783 Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage To view the total number of COMMUNITY attributes found, use the show ip bgp ipv6 unicast Information summary command.
Page 784 show ip bgp ipv6 unicast detail Display BGP internal information for IPv6 Unicast address family. Syntax show ip bgp ipv6 unicast detail Defaults none Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale...
Page 785 Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes. Syntax show ip bgp ipv6 unicast flap-statistics [ipv6-address prefix-length] [filter-list as-path-name] [regexp regular-expression] Parameters ipv6-address prefix-length...
Page 786 Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale IPv6 Border Gateway Protocol (IPv6 BGP)
Page 787 show ip bgp ipv6 unicast neighbors Displays information on IPv6 unicast routes exchanged by BGP neighbors. show ip bgp ipv6 unicast neighbors [ipv4-neighbor-addr | ipv6-neighbor-addr] Syntax [advertised-routes | dampened-routes | detail | flap-statistics | routes | received-routes [network [network-mask]] | denied-routes [network [network-mask]]] Parameters ipv6 unicast ipv6 unicast...
Page 788 Example 1 Figure 27-2. Command Example: show ip bgp ipv6 unicast neighbors FTOS#show ip bgp ipv6 unicast neighbors BGP neighbor is 5ffe:10::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.3 BGP state ESTABLISHED, in this state for 00:00:32 Last read 00:00:32, last write 00:00:32 Hold time is 180, keepalive interval is 60 seconds Received 1404 messages, 0 in queue...
Page 789 Table 27-1. Command Example fields: show ip bgp ipv6 unicast neighbors Lines beginning with Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one.
Page 790 show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. Syntax show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] Parameters peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only.
Page 791 show ip bgp ipv6 unicast summary Allows you to view the status of all BGP connections. show ip bgp ipv6 unicast summary Syntax Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Example...
Page 792 Example Figure 27-5. show ip bgp next-hop Command Example FTOS#show ip bgp next-hop Next-hop RefCount Cost Flaps Time Elapsed 9000::5:2 9000::5:2, Gi 8/38 0 00:23:22 9000::6:2 9000::6:2, Gi 8/38 0 00:23:22 9000::7:2 9000::7:2, Gi 8/38 0 00:23:22 9000::8:2 9000::8:2, Gi 8/38 0 00:23:22 9000::9:2 9000::9:2, Gi 8/38...
Page 793 Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale show ip bgp paths community View all unique COMMUNITY numbers in the BGP database. Syntax show ip bgp paths community Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810.
Page 794 Parameters regular-expression [character] Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space) • = (asterisk) the sequences in a pattern (0 or more sequences) •...
Page 795 IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). FTOS MBGP is implemented as per IETF RFC 1858. The MBGP commands are: •...
Page 796 To remove SAFI context, use the no address family ipv6 unicast command. Parameters ipv6 ipv6 Enter the keyword to specify the address family as IPv6. unicast unicast Enter the keyword to specify multicast as SAFI. Defaults IPv6 Unicast Command Modes ROUTER BGPV6-ADDRESS FAMILY Command Version 8.4.2.1...
Page 797 Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 7.4.1.0 Introduced on E-Series TeraScale Usage At least one of the routes included in the aggregate address must be in the BGP routing table for the Information configured aggregate to become active. Do not add the as-set parameter to the aggregate.
Page 798 Syntax clear ip bgp ipv6 unicast * ipv6-address prefix-length [dampening | flap-statistics] peer-group] Parameters Enter the character to clear all peers. ipv6-address x:x:x:x::x Enter the IPv6 address in the format followed by the prefix prefix-length length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zeros dampening dampening...
Page 799 filter-list filter-list (OPTIONAL) Enter the keyword followed by the name of a configured AS-PATH list (max 16 characters). list regexp regexp (OPTIONAL) Enter the keyword followed by regular expressions. Use one or a regexp combination of the following: (period) matches on any single character, including white space (asterisk) matches on sequences in a pattern (zero or more sequences) (plus sign) matches on sequences in a pattern (one or more sequences) (question mark) matches sequences in a pattern (0 or 1 sequences)
Page 800 (OPTIONAL) Enter the keyword to view only BGP updates received from neighbors. (OPTIONAL) Enter the keyword to view only BGP updates sent to neighbors. Command Modes EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 7.4.1.0 Introduced on E-Series TeraScale debug ip bgp ipv6 unicast updates View information about BGP updates.
Page 801 History Version 7.4.1.0 Introduced on E-Series TeraScale Caution: Dell Force10 recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. Usage The higher the administrative distance assigned to a route means that your confidence in that route is Information low.
Page 802 Usage By default, when a neighbor/peer group configuration is created in the Router BGP context, it is Information enabled for the IPv6/Unicast AFI/SAFI. By using activate in the new context, the neighbor/peer group is enabled for AFI/SAFI. Related address family Changes the context to SAFI Commands neighbor advertisement-interval...
Page 803 Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 7.4.1.0 Introduced on E-Series TeraScale neighbor distribute-list Distribute BGP information via an established prefix list. Syntax neighbor [ipv6-address | peer-group-name] distribute-list prefix-list-name [in | out] To delete a neighbor distribution list, use the no neighbor [ipv6-address | peer-group-name] distribute-list prefix-list-name [in | out] command.
Page 804 Parameters ipv6-address x:x:x:x::x (OPTIONAL) Enter the IPv6 address in the format. notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to apply the filter to all routers in the peer group. access-list-name Enter the name of an established AS-PATH access list. If the AS-PATH access list is not configured, the default is permit (to allow routes).
Page 805 neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. Syntax neighbor ipv6-address | peer-group-name next-hop-self To return to the default setting, use the no neighbor ipv6-address | peer-group-name next-hop-self command. Parameters ipv6-address x:x:x:x::x (OPTIONAL) Enter the IPv6 address in the format.
Page 806 neighbor route-map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group. Syntax neighbor ipv6-address | peer-group-name route-map map-name [in | out] To remove the route map, use the no neighbor [ipv6-address | peer-group-name] route-map map-name [in | out] command.
Page 807 Command Modes ROUTER BGPV6-ADDRESS FAMILY Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 7.4.1.0 Introduced on E-Series TeraScale Usage The first time you enter this command it configures the neighbor as a route reflector and members of Information the route-reflector cluster.
Page 808 redistribute Redistribute routes into BGP. Syntax redistribute [connected | static] [route-map map-name] To disable redistribution, use the no redistribution [connected | static] [route-map map-name] command. Parameters connected connected Enter the keyword to redistribute routes from physically connected interfaces. static static Enter the keyword to redistribute manually configured routes.
Page 809 Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 7.4.1.0 Introduced on E-Series TeraScale Example Figure 27-6. show ip bgp ipv6 unicast FTOS#show ip bgp ipv6 unicast BGP table version is 8, local router ID is 5.5.10.4 Status codes: s suppressed, S stale, d damped, h history, * valid, >...
Page 810 show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster. Syntax show ip bgp ipv6 unicast cluster-list [cluster-id] Parameters cluster-id (OPTIONAL) Enter the cluster id in dotted decimal format. Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810.
Page 811 show ip bgp ipv6 unicast community-list View routes that are affected by a specific community list. Syntax show ip bgp ipv6 unicast community-list community-list-name Parameters community-list-name Enter the name of a configured IP community list. Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810.
Page 812 Example Figure 27-7. show ip bgp ipv6 unicast detail Command Example (Partial) R2_Training#show ip bgp ipv6 unicast detail Detail information for BGP Node bgpNdP 0x41a17000 : NdTmrP 0x41a17000 : NdKATmrP 0x41a17014 : NdTics 327741 : NhLocAS 1 : NdState 2 : NdRPMPrim 1 : NdListSoc 13 NdAuto 1 : NdEqCost 1 : NdSync 0 : NdDefOrg 0 NdV6ListSoc 14 NdDefDid 0 : NdConfedId 0 : NdMedConfed 0 : NdMedMissVal -1 : NdIgnrIllId 0 : NdRRC2C 1 : NdClstId 33686273 : NdPaTblP 0x41a19088...
Page 813 Parameters ipv6-address x:x:x:x::x (OPTIONAL) Enter the IPv6 address in the format followed by prefix-length the prefix length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zeros. filter-list as-path-name filter-list (OPTIONAL) Enter the keyword followed by the name of a configured AS-PATH ACL.
Page 814 show ip bgp ipv6 unicast inconsistent-as View routes with inconsistent originating Autonomous System (AS) numbers, that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. Syntax show ip bgp ipv6 unicast inconsistent-as Command Modes EXEC EXEC Privilege Command...
Page 815 Example Figure 27-9. show ip bgp ipv6 unicast neighbors Command Example (Partial) FTOS#show ip bgp ipv6 unicast neighbors BGP neighbor is 5ffe:10::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.3 BGP state ESTABLISHED, in this state for 00:00:32 Last read 00:00:32, last write 00:00:32 Hold time is 180, keepalive interval is 60 seconds Received 1404 messages, 0 in queue...
Page 816 Table 27-3. show ip bgp neighbors Command Fields Lines beginning with Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one. If they are located in the same AS, then the link is internal;...
Page 817 show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. Syntax show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] Parameters peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only.
Page 818 Table 27-4. show ip bgp summary Command Fields Field Description BGP router identifier Displays the local router ID and the AS number. BGP table version Displays the BGP table version and the main routing table version. network entries Displays the number of network entries and route paths and the amount of memory used to process those entries.
Page 819 Intermediate System to Intermediate System (IS-IS) Overview Intermediate System to Intermediate System Protocol (IS-IS) for IPv4 and IPv6is supported only on the E-Series platform, as indicated by the character under each command heading. IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic.
Page 820 • default-information originate • description • distance • distribute-list in • distribute-list out • distribute-list redistributed-override • domain-password • graceful-restart ietf • graceful-restart interval • graceful-restart t1 • graceful-restart t2 • graceful-restart t3 • graceful-restart restart-wait • hello padding • hostname dynamic •...
Page 821 • show isis database • show isis graceful-restart detail • show isis hostname • show isis interface • show isis neighbors • show isis protocol • show isis traffic • spf-interval adjacency-check Verify that the “protocols supported” field of the IS-IS neighbor contains matching values to this router.
Page 822 Command Modes ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Command Version 7.5.1.0 Introduced IPv6 ISIS support History Version 6.3.1.0 Introduced Usage You cannot disable leaking from one level to another, however you can regulate the rate flow from one Information level to another via an IP Prefix list.
Page 823 Command Modes ROUTER ISIS Usage Use caution when you enter this command. Back up your configuration prior to using this command or Information your IS-IS configuration will be erased. Related copy Use this command to save the current configuration to another location. Commands clear isis Restart the IS-IS process.
Page 824 To disable debugging of IS-IS, enter no debug isis. Command Modes EXEC Privilege Usage Entering debug isis enables all debugging parameters. Information Use this command to display all debugging information in one output. To turn off debugging, you normally enter separate no forms of each command. Enter the no debug isis command to disable all debug messages for IS-IS at once.
Page 825 Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: GigabitEthernet • For a Gigabit Ethernet interface, enter the keyword followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for...
Page 826 debug isis update-packets that are detected by a router. Enable debugging on Link State PDUs (LSPs) Syntax debug isis update-packets [interface] To turn off debugging, enter the no debug isis update-packets [interface] command. Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: GigabitEthernet •...
Page 827 Usage When you use this command to redistribute routes into a routing domain, the router becomes an Information autonomous system (AS) boundary router. An AS boundary router does not always generate a default route into a routing domain. The router still requires its own default route before it can generate one. How a metric value assigned to a default route is advertised depends on how on the configuration of metric-style command.
Page 828 Parameters weight The administrative distance value indicates the reliability of a routing information source. Range: 1 to 255. (A higher relative value indicates lower reliability. Routes with smaller values are given preference.) Default: 115 ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and enter a mask in either dotted decimal or /prefix format.
Page 829 Command Version 7.5.1.0 Introduced IPv6 ISIS support History Version 6.3.1.0 Introduced Related distribute-list out Suppress networks from being advertised in updates. Commands redistribute Redistributes routes from one routing domain to another routing domain. distribute-list out Suppress network prefixes from being advertised in outbound updates. Syntax distribute-list prefix-list-name out [connected | bgp as number | ospf process-id | rip | static] To return to the default values, enter the no distribute-list prefix-list-name out [bgp as number...
Page 830 Syntax distribute-list redistributed-override in To return to the default, use the no distribute-list redistributed-override in command. Defaults No default behavior or values Command Modes ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Command Version 7.8.1.0 Introduced IPv6 ISIS support History Version 6.3.1.0 Introduced Usage When the command is executed, IS-IS will not download the route to the routing table if the same route...
Page 831 Parameters ietf ietf Enter to enable Graceful Restart on the IS-IS router. Defaults Default is Graceful Restart disabled Command Modes ROUTER ISIS Command Version 8.3.1.0 Introduced on the E-Series History Usage A Restart TLV included in every Graceful Restart enabled router’s HELLO PDUs. This enables the Information (re)starting as well as the existing ISIS peers to detect the GR capability of the routers on the connected network.
Page 832 Parameters interval Enter the keyword interval to set the wait time. Range: 5-120 seconds Default: 5 seconds retry-times Enter the keyword retry-times to set the number of times the request interval is extended until a CSNP is received from the helping router.
Page 833 Parameters adjacency adjacency so that the restarting router receives the Enter the keyword remaining time value from its peer and adjusts its T3 value accordingly if user has configured this option. manual manual to specify a time value that the restarting Enter the keyword router uses.
Page 834 hello padding Use to turn ON or OFF padding for LAN and point-to-point hello PDUs or to selectively turn padding ON or OFF for LAN or point-to-point hello PDUs. Syntax hello padding [multi-point | point-to-point] To return to default, use no hello padding [multi-point | point-to-point]. Parameters multi-point multi-point...
Page 835 Defaults In IS-IS, the default deletes LSPs with internal checksum errors (no ignore-lsp-errors). Command Modes ROUTER ISIS Usage IS-IS normally purges LSPs with an incorrect data link checksum, causing the LSP source to Information regenerate the message. A cycle of purging and regenerating LSPs can occur when a network link continues to deliver accurate LSPs even though there is a link causing data corruption.
Page 836 Usage You must configure a network entity title (the command) to specify the area address and the router Information system ID. You must enable routing on one or more interfaces to establish adjacencies and establish dynamic routing. Only one IS-IS routing process can be configured to perform Level 2 routing. A level-1-2 designation performs Level 1 and Level 2 routing at the same time.
Page 837 Parameters seconds Interval of transmission time between CSNPs on multi-access networks for the designated intermediate system. Range: 0 to 65535 Default: 10 level-1 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 1. level-2 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 2.
Page 838 isis hello-multiplier Specify the number of IS-IS hello packets a neighbor must miss before the router declares the adjacency down. Syntax isis hello-multiplier multiplier [level-1 | level-2] To return to the default values, enter no isis hello-multiplier [multiplier] [level-1 | level-2]. Parameters multiplier Specifies an integer that sets the multiplier for hello holding time.
Page 839 INTERFACE Command Version 7.5.1.0 Introduced on E-Series History Usage Dell Force10 recommends configuring metrics on all interfaces. Without configuring this command, Information the IS-IS metrics are similar to hop-count metrics. isis metric Assign a metric to an interface. Syntax isis metric default-metric [level-1 | level-2] To return to the default values, enter no isis metric [default-metric] [level-1 | level-2].
Page 840 Command Modes INTERFACE Usage Dell Force10 recommends configuring metrics on all interfaces. Without configuring this command, Information the IS-IS metrics are similar to hop-count metrics. isis network point-to-point Enable the software to treat a broadcast interface as a point-to-point interface.
Page 841 isis priority Set priority of the designated router you select. Syntax isis priority value [level-1 | level-2] To return to the default values, enter the no isis priority [value] [level-1 | level-2] command. Parameters value This value sets the router priority. The higher the value, the higher the priority. Range: 0 to 127 Default: 64 level-1...
Page 842 log-adjacency-changes Generate a log messages for adjacency state changes. Syntax log-adjacency-changes To disable this function, enter no log-adjacency-changes. Defaults Adjacency changes are not logged. Command Modes ROUTER ISIS Usage This command enables you to monitor adjacency state changes, which is useful when you monitor Information large networks.
Page 843 Usage LSP throttling slows down the frequency at which LSPs are generated during network instability. Even Information though throttling LSP generations slows down network convergence, no throttling can result in a network not functioning as expected. If network topology is unstable, throttling slows down the scheduling of LSP generations until the topology regains its stability.
Page 844 Defaults 900 seconds Command Modes ROUTER ISIS Command Version 7.5.1.0 Expanded to support LSP Throttling Enhancement History Usage The refresh interval determines the rate at which route topology information is transmitted preventing Information the information from becoming obsolete. The refresh interval must be less than the LSP lifetime specified with the max-lsp-lifetime command.
Page 845 Defaults 1200 seconds Command Modes ROUTER ISIS Usage Change the maximum LSP lifetime with this command. The maximum LSP lifetime must always be Information greater than the LSP refresh interval. The seconds parameter enables the router to keep LSPs for the specified length of time. If the value is higher, the overhead is reduced on slower-speed links.
Page 846 wide Allows you to configure the E-Series to generate and accept only new-style TLVs. Metric range: 0 to 16777215 level-1 Enables the metric style on Level 1. level-2 Enables the metric style on Level 2. Defaults narrow; if no Level is specified, Level-1 and Level-2 are configured. Command Modes ROUTER ISIS Usage...
Page 847 Defaults Not configured. Command Modes ROUTER ISIS passive-interface Suppress routing updates on an interface. This command stops the router from sending updates on that interface. Syntax passive-interface interface To delete a passive interface configuration, enter the no passive-interface interface command. Parameters interface Enter the following keywords and slot/port or number information:...
Page 848 metric metric-value (OPTIONAL) Assign a value to the redistributed route. Range: 0 to 16777215 Default: 0. You should use a value that is consistent with the destination protocol. metric-type external (OPTIONAL) The external link type associated with the default route advertised into a routing domain.
Page 849 redistribute bgp Redistribute routing information from a BGP process. (new command in Release 6.3.1) Syntax redistribute bgp AS number [level-1| level-1-2 | level-2] [metric metric-value] [metric-type {external internal ] [route-map map-name] To return to the default values, enter the no redistribute bgp command with the appropriate parameters.
Page 850 Usage BGP to IS-IS redistribution supports “match” options using route maps. The metric value, level, and Information metric-type of redistributed routes can be set by the redistribution command. More advanced “set” options can be performed using route maps. redistribute ospf Redistribute routing information from an OSPF process.
Page 851 Command Version 7.5.1.0 Introduced IPv6 ISIS support History Version 6.3.1.0 Introduced Usage How a metric value assigned to a redistributed route is advertised depends on how on the configuration Information of the metric-style command. If the metric-style command is set for narrow mode and the metric value in the redistribute ospf command is set to a number higher than 63, the metric value advertised in LSPs...
Page 852 Command Mode ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Usage Set the overload bit when a router experiences problems, such as a memory shortage due to an Information incomplete link state database which can result in an incomplete or inaccurate routing table. If you set the overload bit in its LSPs, other routers ignore the unreliable router in their SPF calculations until the router has recovered.
Page 853 Parameters level-1 (OPTIONAL) Displays the Level 1 IS-IS link-state database. level-2 (OPTIONAL) Displays the Level 2 IS-IS link-state database. local (OPTIONAL) Displays local link-state database information. detail (OPTIONAL) Detailed link-state database information of each LSP displays when specified. If not specified, a summary displays. summary (OPTIONAL) Summary of link-state database information displays when specified.
Page 854 Level 2 routers use the Attach bit to find the closest Level 2 router. They point a default route to the closest Level 2 router. This value represents the P bit. This bit will always set be zero as Dell Force10 does not support area partition repair.
Page 855 Example Figure 28-5. Command Example: show isis graceful-restart detail FTOS#show isis graceful-restart detail Configured Timer Value ====================== Graceful Restart : Enabled T3 Timer : Manual T3 Timeout Value : 30 T2 Timeout Value : 30 (level-1), 30 (level-2) T1 Timeout Value : 5, retry count: 1 Adjacency wait time : 30...
Page 856 Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. loopback • For Loopback interface, enter the keyword followed by a number from zero (0) to 16383.
Page 857 detail (OPTIONAL) Displays detailed information about neighbors. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: GigabitEthernet • For a Gigabit Ethernet interface, enter the keyword followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: C-Series and S-Series Range: 1-128...
Page 858 show isis protocol Display IS-IS routing information. Syntax show isis protocol Command Modes EXEC EXEC Privilege Example Figure 28-9. Command Example: show isis protocol FTOS#show isis protocol IS-IS Router: <Null Tag> System Id: F100.E120.0013 IS-Type: level-1-2 Manual area address(es): 49.0000.0001 Routing for area address(es): 49.0000.0001 Interfaces supported by IS-IS:...
Page 859 Example Figure 28-10. Command Example: show isis traffic FTOS#sho is traffic IS-IS: Level-1 Hellos (sent/rcvd) : 0/721 IS-IS: Level-2 Hellos (sent/rcvd) : 900/943 IS-IS: PTP Hellos (sent/rcvd) : 0/0 IS-IS: Level-1 LSPs sourced (new/refresh) : 0/0 IS-IS: Level-2 LSPs sourced (new/refresh) : 1/3 IS-IS: Level-1 LSPs flooded (sent/rcvd) : 0/0 IS-IS: Level-2 LSPs flooded (sent/rcvd) : 5934/5217 IS-IS: Level-1 LSPs CSNPs (sent/rcvd) : 0/0...
Page 860 Parameters level-l level-1 (OPTIONAL) Enter the keyword to apply the configuration to Level-1 SPF calculations. level-2 level-2 (OPTIONAL) Enter the keyword to apply the configuration to Level-2 SPF calculations. interval seconds Enter the maximum number of seconds between SPF calculations. Range: 0 to 120 seconds Default: 10 seconds initial_wait_interval...
Page 861 Interfaces chapter), based on the standards specified in the IEEE 802.3 Carrier sense multiple access with collision detection (CSMA/CD) access method and physical layer specifications. Commands in this chapter generally are supported on all three Dell Force10 platforms — C-Series, c e s E-Series, and S-Series —...
Page 862 Defaults Without a Port Channel specified, the command clears all Port Channel counters. Command Modes EXEC EXEC Privilege Command Version 7.6.1.0 Support added for S-Series History Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced on E-Series Related show lacp Display the lacp configuration Commands debug lacp...
Page 863 lacp long-timeout Configure a long timeout period (30 seconds) for an LACP session. lacp long-timeout Syntax To reset the timeout period to a short timeout (1 second), use the no lacp long-timeout command. Defaults 1 second Command Modes INTERFACE (conf-if-po-number) Command Version 7.6.1.0 Support added for S-Series...
Page 864 lacp system-priority c e s Configure the LACP system priority. Syntax lacp system-priority priority-value Parameters priority-value Enter the system-priority value. The higher the value, the lower the priority. Range: 1 to 65535 Default: 32768 Defaults 32768 Command Modes CONFIGURATION Command Version 7.6.1.0 Support added for S-Series History...
Page 865 Table 29-1. LACP Modes Mode Function An interface is in an active negotiating state in this mode. LACP runs on any link active configured in the active state and also automatically initiates negotiation with other ports by initiating LACP packets. An interface is not in an active negotiating state in this mode.
Page 866 Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced Example 1 Figure 29-1. show lacp port-channel-number command FTOS#show lacp 1 Port-channel 1 admin up, oper up, mode lacp Actor System ID: Priority 32768, Address 0001.e800.a12b Partner System ID: Priority 32768, Address 0001.e801.45a5 Actor Admin Key 1, Oper Key 1, Partner Oper Key 1 LACP LAG 1 is an aggregatable link A - Active LACP, B - Passive LACP, C - Short Timeout, D - Long Timeout...
Page 867 MAC Addressing Commands • Virtual LAN (VLAN) Commands Some MAC addressing commands are supported only on the E-Series, some on all three Dell Force10 platforms and some on two Dell Force10 platforms. Support is indicated by these characters, where c e s...
Page 868 • show mac learning-limit clear mac-address-table dynamic c e s Clear the MAC address table of all MAC address learned dynamically. Syntax clear mac-address-table dynamic {address mac-address | all | interface interface | vlan vlan-id} Parameters address mac-address address Enter the keyword followed by a MAC address in nn:nn:nn:nn:nn:nn format.
Page 869 Defaults Not configured. Command Modes INTERFACE (available on physical interfaces only) Command Version 7.4.1.0 Introduced on E-Series History Usage You must place the interface in Layer 2 mode (using the switchport command) prior to configuring the Information command. mac accounting destination mac-address-table aging-time c e s Specify an aging time for MAC addresses to be removed from the MAC Address Table.
Page 870 Parameters mac-address Enter the 48-bit hexidecimal address in nn:nn:nn:nn:nn:nn format. output interface output Enter the keyword followed by one of the following interfaces: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: C-Series and S-Series Range: 1-128...
Page 871 Usage For information on the specific trap sent and the corresponding Syslog refer to Appendix , Information mac-address-table station-move time-interval Reduce the amount of time FTOS takes to detect aged entries and station moves. Syntax [no] mac-address-table station-move time-interval number Parameters time-interval number Select the interval of the successive scans of the MAC address table that are...
Page 872 mac cam fib-partition Reapportion the amount of Content Addressable Memory (CAM) available for MAC address learning (FIB) versus the amount available for MAC ACLs on a line card. Syntax mac cam fib-partition {25 | 50 | 75 | 100} slot-number To return to the default setting, enter no mac cam fib-partition.
Page 873 station-move station-move (OPTIONAL) Enter the keyword to allow a station move on learned MAC addresses. sticky (OPTIONAL) C-Series and S-Series only: Enter the keyword sticky to enable sticky MAC-address learning, which converts dynamically-learned MAC addresses on a port or port-channel interface to “sticky” MAC addresses that prevent trusted devices from moving to a different interface.
Page 874 When you enable sticky MAC-address learning (sticky), dynamically-learned MAC addresses of trusted devices are added to the running configuration and “stick” to the port or VLAN on which they are learned even if an interface goes down and comes back up. If you save sticky MAC addresses to the start-up configuration file by entering the write config command, the addresses are deleted from the running-configuration, do not have to be dynamically relearned, and do not change when the switch reboots.
Page 875 mac learning-limit station-move-violation c e s Specify the actions for a station move violation. mac learning-limit station-move-violation {log | shutdown-both | shutdown-offending | Syntax shutdown-original} To disable a configuration, use the no mac learning-limit station-move-violation command, followed by the configured keyword. Parameters Enter the keyword to generate a syslog message on a station move...
Page 876 show cam mac linecard (count) CAM size and the portions allocated for MAC addresses and for MAC ACLs. Display the Syntax show cam mac linecard slot port-set port-pipe count [vlan vlan-id] [interface interface] Parameters linecard slot linecard (REQUIRED) Enter the keyword followed by a slot number to select the linecard for which to gather information.
Page 877 Command Modes EXEC EXEC Privilege Command Version 7.6.1.0 Introduced on C-Series History Example Figure 30-1. show cam maccheck linecard Command Output Example FTOS#show cam maccheck linecard 2 port-set 0 Dumping entries. From 0 to 16383. Progress . marks 100 memory table entries......Index 5576 (0x15c8) has valid entries (H: 2b9, E: 0) <MAC_ADDR=0xffffffffffff,VLAN_ID=0xfff,PRI=0,CPU=0,DST_DISCARD=0,SRC_DISCARD=0,SCP =0,TGID_LO=0,PORT_TGID=0,TGID_PORT=0,T=0,TGID_HI=0,L2MC_PTR=0,MODULE_ID=0,REMOTE_T...
Page 878 show cam mac linecard (dynamic or static) CAM size and the portions allocated for MAC addresses and for MAC ACLs. Display the Syntax show cam mac linecard slot port-set port-pipe [address mac_addr | dynamic | interface interface | static | vlan vlan-id] Parameters linecard slot linecard...
Page 879 Example Figure 30-4. show cam mac linecard Command Example FTOS#show cam mac linecard 1 port-set 0 Port - (TableID) assignments: 00(01) 01(01) 02(01) 03(01) 04(01) 05(01) 06(01) 07(01) 08(01) 09(01) 10(01) 11(01) 12(01) 13(01) 14(01) 15(01) 16(01) 17(01) 18(01) 19(01) 20(01) 21(01) 22(01) 23(01) Index Table ID VlanId Mac Address...
Page 880 interface interface interface (OPTIONAL) Enter the keyword followed by the interface type, slot and port information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: S-Series Range: 1-128 •...
Page 881 interface interface interface (OPTIONAL) Enter the keyword followed by the interface type, slot and port information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to...
Page 882 Table 30-1. show mac-address-table Information (continued) Column Heading Description Interface Displays the interface type and slot/port information. The following abbreviations describe the interface types: • gi—Gigabit Ethernet followed by a slot/port. • po—Port Channel followed by a number. Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale •...
Page 883 Command vlan Version 8.3.1.0 Added the option on the E-Series. History Version 7.7.1.0 Introduced on C-Series and S-Series pre-Version 6.2.1.1 Introduced on E-Series Example Figure 30-7. show mac-address-table aging-time Command Example FTOS#show mac-address-table aging-time Mac-address-table aging time : 1800 FTOS# Related show mac-address-table Display the current MAC address configuration.
Page 884 show mac accounting destination destination counters for Layer 2 traffic (available on physical interfaces only). Display Syntax show mac accounting destination [mac-address vlan vlan-id] [interface interface [mac-address vlan vlan-id] [vlan vlan-id]] [vlan vlan-id] Parameters mac-address (OPTIONAL) Enter the MAC address in the nn:nn:nn:nn:nn:nn format to display information on that MAC address.
Page 885 show mac cam the CAM size and the portions allocated for MAC addresses and for MAC ACLs. Display show mac cam Syntax Command Modes EXEC EXEC Privilege Command pre-Version 6.2.1.1 Introduced on E-Series History Figure 30-9. show mac cam Command Example Example FTOS#show mac cam Slot...
Page 886 interface interface interface (OPTIONAL) Enter the keyword with the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. sonet • For SONET interfaces, enter the keyword followed by the slot/ port information.
Page 887 Virtual LAN (VLAN) Commands The following commands configure and monitor Virtual LANs (VLANs). VLANs are a virtual interface and use many of the same commands as physical interfaces. You can configure an IP address and Layer 3 protocols on a VLAN called Inter-VLAN routing. FTP, TFTP, ACLs and SNMP are not supported on a VLAN.
Page 888 default vlan-id c e s Specify a VLAN as the Default VLAN. Syntax default vlan-id vlan-id To remove the default VLAN status from a VLAN and VLAN 1 does not exist, use the no default vlan-id vlan-id syntax. Parameters vlan-id Enter the VLAN ID number of the VLAN to become the new Default VLAN.
Page 889 Defaults Disabled—VLAN counters are disabled in hardware (all linecards/port-pipes) by default. Command Modes CONFIGURATION Command Version 8.1.1.2 Introduced on E-Series ExaScale E600i History Version 8.1.1.0 Introduced on E-Series ExaScale E1200i Example FTOS(conf)#enable vlan-output-counters FTOS(conf)#exit FTOS#show interface vlan 101 Vlan 101 is down, line protocol is down Address is 00:01:e8:26:e0:5b, Current address is 00:01:e8:26:e0:5b Interface index is 1107787877 Internet address is not set...
Page 890 name c e s Assign a name to the VLAN. Syntax name vlan-name To remove the name from the VLAN, enter no name. Parameters vlan-name Enter up to 32 characters as the name of the VLAN. Defaults Not configured. Command Modes INTERFACE VLAN Command Version 7.6.1.0...
Page 891 show vlan c e s the current VLAN configurations on the switch. Display show vlan [brief | id vlan-id | name vlan-name] Syntax Parameters brief brief (OPTIONAL) Enter the keyword to display the following information: • VLAN ID • VLAN name (left blank if none is configured.) •...
Page 892 Table 30-4. show vlan Information Column Heading Description (Column 1 — no heading) asterisk symbol (*) = Default VLAN = GVRP VLAN = primary VLAN = community VLAN = isolated VLAN Displays existing VLAN IDs. Status Inactive Displays the word for inactive VLANs and the word Active for active VLANs.
Page 893 Figure 30-13. Example of Output of show vlan brief FTOS#show vlan br VLAN Name MAC Aging IP Address ---- -------------------------------- ---- --------- ------------------ 1800 unassigned 1800 2.2.2.2/24 1800 3.3.3.2/24 FTOS# Figure 30-14. Using VLAN Name FTOS(conf)#interface vlan 222 FTOS(conf-if-vl-222)#name test FTOS(conf-if-vl-222)#do show vlan name test Codes: * - Default VLAN, G - GVRP VLANs Q: U - Untagged, T - Tagged...
Page 894 Usage When you use the no tagged command, the interface is automatically placed in the Default VLAN as Information an untagged interface unless the interface is a member of another VLAN. If the interface belongs to several VLANs, you must remove it from all VLANs to change it to an untagged interface. Tagged interfaces can belong to multiple VLANs, while untagged interfaces can only belong to one VLAN at a time.
Page 895 Related interface vlan Configure a VLAN. Commands tagged Specify which interfaces in a VLAN are tagged. untagged c e s Add a Layer 2 interface to a VLAN as an untagged interface. Syntax untagged interface To remove an untagged interface from a VLAN, use the no untagged interface command. Parameters interface Enter the following keywords and slot/port or number information:...
Page 896 Layer 2...
Page 897 The FTOS implementation of LLDP is based on IEEE standard 801.1ab. The basic LLDP commands are supported by FTOS on all Dell Force10 systems, as indicated by the characters that appear below each command heading: •...
Page 898 The information distributed by LLDP is stored by its recipients in a standard Management Information Base (MIB). The information can be accessed by a network management system through a management protocol such as SNMP. See the Link Layer Discovery Protocol chapter of the FTOS Configuration Guide for details on implementing LLDP/LLDP-MED.
Page 899 Defaults No default values or behavior Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command Version 7.7.1.0 Introduced on S-Series History Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series advertise management c e s Advertise management TLVs (Type, Length, Value). Syntax advertise management -tlv {system-capabilities | system-description | system-name} To remove advertised management TLVs, use the no advertise management -tlv...
Page 900 Parameters interface Enter the following keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information. gigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. tenGigabitEthernet •...
Page 901 Parameters interface Enter the following keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information. gigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. tenGigabitEthernet •...
Page 902 show lldp neighbors Display the LLDP neighbors show running-config lldp Display the LLDP running configuration hello c e s Configure the rate at which the LLDP control packets are sent to its peer. Syntax hello seconds To revert to the default, use the no hello seconds command. Parameters seconds Enter the rate, in seconds, at which the control packets are sent to its peer.
Page 903 multiplier c e s Set the number of consecutive misses before LLDP declares the interface dead. multiplier integer Syntax To return to the default, use the no multiplier integer command. Parameters integer Enter the number of consecutive misses before the LLDP declares the interface dead. Range: 2 - 10 Defaults 4 x hello...
Page 904 Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series Usage LLDP must be enabled globally from CONFIGURATION mode, before it can be configured on an Information interface. This command places you in LLDP mode on the interface; it does not enable the protocol. When you enter the LLDP protocol in the Interface context, it overrides global configurations.
Page 905 show lldp statistics c e s Display the LLDP statistical information. show lldp statistics Syntax Defaults No default values or behavior Command Modes EXEC Privilege Command Version 7.7.1.0 Introduced on S-Series History Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series Example Figure 31-2.
Page 906 LLDP-MED Network Connectivity Device—any device that provides access to an IEEE 802 LAN to an LLDP-MED endpoint device, and supports IEEE 802.1AB (LLDP) and TIA-1057 (LLDP-MED). The Dell Force10 system is an LLDP-MED network connectivity device. With regard to connected endpoint devices, LLDP-MED provides network connectivity devices with the ability to: •...
Page 907 advertise med guest-voice c e s Configure the system to advertise a separate limited voice service for a guest user with their own IP telephony handset or other appliances that support interactive voice services. Syntax advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command.
Page 908 DSCP_value Enter the DSCP value. Range: 0 to 63 priority-tagged number priority-tagged Enter the keyword followed the Layer 2 priority. Range: 0 to 7 Defaults unconfigured Command Modes CONFIGURATION (conf-lldp) Command Version 7.7.1.0 Introduced on S-Series History Version 7.6.1.0 Introduced on C-Series and E-Series Related debug lldp interface Debug LLDP...
Page 909 Related debug lldp interface Debug LLDP Commands show lldp neighbors Display the LLDP neighbors show running-config lldp Display the LLDP running configuration advertise med power-via-mdi Configure the system to advertise the Extended Power via MDI TLV. Syntax advertise med power-via-mdi To return to the default, use the no advertise med power-via-mdi command.
Page 910 Command Modes CONFIGURATION (conf-lldp) Command Version 7.7.1.0 Introduced on S-Series History Version 7.6.1.0 Introduced on C-Series and E-Series Related debug lldp interface Debug LLDP Commands show lldp neighbors Display the LLDP neighbors show lldp neighbors Display the LLDP running configuration advertise med streaming-video c e s Configure the system to advertise streaming video services for broadcast or multicast-based video.
Page 911 advertise med video-conferencing c e s Configure the system to advertise dedicated video conferencing and other similar appliances that support real-time interactive video. Syntax advertise med video-conferencing {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med video-conferencing {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command.
Page 912 DSCP_value Enter the DSCP value (C-Series and E-Series only). Range: 0 to 63 priority-tagged number priority-tagged Enter the keyword followed the Layer 2 priority. Range: 0 to 7 Defaults unconfigured Command Modes CONFIGURATION (conf-lldp) Command Version 7.7.1.0 Introduced on S-Series History Version 7.6.1.0 Introduced on C-Series and E-Series...
Page 913 advertise med voice-signaling c e s Configure the system to advertise when voice control packets use a separate network policy than voice data. Syntax advertise med voice-signaling {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med voice-signaling {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command.
Page 914 Link Layer Detection Protocol (LLDP)
Page 915 Multicast Listener Discovery (MLD) Overview The platforms on which a command is supported is indicated by the character — for the E-Series, for the C-Series, and for the S-Series — that appears below each command heading. This chapter contains the following sections: •...
Page 916 Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
Page 917 Command Version 7.4.1.0 Introduced History ipv6 mld explicit-tracking Enable MLD explicit tracking of receivers. Syntax ipv6 mld explicit-tracking To disable explicit tracking, use the no ipv6 mld explicit-tracking command. Defaults Disabled Command Modes INTERFACE (conf-if) Command Version 7.4.1.0 Introduced History Usage If snooping is enabled on the VLAN, this command has no effect.
Page 918 Parameters seconds Enter the querier timeout in seconds. Range: 60 - 300 Default: 255 Defaults 255 seconds Command Modes INTERFACE (conf-if) Command Version 7.4.1.0 Introduced History ipv6 mld query-interval Change the transmission frequency of the MLD host. Syntax ipv6 mld query-interval {seconds} To return to the default interval, use the no ipv6 mld query-interval command.
Page 919 ipv6 mld static-group Configure an MLD static group to exclude or include mode. ipv6 mld static-group group-address {exclude [source-address] | include source-address} Syntax To return to default, use the no ipv6 mld static-group group-address {exclude [source-address] | include source-address} command. Parameters group-address x:x:x:x::x...
Page 920 Parameters explicit Enter this keyword to display explicit tracking information. link-local Enter this keyword to display link-local groups. group-address Enter the group address for which you want to display information. interface interface interface Enter the keyword followed by the interface type. detail View detailed group information.
Page 921 Parameters interface interface Enter the keyword to display the configured MDL interfaces. Optionally, interface interface enter the keyword followed by one of the keywords below, with slot/port or number information, to display information for that specific interface: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 922 MLD Snooping Commands The MLD Snooping commands are: • ipv6 mld snooping enable • ipv6 mld snooping flood • ipv6 mld snooping • ipv6 mld snooping explicit-tracking • ipv6 mld snooping mrouter • ipv6 mld snooping querier • show ipv6 mld snooping groups •...
Page 923 ipv6 mld snooping Enable MLD Snooping (v1 and v2) on a VLAN. ipv6 mld snooping Syntax To disable MLD Snooping, use the no ipv6 mld snooping command. Defaults Enabled on all VLAN interfaces Command Modes INTERFACE VLAN (conf-if-vl-n) Command Version 7.4.1.0 Introduced History ipv6 mld snooping explicit-tracking...
Page 924 Command Modes INTERFACE VLAN (conf-if-vl-n) Command Version 7.4.1.0 Introduced History ipv6 mld snooping querier Enable the MLD querier processing for the VLAN interface. Syntax ipv6 mld snooping querier To disable the querier feature, use the no ipv6 mld snooping querier command. Defaults Disabled Command Modes...
Page 925 Example Figure 32-3. show ipv6 mld snooping groups summary Command Example FTOS#show ipv6 mld snooping groups summary MLD snooping connected groups summary: (*,G) routes :12 FTOS# show ipv6 mld snooping mrouter Display information on the MLD Snooping router. Syntax show ipv6 mld snooping mrouter [vlan] Parameters vlan vlan...
Page 926 Multicast Listener Discovery (MLD)
Page 927 Multicast Source Discovery Protocol (MSDP) Overview MSDP (Multicast Source Discovery Protocol) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections.
Page 928 Defaults Not configured Command Modes EXEC Privilege Command Version 6.2.1.1 Introduced History clear ip msdp sa-cache Clears the entire source-active cache, the source-active entries of a particular multicast group, rejected, or local source-active entries. Syntax clear ip msdp sa-cache [group-address | rejected-sa | local] Parameters group-address Enter the group IP address in dotted decimal format (A.B.C.D.)
Page 929 Command Version 6.2.1.1 Introduced History ip msdp cache-rejected-sa Enable a MSDP cache for the rejected source-active entries. Syntax ip msdp cache-rejected-sa {number} To clear the MSDP rejected source-active entries, use the no ip msdp cache-rejected-sa {number} command followed by the ip msdp cache-rejected-sa {number} command. Parameters number Enter the number of rejected SA entries to cache.
Page 930 ip msdp log-adjacency-changes Enable logging of MSDP adjacency changes. Syntax ip msdp log-adjacency-changes To disable logging, use the no ip msdp log-adjacency-changes command. Defaults Not configured Command Modes CONFIGURATION Command Version 6.2.1.1 Introduced History ip msdp mesh-group Configure a peer to be a member of a mesh group. Syntax ip msdp mesh-group {name} {peer address} To remove the peer from a mesh group, use the no ip msdp mesh-group {name} {peer address}...
Page 931 Parameters interface Enter the following keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information. GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. loopback •...
Page 932 description name description (OPTIONAL) Enter the keyword followed by a description name (max 80 characters) to designate a description for the MSDP peer. sa-limit number (OPTIONAL) Enter the maximum number of SA entries in SA-cache. Range: 1 to 500000 Default: 500000 Defaults As above Command Modes...
Page 933 ip msdp sa-filter Permit or deny MSDP source active (SA) messages based on multicast source and/or group from the specified peer. Syntax ip msdp sa-filter {in | out} peer-address list [access-list name] Remove this configuration using the command no ip msdp sa-filter {in | out} peer address list [access-list name] Parameters Enter the keyword...
Page 934 Related ip msdp peer Configure the MSDP peer Commands clear ip msdp peer Clear the MSDP peer. show ip msdp Display the MSDP information ip msdp shutdown Administratively shut down a configured MSDP peer. Syntax ip msdp shutdown {peer address} Parameters peer address Enter the peer address in a dotted decimal format (A.B.C.D.)
Page 935 Command Modes EXEC EXEC Privilege Command Version 6.2.1.1 Introduced History Example 1 Figure 33-1. show ip msdp peer Command Example FTOS#show ip msdp peer 100.1.1.1 Peer Addr: 100.1.1.1 Local Addr: 100.1.1.2(639) Connect Source: none State: Established Up/Down Time: 00:00:08 Timers: KeepAlive 60 sec, Hold time 75 sec SourceActive packet count (in/out): 0/0...
Page 936 Example Figure 33-4. show ip msdp sa-cache rejected-sa Command Example FTOS#sh ip msdp sa-cache rejected-sa MSDP Rejected SA Cache 200 rejected SAs received, cache-size 1000 UpTime GroupAddr SourceAddr RPAddr LearnedFrom Reason 00:00:13 225.1.2.1 10.1.1.3 110.1.1.1 13.1.1.2 Rpf-Fail 00:00:13 225.1.2.2 10.1.1.4 110.1.1.1 13.1.1.2 Rpf-Fail...
Page 937 Overview Multiple Spanning Tree Protocol (MSTP), as implemented by FTOS, conforms to IEEE 802.1s. MSTP is supported by FTOS on all Dell Force10 systems (C-Series, E-Series, and S-Series), as indicated by the characters that appear below each command heading: •...
Page 938 debug spanning-tree mstp c e s Enable debugging of Multiple Spanning Tree Protocol and view information on the protocol. Syntax debug spanning-tree mstp [all | bpdu interface {in | out} | events] To disable debugging, enter no debug spanning-tree mstp. Parameters (OPTIONAL) Enter the keyword to debug all spanning tree operations.
Page 939 description c e s Enter a description of the Multiple Spanning Tree description {description} Syntax To remove the description, use the no description {description} command. Parameters description Enter a description to identify the Multiple Spanning Tree (80 characters maximum). Defaults No default behavior or values Command Modes SPANNING TREE (The prompt is “config-mstp”.)
Page 940 forward-delay c e s The amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. Syntax forward-delay seconds To return to the default setting, enter no forward-delay. Parameters seconds Enter the number of seconds the interface waits in the Blocking State and the Learning State before transiting to the Forwarding State.
Page 941 Related forward-delay The amount of time the interface waits in the Blocking State and the Learning State Commands before transitioning to the Forwarding State. max-age Change the wait time before MSTP refreshes protocol configuration information. max-age c e s Set the time interval for the Multiple Spanning Tree bridge to maintain configuration information before refreshing that information.
Page 942 max-hops c e s Configure the maximum hop count. Syntax max-hops number To return to the default values, enter no max-hops. Parameters range Enter a number for the maximum hop count. Range: 1 to 40 Default: 20 Defaults 20 hops Command Modes MULTIPLE SPANNING TREE Command...
Page 943 Command Version 7.6.1.0 Added support for S-Series History Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series Usage By default, all VLANs are mapped to MST instance zero (0) unless you use the vlan range command Information to map it to a non-zero instance. name c e s The name you assign to the Multiple Spanning Tree region.
Page 944 protocol spanning-tree mstp c e s Enter the MULTIPLE SPANNING TREE mode to enable and configure the Multiple Spanning Tree group. Syntax protocol spanning-tree mstp To disable the Multiple Spanning Tree group, enter no protocol spanning-tree mstp command. Defaults Not configured. Command Modes CONFIGURATION Command...
Page 945 revision c e s The revision number for the Multiple Spanning Tree configuration revision range Syntax To return to the default values, enter no revision. Parameters range Enter the revision number for the MST configuration. Range: 0 to 65535 Default: 0 Defaults Command Modes MULTIPLE SPANNING TREE...
Page 946 show spanning-tree mst configuration c e s View the Multiple Spanning Tree configuration. Syntax show spanning-tree mst configuration Command Modes EXEC EXEC Privilege Command Version 7.6.1.0 Added support for S-Series History Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series Example Figure 34-4.
Page 947 show spanning-tree msti c e s View the Multiple Spanning Tree instance. show spanning-tree msti [instance-number [brief]] [guard] Syntax Parameters instance-number [Optional] Enter the Multiple Spanning Tree Instance number Range: 0 to 63 brief [Optional] Enter the keyword brief to view a synopsis of the MST instance. guard [Optional] Enter the keyword guard to display the type of guard enabled on an MSTP interface and the current port state.
Page 948 Example 2 Figure 34-6. show spanning-tree msti with EDS and LBK FTOS#show spanning-tree msti 0 brief MSTI 0 VLANs mapped 1-4094 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15, max hops 20 Bridge ID Priority 32768, Address 0001.e801.6aa8 We are the root of MSTI 0 (CIST)
Page 949 spanning-tree c e s Enable Multiple Spanning Tree Protocol on the interface. Syntax spanning-tree To disable the Multiple Spanning Tree Protocol on the interface, use no spanning-tree Parameters spanning-tree spanning-tree Enter the keyword to enable the MSTP on the interface. Default: Enable Defaults Enable...
Page 950 Command Version 7.6.1.0 Added support for S-Series History Version 7.5.1.0 Added support for C-Series Version 6.5.1.0 Introduced on E-Series spanning-tree mstp c e s Configures a Layer 2 MSTP interface as an edge port with (optionally) a Bridge Protocol Data Unit (BPDU) guard, or enables the root guard or loop guard feature on the interface.
Page 951 Enabling Portfast BPDU guard and loop guard at the same time on a port results in a port that remains in a blocking state and prevents traffic from flowing through it. For example, when Portfast BPDU guard and loop guard are both configured: •...
Page 952 Multiple Spanning Tree Protocol (MSTP)
Page 953 Multicast Overview The platforms on which a command is supported is indicated by the character — for the E-Series, for the C-Series, and for the S-Series — that appears below each command heading. This chapter contains the following sections: • IPv4 Multicast Commands •...
Page 954 clear ip mroute c e s Clear learned multicast routes on the multicast forwarding table. To clear the PIM tree information base, use clear ip pim tib command. Syntax clear ip mroute {group-address [source-address] | *} Parameters group-address Enter multicast group address and source address (if desired), in dotted decimal format, to clear information on a specific group.
Page 955 ip mroute show ip pim tib Show the PIM Tree Information Base. c e s Assign a static mroute. Syntax ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] To delete a specific static mroute, use the command ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance].
Page 956 ip multicast-lag-hashing Distribute multicast traffic among Port Channel members in a round-robin fashion. Syntax ip multicast-lag-hashing To revert to the default, enter no ip multicast-lag-hashing. Defaults Disabled Command Modes CONFIGURATION Command Version 6.3.1.0 Introduced for E-Series History Usage By default, one Port Channel member is chosen to forward multicast traffic. With this feature turned Information on, multicast traffic will be distributed among the Port Channel members in a round-robin fashion.
Page 957 ip multicast-limit c e s Use this feature to limit the number of multicast entries on the system. ip multicast-limit limit Syntax Parameters limit Enter the desired maximum number of multicast entries on the system. E-Series Range: 1 to 50000 E-Series Default: 15000 C-Series Range: 1 to 10000 C-Series Default: 4000...
Page 958 ip multicast-mode l2 Enable Layer 2 multicast switching. Syntax ip multicast-mode l2 To return to the default Layer 3 multicast forwarding on the router, enter the no ip multicast-mode l2 command after you remove the static multicast MAC address ( no mac-address-table static multicast multicast-mac-address command).
Page 959 mac-address-table static Configure a static multicast MAC address, associate the multicast MAC address with the VLAN used to switch Layer 2 multicast traffic, and add output ports that will receive multicast streams on the VLAN. To delete a configured static multicast MAC address from the MAC address table on the router, enter multicast-mac-address command.
Page 960 mac-flood-list Provide an exception to the restrict-flood configuration so that multicast frames within a specified MAC address range to be flooded on all ports in a VLAN. Syntax mac-flood-list mac-address mask vlan vlan-list [min-speed speed] Parameters mac-address Enter a multicast MAC address in hexadecimal format. mac-mask Enter the MAC Address mask.
Page 961 mtrace Trace a multicast route from the source to the receiver. Syntax mtrace {source-address/hostname} {destination-address/hostname} {group-address} Parameters source-address/ Enter the source IP address in dotted decimal format (A.B.C.D). hostname destination-address/ Enter the destination (receiver) IP address in dotted decimal format (A.B.C.D). hostname group-address Enter the multicast group address in dotted decimal format (A.B.C.D).
Page 962 queue backplane multicast Reallocate the amount of bandwidth dedicated to multicast traffic. Syntax queue backplane multicast bandwidth-percentage percentage Parameters percentage Enter the percentage of backplane bandwidth to be dedicated to multicast traffic. Range: 5-95 Defaults 80% of the scheduler weight is for unicast traffic and 20% is for multicast traffic by default. Command Modes CONFIGURATION Command...
Page 963 restrict-flooding Prevent Layer 2 multicast traffic from being flooded on ports below a specified link speed. Syntax restrict-flooding multicast min-speed speed Parameters min-speed min-speed Enter the minimum link speed that a port must have to receive flooded multicast traffic. Range: 1000 Defaults None Command Modes...
Page 964 show ip mroute c e s View the Multicast Routing Table. Syntax show ip mroute [static | group-address [source-address] | active [rate] | count | snooping [vlan vlan-id] [group-address [source-address]] | summary] Parameters static (OPTIONAL) Enter the keyword static to view static multicast routes. group-address (OPTIONAL) Enter the multicast group-address to view only routes associated [source-address]...
Page 965 Example 2 Figure 35-3. show ip mroute snooping Command Example FTOS#show ip mroute snooping IPv4 Multicast Snooping Table (*, 224.0.0.0), uptime 17:46:23 Incoming vlan: Vlan 2 Outgoing interface list: GigabitEthernet 4/13 (*, 225.1.2.1), uptime 00:04:16 Incoming vlan: Vlan 2 Outgoing interface list: GigabitEthernet 4/11 GigabitEthernet 4/13 (165.87.1.7, 225.1.2.1), uptime 00:03:17...
Page 966 show ip rpf c e s View reverse path forwarding. Syntax show ip rpf Command Modes EXEC EXEC Privilege Command E-Series legacy command History Usage Static mroutes are used by network administrators to control the reachability of the multicast sources. Information If a PIM registered multicast source is reachable via static mroute as well as unicast route, the distance of each route is examined and the route with shorter distance is the one the PIM selects for reachability.
Page 967 show mac-address-table static multicast current configuration of Layer 2 multicast switching on a router. Display information on the show mac-address-table static multicast [multicast-mac-address [vlan vlan-id] | vlan Syntax vlan-id | count [vlan vlan-id]] Parameters multicast-mac-address Enter the static multicast MAC address in nn:nn:nn:nn:nn:nn format and (optionally) the VLAN ID of a VLAN used to switch Layer 2 multicast [vlan vlan-id] traffic on the router.
Page 968 Table 35-2. show mac-address-table static multicast Information Column Heading Description L2MCIndex Displays the Layer 2 multicast index used to represent a group of outbound interfaces. The L2 multicast index is a hardware-specific index that is used an internal command and useful for debugging purposes. Range: 0 - 1023. Interfaces Displays the interface type and slot/port of output ports assigned to the VLAN used for Layer 2 multicast forwarding, where the following abbreviations are used for output...
Page 969 show queue backplane multicast Display the backplane bandwidth configuration about how much bandwidth is dedicated to multicast versus unicast. Syntax show queue backplane multicast bandwidth-percentage Defaults None Command Modes EXEC EXEC Privilege Command Version 7.7.1.0 Introduced on E-Series History Example Figure 35-8.
Page 970 IPv6 Multicast Commands IPv6 Multicast commands are: • clear ipv6 mroute • ipv6 multicast-limit • ip multicast-routing • show ipv6 mroute • show ipv6 mroute mld • show ipv6 mroute summary clear ipv6 mroute Clear learned multicast routes on the multicast forwarding table. To clear the PIM tib, use clear ip pim command.
Page 971 ipv6 multicast-limit Limit the number of multicast entries on the system. Syntax ipv6 multicast-limit limit Parameters limit Enter the desired maximum number of multicast entries on the system. Range: 1 to 50000 Default: 15000 Defaults 15000 routes Command Modes CONFIGURATION Command Version 8.3.1.0 Introduced...
Page 972 show ipv6 mroute View IPv6 multicast routes. Syntax show ipv6 mroute [group-address [source-address]] [ active rate] count group-address source source-address]] Parameters group-address (OPTIONAL) Enter the IPv6 multicast group-address to view only routes associated with that group. Optionally, enter the IPv6 source-address source-address to view routes with that group-address and source-address.
Page 973 Example Figure 35-10. show ipv6 mroute active Command Example FTOS#show ipv6 mroute active 10 Active Multicast Sources - sending >= 10 pps Group: ff05:300::1 Source: 165:87:31::30 Rate: 100 pps Group: ff05:3300::1 Source: 165:87:31::30 Rate: 100 pps Group: ff3e:300::4000:1 Source: 165:87:31::20 Rate: 100 pps Group: ff3e:3300::4000:1 Source: 165:87:31::20...
Page 974 show ipv6 mroute mld Display the Multicast MLD information. Syntax show ipv6 mroute group-address vlan vlan-id Parameters (OPTIONAL) Enter the keyword mld to display Multicast MLD information. group-address x:x:x:x::x (OPTIONAL) Enter the multicast group address in the format. notation specifies successive hexadecimal fields of zero. (OPTIONAL) Enter the keyword all to view all the MLD information.
Page 975 show ipv6 mroute summary Display a summary of the Multicast routing table. show ipv6 mroute summary Syntax Defaults No default values or behavior Command Modes EXEC EXEC Privilege Command Version 7.4.1.0 Introduced History Example Figure 35-14. show ipv6 mroute summary Command Example FTOS#show ipv6 mroute summary IP Multicast Routing Table 12 groups, 12 routes...
Page 976 Multicast...
Page 977 Neighbor Discovery Protocol (NDP) Overview Neighbor Discovery Protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4. It defines mechanisms for solving the following problems: •...
Page 978 • ipv6 nd suppress-ra • ipv6 neighbor • show ipv6 neighbors clear ipv6 neighbors Delete all entries in the IPv6 neighbor discovery cache, or neighbors of a specific interface. Static entries will not be removed using this command. Syntax clear ipv6 neighbors ipv6-address interface Parameters...
Page 979 ipv6 nd max-ra-interval Configure the interval between the IPv6 router advertisement (RA) transmissions on an interface. ipv6 nd max-ra-interval {interval} min-ra-interval {interval} Syntax To restore the default interval, use the no ipv6 nd max-ra-interval command. Parameters max-ra-interval max-ra-interval interval Enter the keyword followed by the interval in seconds.
Page 980 ipv6 nd other-config-flag Set the other stateful configuration flag in the IPv6 router advertisement. The description of this flag from RFC 2461 (http://tools.ietf.org/html/rfc2461) is: O: 1-bit “Other stateful configuration” flag. When set, hosts use the administered (stateful) protocol for autoconfiguration of other (non-address) information. The use of this flag is described in: Thomson, S.
Page 981 ipv6 nd ra-lifetime Configure the router lifetime value in the IPv6 router advertisements on an interface. The description of router lifetime from RFC 2461(http://tools.ietf.org/html/rfc2461) is: Router Lifetime: 16-bit unsigned integer. The lifetime associated with the default router in units of seconds.
Page 982 Defaults Enabled Command Modes INTERFACE ipv6 neighbor Configure a static entry in the IPv6 neighbor discovery. Syntax ipv6 neighbor {ipv6-address} {interface interface} {hardware_address} To remove a static IPv6 entry from the IPv6 neighbor discovery, use the no ipv6 neighbor {ipv6-address} {interface interface} command. Parameters ipv6-address x:x:x:x::x...
Page 983 Enter the keyword followed by either (Route Processor 1 or 2), optionally followed by an IPv6 address to display the IPv6 neighbor entries stored on the designated RP. fastEthernet interface interface • For a Fast Ethernet interface, enter the keyword followed by the slot/port information.
Page 984 Neighbor Discovery Protocol (NDP)
Page 985 Object Tracking c e s Object Tracking supports IPv4 and IPv6, and is available on platforms: Overview Object tracking allows you to define objects of interest, monitor their state, and report to a client when a change in an object’s state occurs. The following tracked objects are supported: •...
Page 986 debug track c e s Enables debugging for tracked objects. Syntax debug track [all | notifications | object-id] Parameters Enables debugging on the state and notifications of all tracked objects. notifications Enables debugging on the notifications of all tracked objects. object-id Enables debugging on the state and notifications of the specified tracked object.
Page 987 delay c e s Configure the time delay used before communicating a change in the status of a tracked object to clients. Syntax delay {[up seconds] [down seconds]} To return to the default setting, enter no delay. Parameters seconds Enter the number of seconds the object tracker waits before sending a notification about the change in the UP and/or DOWN state of a tracked object to clients.
Page 988 description c e s Enter a description of a tracked object. Syntax description {text} To remove the description, enter the no description {text} command. Parameters text Enter a description to identify a tracked object (80 characters maximum). Defaults No default behavior or values Command Modes OBJECT TRACKING (conf_track_object-id) Command...
Page 989 show running-config track c e s Display the current configuration of tracked objects. show running-config track [object-id] Syntax Parameters object-id (OPTIONAL) Display information on the specified tracked object. Range: 1 to 65535. Command Modes EXEC Privilege Command Version 8.4.1.0 Introduced History Related show track...
Page 990 show track c e s Display information about tracked objects, including configuration, current tracked state (UP or DOWN), and the clients which are tracking an object. Syntax show track [object-id [brief] | interface [brief] [vrf vrf-name] | ip route [brief] [vrf vrf-name] | resolution | vrf vrf-name [brief] | brief] Parameters object-id...
Page 991 Example Figure 37-1. Command Example: show track FTOS#show track Track 1 IP route 23.0.0.0/8 reachability Reachability is Down (route not in route table) 2 changes, last change 00:16:08 Tracked by: Track 2 IPv6 route 2040::/64 metric threshold Metric threshold is Up (STATIC/0/0) 5 changes, last change 00:02:16 Metric threshold down 255 up 254 First-hop interface is GigabitEthernet 13/2...
Page 992 Table 37-2. Command Example Description: show track brief ResID Number of the tracked object Resource Type of tracked object Parameter Detailed description of the tracked object State Up or Down state of the tracked object Last Change Time since the last change in the state of the tracked object threshold metric c e s Configure the metric threshold used to determine the UP and/or DOWN state of a tracked IPv4 or IPv6...
Page 993 • If the scaled metric for a route entry is less than or equal to the UP threshold, the state of a route is • If the scaled metric for a route is greater than or equal to the DOWN threshold or the route is not entered in the routing table, the state of a route is DOWN.
Page 994 ip-address/ Enter an IPv4 address in dotted decimal format. Valid IPv4 prefix lengths are from /0 to /32. prefix-len vrf vrf-name (Optional) E-Series only: You can configure a VPN routing and forwarding (VRF) instance to specify the virtual routing table to which the tracked route belongs. Defaults None Command Modes...
Page 995 Parameters object-id Enter the ID number of the tracked object. Range: 1 to 65535. ip-address/ Enter an IPv4 address in dotted decimal format. Valid IPv4 prefix lengths are from /0 to / prefix-len vrf vrf-name (Optional) E-Series only: You can configure a VPN routing and forwarding (VRF) instance to specify the virtual routing table to which the tracked route belongs.
Page 996 track interface ip routing c e s Configure object tracking on the routing status of an IPv4 Layer 3 interface. Syntax track object-id interface interface ip routing To return to the default setting, enter no track object-id. Parameters object-id Enter the ID number of the tracked object. Range: 1 to 65535. interface Enter one of the following values: For a 1-Gigabit Ethernet interface, enter gigabitethernet slot-number/...
Page 997 track interface line-protocol c e s Configure object tracking on the line-protocol state of a Layer 2 interface. Syntax track object-id interface interface line-protocol To return to the default setting, enter no track object-id. Parameters object-id Enter the ID number of the tracked object. Range: 1 to 65535. interface Enter one of the following values: For a 1-Gigabit Ethernet interface, enter gigabitethernet slot-number/...
Page 998 track resolution ip route c e s Configure the protocol-specific resolution value used to scale an IPv4 route metric. Syntax track resolution ip route {isis resolution-value | ospf resolution-value} To return to the default setting, enter no track object-id. Parameters object-id Enter the ID number of the tracked object.
Page 999 IPv6 Object Tracking Commands The IPv6 object tracking commands are: • show track ipv6 route • track interface ipv6 routing • track ipv6 route metric threshold • track ipv6 route reachability • track resolution ipv6 route The following object tracking commands apply to IPv4 and IPv6: •...
Page 1000 Example Figure 37-3. Command Example: show track ipv6 route FTOS#show track ipv6 route Track 2 IPv6 route 2040::/64 metric threshold Metric threshold is Up (STATIC/0/0) 5 changes, last change 00:02:30 Metric threshold down 255 up 254 First-hop interface is GigabitEthernet 13/2 Tracked by: VRRP GigabitEthernet 7/30 IPv6 VRID 1 Track 3...

This manual is also suitable for:

Force10 terascale c series Force10 terascale s series Force10 terascale s50 Force10 terascale s25

Dell Force10 TeraScale E Series Reference Manual

Quick Links

Related Manuals for Dell Force10 TeraScale E Series

Summary of Contents for Dell Force10 TeraScale E Series

Page 195: Table Of Contents

Page 196: Parameters

Page 206: Command Modes Interface

Page 209: Range: 1 To

Page 212: Default

Page 230: Range

This manual is also suitable for: