Page 12
66 S-Series Debugging and Diagnostics Offline Diagnostic Commands ......... . .1575 Important Points to Remember .
Page 13
Preface About this Guide This book provides information on the FTOS Command Line Interface (CLI). It includes some information on the protocols and features found in FTOS and on the Dell Force10 systems supported by FTOS (C-Series , E-Series , and S-Series This chapter includes: •...
Page 14
Keywords and parameters within braces must be entered in the CLI. Keywords and parameters within brackets are optional. x | y Keywords and parameters separated by bar require you to choose one. x||y Keywords and parameters separated by a double bar enables you to choose any or all of them. Information Symbols Table 1-1 describes symbols contained in this guide.
Page 15
CLI Basics This chapter describes the command structure and command modes. FTOS commands are in a text-based interface that allows you to use launch commands, change the command modes, and configure interfaces and protocols. This chapter covers the following topics: •...
Page 16
Multiple Configuration Users When a user enters the CONFIGURATION mode and another user(s) is already in that configuration mode, generates an alert warning message similar to the following: Figure 2-2. Configuration Mode User Alert FTOS#conf % Warning: The following users are currently configuring the system: User ""...
Page 17
Table 2-1. Command Prompt and Corresponding Command Mode Prompt CLI Command Mode FTOS(conf-if)#12 INTERFACE FTOS(conf-if-gi-0/0)# FTOS(conf-if-te-0/0)# FTOS(conf-if-lo-0)# FTOS(conf-if-nu-0)# FTOS(conf-if-po-0)# FTOS(conf-if-vl-0)# FTOS(conf-if-so-0/0)# FTOS(conf-if-ma-0/0)# FTOS(conf-if-range)# FTOS(config-ext-nacl)# IP ACCESS LIST FTOS(config-std-nacl)# FTOS(config-line-aux)# LINE FTOS(config-line-console)# FTOS(config-line-vty)# FTOS(config-ext-macl)# MAC ACCESS LIST FTOS(config-std-macl)# FTOS(config-mon-sess)# MONITOR SESSION FTOS(config-span)# FTOS(config-mstp)# MULTIPLE SPANNING TREE...
Page 18
— Type a keyword followed by a space and a ? • Type a partial keyword followed by a ? — A display of keywords beginning with the partial keyword is listed. Figure 2-3 illustrates the results of entering ip ? at the prompt. Figure 2-3.
Page 19
Use the left and right arrow keys to navigate left or right in the FTOS command line. Table 2-2 defines the key combinations valid at the FTOS command line. Table 2-2. Short-cut Keys and their Actions Combination Action CNTL-A Moves the cursor to the beginning of the command line. CNTL-B Moves the cursor back one character.
Page 20
except— display only text that does not match the pattern (or regular expression) • • find — search for the first occurrence of a pattern grep — display text that matches a pattern • no-more — do not paginate the display output •...
Page 21
EXEC Mode When you initially log in to the switch, by default, you are logged into the EXEC mode. This mode allows you to view settings and to enter the EXEC Privilege mode to configure the device. While you are in the EXEC mode, the > prompt is displayed following the “hostname” prompt, as described above.
Page 22
Table 2-3. Interface prompts Prompt Interface Type FTOS(conf-if-nu-0)# Null Interface followed by zero FTOS(conf-if-po-0)# Port-channel interface number FTOS(conf-if-vl-0)# VLAN Interface followed by VLAN number (range 1 to 4094) FTOS(conf-if-so-0/0)# SONET interface followed by slot/port information. FTOS(conf-if-ma-0/0)# Management Ethernet interface followed by slot/port information FTOS(conf-if-range)# Designated interface range (used for bulk configuration;...
Page 23
IP ACCESS LIST Mode While in the CONFIGURATION mode, use the ip access-list standard or ip access-list extended command to enter the IP ACCESS LIST mode and configure either standard or extended access control lists (ACL). To enter IP ACCESS LIST mode: Verify that you are logged in to the CONFIGURATION mode.
Page 24
IP COMMUNITY LIST Mode Use the IP COMMUNITY LIST mode to configure an IP Community ACL on the E-Series. See Chapter 9, Access Control Lists (ACL). To enter IP COMMUNITY LIST mode: 1. Verify that you are logged in to the CONFIGURATION mode. 2.
Page 25
RAPID SPANNING TREE Mode Use PVST+ mode to enable and configure the RSTP protocol, as described in Chapter 50, Rapid Spanning Tree Protocol (RSTP). To enter RSTP mode: Verify that you are logged into the CONFIGURATION mode. Enter the protocol spanning-tree rstp command. You can return to the CONFIGURATION mode by entering the exit command.
Page 26
ROUTER RIP Mode Use the ROUTER RIP mode to configure RIP on the C-Series or E-Series, as described in Chapter 48, Router Information Protocol (RIP). To enter ROUTER RIP mode: 1. Verify that you are logged into the CONFIGURATION mode. 2.
Page 27
File Management Overview This chapter contains commands needed to manage the configuration files and includes other file management commands found in FTOS. This chapter contains these sections: • Basic File Management Commands • Upgrading the C-Series FPGA Basic File Management Commands The commands included in this chapter are: •...
Page 28
(copy running-config startup-config or write). Dell FTOS strongly recommends using local files for configuration (RPM0 or RPM1 flash or slot0). When you specify a file as the boot config file, it is listed in the boot variables (bootvar) as LOCAL .
Page 29
Output for show bootvar with no boot configuration configured FTOS#show bootvar PRIMARY IMAGE FILE = flash://FTOS-EF-8.2.1.0.bin SECONDARY IMAGE FILE = flash://FTOS-EF-7.6.1.0.bin DEFAULT IMAGE FILE = flash://FTOS-EF-7.5.1.0.bin LOCAL CONFIG FILE = variable does not exist PRIMARY HOST CONFIG FILE = variable does not exist SECONDARY HOST CONFIG FILE = variable does not exist PRIMARY NETWORK CONFIG FILE =...
Page 30
Related show bootvar Display the variable settings for the E-Series boot parameters Commands boot network Set the location of the configuration file in a remote network. Syntax boot network {primary | secondary} remote-url Parameters primary primary Enter the keywords to attempt to load the primary network configuration files. secondary secondary Enter the keywords...
Page 31
secondary rpm0 rpm1 secondary After entering , enter the keyword to configure boot parameters used if the primary operating system boot selection is not available. file-url To boot from a file: flash:// • on the internal Flash, enter followed by the filename. ftp://user:password hostip/filepath •...
Page 32
Parameters directory (OPTONAL) Enter one of the following: flash: • (internal Flash) or any sub-directory slot0: • (external Flash) or any sub-directory (C-Series and E-Series only) Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on S-Series History Version 7.5.1.0 Introduced on C-Series E-Series original Command change bootflash-image Change boot flash image from which to boot.
Page 33
Parameters file-url Enter the following location keywords and information: flash:// • To copy a file from the internal FLASH, enter followed by the filename. ftp://user:password hostip/filepath • To copy a file on an FTP server, enter rpm0flash://filepath • To copy a file from the internal FLASH on RPM0, enter rpm0slot0://filepath •...
Page 34
Syntax copy source-url target-url [boot-image [synchronize-rpm [external]]] Parameters source-url Enter the source file in url format. The source file is a valid Dell Force10 release image. Image validation is automatic. target-url Enter the local target file in url format. boot-image...
Page 35
Usage In this streamline copy command, the source image is copied to the primary RPM and then, if Information specified, to the standby RPM. After the copy is complete, the new image file path on each RPM is automatically configured as the primary image path for the next boot. The current system image (the one from which the RPM booted) is automatically configured as the secondary image path.
Page 36
c e s Display the files in a file system. The default is the current directory. Syntax dir [filename | directory name:] Parameters (OPTIONAL) Enter one of the following: filename directory name: flash:// • For a file or directory on the internal Flash, enter followed by the filename or directory name.
Page 37
download alt-full-image Download an alternate FTOS image to the chassis. download alt-full-image file-url Syntax Command Modes EXEC Privilege Command Version 7.7.1.0 Removed form E-Series History Version 6.5.1.0 Introduced Usage Starting with FTOS 7.7.1.0, the functions of this command are incorporated into the upgrade Information command.
Page 38
dosFs1.0 dosFs1.0 Enter the keyword to format in DOS 1.0 (the default) dosFs2.0 dosFs2.0 Enter the keyword to format in DOS 2.0 Default DOS 1.0 (dosFs1.0) Command Modes EXEC Privilege Command Version 7.5.1.0 Introduced on C-Series History E-Series original Command Usage When you format flash: Information...
Page 39
Related copy Copy the current configuration to either the startup-configuration file or the Commands terminal. show file Display contents of a text file in the local filesystem. show file-systems Display information about the file systems on the system. logging coredump Enable coredump.
Page 40
type Enter the password type: • Enter 0 to enter an unencrypted password. • Enter 7 to enter a password that has already been encrypted using a Type 7 hashing algorithm. password Enter a password to access the target server. Defaults Crash kernel files are uploaded to flash by default.
Page 41
rename Rename a file in the local file system. rename url url Syntax Parameters Enter the following keywords and a filename: flash:// • For a file on the internal Flash, enter followed by the filename. slot0:// • For a file on the external Flash, enter followed by the filename.
Page 42
Example FTOS#show boot system all Current system image information in the system: ============================================= Type Boot Type ---------------------------------------------------------------- DOWNLOAD BOOT invalid invalid DOWNLOAD BOOT invalid invalid DOWNLOAD BOOT invalid invalid linecard 0 is not present. linecard 1 DOWNLOAD BOOT invalid invalid linecard 2 DOWNLOAD BOOT 4.7.5.387 6.5.1.8...
Page 43
boot network Set the location of configuration files from a remote network. boot system Set the location of FTOS image files. boot system gateway Specify the IP address of the default next-hop gateway for the management subnet. show file Display contents of a text file in the local filesystem. Syntax show file filesystem Parameters...
Page 44
show file-systems Display information about the file systems on the system. Syntax show file-systems Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on S-Series History Version 7.5.1.0 Introduced on C-Series E-Series original Command Example Command Output example: show file-system FTOS#show file-systems Size(b) Free(b) Feature...
Page 45
show linecard View the current linecard status. show linecard [number | all | boot-information] Syntax Parameters number Enter a number to view information on that linecard. Range: 0 to 6. (OPTIONAL) Enter the keyword to view a table with information on all present linecards.
Page 46
Command Version 7.6.1.0 Introduced on S-Series History Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Note: A filepath that contains a dot ( . ) is not supported. Information Example Command output example (E-Series): show os-version FTOS#show os-version RELEASE IMAGE INFORMATION : --------------------------------------------------------------------- Platform Version...
Page 47
Parameters entity (OPTIONAL) Enter one of the keywords listed below to display that entity’s current (non-default) configuration. Note that, if nothing is configured for that entity, nothing is displayed and the prompt returns: • for the current AAA configuration • for the current ACL configuration •...
Page 48
snmp • for the current SNMP configuration spanning-tree • for the current spanning tree configuration static • for the current static route configuration tacacs+ • for the current TACACS+ configuration tftp • for the current TFTP configuration trace-group • for the current trace-group configuration trace-list •...
Page 49
Parameters number Enter a number to view information on that SFM. Range: 0 to 8. (OPTIONAL) Enter the keyword to view a table with information on all present SFMs. brief brief (OPTIONAL) Enter the keyword to view a list with SFM status. Note: The brief option is not available on C-Series.
Page 50
Command output example: show sfm all FTOS#show sfm all Switch Fabric State: Switch Fabric Modules Slot Status --------------------------------------------------------------------------- active active active active active active active active active FTOS# show startup-config c e s Display the startup configuration. Syntax show startup-config Command Modes EXEC Privilege Command...
Page 51
Command Version 7.6.1.0 Introduced on S-Series History Version 7.5.1.0 Introduced on C-Series E-Series original Command E-Series Example Command output example on E-Series: show version FTOS#show version Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.0 Force10 Application Software Version: 5.3.1.0 Copyright (c) 1999-2004 by Force10 Networks, Inc.
Page 52
show version Command Fields Lines beginning with Description 128K bytes... Amount and type of memory on system. 1 Route Processor... Hardware configuration of the system, including the number and type of physical interfaces available. S-Series Example Command output example on an S50V: show version FTOS#show version Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.0...
Page 53
booted Enter this keyword to upgrade using the image packed with the currently running FTOS image. file-url Enter the following location keywords and information to upgrade using an FTOS image other than the one currently running: Enter the transfer method and file location: flash://filename ftp://userid password...
Page 54
linecard number Enter the keyword to upgrade the system image of a selector image on all processors on the RPM. repair Enter this keyword to upgrade a line card newly inserted into an already system-image upgraded chassis. This option is only available with the keyword.
Page 55
upgrade (S-Series management unit) Upgrade the bootflash image or system image of the S-Series management unit. upgrade {boot | system} {ftp: | scp: | tftp:} file-url Syntax Parameters boot Enter this keyword to change the boot image. system Enter this keyword to change the system image. ftp: After entering this keyword you can either follow it with the location of the source file in this //userid:password@hostip/filepath...
Page 56
Parameters Enter the keyword to upgrade the FPGA on the SFMs. Enter the keyword to upgrade all processors on the RPM. Enter the keyword to upgrade the FPGA on all the SFMs. Enter the keyword to upgrade the FPGA on all a specific SFM. Enter the path to the upgrade source.
Page 57
Defaults None. Command Mode EXEC Privilege Command primary-fpga-flash fpga-image Version 7.7.1.0 Renamed keyword History Version 7.5.1.0 Introduced on C-Series Example Command example: restore fpga-image FTOS#restore fpga-image linecard 4 Current FPGA information in the system: ======================================= Card FPGA Name Current Version New Version ------------------------------------------------------------------------ 48 Port 1G LCM FPGA...
Page 58
(OPTIONAL) Enter to upgrade only the system FPGA on a fiber linecard. Contact the Dell Force10 TAC before using this keyword. link-fpga link-fpga (OPTIONAL) Enter to upgrade only the link FPGA on a fiber linecard. Contact the Dell Force10 TAC before using this keyword.
Page 59
Most of the commands in this chapter are in Configuration mode, except for format, which is in the BOOT_ADMIN mode. The exception to this is that on the Dell Force10 S50 platform. On the S50, the commands are accessed from the BOOT_USER mode. Command support on Dell Force10 platforms is indicated by the characters that appear below each command heading: •...
Page 60
• show bootvar • show default-gateway • show interface management ethernet Note: You cannot use the Tab key to complete commands in this mode. Note: The question mark (?) key to get help does not work in this mode. Instead, enter help. boot change c es Change the primary, secondary, or default FTOS boot configuration.
Page 61
Figure 4-1. First Field in the boot change Command BOOT_USER # boot change primary '.' = clear field; '-' = clear non-essential field boot device : ftp Figure 4-2 shows the completed command: Figure 4-2. Completed boot change Command Example BOOT_USER # boot change primary '.' = clear field;...
Page 62
Parameters Enter the keyword to select the boot code in partition A. Enter the keyword to select the boot code in partition B. Defaults None. Command Modes BOOT_USER Usage To view the current boot flash image, enter the show boot selection command. Information Related boot change...
Page 63
Figure 4-3. Completed boot zero Command Example BOOT_USER # boot zero primary BOOT_USER # boot zero secondary BOOT_USER # boot zero default BOOT_USER # show bootvar PRIMARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== No Operating System boot parameters specified! SECONDARY OPERATING SYSTEM BOOT PARAMETERS: ========================================== No Operating System boot parameters specified! DEFAULT OPERATING SYSTEM BOOT PARAMETERS:...
Page 64
BOOT_USER # enable Change the privilege level of user access to FTOS commands. Syntax enable {user | admin} Parameters admin Used only by Dell Force10 TAC personnel. user Used only by Dell Force10 TAC personnel. Defaults Not configured. Command Modes BOOT_USER...
Page 65
Usage Only Dell Force10 TAC staff use this command. Information format Format the internal or external flash memory. Syntax format file-url Parameters file-url Enter the location keywords and information: flash:// • For a file on the internal Flash, enter followed by the filename.
Page 66
ignore startup-config During a reload, do not load the startup-config file. Syntax ignore startup-config Defaults disabled Command Modes BOOT_USER Command Version 7.8.1.0 Introduced on S-Series History Usage This command might be used if a the user has authentication procedures in the startup-config other Information than the enable-password setting.
Page 67
interface management ethernet mac-address Assign a MAC address to the Management Ethernet interface. interface management ethernet mac-address mac-address Syntax Parameters mac-address Enter a MAC address in standard format (xx:xx:xx:xx:xx:xx). Defaults Not configured. Command Modes BOOT_USER Command Version 7.8.1.0 Introduced on S-Series History Usage Use this command to assign a MAC address if FTOS cannot find a default MAC address.
Page 68
Parameters half-duplex half-duplex Enter the keyword to set the Management interface to half-duplex mode. full-duplex full-duplex Enter the keyword to set the Management interface to full-duplex mode. Enter the keyword to set the speed on the Management interface to 10 Mb/ 100m 100m Enter the keyword...
Page 69
Introduced on S-Series History Usage A basic difference between S-Series and other Dell Force10 platforms is that, on the S-Series, FTOS Information does not save configurations into NVRAM while the user enters them in the BLI. Instead, the configurations are saved in a software cache and are written into NVRAM only on the execution of this save command or of the reload command.
Page 70
Example Figure 4-5. show boot selection Command Example BOOT_USER # show boot selection ROM BOOTSTRAP SELECTOR PARMETERS: ================================ Current ROM bootstrap selection set to Bootflash partition B. Last ROM bootstrap occurred from Bootflash partition B. BOOT_USER # Related boot change Change the primary, secondary or default boot image configuration Commands boot selection...
Page 71
Command Version 7.8.1.0 Introduced on S-Series History Example Figure 4-7. show bootvar Command Example BOOT_USER # show bootvar PRIMARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== boot device : ftp file name : tt/latestlabel Management Ethernet IP address : 10.16.1.181/24 Server IP address : 10.16.1.209 username : amsterdam...
Page 72
show interface management ethernet c es Display the IP address configured for the Management interface. Syntax show interface management ethernet Command Modes BOOT_USER Command Version 7.8.1.0 Introduced on S-Series History Example Figure 4-9. show interface management ethernet Command Example BOOT_USER # show interfaces management ethernet Management ethernet IP address: 10.16.1.181/24 BOOT_USER # On the S-Series, the output of this command includes the MAC address and port number of the...
Page 73
Control and Monitoring Overview This chapter contains the following commands to configure and monitor the system, including Telnet, c e s FTP, and TFTP as they apply to platforms Commands audible cut-off send banner exec service timestamps banner login show alarms banner motd show chassis cam-audit linecard...
Page 74
ip ftp source-interface show switch links ip ftp username show system (S-Series) ip telnet server enable show tech-support (C-Series and E-Series) ip telnet source-interface show tech-support (S-Series) ip tftp source-interface ssh-peer-rpm line telnet linecard telnet-peer-rpm module power-off terminal length motd-banner terminal xml ping traceroute...
Page 75
Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Optionally, use the banner exec command to create a text string that is displayed when the user Information accesses the EXEC mode. The exec-banner command toggles that display. Example FTOS(conf)#banner exec ? LINE c banner-text c, where 'c' is a delimiting character FTOS(conf)#banner exec %...
Page 76
Command keyboard-interactive Version 8.2.1.0 Introduced keyword History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage A login banner message is displayed only in EXEC Privilege mode after entering the enable Information command followed by the password.
Page 77
Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage A MOTD banner message is displayed only in EXEC Privilege mode after entering the enable Information command followed by the password. These banners are not displayed to users in EXEC (non-privilege) mode.
Page 78
Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage This command clear alarms that are no longer active. If an alarm situation is still active, it is seen in the Information system output. clear command history c e s Clear the command history log. Syntax clear command history Command Modes...
Page 79
Excessive traffic is received by CPU and traffic will be rate controlled. Note: This command must be enabled before the show cpu-traffic-stats command will display . Dell traffic statistics Force10 recommends that you disable debugging (no debug cpu-traffic-stats) once troubleshooting is complete...
Page 80
debug ftpserver c e s View transactions during an FTP session when a user is logged into the FTP server. Syntax debug ftpserver Command Modes EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command...
Page 81
Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.1.1.0 Introduced on E-Series Usage The following commands are not supported by the do command: Information • enable • disable • exit •...
Page 82
enable xfp-power-updates c e s Enable XFP power updates for SNMP. Syntax enable xfp-power-updates interval seconds To disable XFP power updates, use the no enable xfp-power-updates command. Parameters interval interval seconds Enter the keyword followed by the polling interval in seconds. Range: 120 to 6000 seconds Default: 300 seconds (5 minutes) Defaults...
Page 83
When using 9 SFMs in an ExaScale chassis, the 10.4 setting is line rate; the 2.4 setting reduces throughput. Dell Force10 recommends using the 10.4 setting when the system has 9 SFMs. Using 8 SFMs in an ExaScale chassis reduces throughput at any epoch setting.
Page 84
exec-banner c e s Enable the display of a text string when the user enters the EXEC mode. Syntax exec-banner Defaults Enabled on all lines (if configured, the banner appears). Command Modes LINE Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series...
Page 85
Example Figure 5-4. FTOS time-out display FTOS con0 is now available Press RETURN to get started. FTOS> exit ce s Return to the lower command mode. Syntax exit Command Modes EXEC Privilege, CONFIGURATION, LINE, INTERFACE, TRACE-LIST, PROTOCOL GVRP, SPANNING TREE, MULTIPLE SPANNING TREE, MAC ACCESS LIST, ACCESS-LIST, AS-PATH ACL, COMMUNITY-LIST, PREFIX-LIST, ROUTER OSPF, ROUTER RIP, ROUTER ISIS, ROUTER BGP Command...
Page 86
Usage After you enable FTP server functions with the ftp-server enable command, Dell Force10 recommends Information that you specify a top-level directory path. Without a top-level directory path specified, the FTOS directs users to the flash directory when they log in to the FTP server.
Page 87
ftp-server username c e s Create a user name and associated password for incoming FTP server sessions. ftp-server username username password [encryption-type] password Syntax Parameters username Enter a text string up to 40 characters long as the user name. password password password Enter the keyword followed by a string up to 40 characters long as...
Page 88
ip ftp password c e s Specify a password for outgoing FTP connections. Syntax ip ftp password [encryption-type] password Parameters encryption-type (OPTIONAL) Enter one of the following numbers: • 0 (zero) for an unecrypted (clear text) password • 7 (seven) for hidden text password password Enter a string up to 40 characters as the password.
Page 89
ip ftp source-interface c e s Specify an interface’s IP address as the source IP address for FTP connections. ip ftp source-interface interface Syntax Parameters interface Enter the following keywords and slot/port or number information: GigabitEthernet • For an 100/1000 Ethernet interface, enter the keyword followed by the slot/port information.
Page 90
Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage You must also configure a password with the ip ftp password command. Information Related ip ftp password Set the password for FTP connections. Commands ip telnet server enable c e s Enable the Telnet server on the switch.
Page 91
Defaults The IP address on the system that is closest to the Telnet address is used in the outgoing packets. Command Modes CONFIGURATION Command Version 8.2.1.0 Increased number of VLANs on ExaScale to 4094 (was 2094) History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0...
Page 92
line c e s Enable and configure console and virtual terminal lines to the system. This command accesses LINE mode, where you can set the access conditions for the designated line. Syntax line {aux 0 | console 0 | vty number [end-number]} Parameters aux 0 aux 0...
Page 93
Command Version 8.1.1.2 Introduced on E-Series ExaScale E600i History Version 8.1.1.0 Introduced on E-Series ExaScale E1200i Version 7.5.1.0 Introduced on C-Series E-Series original Command Figure 5-6. Command Example: show linecard on C-Series FTOS#show linecard 0 -- Line card 0 -- Status : online Next Boot : online Required Type : E48VB - 48-port GE 10/100/1000Base-T line card with RJ45 interfaces and PoE (CB)
Page 94
Figure 5-7. Command Example: show linecard on E-Series FTOS#show linecard 0 -- Line card 0 -- Status : online Next Boot : online Required Type : E48VB - 48-port GE 10/100/1000Base-T line card with RJ45 interfaces and PoE (CB) Current Type : E48VB - 48-port GE 10/100/1000Base-T line card with RJ45 interfaces and PoE (CB) Hardware Rev : 2.0 Num Ports : 48 Up Time : 1 min, 56 sec...
Page 95
module power-off Turn off power to a line card at next reboot. module power-off linecard number Syntax Parameters linecard number line card followed Enter the keyword by the line card slot number C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300.
Page 96
Parameter (OPTIONAL) E-Series Only: Enter the VRF Instance name of the device to which you are testing connectivity. host (OPTIONAL) Enter the host name of the devices to which you are testing connectivity. ip-address (OPTIONAL) Enter the IPv4 address of the device to which you are testing connectivity.
Page 97
pattern pattern (IPv4 only) Enter the IPv4 data pattern. Range: 0-FFFF 0xABCD Default: sweep-min-size Enter the minimum size of datagram in sweep range. Range: 52-15359 bytes sweep-max-size Enter the maximum size of datagram in sweep range. Range: 53-15359 bytes sweep-interval Enter the incremental value for sweep size.
Page 98
Usage When you enter the ping command without specifying an IP/IPv6 address (Extended Ping), you are Information prompted for a target IP/IPv6 address, a repeat count, a datagram size (up to 1500 bytes), a timeout in seconds, and for Extended Commands. See Appendix , for information on the ICMP message codes that return from a ping command.
Page 99
Related power-on Power on a line card or standby SFM. Commands power-on Turn on power to a line card or the standby (extra) Switch Fabric Module (SFM). Syntax power-on {linecard number | sfm sfm-slot-id} Parameters linecard number linecard Enter the keyword and a number for the line card slot number.
Page 100
reset Reset a line card, RPM, a standby SFM (EtherScale only), or a failed SFM (TeraScale only). Syntax reset {linecard number [hard | power-cycle] | rpm number [hard | power-cycle ] | sfm slot number | standby} Parameters linecard number linecard Enter the keyword and a number for the line card slot number.
Page 101
Parameters rpm slot number Enter the slot number E1200i: 0-13 E600i: 0-6 on |off Toggles the LED on the RPM on or off. Defaults Command Modes EXEC Command Version 8.2.1.0 Introduced on the E-Series ExaScale History Usage The LED setting is not saved through power cycles. Information send c e s...
Page 102
service timestamps c e s Add time stamps to debug and log messages. This command adds either the uptime or the current time and date. Syntax service timestamps [debug | log] [datetime [localtime] [msec] [show-timezone] | uptime] Parameters debug debug (OPTIONAL) Enter the keyword to add timestamps to debug messages.
Page 103
Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command E-Series Example Figure 5-10. Command Example: show alarms on E-Series FTOS# show alarms Minor Alarms Alarm Type Duration ---------------------------------------------------- RPM 0 PEM A failed or rmvd 7 hr, 37 min SFM 0 PEM A failed or rmvd...
Page 104
Example Figure 5-11. Command Example: show chassis brief on C-Series FTOS#show chassis -- Manufacturing Info -- Chassis Type : C150 Chassis Mode : 1.0 Chassis MAC : 00:01:e8:51:a7:e3 Serial Number : TY000002776 Part Number : 7520036800 Vendor Id : 04 Date Code : 01082008 Country Code : 01 Product Rev : 03...
Page 105
Information command-history trace log is saved to a file upon an RPM failover. This file can be analyzed by the Dell Force10 TAC to help identify the root cause of an RPM failover. Figure 5-13. Command Example: show command-history Example...
Page 106
Related Commands clear command history command history log. Clear the show command-tree c e s Display the entire CLI command tree, and optionally, display the utilization count for each commands and its options. Syntax show command-tree [count | no] Parameters count Display the command tree with a usage counter for each command.
Page 107
Parameters number Enter the line card slot number. Range: 0–7 for the C300 Range: 0–13 for the E1200 Range: 0–6 for the E600 Range: 0–5 for the E300 Defaults None Command Mode EXEC EXEC Privilege Command Version 7.5.1.0 Introduced on C-Series History E-Series original Command Usage...
Page 108
E-Series Example Figure 5-14. Command Example: show cpu-traffic-stats on the E-Series FTOS#show cpu-traffic-stats Processor : CP -------------- Received 100% traffic on GigabitEthernet 8/2 Total packets:100 LLC:0, SNAP:0, IP:100, ARP:0, other:0 Unicast:100, Multicast:0, Broadcast:0 Processor : RP1 --------------- Received 62% traffic on GigabitEthernet 8/2 Total packets:500 LLC:0, SNAP:0, IP:500, ARP:0, other:0 Unicast:500, Multicast:0, Broadcast:0...
Page 109
Example Figure 5-15. Command Example: show debugging FTOS#show debug Generic IP: IP packet debugging is on for ManagementEthernet 0/0 Port-channel 1-2 Port-channel 5 GigabitEthernet 4/0-3,5-6,10-11,20 GigabitEthernet 5/0-1,5-6,10-11,15,17,19,21 ICMP packet debugging is on for GigabitEthernet 5/0,2,4,6,8,10,12,14,16 FTOS# show environment (C-Series and E-Series) View the system component status (for example, temperature, voltage).
Page 110
Examples Figure 5-16. Command Example: show environment for the E1200 FTOS#show environment Fan Status Tray Status Temp Volt Speed PEM0 PEM1 Fan1 Fan2 Fan3 -------------------------------------------------------------------------------- < 50C 12-16V low/2100-2700 RPM < 50C 12-16V low/2100-2700 RPM < 50C 12-16V low/2100-2700 RPM <...
Page 111
Figure 5-18. Command Example: show environment fan on the C300 FTOS#show env fan Fan Status ------------------------------------------------------------------- Tray ------------------------------------------------------------------- FanNumber Speed Status 4170 4140 3870 4140 3870 3810 FTOS# show environment (S-Series) View S-Series system component status (for example, temperature, voltage). Syntax show environment [all | fan | stack-unit unit-id | pem] Parameters...
Page 112
Example Figure 5-19. Command Example: show environment all on the S-Series FTOS#show environment all Status -------------------------------------------------------------------------------- Unit TrayStatus Fan0 Fan1 Fan2 Fan3 Fan4 Fan5 Power Supplies Unit Status Type --------------------------------------------------------------------------- absent -- Unit Environment Status Unit Status Temp Voltage --------------------------------------------------------------------------- online * Management Unit Fan Status...
Page 113
show inventory (C-Series and E-Series) Display the chassis type, components (including media), FTOS version including hardware identification numbers and configured protocols. Syntax show inventory [media slot] Parameters media slot media (OPTIONAL) Enter the keyword followed by the slot number. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300 Defaults No default behavior or values...
Page 114
Figure 5-23. Example output of show inventory for C300 (C-Series) FTOS#sh inventory Chassis Type : C150 Chassis Mode : 1.0 Software Version : E8-4-2-399 Slot Item Serial Number Part Number Piece Part ID Svc Tag Exprs Svc Code ---------------------------------------------------------------------------------- C150 TY000002776 7520036800 US-021R1D-76991-1BA-2776...
Page 115
E-Series Example Figure 5-24. Example output of show inventory for E-Series FTOS#show inventory Chassis Type : E1200 Chassis Mode : TeraScale Software Version : E8-4-2-399 Slot Item Serial Number Part Number Piece Part ID Svc Tag Exprs Svc Code ---------------------------------------------------------------------------------------------- ------------- E1200 FX000003180...
Page 116
Example Figure 5-25. Example output of show inventory media slot (partial) FTOS#show inventory media 3 Slot Port Type Media Serial Number F10Qualified ---------------------------------------------------------------------------- 11 SFP 1000BASE-SX U9600L0 Example Figure 5-26. Example Output of show inventory media FTOS#show inventory media Slot Port Type Media Serial Number F10Qualified ----------------------------------------------------------------------------...
Page 117
Example Figure 5-27. Example output of show inventory for S-Series FTOS#show inventory System Type : S50N System Mode : 1.0 Software Version : E8-4-2-399 -------------------------------------------------------------------------------- ------------------------------ S50-01-GE-48T-AC DL257430183 7590005600 CN-0RVY43-28298-82B-0456 SVCTGCH 628 458 864 65 S50-01-12G-2S S50-PWR-AC S50-FAN * - Management Unit Related show interfaces interface configuration.
Page 118
E-Series Example Figure 5-28. Command Example: show linecard on E-Series FTOS#show linecard 0 -- Line card 0 -- Status : online Next Boot : online Required Type : E48TF - 48-port 10/100/1000Base-T line card with RJ-45 interfaces (EF) Current Type : E48TF - 48-port 10/100/1000Base-T line card with RJ-45 interfaces (EF) Hardware Rev : Base - 1.1 PP0 - 1.1 PP1 - 1.1 Num Ports : 48...
Page 119
C-Series Figure 5-29. Command Example: show linecard on C-Series Example FTOS#show linecard 11 Line card 11 -- Status : online Next Boot : online Required Type : E48PF - 48-port GE line card with SFP optics (EF) Current Type : E48PF - 48-port GE line card with SFP optics (EF) Hardware Rev : Base - 1.0...
Page 120
Table 5-1 list the definitions of the fields shown in Figure 5-28 Table 5-1. Descriptions for show linecard output Field Description show linecard all Line card Displays the line card slot number (only listed in command output). Status Displays the line card’s status. Next Boot Displays whether the line card is to be brought online at the next system reload.
Page 121
Figure 5-30. Command Example: show linecard brief FTOS#show linecard 11 brief Line card 11 -- Status : online Next Boot : online Required Type : E48PF - 48-port GE line card with SFP optics (EF) Current Type : E48PF - 48-port GE line card with SFP optics (EF) Hardware Rev : Base - 1.0...
Page 122
Table 5-2 defines the fields in Figure 5-31. Table 5-2. Descriptions for show linecard boot-information output Field Description Displays the line card slot numbers, beginning with slot 0. The number of slots listed is dependent on your chassis: E-Series: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300.
Page 123
Parameters (OPTIONAL) Enter the keyword to view information on the Control Processor on the RPM. lp slot-number (OPTIONAL) Enter the keyword and the slot number to view information on the line-card processor in that slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/E1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300.
Page 124
Table 5-3 defines the fields displayed in Figure 5-32 Table 5-3. Descriptions for show memory output Field Description Lowest Displays the memory usage the system went to in the lifetime of the system. Indirectly, it indicates the maximum usage in the lifetime of the system: Total minus Lowest. Largest The current largest available.
Page 125
(OPTIONAL) Enter the keyword to view CPU usage of the Route Processor 2. Note: This option is supported on the E-Series only. lp linecard 1-99 (OPTIONAL) Enter the keyword followed by the line card number to display the CPU usage of that line card. 1-99 The optional variable sets the number of tasks to display in order of...
Page 126
Example 2 Figure 5-35. Command Example: show processes cpu rp1 FTOS#show processes cpu rp1 CPU utilization for five seconds: 0%/0%; one minute: 0%; five minutes: 0% Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 0x0000007c 10000 0.00% 0.00% 0.00% ospf 0x00000077 10000 0.00%...
Page 127
show processes cpu (S-Series) Display CPU usage information based on processes running in an S-Series. show processes cpu [management-unit 1-99 [details] | stack-unit 0-7 | summary | ipc | Syntax memory [stack-unit 0-7]] Parameters management-unit1-99 (OPTIONAL) Display processes running in the control processor. The 1-99 details variable sets the number of tasks to display in order of the highest...
Page 128
Example 2 Figure 5-38. Command Example: show processes cpu management-unit on S-Series FTOS#show processes cpu management-unit 0 CPU utilization for five seconds: 1%/0%; one minute: 10%; five minutes: 2% Runtime(ms) Invoked uSecs 5Sec 1Min 5Min Process 10000 0.00% 0.00% 0.00% topoDPC 0.00% 0.00%...
Page 129
Example 3 Figure 5-39. Command Example: show processes cpu stack-unit on S-Series FTOS#show processes cpu stack-unit 0 CPU Statistics On Unit0 Processor =============================== CPU utilization for five seconds: 0%/0%; one minute: 0%; five minutes: 0% Runtime(ms) Invoked uSecs 5Sec 1Min 5Min Process 8260...
Page 130
Example 4 Figure 5-40. Command Example: show processes memory on S-Series FTOS#show processes memory Memory Statistics On Unit 0 Processor (bytes) ========================================== start Total 160231424, MaxUsed 130596864 [09/19/2007 03:11:17] CurrentUsed: 130596864, CurrentFree: 29634560 SharedUsed : 14261872, SharedFree : 6709672 Process ResSize Size Allocs...
Page 131
show hardware system-flow Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe. show interfaces stack-unit Display information on all interfaces on a specific S-Series stack member. show processes memory Display CPU usage information based on processes running in an S-Series (S-Series) show processes ipc flow-control c e s...
Page 132
Example 1 Figure 5-42. Command Example: show processes ipc flow-control from C-Series FTOS# show processes ipc flow-control cp Q Statistics on CP Processor TxProcess RxProcess High Time Retr Aval Mark Sent Rcvd Retra Retra ACL0 RTM0 ACL0 DIFFSERV0 ACL0 IGMP0 ACL0 PIM0 ACL0...
Page 133
Table 5-4 list the definitions of the fields shown in Figure 5-42 Figure 5-43. Table 5-4. Description of show processes ipc flow-control cp output Field Description Source QID /Tx Process Source Service Identifier Destination QID/Rx Process Destination Service Identifier Cur Len Current number of messages enqueued High Mark Highest number of packets in the queue at any point of time...
Page 134
Example 4 Figure 5-46. Command Example: show processes ipc flow-control on S-Series FTOS#show processes ipc flow-control Q Statistics on CP Processor TxProcess RxProcess High Time Retr Aval Mark Sent Rcvd Retra Retra ACL0 RTM0 ACL0 DIFFSERV0 ACL0 IGMP0 ACL0 PIM0 LACP0 IFMGR0 RTM0...
Page 135
Parameters (OPTIONAL) Enter the keyword to view memory usage of the Control Processor. (OPTIONAL) Enter the keyword and the slot number to view information on the slot-number line-card processor in that slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/E1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300.
Page 137
Example Figure 5-49. Command Example: show processes memory rp2 FTOS#show processes memory rp2 Total 953700352, MaxUsed 149417984 [3/8/2006 12:33:6] CurrentUsed: 149417984, CurrentFree: 804282368 SharedUsed : 7847200, SharedFree : 13124344 Process ResSize Size Allocs Frees Current 145 vrrp 3870720 266240 297324 297324 297324 141 fvrp...
Page 138
show processes memory (S-Series) Display memory usage information based on processes running in the S-Series system. Syntax show processes memory {management-unit | stack unit {0–7 | all | summary}} Parameters management-unit management-unit Enter the keyword for CPU memory usage of the stack management unit.
Page 139
Example Figure 5-51. Command Example: show processes memory management-unit FTOS#show processes management-unit Total 151937024, MaxUsed 111800320 [2/25/2008 4:18:53] CurrentUsed: 98848768, CurrentFree: 53088256 SharedUsed : 13007848, SharedFree : 7963696 Process ResSize Size Allocs Frees Current 337 KernLrnAgMv 117927936 331 vrrp 5189632 249856 50572 50572...
Page 140
show processes switch-utilization Show switch fabric utilization. Syntax show processes switch-utilization Command Mode EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History E-Series original Command Example Figure 5-52. Command Example: show processes switch-utilization FTOS#show processes switch-utilization Switch fabric utilization 5Sec 1Min 5Min...
Page 141
E-Series Example Figure 5-53. Command Example: show rpm on E-Series FTOS#show rpm 0 -- RPM card 0 -- Status : active Next Boot : online Card Type : RPM - Route Processor Module (LC-EF-RPM) Hardware Rev : 2.2i Num Ports : 1 Up Time : 4 min, 37 sec Last Restart : reset by user FTOS Version : 8-4-2-399...
Page 142
C-Series Figure 5-54. Command Example: show rpm on C-Series Example FTOS#show rpm 0 -- RPM card 0 -- Status : active Next Boot : online Card Type : RPM - Route Processor Module (LC-CB-RPM) Hardware Rev : 2.0 Num Ports : 1 Up Time : 1 min, 58 sec Last Restart : reset by user FTOS Version : 8-4-2-399...
Page 143
Table 5-7. Descriptions of show rpm output (continued) Field Description Last Restart States the reason for the last RPM reboot. C-Series possible values: reset power-cycle • “normal power-cycle” ( command) • “reset by master” (peer RPM reset by master RPM) •...
Page 144
show software ifm Display interface management (IFM) data. Syntax show software ifm {clients [summary] | ifagt number | ifcb interface | stack-unit unit-ID | trace-flags} Parameters clients clients Enter the keyword to display IFM client information. summary summary (OPTIONAL) Enter the keyword to display brief information about IFM clients.
Page 146
Example Figure 5-56. Command Example: show switch links backplane FTOS# show switch links backplane Switch fabric backplane link status: SFM0 Links Status SFM1 Links Status LC SlotID Port0 | Port1 | Port2 | Port3 | Port4 | Port5 | Port6 | Port7 down down...
Page 147
Example Figure 5-57. Command Example: show system brief FTOS#show system brief Stack MAC : 0:1:e8:d6:4:70 Stack Info Unit UnitType Status ReqTyp CurTyp Version Ports --------------------------------------------------------------------------- Member not present Standby online S50V S50V 7.7.1.0 Mgmt online S50V S50V 7.7.1.0 Member not present Member not present Member...
Page 148
Example Figure 5-58. Command Example: show system stack-unit 2 FTOS#show system stack-unit 2 -- Unit 2 -- Unit Type : Management Unit Status : online Next Boot : online Required Type : S50N - 48-port E/FE/GE (SB) Current Type : S50N - 48-port E/FE/GE (SB) Master priority : 0 Hardware Rev : 2.0 Num Ports : 52...
Page 149
(C-Series and E-Series) Display, or save to a file, a collection of data from other show commands, the information necessary for Dell Force10 technical support to perform troubleshooting. Syntax show tech-support [linecard 0-6 | page] | {display | except | find | grep | no-more | save}...
Page 150
C-Series Figure 5-59. Command Example: show tech-support (partial) on C-Series Example FTOS#show tech-support page ----------------------------------- show version ------------------------------- Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.0 Force10 Application Software Version: FTOS 7.5.1.0 Copyright (c) 1999-2007 by Force10 Networks, Inc. Build Time: Tue Sep 12 15:39:17 IST 2006 Build Path: /sites/maa/work/sw//C-SERIES/SW/SRC Force10 uptime is 18 minutes...
Page 151
E-Series Example Figure 5-60. Command Example: show tech-support save (partial) on E-Series FTOS#show tech-support ? linecard Line card page Page through output Pipe through a command <cr> FTOS#show tech-support linecard 3 | ? display Display additional information except Show only text that does not match a pattern find Search for the first occurrence of a pattern grep...
Page 152
Display memory usage based on running processes. (C-Series and E-Series) show tech-support (S-Series) Display a collection of data from other show commands, necessary for Dell Force10technical support to perform troubleshooting on S-Series switches. Syntax show tech-support [stack-unit unit-id | page]...
Page 153
S-Series Figure 5-61. Command Example: show tech-support save (partial) on S-Series Examples FTOS#show tech-support ? page Page through output stack-unit Unit Number Pipe through a command <cr> FTOS#show tech-support stack-unit 1 ? Pipe through a command <cr> FTOS#show tech-support stack-unit 1 | ? except Show only text that does not match a pattern find...
Page 154
Figure 5-62. Command Example: show tech-support (partial) on S-Series FTOS#show tech-support stack-unit 0 ----------------------------------- show version ------------------------------- Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.0 Force10 Application Software Version: FTOS 7.6.1.0 Copyright (c) 1999-2007 by Force10 Networks, Inc. Build Time: Tue Sep 12 15:39:17 IST 2006 Build Path: /sites/maa/work/sw/purushothaman/cser-latest/depot/main/Dev/Cyclone/ Force10 uptime is 18 minutes...
Page 155
• show ip protocols • show ip route summary • show processes cpu • show processes memory • show redundancy • show running-conf • show version Related show version Display the FTOS version. Commands show system (S-Series) Display the current switch status. show environment (S-Series) Display system component status.
Page 156
Parameters host Enter the name of a server. ip-address Enter the IPv4 address in dotted decimal format of the server. ipv6-address x:x:x:x::x Enter the IPv6 address in the format followed by the prefix length in prefix-length format. Range: /0 to /128 Note: The notation specifies successive hexadecimal fields of zeros vrf instance...
Page 157
Command Version 8.2.1.0 Introduced on E-Series ExaScale (IPv6) History Increased number of VLANs on ExaScale to 4094 (was 2094) Version 8.1.1.0 Introduced on E-Series ExaScale (IPv4) Version 7.9.1.0 Introduced VRF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and added support for IPv6 address on E-Series only Usage Telnet to link-local addresses is not supported.
Page 158
terminal length c e s Configure the number of lines displayed on the terminal screen. Syntax terminal length screen-length To return to the default values, enter terminal no length. Parameters screen-length Enter a number of lines. Entering zero will cause the terminal to display without pausing.
Page 159
traceroute c e s View a packet’s path to a specific device. traceroute {host | vrf instance | ip-address | ipv6-address} Syntax Parameters host Enter the name of device. vrf instance (Optional) E-Series Only: Enter the keyword followed by the VRF Instance name. ip-address Enter the IP address of the device in dotted decimal format.
Page 160
Example Figure 5-63. Command Example: traceroute (IPv4) FTOS#traceroute www.force10networks.com Translating "www.force10networks.com"...domain server (10.11.0.1) [OK] Type Ctrl-C to abort. ------------------------------------------------------------------------------------------ Tracing the route to www.force10networks.com (10.11.84.18), 30 hops max, 40 byte packets ------------------------------------------------------------------------------------------ TTL Hostname Probe1 Probe2 Probe3 10.11.199.190 001.000 ms 001.000 ms 002.000 ms gwegress-sjc-02.force10networks.com (10.11.30.126) 005.000 ms...
Page 161
undebug all c e s Disable all debug operations on the system. undebug all Syntax Defaults No default behavior or values Command Modes EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command upload trace-log...
Page 162
virtual-ip Configure a virtual IP address for the active management interface. Virtual addresses can be configured both for IPv4 and IPv6 independently. Syntax virtual-ip {ipv4-address | ipv6-address} Parameters {ipv4-address | Enter the IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::) of the active management interface.
Page 163
Related save Save configurations created in BOOT_USER mode (BLI). Commands Usage The write memory command saves the running-configuration to the file labeled Information startup-configuration. When using a other than the startup-config not named LOCAL CONFIG FILE “startup-configuration” (for example, you used a specific file during the boot config command) the running-config is not saved to that file;...
Page 165
802.1ag Overview 802.1ag is available only on platform: Commands This chapter contains the following commands: • ccm disable • ccm transmit-interval • clear ethernet cfm traceroute-cache • database hold-time • disable • domain • ethernet cfm • ethernet cfm mep •...
Page 166
ccm disable Disable CCM. Syntax ccm disable Enter no ccm disable to enable CCM. Defaults Disabled Command Modes ECFM DOMAIN Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series ccm transmit-interval Configure the transmit interval (mandatory). The interval specified applies to all MEPs in the domain. Syntax ccm transmit-interval seconds Parameters...
Page 167
Syntax database hold-time minutes Parameters minutes Enter a hold-time. Range: 100-65535 minutes Defaults 100 minutes Command Modes ECFM DOMAIN Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series disable Disable Ethernet CFM without stopping the CFM process. disable Syntax Defaults...
Page 168
Specify whether the MEP is up or down facing. Up-MEP: monitors the forwarding path internal to an bridge on the customer or provider edge; on Dell Force10 systems the internal forwarding path is effectively the switch fabric and forwarding engine.
Page 169
Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series mep cross-check Enable cross-checking for an MEP. Syntax mep cross-check mep-id Parameters mep-id Enter the MEP ID Range: 1-8191 Defaults None Command Modes ECFM DOMAIN Command Version 8.3.7.0 Introduced on the S4810.
Page 170
Command Modes ETHERNET CFM Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series ping ethernet Send a Loopback message. Syntax ping ethernet domain [name l level] ma-name m a-name remote {dest-mep-id | mac-addr mac-address} source {src-mep-id | port interface} Parameters name level...
Page 171
Example FTOS# show ethernet cfm domain Domain Name: customer Level: 7 Total Service: 1 Services MA-Name VLAN CC-Int X-CHK Status My_MA enabled Domain Name: My_Domain Level: 6 Total Service: 1 Services MA-Name VLAN CC-Int X-CHK Status Your_MA enabled show ethernet cfm maintenance-points local Display configured MEPs and MIPs.
Page 172
expired Enter this keyword to view MEP entries that have expired due to connectivity failure. waiting Enter this keyword to display MEP entries waiting for response. Defaults None Command Modes EXEC Privilege Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series Example...
Page 173
Command Modes EXEC Privilege Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series Example FTOS#show ethernet cfm statistics Domain Name: Customer Domain Level: 7 MA Name: My_MA MPID: 300 CCMs: Transmitted: 1503 RcvdSeqErrors: LTRs: Unexpected Rcvd: LBRs: Received: Rcvd Out Of Order:...
Page 174
Syntax show ethernet cfm traceroute-cache Defaults None Command Modes EXEC Privilege Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series Example FTOS#show ethernet cfm traceroute-cache Traceroute to 00:01:e8:52:4a:f8 on Domain Customer2, Level 7, MA name Test2 with VLAN ------------------------------------------------------------------------------ Hops Host...
Page 175
Command Version 8.3.7.0 Introduced on the S4810. History Version 8.3.1.0 Introduced on S-Series traceroute cache size Set the size of the Link Trace Cache. Syntax traceroute cache size entries Parameters entries Enter the number of entries the Link Trace Cache can hold. Range: 1 - 4095 entries Defaults 100 entries...
Page 177
802.3ah Overview 802.3ah is available only on platform: Commands This chapter contains the following commands: • clear ethernet oam statistics • ethernet oam (enable/disable) • ethernet oam (parameters) • ethernet oam event-log size • ethernet oam link-monitor frame • ethernet oam link-monitor frame-seconds •...
Page 178
clear ethernet oam statistics Clear Link Layer OAM statistics. Syntax clear ethernet oam statistics interface interface Parameters interface gig 0/1 Enter the interface for which you want to clear statistics, for example Parameters None Defaults None Command Mode EXEC Privilege Command Version 8.4.1.0 Introduced on S-Series...
Page 179
ethernet oam event-log size Specify the size of the event log. Syntax ethernet oam event-log size entries Parameters entries Enter the number of entries for the log size. Range: 0 to 200. Default: 50. Defaults Command Mode CONFIGURATION Command Version 8.4.1.0 Introduced on S-Series History ethernet oam link-monitor frame...
Page 180
Parameters Specify the high threshold value for frame error seconds per time high milliseconds none period, or disable the high threshold. Range: 1-900 Default: None Specify the low threshold for frame error seconds per time period. low milliseconds Range: 1-900 Default: 1 window milliseconds Specify the time period for error second per time period condition.
Page 181
ethernet oam link-monitor supported Enable support for link performance monitoring on an interface. To disable support for link monitoring, enter the no ethernet oam link-monitor supported command. Support for link monitoring is enabled on an interface by default when you enable Ethernet OAM with ethernet oam command.
Page 182
Defaults Active Command Mode INTERFACE Command Version 8.4.1.0 Introduced on S-Series History ethernet oam remote-failure Block or disable an interface when a particular critical link event occurs. Syntax ethernet oam remote-failure critical-event dying-gasp link-fault action error-block-interface error-disable-interface Parameters critical-event An unspecified critical event occurred. dying-gasp An unrecoverable local failure condition occurred.
Page 183
ethernet oam remote-loopback (interface) Enable support for OAM loopback on an interface and configure a timeout value. Syntax ethernet oam remote-loopback { supported timeout seconds Parameters supported Start or stop a loopback operation on a peer. Specify the number of seconds that the local peer waits to receive a returned frame timeout seconds before considering a remote peer to be non-operational.
Page 184
Example FTOS# show ethernet oam discovery interface <interface-name> Local client __________ Administrative configurations: Mode:active Unidirection:not supported Link monitor:supported (on) Remote loopback:not supported MIB retrieval:not supported Mtu size:1500 Operational status: Port status:operational Loopback status:no loopback PDU permission:any PDU revision:1 Remote client ___________ MAC address:0030.88fe.87de Vendor(OUI):0x00 0x00 0x0C...
Page 185
Example FTOS# show ethernet oam statistics interface <interface-name> <interface-name> Counters: _________ Information OAMPDU Tx: 3439489 Information OAMPDU Rx: 9489 Unique Event Notification OAMPDU Tx: 0 Unique Event Notification OAMPDU x: 0 Duplicate Event Notification OAMPDU Tx: 0 Duplicate Event Notification OAMPDU Rx: 0 Loopback Control OAMPDU Tx: 0 Loopback Control OAMPDU Rx: 2 Variable Request OAMPDU Tx: 0...
Page 186
show ethernet oam status Display Link Layer OAM status per interface. Syntax show ethernet oam status interface interface Parameters interface gig 0/1 Enter the interface for which you want to display status, for example Defaults None Command Mode EXEC Privilege Command Version 8.4.1.0 Introduced on S-Series...
Page 187
show ethernet oam summary Display Link Layer OAM sessions. Syntax show ethernet oam summary Defaults None Command Mode EXEC Privilege Command Version 8.4.1.0 Introduced on S-Series History Example FTOS# show ethernet oam summary Output format : Symbols:* - Master Loopback State, # - Slave Loopback State Capability codes:L - Link Monitor, R - Remote Loopback U - Unidirection,V - Variable Retrieval LocalRemote...
Page 190
• If 802.1X authorization is enabled and all information from the RADIUS server is valid, the port is placed in the specified VLAN after authentication. • If port security is enabled on an 802.1X port with VLAN assignment, the port is placed in the RADIUS server assigned VLAN.
Page 191
dot1x auth-type mab-only Use only the host MAC address to authenticate a device with MAC authentication bypass (MAB). dot1x auth-type mab-only Syntax Defaults Disabled Command Modes INTERFACE Command Version 8.4.2.1 Introduced on the C-Series and S-Series History Usage The prerequisites for enabling MAB-only authentication on a port are: Information •...
Page 192
dot1x authentication (Interface) c e s Enable dot1x on an interface; dot1x must be enabled both globally and at the interface level. Syntax dot1x authentication To disable dot1x on an interface, use the no dot1x authentication command. Defaults Disabled Command Modes INTERFACE Command Version 7.6.1.0...
Page 193
dot1x auth-server c e s Configure the authentication server to RADIUS. dot1x auth-server radius Syntax Defaults No default behavior or values Command Modes CONFIGURATION Command Version 7.6.1.0 Introduced on C-Series and S-Series History Version 7.4.1.0 Introduced on E-Series dot1x guest-vlan c e s Configure a guest VLAN for limited access users or for devices that are not 802.1X capable.
Page 194
dot1x host-mode Enable single-host or multi-host authentication. Syntax dot1x host-mode {single-host | multi-host | multi-auth} Parameters single-host Enable single-host authentication. multi-host Enable multi-host authentication. multi-auth Enable multi-supplicant authentication. Defaults single-host Command Modes INTERFACE Command The multi-auth option was introduced on the C-Series and S-Series. Version 8.4.1.0 History The single-host and multi-host options were introduced on the C-Series,...
dot1x max-eap-req c e s Configure the maximum number of times an EAP (Extensive Authentication Protocol) request is transmitted before the session times out. Syntax dot1x max-eap-req number To return to the default, use the no dot1x max-eap-req command. Parameters number Enter the number of times an EAP request is transmitted before a session time-out.
Parameters force-authorized force-authorized Enter the keyword to forcibly authorize a port. auto auto Enter the keyword to authorize a port based on the 802.1X operation result. force-unauthorized force-unauthorized Enter the keyword to forcibly de-authorize a port. Defaults No default behavior or values Command Modes INTERFACE Command...
Page 197
Parameters interval interval seconds (Optional) Enter the keyword followed by the interval time, in seconds, after which re-authentication will be initiated. Range: 1 to 31536000 (1 year) Default: 3600 (1 hour) Defaults 3600 seconds (1 hour) Command Modes INTERFACE Command Version 7.6.1.0 Introduced on C-Series and S-Series History...
Page 198
dot1x server-timeout c e s Configure the amount of time after which exchanges with the server time out. Syntax dot1x server-timeout seconds To return to the default, use the no dot1x server-timeout command. Parameters seconds Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant.
Page 199
dot1x supplicant-timeout c e s Configure the amount of time after which exchanges with the supplicant time out. dot1x supplicant-timeout seconds Syntax To return to the default, use the no dot1x supplicant-timeout command. Parameters seconds Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant.
Page 200
show dot1x cos-mapping interface Display the CoS priority-mapping table provided by the RADIUS server and applied to authenticated supplicants on an 802.1X-enabled port. Syntax show dot1x cos-mapping interface interface [mac-address mac-address] Parameters interface Enter one of the following keywords and slot/port or number information: For a Gigabit Ethernet interface, enter the keyword GigabitEthernet •...
Page 201
show dot1x interface c e s Display the 802.1X configuration of an interface. show dot1x interface interface [mac-address mac-address] Syntax Parameters interface Enter one of the following keywords and slot/port or number information: For a Gigabit Ethernet interface, enter the keyword GigabitEthernet •...
Page 202
Figure 8-3. show dot1x interface mac-address Command Example FTOS#show dot1x interface gig 2/21 mac-address 00:00:01:00:07:00 802.1x information on Gi 2/21: ----------------------------- Dot1x Status: Enable Port Control: AUTO Re-Authentication: Disable Guest VLAN: Disable Guest VLAN id: NONE Auth-Fail VLAN: Disable Auth-Fail VLAN id: NONE Auth-Fail Max-Attempts: NONE...
Page 203
Figure 8-4. show dot1x interface (with Multi-Supplicant Authentication enabled) Example FTOS#show dot1x interface g 0/21 802.1x information on Gi 0/21: ----------------------------- Dot1x Status: Enable Port Control: AUTO Re-Authentication: Disable Guest VLAN: Enable Guest VLAN id: Auth-Fail VLAN: Disable Auth-Fail VLAN id: NONE Auth-Fail Max-Attempts: NONE...
Page 205
Access Control Lists (ACL) Overview c e s Access Control Lists (ACLs) are supported on platforms FTOS supports the following types of Access Control List (ACL), IP prefix list, and route map: • Commands Common to all ACL Types • Common IP ACL Commands •...
description c e s Configure a short text string describing the ACL. Syntax description text Parameters text Enter a text string up to 80 characters long. Defaults Not enabled. Command Modes CONFIGURATION-STANDARD-ACCESS-LIST CONFIGURATION-EXTENDED-ACCESS-LIST CONFIGURATION-MAC ACCESS LIST-STANDARD CONFIGURATION-MAC ACCESS LIST-EXTENDED Command Version 8.1.1.0 Introduced on E-Series ExaScale History...
Page 207
The following example shows the use of the remark command twice within the CONFIGURATION-STANDARD-ACCESS-LIST mode. Here, the same sequence number was used for the remark and for an associated ACL rule. The remark will precede the rule in the running-config because it is assumed that the remark is for the rule with the same sequence number, or the group of rules that follow the remark.
Page 208
platforms support Ingress IP ACLs only. The following commands allow you to clear, display, and assign IP ACL configurations. • access-class • clear counters ip access-group • ip access-group • show ip access-lists • show ip accounting access-list Note: See also Commands Common to all ACL Types.
ip access-group c e s Assign an IP access list (IP ACL) to an interface. ip access-group access-list-name {in | out} [implicit-permit] [vlan vlan-id] Syntax Parameters access-list-name Enter the name of a configured access list, up to 140 characters. Enter the keyword to apply the ACL to incoming traffic.
Page 210
show ip access-lists c e s Display all of the IP ACLs configured in the system, whether or not they are applied to an interface, and the count of matches/mismatches against each ACL entry displayed. Syntax show ip access-lists [access-list-name] [interface interface] [in |out] Parameters access-list-name Enter the name of a configured MAC ACL, up to 140 characters.
Page 211
Command Modes EXEC EXEC Privilege Command Version 7.6.1.0 Support added for S-Series History Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced Example Figure 9-3. Command Example: show ip accounting access-lists FTOS#show ip accounting access FILTER1 interface gig 1/6 Extended IP access list FILTER1 seq 5 deny ip any 191.1.0.0 /16 count (0x00 packets) seq 10 deny ip any 191.2.0.0 /16 order 4 seq 15 deny ip any 191.3.0.0 /16...
deny c e s Configure a filter to drop packets with a certain IP address. Syntax deny {source [mask] | any | host ip-address} [count [byte] | log] [dscp value] [order] [monitor] [fragments] To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number •...
Page 213
Usage The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Information Service” chapter of the FTOS Configuration Guide for more information. When you use the log option, CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’...
Page 214
Example Figure 9-4. Command Example: ip access-list standard FTOS(conf)#ip access-list standard TestList FTOS(config-std-nacl)# Related ip access-list extended Create an extended access list. Commands show config Display the current configuration. permit c e s Configure a filter to permit packets from a specific source IP address to leave the switch. Syntax permit {source [mask] | any | host ip-address} [count [byte] | log] [dscp value] [order] [monitor]...
Page 215
Command Version 8.3.1.0 Add DSCP value for ACL matching. History Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 monitor Added support for non-contiguous mask and added the...
Page 216
Command Version 8.2.1.0 Introduced on E-Series ExaScale (IPv6) History Version 8.1.1.0 Introduced on E-Series ExaScale (IPv4) Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.0...
Page 217
c e s Assign a sequence number to a deny or permit filter in an IP access list while creating the filter. seq sequence-number {deny | permit} {source [mask] | any | host ip-address}} [count Syntax [byte] | log] [dscp value] [order] [monitor] [fragments] Parameters sequence-number Enter a number from 0 to 4294967290.
Page 218
monitor Version 7.4.1.0 Added support for non-contiguous mask and added the option. Version 6.5.10 order Expanded to include the optional QoS priority for the ACL entry. Usage The monitor option is relevant in the context of flow-based monitoring only. See Chapter 44, Port Information Monitoring.
Page 219
• permit ether-type • permit icmp • permit tcp • permit udp • resequence access-list • resequence prefix-list ipv4 • seq arp • seq ether-type • Note: See also Commands Common to all ACL Types Common IP ACL Commands. deny c e s Configure a filter that drops IP packets meeting the filter criteria.
Page 220
order order (OPTIONAL) Enter the keyword to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
Page 221
deny arp Configure an egress filter that drops ARP packets on egress ACL supported line cards (see your line card documentation). Syntax deny arp {destination-mac-address mac-address-mask | any} vlan vlan-id {ip-address | any | opcode code-number} [count [byte] | log] [order] [monitor] To remove this filter, use one of the following: •...
Page 222
Command Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. History Version 8.1.1.0 Introduced on E-Series ExaScale monitor Version 7.4.1.0 Added option order Version 6.5.10 Expanded to include the optional QoS priority for the ACL entry. Usage The order option is relevant in the context of the Policy QoS feature only.
Page 223
vlan vlan-id vlan Enter the keyword followed by the VLAN ID to filter traffic associated with a specific VLAN. Range: 1 to 4094, 1-2094 for ExaScale (can used IDs 1-4094) To filter all VLAN traffic specify VLAN 1. source-mac-address Enter a MAC address and mask in the nn:nn:nn:nn:nn format. mac-address-mask For the MAC address mask, specify which bits in the MAC address must match.
Page 224
You cannot include IP, TCP or UDP (Layer 3) filters in an ACL configured with ARP or Ether-type (Layer 2) filters. Apply Layer 2 ACLs (ARP and Ether-type) to Layer 2 interfaces only. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value.
Page 225
Defaults Not configured Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Command dscp Version 8.3.1.0 Added keyword. History Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale monitor Version 7.4.1.0 Added support for non-contiguous mask and added the option.
Page 226
Table 9-2. ICMP Message Type Keywords Keyword ICMP Message Type Name mask-reply Mask replies mask-request Mask requests mobile-redirect Mobile host redirect net-redirect Network redirect net-tos-redirect Network redirect for TOS net-tos-unreachable Network unreachable for TOS net-unreachable Network unreachable network-unknown Network unknown no-room-for-option Parameter required but no room option-missing...
Page 227
• Use the no deny tcp {source mask | any | host ip-address} {destination mask | any | host ip-address} command. Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous.
Page 228
monitor monitor (OPTIONAL) Enter the keyword when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule will be applied to the monitored interface. For details, see the section “Flow-based Monitoring”...
Page 229
For example, an ACL rule with TCP port range 4000 - 8000 uses 8 entries in the CAM: Rule# Data Mask From #Covered 0000111110100000 1111111111100000 4000 4031 0000111111000000 1111111111000000 4032 4095 0001000000000000 1111100000000000 4096 6143 2048 0001100000000000 1111110000000000 6144 7167 1024 0001110000000000 1111111000000000 7168 7679...
operator (OPTIONAL) Enter one of the following logical operand: • = equal to • = not equal to • = greater than • = less than range • = inclusive range of ports port port (OPTIONAL) Enter the application layer port number. Enter two port numbers if range using the logical operand.
Page 231
The C-Series and S-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. The monitor option is relevant in the context of flow-based monitoring only. See the Chapter 44, Port Monitoring. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value.
Page 232
Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced on E-Series Usage...
Page 233
byte byte (OPTIONAL) Enter the keyword to count bytes processed by the filter. (OPTIONAL, E-Series only) Enter the keyword to enter ACL matches in the log. dscp dcsp (OPTIONAL) Enter the keyword to match to the IP DSCP values. order order (OPTIONAL) Enter the keyword to specify the QoS order of priority...
Page 234
permit arp Configure a filter that forwards ARP packets meeting this criteria.This command is supported only on 12-port GE line cards with SFP optics; refer to your line card documentation for specifications. Syntax permit arp {destination-mac-address mac-address-mask | any} vlan vlan-id {ip-address | any | opcode code-number} [count [byte] | log] [order] [monitor] [fragments] To remove this filter, use one of the following: •...
Page 235
Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Command Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. History Version 8.1.1.0 Introduced on E-Series ExaScale monitor Version 7.4.1.0 Added support for non-contiguous mask and added the option. order Version 6.5.10 Expanded to include the optional QoS priority for the ACL entry.
Page 236
vlan vlan-id vlan Enter the keyword followed by the VLAN ID to filter traffic associated with a specific VLAN. Range: 1 to 4094, 1-2094 for ExaScale (can used IDs 1-4094) To filter all VLAN traffic specify VLAN 1. source-mac-address Enter a MAC address and mask in the nn:nn:nn:nn:nn format. mac-address-mask For the MAC address mask, specify which bits in the MAC address must match.
Page 237
permit icmp Configure a filter to allow all or specific ICMP messages. permit icmp {source mask | any | host ip-address} {destination mask | any | host Syntax ip-address} [dscp] [message-type] [count [byte] | log] [order] [monitor] [fragments] To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number •...
Page 238
monitor Version 7.4.1.0 Added support for non-contiguous mask and added the option. Version 6.5.10 order Expanded to include the optional QoS priority for the ACL entry. Usage The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Information Service”...
Page 239
operator (OPTIONAL) Enter one of the following logical operand: • = equal to • = not equal to • = greater than • = less than range port • = inclusive range of ports (you must specify two port for the parameter.) port port Enter the application layer port number.
Page 240
Usage The order option is relevant in the context of the Policy QoS feature only. See the Quality of Service Information chapter of the FTOS Configuration Guide for more information. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value.
Page 241
permit udp c e s Configure a filter to pass UDP packets meeting the filter criteria. permit udp {source mask | any | host ip-address} [operator port [port]] {destination mask | Syntax any | host ip-address} [dscp] [operator port [port]] [count [byte] | log] [order] [monitor] [fragments] To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number...
Page 242
Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Command dscp Version 8.3.1.0 Added keyword. History Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 monitor Added support for non-contiguous mask and added the...
Page 243
Related ip access-list extended Configure an extended ACL. Commands permit Assign a permit filter for IP packets. permit tcp Assign a permit filter for TCP packets. resequence access-list c e s Re-assign sequence numbers to entries of an existing access-list. Syntax resequence access-list {ipv4 | mac} {access-list-name StartingSeqNum Step-to-Increment}...
Page 244
Parameters prefix-list-name Enter the name of configured prefix list, up to 140 characters long. StartingSeqNum Enter the starting sequence number to resequence. Range: 0 – 65535 Step-to-Increment Enter the step to increment the sequence number. Range: 1 – 65535 Defaults No default values or behavior Command Modes EXEC...
Page 245
vlan vlan-id vlan Enter the keyword followed by the VLAN ID to filter traffic associated with a specific VLAN. Range: 1 to 4094, 1-2094 for ExaScale (can used IDs 1-4094) To filter all VLAN traffic specify VLAN 1. ip-address Enter an IP address in dotted decimal format (A.B.C.D) as the target IP address of the ARP.
Page 246
• If the sequence-number is configured, then the sequence-number is used as a tie breaker for rules with the same order. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. You cannot include IP, TCP or UDP (Layer 3) filters in an ACL configured with ARP or Ether-type (Layer 2) filters.
Page 247
order order (OPTIONAL) Enter the keyword to specify the QoS priority for the ACL entry. Range: 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
Page 248
c e s Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter. Syntax seq sequence-number {deny | permit} {ip-protocol-number | icmp | ip | tcp | udp} {source mask | any | host ip-address} {destination mask | any | host ip-address} [operator port [port]] [count [byte] | log] [dscp value] [order] [monitor] [fragments] Parameters sequence-number...
Page 249
(OPTIONAL, E-Series only) Enter the keyword to enter ACL matches in the log. Supported on Jumbo-enabled line cards only. dscp dcsp (OPTIONAL) Enter the keyword to match to the IP DCSCP values. order order (OPTIONAL) Enter the keyword to specify the QoS priority for the ACL entry.
Page 250
If the sequence-number is configured, then the sequence-number is used as a tie breaker for rules with the same order. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Related deny Configure a filter to drop packets.
Page 251
mac access-group c e s Apply a MAC ACL to traffic entering or exiting an interface. mac access-group access-list-name {in [vlan vlan-range] | out} Syntax Parameters access-list-name Enter the name of a configured MAC access list, up to 140 characters. vlan vlan vlan-range (OPTIONAL) Enter the keyword...
Page 252
Parameters access-list-name Enter the name of a configured MAC ACL, up to 140 characters. interface interface interface Enter the keyword followed by the one of the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 253
Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Example Figure 9-6. Command Example: show mac accounting access-list FTOS#show mac accounting access-list mac-ext interface po 1 Extended mac access-list mac-ext on GigabitEthernet 0/11 seq 5 permit host 00:00:00:00:00:11 host 00:00:00:00:00:19 count (393794576 packets)
Page 254
• Use the no deny {any | mac-source-address mac-source-address-mask} command. Parameters Enter the keyword to specify that all traffic is subject to the filter. mac-source-address Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-source-address-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match).
Page 255
mac access-list standard c e s Name a new or existing MAC access control list (MAC ACL) and enter the MAC ACCESS LIST mode to configure a standard MAC ACL. See Commands Common to all ACL Types Common MAC Access List Commands.
Page 256
To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number • Use the no permit {any | mac-source-address mac-source-address-mask} command. • Parameters Enter the keyword to forward all packets received with a MAC address.
Page 257
c e s Assign a sequence number to a deny or permit filter in a MAC access list while creating the filter. seq sequence-number {deny | permit} {any | mac-source-address Syntax [mac-source-address-mask]} [count [byte]] [log] [monitor] Parameters sequence-number Enter a number between 0 and 65535. deny deny Enter the keyword...
Page 258
Extended MAC ACL Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. platforms support Ingress MAC ACLs only. The following commands configure Extended MAC ACLs. • deny • mac access-list extended •...
Page 259
ethertype operator (OPTIONAL) To filter based on protocol type, enter one of the following Ethertypes: • - is the Ethernet II frame format. • - is the IEEE 802.3 frame format. snap • - is the IEEE 802.3 SNAP frame format. count count (OPTIONAL) Enter the keyword...
Page 260
Command Modes CONFIGURATION Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series...
Page 261
Parameters Enter the keyword to forward all packets. host host Enter the keyword followed by a MAC address to forward packets with that host address. mac-source-address Enter the source MAC address in nn:nn:nn:nn:nn:nn format. mac-source-address-mask Specify which bits in the MAC address must be matched. The MAC ACL supports an inverse mask, therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly.
Page 262
Related deny Configure a filter to drop traffic based on the MAC address. Commands Configure a filter with specific sequence numbers. c e s Configure a filter with a specific sequence number. Syntax seq sequence-number {deny | permit} {any | host mac-address | mac-source-address mac-source-address-mask} {any | host mac-address | mac-destination-address mac-destination-address-mask} [ethertype operator] [count [byte]] [log] [monitor] Parameters...
Page 263
Command Modes CONFIGURATION-MAC ACCESS LIST-STANDARD Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series monitor Version 7.4.1.0 Added option pre-Version 6.1.1.0 Introduced for E-Series Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value.
Page 264
Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Default...
Page 265
ip prefix-list c e s Enter the PREFIX-LIST mode and configure a prefix list. ip prefix-list prefix-name Syntax Parameters prefix-name Enter a string up to 16 characters long as the name of the prefix list, up to 140 characters long. Command Modes CONFIGURATION Command...
Page 266
Usage Sequence numbers for this filter are automatically assigned starting at sequence number 5. Information If the options ge or le are not used, only packets with an exact match to the prefix are filtered. Related deny Configure a filter to drop packets. Commands Configure a drop or permit filter with a specified sequence number.
Page 267
show config c e s the current PREFIX-LIST configurations. Display show config Syntax Command Modes PREFIX-LIST Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Example Figure 9-9.
Page 268
Example Figure 9-10. Command Example: show ip prefix-list detail FTOS#show ip prefix-list detail Prefix-list with the last deletion/insertion: filter_ospf ip prefix-list filter_in: count: 3, range entries: 3, sequences: 5 - 10 seq 5 deny 1.102.0.0/16 le 32 (hit count: 0) seq 6 deny 2.1.0.0/16 ge 23 (hit count: 0) seq 10 permit 0.0.0.0/0 le 32 (hit count: 0) ip prefix-list filter_ospf:...
Page 269
Route Map Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. The following commands allow you to configure route maps and their redistribution criteria. • continue • description • match as-path •...
Page 270
Command Modes ROUTE-MAP Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.0 Introduced Usage The continue feature allows movement from one route-map entry to a specific route-map entry (the Information sequence number).
Page 271
Parameters description Enter a description to identify the route map (80 characters maximum). Defaults No default behavior or values Command Modes ROUTE-MAP Command Version 8.1.1.0 Introduced on E-Series ExaScale History pre-Version 7.7.1.0 Introduced Related route-map Enable a route map Commands match as-path c e s Configure a filter to match routes that have a certain AS number in their BGP path.
Page 272
Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Related ip community-list Configure an Community Access list. Commands set community Specify a COMMUNITY attribute. neighbor send-community Send COMMUNITY attribute to peer or peer group.
Page 273
match route-type Redistribute routes that match a route type. match tag Redistribute routes that match a specific tag. match ip address c e s Configure a filter to match routes based on IP addresses specified in an access list. Syntax match ip address prefix-list-name Parameters prefix-list-name...
Page 274
Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Related...
Page 275
match metric c e s Configure a filter to match on a specified value. match metric metric-value Syntax Parameters metric-value Enter a value to match. Range: zero (0) to 4294967295. Defaults Not configured. Command Modes ROUTE-MAP Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Support added for S-Series...
Page 276
match route-type c e s Configure a filter to match routes based on the how the route is defined. Syntax match route-type {external [type-1 | type-2] | internal | level-1 | level-2 | local} Parameters external type-1| type-2 external type-1 type-2 Enter the keyword followed by either...
Page 277
Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Related match interface Redistribute routes that match the next-hop interface. Commands match ip address Redistribute routes that match an IP address. match ip next-hop Redistribute routes that match the next-hop IP address. match ip route-source Redistribute routes that match routes advertised by other routers.
Page 278
Prior to 7.8.1.0, names are up to 16 characters long. Related show config Display the current configuration. Commands set as-path c e s Configure a filter to modify the AS path for BGP routes. Syntax set as-path prepend as-number [... as-number] Parameters prepend as-number prepend...
Page 279
Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Related set level Specify the OSPF area for route redistribution. Commands set metric Specify the metric value assigned to redistributed routes. set metric-type Specify the metric type assigned to redistributed routes. set tag Specify the tag assigned to redistributed routes.
Page 280
set community c e s Allows you to assign a BGP COMMUNITY attribute. Syntax set community {community-number | local-as | no-advertise | no-export | none} [additive] To delete a BGP COMMUNITY attribute assignment, use the no set community {community-number | local-as | no-advertise | no-export | none} command. Parameters community-number Enter the community number in AA:NN format where AA is the AS number (2...
Page 281
set level c e s Configure a filter to specify the IS-IS level or OSPF area to which matched routes are redistributed. set level {backbone | level-1 | level-1-2 | level-2 | stub-area} Syntax Parameters backbone backbone Enter the keyword to redistribute matched routes to the OSPF backbone area (area 0.0.0.0).
Page 282
Usage set local-preference command changes the LOCAL_PREF attribute for routes meeting the Information bgp default route map criteria. To change the LOCAL_PREF for all routes, use the local-preference command. Related bgp default local-preference Change default LOCAL_PREF attribute for all routes. Commands set metric c e s...
Page 283
Command Modes ROUTE-MAP Command Version 8.3.1.0 internal Implemented keyword History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Related set automatic-tag Compute the tag value of the route. Commands set level Specify the OSPF area for route redistribution.
Page 284
set origin c e s Configure a filter to manipulate the BGP ORIGIN attribute. Syntax set origin {igp | egp | incomplete} Parameters Enter the keyword to set routes originating from outside the local AS. Enter the keyword to set routes originating within the same AS. incomplete incomplete Enter the keyword...
Page 285
set weight c e s Configure a filter to add a non-RFC compliant attribute to the BGP route to assist with route selection. set weight weight Syntax Parameters weight Enter a number as the weight to be used by the route meeting the route map specification. Routes with a higher weight are preferred when there are multiple routes to the same destination.
Page 286
Parameters map-name (OPTIONAL) Enter the name of a configured route map, up to 140 characters. Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long.
Page 287
deny Create a filter to drop routes that match the route’s AS-PATH attribute. Use regular expressions to identify which routes are affected by the filter. Syntax deny as-regular-expression Parameters as-regular-expression Enter a regular expression to match BGP AS-PATH attributes. Use one or a combination of the following: •...
Page 288
Example Figure 9-15. Command Example: ip as-path access-list FTOS(conf)#ip as-path access-list TestPath FTOS(config-as-path)# Usage Use the match as-path neighbor filter-list commands to apply the AS-PATH ACL to BGP Information routes. Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0 Increased name string to accept up to 140 characters.
Page 289
show config the current configuration. Display show config Syntax Command Mode AS-PATH ACL Command Version 8.1.1.0 Introduced on E-Series ExaScale History pre-Version 6.1.1.0 Introduced for E-Series Example Figure 9-16. Command Example: show config (AS-PATH ACL) FTOS(config-as-path)#show config ip as-path access-list snickers deny .3 FTOS(config-as-path)# show ip as-path-access-lists...
Page 290
• ip community-list • permit • show config • show ip community-lists deny Create a filter to drop routes matching a BGP COMMUNITY number. Syntax deny {community-number | local-AS | no-advertise | no-export | quote-regexp regular-expressions-list | regexp regular-expression} Parameters community-number Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system.
Page 291
ip community-list Enter COMMUNITY-LIST mode and create an IP community-list for BGP. ip community-list comm-list-name Syntax To delete a community-list, use the no ip community-list comm-list-name command. Parameters comm-list-name Enter a text string as the name of the community-list, up to 140 characters. Command Modes CONFIGURATION Example...
Page 292
no-export no-export Enter the keywords to drop all routes containing the well-known community attribute of NO_EXPORT. All routes with the NO_EXPORT (0xFFFFFF01) community attribute must not be advertised outside a BGP confederation boundary. regexp regexp Enter the keyword followed by a regular expression. Use one or a regular-expression combination of the following: •...
Page 293
show ip community-lists configured IP community lists in alphabetic order. Display Syntax show ip community-lists [name] Parameters name (OPTIONAL) Enter the name of the standard or extended IP community list, up to 140 characters. Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History...
Page 295
ACL VLAN Group Overview The ACL VLAN Group feature is available only on the E-Series, as indicated by this symbol under each command heading: Since VLAN ACLs exist as multiple ACLs in the CAM, the size of the ACLs can be limited in the CAM.
Page 296
Command Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 History characters long. Version 6.3.1.0 Introduced on E-Series Usage You can have up to 8 different ACL VLAN groups at any given time. Information Related show acl-vlan-group...
Page 297
member vlan Add VLAN member(s) to an ACL VLAN group. member vlan {VLAN-range} Syntax Parameters VLAN-range Enter the comma separated VLAN ID set. For example, 1-10,400-410,500 Defaults No default behavior or values Command Modes CONFIGURATION (conf-acl-vl-grp) Command Version 6.3.1.0 Introduced on E-Series History Usage At a maximum, there can be only 32 VLAN members in all ACL VLAN groups.
Page 298
Figure 10-1. Command Example: show acl-vlan-group FTOS#show acl-vlan-group Group Name Egress IP Acl Vlan Members TestGroupSeventeenTwenty SpecialAccessOnlyExperts 100,200,300 CustomerNumberIdentifica AnyEmployeeCustomerEleve 2-10,99 HostGroup Group5 1,1000 FTOS# Truncated Group and Access List Names Figure 10-2 shows the table style display when using the show acl-vlan-group group-name option. Note that the access list name is truncated.
Page 299
EXEC Privilege Command Version 7.8.1.0 Introduced on E-Series History Usage Notes The output for this command is shown in a line-by-line format. This allows the ACL-VLAN-Group names (or the Access List Group Names) to display in their entirety. Example Figure 10-4. Command Example: show acl-clan-group FTOS(conf-acl-vl-grp)#show config acl-vlan-group group1 description Acl Vlan Group1...
Page 300
Command Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 History characters long. Version 6.3.1.0 Introduced on E-Series Example Figure 10-6. show running-config acl-vlan-group Command Example Output FTOS#show running-config acl-vlan-group acl-vlan-group group1 description Acl Vlan Group1 member vlan 1-10,400-410,500...
Page 301
Bidirectional Forwarding Detection (BFD) Overview Bidirectional Forwarding Detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The FTOS implementation is based on the standards specified in the IETF Draft draft-ietf-bfd-base-03 and supports BFD on all Layer 3 physical interfaces including VLAN interfaces and port-channels.
Page 302
bfd all-neighbors Enable BFD sessions with all neighbors discovered by Layer 3 protocols IS-IS, OSPF, or BGP on router interfaces, and (optionally) reconfigure the default timer values. Syntax bfd all-neighbors [interval min_rx multiplier role {active | passive}] interval min_rx value Parameters interval milliseconds (OPTIONAL) Enter this keyword to specify non-default BFD session...
Page 303
• Neighbors that have been explicitly enabled or disabled for a BFD session with the bfd neighbor neighbor bfd disable commands in ROUTER BGP mode do not inherit the global BFD enable/ disable values configured with the bfd all-neighbors command or configured for the peer group to which a neighbor belongs.
Page 304
bfd enable (Interface) Enable BFD on an interface. Syntax bfd enable Defaults BFD is enabled on all interfaces when you enable BFD from CONFIGURATION mode. Command Modes INTERFACE Command Version 8.2.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series bfd interval...
Page 305
Example Figure 11-1. bfd interval Command Example FTOS(conf-if-gi-0/3)#bfd interval 250 min_rx 300 multiplier 4 role passive FTOS(conf-if-gi-0/3)# bfd neighbor Establish a BFD session with a neighbor. Syntax bfd neighbor ip-address Parameters ip-address Enter the IP address of the neighbor in dotted decimal format (A.B.C.D). Defaults None Command Modes...
Page 306
clear bfd counters Clear all BFD counters, or counters for a particular interface. Syntax clear bfd counters [interface] Parameters interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: gigabitethernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 307
debug bfd Enable BFD debugging. Syntax debug bfd {detail | event | packet} {all | interface} [mode] [count number] Parameters detail (OPTIONAL) Enter this keyword to display detailed information about BFD packets. event mode (OPTIONAL) Enter this keyword to display information about BFD state. The option is not available with this option.
Page 308
ip route bfd Enable BFD for all neighbors configured through static routes. Syntax ip route bfd [interval min_rx multiplier role {active | passive}] interval min_rx value Parameters interval milliseconds (OPTIONAL) Enter this keyword to specify non-default BFD session parameters beginning with the transmission interval. Range:50-1000 Default:100 min_rx milliseconds...
Page 309
min_rx milliseconds Enter this keyword to specify the minimum rate at which the local system would like to receive control packets from the remote system. Range:50-100 Default:100 multiplier value Enter this keyword to specify the number of packets that must be missed in order to declare a session down.
Page 310
Usage When you enable a BFD session with a specified BGP neighbor or peer group using the bfd neighbor Information command, the default BFD session parameters are used (interval: 100 milliseconds, min_rx: 100 milliseconds, multiplier: 3 packets, and role: active) if no parameters have been specified with the command.
Page 311
show bfd counters Display BFD counter information. Syntax show bfd counters [bgp | isis | ospf | vrrp | static-route] [interface] Parameters interface Enter one of the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
Page 312
Example Figure 11-2. show bfd counters Command Example FTOS#show bfd counters Interface GigabitEthernet 1/3 FTOS# show bfd neighbors Display BFD neighbor information on all interfaces or a specified interface. Syntax show bfd neighbors interface [detail] Parameters interface Enter one of the following keywords and slot/port or number information: •...
Page 313
Example Figure 11-3. show bfd neighbors Command FTOS#show bfd neighbors - Active session role Ad Dn - Admin Down - CLI - ISIS - OSPF - Static Route (RTM) LocalAddr RemoteAddr Interface State Rx-int Tx-int Mult Clients * 10.1.3.2 10.1.3.1 Gi 1/3 FTOS# Example...
Page 314
vrrp bfd Establish a VRRP BFD session. Syntax vrrp bfd {all-neighbors | neighbor } [interval min_rx multiplier ip-address interval min_rx role {active | passive}] value Parameters all-neighbors Establish BFD sessions with all BFD neighbors on an interface. neighbor Enter the IP address of the BFD neighbor. ip-address interval milliseconds (OPTIONAL) Enter this keyword to specify non-default BFD session...
Page 315
Border Gateway Protocol IPv4 (BGPv4) Overview BGPv4 is supported as shown in the following table. FTOS version Platform support 8.1.1.0 E-Series ExaScale 7.8.1.0 S-Series 7.7.1.0. C-Series pre-7.7.1.0 E-Series TeraScale For detailed information on configuring BGP, refer to the BGP chapter in the FTOS Configuration Guide.
Page 316
The following commands enable you to configure and enable BGP. • address-family • aggregate-address • bgp always-compare-med • bgp asnotation • bgp bestpath as-path ignore • bgp bestpath med confed • bgp bestpath med missing-as-best • bgp bestpath router-id ignore •...
Page 318
• show ip bgp paths community • show ip bgp peer-group • show ip bgp regexp • show ip bgp summary • show running-config bgp • timers bgp address-family c e s Enable the IPv4 multicast or the IPv6 address family. Syntax address-family [ipv4 multicast| ipv6unicast] Parameters...
Page 319
Command Modes ROUTER BGP ADDRESS FAMILY ROUTER BGP ADDRESS FAMILY IPv6 Usage At least one of the routes included in the aggregate address must be in the BGP routing table for the Information configured aggregate to become active. Do not add the as-set parameter to the aggregate, if routes within the aggregate are constantly changing as the aggregate will flap to keep track of the changes in the AS_PATH.
Page 320
bgp asnotation c e s Enables you to implement a method for AS Number representation in the CLI. Syntax bgp asnotation [asplain | asdot+ | asdot] To disable a dot or dot+ representation and return to ASPLAIN, enter no bgp asnotation. Defaults asplain Command Modes...
Page 321
bgp bestpath as-path ignore c e s Ignore the AS PATH in BGP best path calculations. bgp bestpath as-path ignore Syntax To return to the default, enter no bgp bestpath as-path ignore. Defaults Disabled (that is, the software considers the AS_PATH when choosing a route as best). Command Modes ROUTER BGP Usage...
Page 322
Usage The MED is a 4-Byte unsigned integer value and the default behavior is to assume a missing MED as Information 4294967295. This command causes a missing MED to be treated as 0. During the path selection, paths with a lower MED are preferred over those with a higher MED. Command Version 7.8.1.0 Introduced support on S-Series...
Page 323
bgp cluster-id c e s Assign a cluster ID to a BGP cluster with more than one route reflector. bgp cluster-id {ip-address | number} Syntax To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command. Parameters ip-address Enter an IP address as the route reflector cluster ID.
Page 324
The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. The next hop, MED, and local preference information is preserved throughout the confederation. FTOS accepts confederation EBGP peers without a LOCAL_PREF attribute.
Page 325
bgp dampening c e s Enable BGP route dampening and configure the dampening parameters. bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] Syntax To disable route dampening, use the no bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] command. Parameters half-life (OPTIONAL) Enter the number of minutes after which the Penalty is decreased.
Page 326
bgp default local-preference c e s Change the default local preference value for routes exchanged between internal BGP peers. Syntax bgp default local-preference value To return to the default value, enter no bgp default local-preference. Parameters value Enter a number to assign to routes as the degree of preference for those routes. When routes are compared, the higher the degree of preference or local preference value, the more the route is preferred.
Page 327
Version 7.7.1.0 Introduced support for C-Series Version 7.4.1.0 Introduced bgp fast-external-fallover c e s Enable the fast external fallover feature, which immediately resets the BGP session if a link to a directly connected external peer fails. Syntax bgp fast-external-fallover To disable fast external fallover, enter no bgp fast-external-fallover. Defaults Enabled.
Page 328
bgp graceful-restart c e s Enable graceful restart on a BGP neighbor, a BGP node, or designate a local router to support graceful restart as a receiver only. Syntax bgp graceful-restart [restart-time seconds] [stale-path-time seconds] [role receiver-only] To return to the default, enter the no bgp graceful-restart command. Parameters restart-time seconds restart-time...
Page 329
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series bgp non-deterministic-med c e s Compare MEDs of paths from different Autonomous Systems. Syntax bgp non-deterministic-med To return to the default, enter no bgp non-deterministic-med. Defaults Disabled (that is, paths/routes for the same destination but from different ASs will not have their MEDs compared).
Page 330
Related clear ip bgp ipv4 unicast soft Clear and reapply policies for IPv4 routes without resetting the TCP Commands connection; that is, perform BGP soft reconfiguration. Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced bgp regex-eval-optz-disable...
Page 331
Example Figure 12-2. Command Example: no bgp regex-eval-optz-disable (conf-router_bgp)#no bgp regex-eval-optz-disable (conf-router_bgp)#do show ip protocols Routing Protocol is "ospf 22222" Router ID is 2.2.2.2 Area Routing for Networks 10.10.10.0/00 Routing Protocol is "bgp 1" Cluster Id is set to 10.10.10.0 Router Id is set to 10.10.10.0 Fast-external-fallover enabled Regular expression evaluation optimization enabled...
Page 332
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series bgp soft-reconfig-backup c e s Use this command only when route-refresh is not negotiated between peers to avoid having a peer resend BGP updates. Syntax bgp soft-reconfig-backup To return to the default setting, use the no bgp soft-reconfig-backup command.
Page 333
Related capture bgp-pdu max-buffer-size Specify a size for the capture buffer. Commands show capture bgp-pdu neighbor Display BGP packet capture information Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.5.1.0 Introduced capture bgp-pdu max-buffer-size c e s Set the size of the BGP packet capture buffer.
Page 334
soft Reapply only inbound policies. Note: If you enter , without an option, both inbound and outbound policies are reset. soft Reapply only outbound policies. Note: If you enter , without an option, both inbound and outbound policies are reset. Command Modes EXEC Privilege Command...
Page 335
clear ip bgp flap-statistics c e s Clear BGP flap statistics, which includes number of flaps and the time of the last flap. clear ip bgp flap-statistics [ip-address mask | filter-list as-path-name | regexp Syntax regular-expression] Parameters ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and the prefix mask in slash format (/x) to reset only that prefix.
Page 336
Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group peer-group Enter the keyword followed by the name of the peer group. peer-group-name (OPTIONAL) Enter the keyword to view only information on inbound BGP routes. (OPTIONAL) Enter the keyword to view only information on outbound BGP routes.
Page 337
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series debug ip bgp events c e s Display information on local BGP state changes and other BGP events. Syntax debug ip bgp [ip-address | peer-group peer-group-name] events [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] events command.
Page 338
Usage Enter no debug ip bgp command to remove all configured debug commands for BGP. Information Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series debug ip bgp notifications c e s Enables you to view information about BGP notifications received from neighbors. Syntax debug ip bgp [ip-address | peer-group peer-group-name] notifications [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name]...
Page 339
Command Modes EXEC Privilege Usage This command turns on BGP soft-reconfiguration inbound debugging for IPv4 unicast routes. If no Information neighbor is specified, debug is turned on for all neighbors. Command Version 8.4.1.0 Introduced support for IPv4 multicast and IPv6 unicast routes History Version 7.8.1.0 Introduced support on S-Series...
Page 340
Defaults Command Modes ROUTER BGP Usage default-metric command in BGP sets the value of the BGP MULTI_EXIT_DISC (MED) attribute Information for redistributed routes only. Related bgp always-compare-med Enable comparison of all BGP MED attributes. Commands redistribute Redistribute routes from other routing protocols into BGP. Command Version 7.8.1.0 Introduced support on S-Series...
Page 341
= 20; internal-distance = 200; local-distance = 200. Command Modes ROUTER BGP Caution: Dell Force10 recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. Usage The higher the administrative distance assigned to a route means that your confidence in that route is Information low.
Page 342
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series neighbor activate c e s This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI (Address Family Identifier/Subsequent Address Family Identifier). Syntax neighbor [ip-address | peer-group-name] activate To disable, use the no neighbor [ip-address | peer-group-name] activate command.
Page 343
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series neighbor advertisement-start c e s Set the minimum interval before starting to send BGP routing updates. Syntax neighbor {ip-address} advertisement-start seconds To return to the default value, use the no neighbor {ip-address} advertisement-start command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
Page 344
neighbor default-originate c e s Inject the default route to a BGP peer or neighbor. Syntax neighbor {ip-address | peer-group-name} default-originate [route-map map-name] To remove a default route, use the no neighbor {ip-address | peer-group-name} default-originate command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group.
Page 345
neighbor distribute-list c e s Distribute BGP information via an established prefix list. neighbor {ip-address | peer-group-name} distribute-list prefix-list-name {in | out} Syntax To delete a neighbor distribution list, use the no neighbor {ip-address | peer-group-name} distribute-list prefix-list-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
Page 346
Command Modes ROUTER BGP Usage To prevent loops, the neighbor ebgp-multihop command will not install default routes of the multihop Information peer. Networks not directly connected are not considered valid for best path selection. Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series...
Page 347
as-path-name Enter the name of an established AS-PATH access list (up to 140 characters). If the AS-PATH access list is not configured, the default is permit (allow routes). Enter the keyword to filter inbound BGP routes. Enter the keyword to filter outbound BGP routes. Defaults Not configured.
Page 348
Usage This feature is advertised to BGP neighbors through a capability advertisement. In receiver only mode, Information BGP saves the advertised routes of peers that support this capability when they restart. Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series neighbor local-as c e s...
Page 349
Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. maximum Enter a number as the maximum number of prefixes allowed for this BGP router. Range: 1 to 4294967295. threshold maximum (OPTIONAL) Enter a number to be used as a percentage of the...
Page 350
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series neighbor password c e s Enable Message Digest 5 (MD5) authentication on the TCP connection between two neighbors. Syntax neighbor {ip-address | peer-group-name} password [encryption-type] password To delete a password, use the no neighbor {ip-address | peer-group-name} password command.
Page 351
neighbor peer-group (assigning peers) c e s Enables you to assign one peer to a existing peer group. neighbor ip-address peer-group peer-group-name Syntax To delete a peer from a peer group, use the no neighbor ip-address peer-group peer-group-name command. Parameters ip-address Enter the IP address of the router to be included in the peer group.
Page 352
To delete a peer group, use the no neighbor peer-group-name peer-group command. Parameters peer-group-name Enter a text string up to 16 characters long as the name of the peer group. Defaults Not configured. Command Modes ROUTER BGP Usage When a peer group is created, it is disabled (shut mode). Information Related neighbor peer-group (assigning peers)
Page 353
Related neighbor soft-reconfiguration inbound Assign a subnet to a dynamically-configured BGP neighbor. Commands Command Version 8.4.2.0 Added support for the match-af keyword History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor remote-as c e s Create and specify the remote peer to the BGP neighbor.
Page 354
Parameters ip-address Enter the IP address of the neighbor to remove the private AS numbers. peer-group-name Enter the name of the peer group to remove the private AS numbers Defaults Disabled (that is, private AS number are not removed). Command Modes ROUTER BGP Usage Applies to EBGP neighbors only.
Page 355
If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. Command Version 7.8.1.0 Introduced support on S-Series...
Page 356
neighbor route-reflector-client c e s Configure the router as a route reflector and the specified neighbors as members of the cluster. Syntax neighbor {ip-address | peer-group-name} route-reflector-client To remove one or more neighbors from a cluster, use the no neighbor {ip-address | peer-group-name} route-reflector-client command.
Page 357
neighbor send-community c e s Send a COMMUNITY attribute to a BGP neighbor or peer group. A COMMUNITY attribute indicates that all routes with that attribute belong to the same community grouping. Syntax neighbor {ip-address | peer-group-name} send-community To disable sending a COMMUNITY attribute, use the no neighbor {ip-address | peer-group-name} send-community command.
Page 358
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series neighbor soft-reconfiguration inbound c e s Enable a BGP soft-reconfiguration and start storing inbound route updates. Syntax neighbor {ipv4-address | ipv6-address | peer-group-name} soft-reconfiguration inbound Parameters ipv4-address | Enter the IP address of the neighbor for which you want to start storing inbound routing updates.
Page 359
neighbor subnet c e s Enable passive peering so that the members of the peer group are dynamic neighbor peer-group-name subnet subnet-number mask Syntax To remove passive peering, use the no neighbor peer-group-name subnet subnet-number mask command. Parameters subnet-number Enter a subnet number in dotted decimal format (A.B.C.D.) as the allowable range of addresses included in the Peer group.
Page 360
When two neighbors, configured with different keepalive and holdtime values, negotiate for new values, the resulting values will be as follows: the lower of the holdtime values is the new holdtime value, and • whichever is the lower value; one-third of the new holdtime value, or the configured keepalive •...
Page 361
peer-group-name Enter the name of the peer group to disable all routers within the peer group. weight Enter a number as the weight. Range: 0 to 65535 Default: 0 Defaults Command Modes ROUTER BGP Usage In the FTOS best path selection process, the path with the highest weight value is preferred. Information Note: Reset the neighbor connection...
Page 362
Usage FTOS software resolves the network address configured by the network command with the routes in Information the main routing table to ensure that the networks are reachable via non-BGP routes and non-default routes. Related redistribute Redistribute routes into BGP. Commands Command Version 7.8.1.0...
Page 363
static static Enter the keyword to redistribute manually configured routes. These routes are treated as incomplete routes. route-map route-map (OPTIONAL) Enter the keyword followed by the name of an established map-name route map. Only the following ROUTE-MAP mode commands are supported: •...
Page 364
level-1-2 level-1-2 (OPTIONAL) Enter the keyword to independently redistributed into Level 1 and Level 2 routes. This is the default. level-2 level-2 (OPTIONAL) Enter the keyword to independently redistributed into Level 2 routes only metric metric-value metric (OPTIONAL) Enter the keyword followed by the metric value used for the redistributed route.
Page 365
Parameters process-id Enter the number of the OSPF process. Range: 1 to 65535 match external (OPTIONAL) Enter the keywords match external to redistribute OSPF external routes. You can specify 1 or 2 to redistribute those routes only. match internal match internal (OPTIONAL) Enter the keywords to redistribute OSPF internal routes only.
Page 366
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Usage At least one interface must be in Layer 3 mode for the router bgp command to be accepted. If no Information interfaces are enabled for Layer 3, an error message appears: % Error: No router id configured show capture bgp-pdu neighbor...
Page 367
show config c e s View the current ROUTER BGP configuration. show config Syntax Command Modes ROUTER BGP Example Figure 12-6. show config Command Example (conf-router_bgp)#show confi router bgp 45 neighbor suzanne peer-group neighbor suzanne no shutdown neighbor sara peer-group neighbor sara shutdown neighbor 13.14.15.20 peer-group suzanne neighbor 13.14.15.20 shutdown...
Page 368
Example Figure 12-7. show ip bgp Command Example (Partial) >show ip bgp BGP table version is 847562, local router ID is 63.114.8.131 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop...
Page 369
Parameters ipv4 unicast ipv4 unicast (OPTIONAL) Enter the keywords to view information only related to ipv4 unicast routes. cluster-id (OPTIONAL) Enter the cluster id in dotted decimal format. Command Modes EXEC EXEC Privilege Example Figure 12-8. Command Example: show ip bgp cluster-list (Partial) #show ip bgp cluster-list BGP table version is 64444683, local router ID is 120.1.1.1 Status codes: s suppressed, d damped, h history, * valid, >...
Page 370
show ip bgp community c e s View information on all routes with Community attributes or view specific BGP community groups. Syntax show ip bgp [ipv4 unicast] community [community-number] [local-as] [no-export] [no-advertise] Parameters ipv4 unicast ipv4 unicast (OPTIONAL) Enter the keywords to view information only related to ipv4 unicast routes.
Page 371
Example Figure 12-9. show ip bgp community Command Example (Partial) >show ip bgp community BGP table version is 3762622, local router ID is 63.114.8.48 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop...
Page 372
Parameters ipv4 unicast ipv4 unicast (OPTIONAL) Enter the keywords to view information only related to ipv4 unicast routes. community-list-name Enter the name of a configured IP community list. (max 16 chars) exact-match Enter the keyword for an exact match of the communities. Command Modes EXEC EXEC Privilege...
Page 373
Example Figure 12-11. Command Example: show ip bgp dampened-paths >show ip bgp damp BGP table version is 210708, local router ID is 63.114.8.2 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network From...
Page 375
show ip bgp extcommunity-list c e s View information on all routes with Extended Community attributes. show ip bgp [ipv4 unicast] extcommunity-list [list name] Syntax Parameters ipv4 unicast ipv4 unicast (OPTIONAL) Enter the keywords to view information only related to ipv4 unicast routes. list name Enter the extended community list name you wish to view.
Page 376
Example Figure 12-13. Command Example: show ip bgp filter-list #show ip bgp filter-list hello BGP table version is 80227, local router ID is 120.1.1.1 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network...
Page 377
show ip bgp flap-statistics c e s View flap statistics on BGP routes. show ip bgp [ipv4 unicast] flap-statistics [ip-address [mask]] [filter-list as-path-name] Syntax [regexp regular-expression] Parameters ipv4 unicast ipv4 unicast (OPTIONAL) Enter the keywords to view information only related to ipv4 unicast routes. ip-address (OPTIONAL) Enter the IP address (in dotted decimal format) of the BGP network to view information only on that network.
Page 378
Table 12-7 defines the information displayed in Figure 12-14. Table 12-7. show ip bgp flap-statistics Command Example Fields Field Description Network Displays the network ID to which the route is flapping. From Displays the IP address of the neighbor advertising the flapping route. Flaps Displays the number of times the route flapped.
Page 379
Table 12-8. show ip bgp inconsistent-as Command Example Fields Fields Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table.
Page 380
Command Modes EXEC EXEC Privilege Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series detail Version 7.5.1.0 Added option and output now displays default MED value Version 7.2.1.0 Added received and denied route options Version 6.3.10 The output is changed to display the total number of advertised prefixes Example 1 Figure 12-16.
Page 381
Example 2 Figure 12-17. Command Example: show ip bgp neighbors advertised-routes >show ip bgp neighbors 192.14.1.5 advertised-routes BGP table version is 74103, local router ID is 33.33.33.33 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete...
Page 382
Table 12-9. Command Example fields: show ip bgp neighbors Lines beginning with Description BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state. Last read This line displays the following information: •...
Page 383
show ip bgp next-hop c e s View all next hops (via learned routes only) with current reachability and flap status. This command only displays one path, even if the next hop is reachable by multiple paths. Syntax show ip bgp next-hop Command Modes EXEC EXEC Privilege...
Page 384
Parameters regexp Enter a regular expression then use one or a combination of the following characters to match: regular-expression . = (period) any single character (including a white space) = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences).
Page 385
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series show ip bgp paths as-path c e s View all unique AS-PATHs in the BGP database Syntax show ip bgp paths as-path Command Modes EXEC EXEC Privilege Example Figure 12-22.
Page 386
Command Modes EXEC EXEC Privilege Example Figure 12-23. Command Example: show ip bgp paths community (Partial) E1200-BGP>show ip bgp paths community Total 293 Communities Address Hash Refcount Community 0x1ec88a5c 4 209:209 209:6059 209:31272 3908:900 19092:300 0x1e0f10ec 4 209:209 209:3039 209:31272 3908:900 19092:300 0x1c902234 2 209:209 209:7193 209:21362 3908:900 19092:300 0x1f588cd4...
Page 387
detail detail (OPTIONAL) Enter the keyword to view detailed status information of the peers in that peer group. summary summary (OPTIONAL) Enter the keyword to view status information of the peers in that peer group. The output is the same as that found in show ip bgp summary command Command Modes...
Page 388
Related neighbor peer-group (assigning peers) Assign peer to a peer-group. Commands neighbor peer-group (creating group) Create a peer group. show ip bgp peer-group (multicast) View information on the BGP peers in a peer group. Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series...
Page 389
Example Figure 12-25. Command Example: show ip bgp regexp (Partial) #show ip bgp regexp ^2914+ BGP table version is 3700481, local router ID is 63.114.8.35 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop...
Page 390
Example Figure 12-26. Command Example: show ip bgp summary #show ip bgp summary BGP router identifier 120.10.10.1, local AS number 100 BGP table version is 34, main routing table version 34 9 network entrie(s) using 1372 bytes of memory 5 paths using 380 bytes of memory 4 denied paths using 164 bytes of memory BGP-RIB over all using 385 bytes of memory 2 BGP path attribute entrie(s) using 168 bytes of memory...
Page 391
Table 12-16. Command Example fields: show ip bgp summary Field Description Up/Down Displays the amount of time that the neighbor is in the Established stage. If the neighbor has never moved into the Established stage, the word never is displayed. The output format is: Time Established----------Display Example <...
Page 392
Parameters keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. Range: 1 to 65535 Default: 60 seconds holdtime Enter a number for the time interval, in seconds, between the last keepalive message and declaring the router dead.
Page 394
aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table. Syntax aggregate-address ip-address mask [advertise-map map-name] [as-set] [attribute-map map-name] [summary-only] [suppress-map map-name] Parameters ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.D) and mask in / prefix format (/x).
Page 395
bgp dampening Enable MBGP route dampening. Syntax bgp dampening [half-life time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life time] [route-map map-name] command. Parameters half-life time (OPTIONAL) Enter the number of minutes after which the Penalty is decreased.
Page 396
Command Version 8.4.1.0 Added support for IPv4 multicast and IPv6 unicast address families History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced clear ip bgp dampening Clear information on route dampening. Syntax clear ip bgp dampening ipv4 multicast network network-mask Parameters dampening dampening...
Page 397
filter-list filter-list list (OPTIONAL) Enter the keyword followed by the name of a configured AS-PATH list (max 16 characters). regexp regexp regexp (OPTIONAL) Enter the keyword followed by regular expressions. Use one or a combination of the following: . = (period) any single character (including a white space) = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences).
Page 398
Command Version 8.4.1.0 Added BGP Soft Reconfiguration support for IPv4 unicast and IPv6 routes History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced debug ip bgp dampening View information on routes being dampened. Syntax debug ip bgp ipv4 multicast dampening To disable debugging, enter no debug ip bgp ipv4 multicast dampening...
Page 399
Command Version 8.4.1.0 Introduced support for IPv4 multicast and IPv6 unicast routes History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced debug ip bgp peer-group updates View information about BGP peer-group updates. debug ip bgp peer-group peer-group-name updates [in | out] To disable debugging, enter no debug ip bgp peer-group peer-group-name updates [in | out] command.
Page 400
= 20; internal-distance = 200; local-distance = 200. Command Modes ROUTER BGP (conf-router_bgp_af) Caution: Dell Force10 recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. Usage The higher the administrative distance assigned to a route means that your confidence in that route is Information low.
Page 401
Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name (OPTIONAL) Enter the name of the peer group activate activate Enter the keyword to enable the neighbor/peer group in the new AFI/SAFI. Defaults Disabled Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Usage By default, when a neighbor/peer group configuration is created in the Router BGP context, it is...
Page 402
neighbor default-originate Inject the default route to a BGP peer or neighbor. Syntax neighbor {ip-address | peer-group-name} default-originate [route-map map-name] To remove a default route, use the no neighbor {ip-address | peer-group-name} default-originate command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group.
Page 403
neighbor filter-list Assign a AS-PATH list to a neighbor or peer group. neighbor route-map Assign a route map to a neighbor or peer group. Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series neighbor filter-list Configure a BGP filter based on the AS-PATH attribute.
Page 404
neighbor maximum-prefix Control the number of network prefixes received. Syntax neighbor ip-address | peer-group-name maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor ip-address | peer-group-name maximum-prefix maximum command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name (OPTIONAL) Enter the name of the peer group.
Page 405
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series neighbor remove-private-as Remove private AS numbers from the AS-PATH of outgoing updates. Syntax neighbor ip-address | peer-group-name remove-private-as To return to the default, use the no neighbor ip-address | peer-group-name remove-private-as command.
Page 406
Usage When you apply a route map to outbound routes, only routes that match at least one section of the route Information map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command.
Page 407
Parameters ipv4-address | Enter the IP address of the neighbor for which you want to start storing inbound routing updates. ipv6-address peer-group-name Enter the name of the peer group for which you want to start storing inbound routing updates. Defaults Disabled Command Modes ROUTER BGP ADDRESS FAMILY (conf-router_bgp_af)
Page 408
Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Usage resolves the network address configured by the network command with the routes in the main FTOS Information routing table to ensure that the networks are reachable via non-BGP routes and non-default routes. Related redistribute Redistribute routes into BGP.
Page 409
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series redistribute ospf Redistribute OSPF routes into BGP. Syntax redistribute ospf process-id [[match external {1 | 2}] [match internal]] [route-map map-name] To stop redistribution of OSPF routes, use the no redistribute ospf process-id command.
Page 410
Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series show ip bgp community c e s View information on all routes with Community attributes or view specific BGP community groups. Syntax show ip bgp ipv4 multicast community [community-number] [local-as] [no-export] [no-advertise]...
Page 411
Parameters community-list-name Enter the name of a configured IP community list. Command Modes EXEC EXEC Privilege Command Version 7.8.1.0 Introduced support on S-Series History Version 7.7.1.0 Introduced support on C-Series show ip bgp dampened-paths View BGP routes that are dampened (non-active). Syntax show ip bgp ipv4 multicast dampened-paths Command Modes...
Page 412
Parameters ip-address (OPTIONAL) Enter the IP address (in dotted decimal format) of the BGP network to view information only on that network. mask (OPTIONAL) Enter the network mask (in slash prefix (/x) format) of the BGP network address. filter-list as-path-name filter-list (OPTIONAL) Enter the keyword followed by the name of a...
Page 413
show ip bgp ipv4 multicast View the current MBGP routing table for the system. Syntax show ip bgp ipv4 multicast [detail | network [network-mask] [length]] Parameters detail detail (OPTIONAL) Enter the keyword to display BGP internal information for the IPv4 Multicast address family. network (OPTIONAL) Enter the network address (in dotted decimal format) of the BGP network to view information only on that network.
Page 414
Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series Version 7.8.1.0 Introduced support on S-Series show ip bgp ipv4 multicast neighbors Displays information on IPv4 multicast routes exchanged by BGP neighbors. Syntax show ip bgp ipv4 multicast neighbors [ipv4-neighbor-addr | ipv6-neighbor-addr] [advertised-routes | dampened-routes | detail | flap-statistics | routes | received-routes [network [network-mask]] | denied-routes [network [network-mask]]] Parameters...
Page 415
Example 1 Figure 12-28. Command Example: show ip bgp ipv4 multicast neighbors #show ip bgp ipv4 multicast neighbors BGP neighbor is 25.25.25.25, remote AS 6400, internal link BGP version 4, remote router ID 25.25.25.25 BGP state ESTABLISHED, in this state for 00:02:18 Last read 00:00:16, hold time is 180, keepalive interval is 60 seconds Received 1404 messages, 0 in queue 3 opens, 1 notifications, 1394 updates...
Page 416
Table 12-18. Command Example fields: show ip bgp ipv4 multicast neighbors Lines beginning with Description BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state. Last read This line displays the following information: •...
Page 417
Parameters peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. detail detail (OPTIONAL) Enter the keyword to view detailed status information of the peers in that peer group. summary summary (OPTIONAL) Enter the keyword to view status information of the peers in that peer group.
Page 418
Table 12-19. Command Example fields: show ip bgp ipv4 multicast summary Field Description network entries Displays the number of network entries and route paths and the amount of memory used to process those entries. BGP path attribute entries Displays the number of BGP path attributes and the amount of memory used to process them.
Page 419
BGP Extended Communities (RFC 4360) BGP Extended Communities, as defined in RFC 4360, is an optional transitive BGP attribute. It provides two major advantages over Standard Communities: • The range is extended from 4-octet (AA:NN) to 8-octet (Type:Value) to provide enough number communities.
Page 420
Related permit Configure to add (permit) rules Commands show ip extcommunity-list Display the Extended Community list Command Version 7.8.1.0 Introduced on S-Series History Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series deny regex c e s This features enables you to specify an extended communities to reject (deny) using a regular expressions (regex).
Page 421
Command Modes CONFIGURATION (conf-ext-community-list) Command Version 7.8.1.0 Introduced on S-Series History Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series ip extcommunity-list c e s Use this feature to enter the Extended Community-list mode. Syntax ip extcommunity-list word To exit from this mode, use the exit command. Parameters word Enter a community list name (maximum 16 characters).
Page 422
Example Figure 12-32. Command Example: match extcommunity (config-route-map)#match extcommunity Freedombird (config-route-map)# Command Version 7.8.1.0 Introduced on S-Series History Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series permit c e s Use this feature to add rules (permit) from the two types of extended communities, Route Origin (rt) or Site-of-Origin (soo).
Page 423
Parameters regex Enter a regular expression. Defaults Not configured Command Modes CONFIGURATION (conf-ext-community-list) Usage Duplicate commands are silently accepted. Information Figure 12-33. Command Example: permit regexp Example (conf-ext-community-list)#permit regexp 123 (conf-ext-community-list)# Related deny regex Deny a community using a regular expression Commands Command Version 7.8.1.0...
Page 424
• If rt options comes after soo, without the additive option, then rt overrides the communities set by soo If rt with additive option comes after soo, then rt adds the communities set by soo • Related set extcommunity soo Set extended community site-of-origin in route-map.
Page 425
show ip bgp ipv4 extcommunity-list c e s Use this feature to display IPv4 routes matching the extended community list name. show ip bgp [ipv4 [multicast | unicast] | ipv6 unicast] extcommunity-list name Syntax Parameters multicast multicast Enter the keyword to display the multicast route information.
Page 426
show ip bgp paths extcommunity c e s Use this feature to display all BGP paths having extended community attributes. Syntax show ip bgp paths extcommunity Command Modes EXEC EXEC Privilege Example Figure 12-35. Command Example: show ip bgp paths community (Partial) #show ip bgp paths extcommunity Total 1 Extended Communities Address...
Page 427
Example Figure 12-36. Command Example: show ip extcommunity-list #show ip extcommunity-list test ip extcommunity-list test deny RT:1234:12 permit regexp 123 deny regexp 234 deny regexp 123 Command Version 7.8.1.0 Introduced on S-Series History Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series show running-config extcommunity-list c e s...
Page 429
Warning: If you are using these features for the first time, contact the Dell Force10 Technical Assistance Center (TAC) for guidance. For information on contacting Dell Force10 TAC, visit the Dell Force10 website at www.force10networks.com/support...
Page 430
Important Points to Remember • CAM Profiles are available on FTOS versions 6.3.1.1 and later for the E-Series TeraScale. Refer Chapter 13, Content Addressable Memory (CAM) for ExaScale for information on the commands for the E-Series ExaScale platform. • FTOS versions 7.8.1.0 and later support CAM allocations on the C-Series and S-Series. •...
Page 431
cam-acl (Configuration) Allocate CAM for IPv4 and IPv6 ACLs cam-acl {default | Syntax number number number, number number, l2acl ipv4acl ipv6acl ipv4qos l2qos l2pt number ipmacacl number ecfmacl number [ vman-qos vman-dual-qos number} Parameters default Use the default CAM profile settings, and set the CAM as follows. •...
Page 432
cam-acl (EXEC Privilege) Adjust line card CAM setting to match chassis settings. This command is deprecated as of FTOS 8.3.1.0 Syntax cam-acl {chassis |linecard} Command Modes EXEC Privilege Command Version 8.3.1.0 COMMAND DEPRECATED History Version 7.8.1.0 Introduced on the C-Series cam-optimization Optimize CAM utilization for QoS Entries by minimizing require policy-map CAM space.
Page 433
cam-profile (Config) Set the default CAM profile and the required microcode. cam-profile profile microcode microcode Syntax Parameters profile Choose one of the following CAM profiles: Enter the keyword default to specify the default CAM profile. • • Enter the keyword eg-default to specify the default CAM profile for EG (dual-CAM) line cards.
Page 434
Command Version 8.4.1.0 Added support for l2-switched-pbr microcode. History Version 8.2.1.0 profile. Added support for the ipv4-64k-ipv6 Version 7.9.1.0 Added support for VRF protocols. Version 7.5.1.0 Added the l2-ipv4-inacl CAM profile Version 7.4.2.0 Added the unified-default CAM profile and lag-hash-align microcode Version 7.4.1.0 Added the lag-hash-mpls microcode Version 6.5.1.0...
Page 435
Example Figure 13-1. Command Output: show cam-acl (default) FTOS#show cam-acl -- Chassis Cam ACL -- Current Settings(in block sizes) L2Acl Ipv4Acl Ipv6Acl Ipv4Qos L2Qos -- Line card 4 -- Current Settings(in block sizes) L2Acl Ipv4Acl Ipv6Acl Ipv4Qos L2Qos FTOS# Figure 13-2. Command Output: show cam-acl (non-default) FTOS#show cam-acl -- Chassis Cam ACL -- Current Settings(in block sizes)
Page 436
Parameters profile (OPTIONAL) Choose a single CAM profile to display: default • Enter the keyword to specify the default CAM profile. eg-default • Enter the keyword to specify the default CAM profile for EG (dual-CAM) line cards. ipv4-320k that provides 320K •...
Page 437
Example 1 Figure 13-3. Command Output: show cam-profile summary FTOS#show cam-profile summary -- Chassis CAM Profile -- : Current Settings : Next Boot Profile Name : Default : Default MicroCode Name : Default : Default : Current Settings : Next Boot -- Line card 1 -- Profile Name : Default...
Page 438
Parameters (OPTIONAL) Enter this keyword to display Layer 2 and Layer 3 ACL CAM usage. router (OPTIONAL) Enter this keyword to display Layer 3 CAM usage. switch (OPTIONAL) Enter this keyword to display Layer 2 CAM usage. Defaults None Command Modes EXEC Privilege Command Version 6.5.1.0...
Page 440
QoS Optimization for IPv6 ACLs does not impact the CAM usage for applying a policy on a single (or the first of several) interfaces. It is most useful when a policy is applied across multiple interfaces; it can reduce the impact to CAM usage across subsequent interfaces. Example The following examples show some sample output when using the test cam-usage command.
Page 441
Figure 13-10. Command Example: test cam-usage (S-Series) FTOS#test cam-usage service-policy input LauraIn stack-unit all Stack-Unit | Portpipe | CAM Partition | Available CAM | Estimated CAM per Port | Status ------------------------------------------------------------------------------------------ 0 | IPv4Flow 102 | 0 | Allowed 1 | IPv4Flow 102 | 0 | Allowed FTOS#...
Page 442
cam ipv4flow (EXEC Privilege) Configure the amount of CAM space in IPv4flow sub-regions. This command is deprecated as of FTOS 8.3.1.0 Syntax cam ipv4flow {chassis all | linecard number} {default | acl value multicast-fib value pbr value qos value system-flow value trace-list value} Command Modes EXEC Privilege Command...
Page 443
Command Version 6.3.1.0 Introduced on E-Series History Usage CAM profile changes take effect after the next chassis reboot. Information Related copy Save the running configuration. Commands show cam-ipv4flow Display the CAM IPv4flow entries. show cam-ipv4flow Display details about the IPv4Flow sub-regions. show cam-ipv4flow Syntax Command Modes...
Page 444
Related cam-ipv4flow Configure the amount of CAM space in IPv4flow sub-regions. Commands (CONFIGURATION) CAM Layer 2 ACL Commands IPv4Flow sub-partitions are supported on the E-Series TeraScale platform The CAM Layer 2 ACL commands are: • cam l2acl (EXEC Privilege) • cam-l2acl (CONFIGURATION) •...
Page 445
Parameters default Enter this keyword to reset the Layer 2 ACL CAM sub-partition space allocations to the default values (Sysflow: 6, L2ACL: 14, PVST: 50, QoS: 12, L2PT: 13, FRRP: 5). system-flow Allocate a percentage of the Layer 2 ACL CAM space for system flow system-flow percentage entries.
Page 446
Example Figure 13-12. Command Example: show cam-l2acl FTOS#show cam-l2acl -- Chassis Cam L2-ACL -- Current Settings(in percent) Sysflow L2Acl Pvst L2pt Frrp -- Line card 1 -- Current Settings(in percent) Sysflow L2Acl Pvst L2pt Frrp -- Line card 5 -- Current Settings(in percent) Sysflow L2Acl...
Page 447
Configuration Rollback Overview The Configuration Rollback feature is enabled on the C-Series and E-Series . Configuration Rollback enables you to archive your running configurations for future use. This feature also enables you to replace your running configuration with an archived running configuration without rebooting the chassis.
Page 448
archive Enter the CONFIGURATION ARCHIVE mode. Syntax archive To exit the CONFIGURATION ARCHIVE mode, use the exit command at the CONFIGURATION ARCHIVE mode prompt (conf-archive). Defaults No default values or behavior Command Modes CONFIGURATION ARCHIVE (conf-archive) Command Version 7.6.1.0 Introduced on C-Series and E-Series. History Example FTOS#conf...
Page 449
Parameters comment comment Describe the configuration that you are archiving using up to 30 characters. Defaults No default values or behavior Command Modes EXEC Privilege Command Version 7.7.1.0 Comment option added History Version 7.6.1.0 Introduced on C-Series and E-Series Usage Archive files are stored on flash in a hidden directory named CFGARCH.
Page 450
Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on C-Series and E-Series History Related show archive Display the archive Commands configure replace Replace the running configuration with a specified file. Syntax configure replace {flash://filepath | startup-config [force | time seconds]} Parameters flash://filepath flash:...
Page 451
Related configuration mode exclusive Enable exclusive configuration. Commands configuration mode exclusive Enable exclusive configuration mode. Syntax configuration mode exclusive {auto | manual} To negate the configuration, use the no configuration mode exclusive {auto | manual} command. Parameters auto auto Enter to set the exclusive mode to auto.
Page 452
Example FTOS(conf)#configuration mode exclusive auto FTOS(conf)#exit 3d23h35m: %RPM0-P:CP %SYS-5-CONFIG_I: Configured from console by console FTOS#config! Locks configuration mode exclusively. FTOS(conf)# Note: When your session times out and you return to EXEC mode, the lock is no longer set. Related configure terminal When configuration is set to manual, use this command to set the exclusive Commands mode.
Page 453
show archive Display the content of the archive. show archive Syntax Defaults No default values or behavior Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on C-Series and E-Series History Example Figure 14-3. show archive Command Output FTOS#show archive Archive directory: flash:/CFGARCH_DIR Archive Date Time...
Page 454
show configuration lock Show the configuration lock status. Syntax show configuration lock Defaults None Command Modes EXEC Privilege Command Version 7.7.1.0 Introduced on C-Series and E-Series History Example Figure 14-4. show configuration lock Command Output FTOS# show configuration lock Configure exclusively locked by the following line: Line vty 0 Line number...
Page 455
Example Figure 14-5. show run diff archive Command Example FTOS#show run diff archive_7 running-config ------- < policy-map-input test running-config ------- < archive < maximum 3 flash:/CFGARCH_DIR/archive_7 ------- > archive FTOS# time-period Set a time period to automatically save an archive file. Syntax time-period {minutes} To stop the auto-save, use the no time-period {minutes} command.
Page 457
Dynamic Host Configuration Protocol (DHCP) Overview Dynamic Host Configuration Protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on configuration policies determined by network administrators. • Commands to Configure the System to be a DHCP Server •...
Page 458
clear ip dhcp Reset DHCP counters. Syntax clear ip dhcp [binding {address} | conflict | server statistics] Parameters binding Enter this keyword to delete all entries in the binding table. address Enter the IP address to clear the binding entry for a single IP address. conflicts Enter this keyword to delete all of the log entries created for IP address conflicts.
Page 459
Parameters events Enter this keyword to display DHCP state changes. packet Enter this keyword to display packet transmission/reception. Command Mode EXEC Privilege Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History default-router Assign a default gateway to clients based on address pool. Syntax default-router address [address2...address8] Parameters...
Page 460
Parameters address Enter the a list of DNS servers that may service clients on the subnet. You may list up to 8 servers, in order of preference. Command Mode DHCP <POOL> Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History domain-name Assign a domain to clients based on address pool.
Page 461
Parameters address Enter the hardware address of the client. Command Mode DHCP <POOL> Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History host For manual (rather than automatic) configurations, assign a host to a single-address pool. Syntax host address Parameters address/mask Enter the host IP address and subnet mask.
Page 462
option policy Command Mode Default Command Version 8.2.1.0 Introduced on C-Series and S-Series. History lease Specify a lease time for the addresses in a pool. Syntax lease {days [hours] [minutes] | infinite} Parameters days Enter the number of days of the lease. Range: 0-31 hours Enter the number of hours of the lease.
Page 463
Specify the NetBIOS node type for a Microsoft DHCP client. Dell Force10 recommends specifying clients as hybrid. Syntax netbios-node-type type Parameters type Enter the NETBIOS node type. Broadcast: Enter the keyword b-node. Hybrid: Enter the keyword h-node. Mixed: Enter the keyword m-node.
Page 464
show ip dhcp binding Display the DHCP binding table. Syntax show ip dhcp binding Command Mode EXEC Privilege Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History show ip dhcp configuration Display the DHCP configuration. Syntax show ip dhcp configuration [global | pool name] Parameters pool name Display the configuration for a DHCP pool.
Page 465
Command Mode EXEC Privilege Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History show ip dhcp server Display the DHCP server statistics. Syntax show ip dhcp server statistics Command Mode EXEC Privilege Default None Command Version 8.2.1.0 Introduced on C-Series and S-Series. History Commands to Configure Secure DHCP DHCP as defined by RFC 2131 provides no authentication or security mechanisms.
Page 466
Default Disabled Command Version 8.3.1.0 Introduced on E-Series. History Version 8.2.1.0 Introduced on C-Series and S-Series Related arp inspection-trust Specify a port as trusted so that ARP frames are not validated against Commands the binding table. arp inspection-trust c e s Specify a port as trusted so that ARP frames are not validated against the binding table.
Page 467
Command Modes CONFIGURATION Default Disabled Command Version 8.3.1.0 Introduced on E-Series. History Version 8.2.1.0 Introduced on C-Series and S-Series for Layer 2 interfaces. Version 7.8.1.0 Introduced on C-Series and S-Series on Layer 3 interfaces. Usage When enabled, no learning takes place until snooping is enabled on a VLAN. Upon disabling DHCP Information Snooping the binding table is deleted, and Option 82, IP Source Guard, and Dynamic ARP Inspection are disabled.
Page 468
interface type interface Enter the keyword followed by the type of interface to which the host is connected. For an 10/100 Ethernet interface, enter the keyword fastethernet. • • For a Gigabit Ethernet interface, enter the keyword gigabitethernet. • For a SONET interface, enter the keyword sonet. •...
Page 469
Command Version 8.3.1.0 Introduced on E-Series. History Version 7.8.1.0 Introduced on C-Series and S-Series ip dhcp source-address-validation c e s Enable IP Source Guard. Syntax [no] ip dhcp source-address-validation [ipmac] Parameters ipmac Enable IP+MAC Source Address Validation (Not available on E-Series). Command Modes INTERFACE Default...
Page 470
ip dhcp relay c e s Enable Option 82. Syntax ip dhcp relay information-option [trust-downstream] Parameters trust-downstream Configure the system to trust Option 82 when it is received from the previous-hop router. Command Modes CONFIGURATION Default Disabled Command Version 8.3.1.0 Introduced on E-Series.
Page 471
Command Version 8.3.1.0 Introduced on E-Series. History Version 8.2.1.0 Introduced on C-Series and S-Series Dynamic Host Configuration Protocol (DHCP) | 471...
Page 473
Equal Cost Multi-Path Overview The characters that appear below command headings indicate support for the associated Dell Force10 platform, as follows: • C-Series: • E-Series: • S-Series: Commands The ECMP commands are: • hash-algorithm • hash-algorithm ecmp • hash-algorithm seed •...
Page 474
Parameters algorithm-number Enter the algorithm number. Range: 0 to 47 Note: For EtherScale, range 0 to 15 is valid; 16 to 47 will be considered as 15. ecmp hash algorithm ecmp TeraScale and ExaScale Only: Enter the keyword followed by the ECMP value hash algorithm value.
Page 475
FTOS(conf)#hash-algorithm linecard 5 ip-sa-mask ff ip-da-mask % Error: This command is not supported in the current microcode configuration. In addition, the linecard number ip-sa-mask value ip-da-mask value option has the following behavior to maintain bi-directionality: When hashing is done on both IPSA and IPDA, the ip-sa-mask and ip-da-mask values must be •...
Page 476
hash-algorithm ecmp Change the hash algorithm used to distribute traffic flows across an ECMP (equal-cost multipath routing) group. Syntax hash-algorithm ecmp {crc-upper} | {dest-ip} | {lsb} To return to the default hash algorithm, use the no hash-algorithm ecmp command. Parameters crc-upper Uses the upper 32 bits of the key for the hash computation Default: crc-lower...
Page 477
Command Modes CONFIGURATION Command Version 8.3.1.0 Introduced on E-Series. History Usage Deterministic ECMP sorts ECMPs in order even though RTM provides them in a random order. Information However, the hash algorithm uses as a seed the lower 12 bits of the chassis MAC, which yields a different hash result for every chassis.
Page 478
With 8 or less ECMPs, the ordering is lexicographic and deterministic. With more than 8 ECMPs, ordering is deterministic, but it is not in lexicographic order. Syntax ipv6 ecmp-deterministic Defaults Disabled Command Modes CONFIGURATION Command Version 8.3.1.0 Introduced on E-Series. History Usage After enabling IPv6 Deterministic ECMP, traffic loss occurs for a few milliseconds while FTOS sorts...
Page 479
Far-End Failure Detection (FEFD) Overview FTOS supports Far-End Failure Detection (FEFD) on the Ethernet interfaces of the E-Series, as indicated by the character that appears below each command heading. This feature detects and reports far-end link failures. • FEFD is not supported on the Management interface. •...
Page 480
packets packets Enter the keyword to enable debugging of FEFD to view information on packets sent and received. interface (OPTIONAL) Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 481
fefd-global Enable FEFD globally on the system. fefd-global [mode {normal | aggressive}] Syntax To disable FEFD globally, use the no fefd-global [mode {normal | aggressive}] command syntax. Parameters mode normal mode normal (OPTIONAL) Enter the keywords to change the link state to “unknown”...
Page 482
Parameters seconds Enter a number as the time between FEFD control packets. Range: 3 to 300 seconds Default: 15 seconds Defaults 15 seconds Command Modes INTERFACE fefd-global interval Configure an interval between FEFD control packets. Syntax fefd-global interval seconds To return to the default value, enter no fefd-global interval. Parameters seconds Enter a number as the time between FEFD control packets.
Page 483
Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. sonet • For a SONET interface, enter the keyword followed by the slot/port information.
Page 485
• FRRP is media- and speed-independent. • FRRP is a Dell Force10 proprietary protocol that does not interoperate with any other vendor. • Spanning Tree must be disabled on both primary and secondary interfaces before Resilient Ring protocol is enabled.
Page 486
clear frrp Clear the FRRP statistics counters. Syntax clear frrp [ring-id] Parameters ring-id (Optional) Enter the ring identification number. Range: 1 to 255 Defaults No default values or behavior Command Modes EXEC Command Version 8.2.1.0 Introduced for the C-Series History Version 7.5.1.0 Introduced Example...
Page 487
Parameters event event Enter the keyword to display debug information related to ring protocol transitions. packet packet Enter the keyword to display brief debug information related to control packets. detail detail Enter the keyword to display detailed debug information related to the entire ring protocol packets.
Page 488
Command Modes CONFIGURATION (conf-frrp) Command Version 8.2.1.0 Introduced for the C-Series History Version 7.4.1.0 Introduced interface Configure the primary, secondary, and control-vlan interfaces. Syntax interface {primary interface secondary interface control-vlan vlan-id} To return to the default, use the no interface {primary interface secondary interface control-vlan vlan-id} command.
Page 489
Command Version 8.2.1.0 Introduced for the C-Series History Version 7.4.1.0 Introduced Usage This command causes the Ring Manager to take ownership of these two ports after the configuration is Information validated by the IFM. Ownership is relinquished for a port only when the interface does not play a part in any control VLAN, that is, the interface does not belong to any ring.
Page 490
protocol frrp Enter the Resilient Ring Protocol and designate a ring identification. Syntax protocol frrp {ring-id} To exit the ring protocol, use the no protocol frrp {ring-id} command. Parameters ring-id Enter the ring identification number. Range: 1 to 255 Defaults No default values or behavior Command Modes CONFIGURATION...
Page 491
Example 2 Figure 18-3. show frrp ring-id Command Example FTOS#show frrp 1 Ring protocol 1 is in Master mode Ring Protocol Interface: Primary : GigabitEthernet 0/16 State: Forwarding Secondary: Port-channel 100 State: Blocking Control Vlan: 1 Ring protocol Timers: Hello-Interval 50 msec Dead-Interval 150 msec Ring Master's MAC Address is 00:01:e8:13:a3:19 Topology Change Statistics: Tx:110 Rx:45 Hello Statistics: Tx:13028 Rx:12348...
Page 492
Usage The hello interval is the interval at which ring frames are generated from the primary interface of the Information master node. The dead interval is the time that elapses before a timeout occurs. FTOS Resilient Ring Protocol (FRRP)
Page 493
FTOS Service Agent Overview The FTOS Service Agent (FTSA), commonly called a call-home service, collects information from the chassis manager, constructs email messages, and sends the messages to the recipients that you configure. For details on the use of FTSA commands and the structure of FTSA messages, see the Service Agent (FTSA) chapter in the FTOS Configuration Guide.
Page 494
• enable-all • encrypt • frequency • keyadd • log-messages • log-only • match • message-format • policy • policy-action-list • policy-test-list • pr-number • recipient • run-cpu • sample-rate • server • show configuration • show debugging • show keys •...
Page 495
action-list Specify an action list for the associated policy and enter the conf-call-home-actionlist-name mode. Syntax [no] action-list word Parameters word action-list policy action Enter the keyword followed by the name of a configured list Defaults none Command Modes config-callhome-policy-name Command Version 7.7.1.0 Introduced on C-Series and E-Series History...
Page 496
Related call-home Start FTSA and Enter the FTSA mode. Commands domain-name Specify the domain name to be used for the Administrator’s email address. server Configure a recipient. smtp server-address Identify the local SMTP (Simple Mail Transfer Protocol) server from which FTSA email messages will be forwarded.
Page 497
case-number Specify a case number for the associated policy. Syntax [no] case-number word Parameters word case-number Enter the keyword followed by a case number in the format C-xxxxx or c-xxxxx, where x = 0 to 9. Range: 1 to 20 characters. Defaults none Command Modes...
Page 498
seq cli-action Configure an action to execute an FTOS command for one-time operation, triggered as part of the selected action list. Syntax seq number cli-action command Parameters seq number Use the keyword followed by a number that FTOS uses to execute the list of actions in numerical order.
Page 499
If the debug command has spaces, such as debug ip bgp events, put the words following debug in double quotes. Related action-list Specify an action list for the associated policy and enter the Commands conf-call-home-actionlist-name mode. seq cli-show Configure an action to collect the output of the designated show command a designated number of times at a designated time interval.
Page 500
contact-address Enter your customer address (up to 100 characters) to be included in type 5 FTSA messages. Syntax contact-address string Defaults none Command Modes CALL-HOME Command Version 7.7.1.0 Introduced on C-Series and E-Series History Related call-home Start FTSA and enter CONFIGURATION (conf-callhome) mode. Commands contact-email Enter a customer email address (up to 60 characters) to be included in type 5 FTSA messages.
Page 501
contact-notes Enter comments (up to 100 characters) to be included in the configuration database and in type 5 FTSA messages. Syntax contact-notes string Defaults none Command Modes CALL-HOME Command Version 7.7.1.0 Introduced on C-Series and E-Series History Related call-home Start FTSA and enter CONFIGURATION (conf-callhome) mode. Commands contact-phone Enter a customer phone number (up to 50 characters) to be included in type-5 FTSA messages.
Page 502
debug call-home Monitor FTSA email messages through the CLI. Syntax debug call-home To turn message monitoring off, use the no debug call-home command. Defaults no debug call-home Command Modes EXEC EXEC Privilege Command Version 7.6.1.0 Introduced on C-Series History Version 6.3.1.0 Introduced for E-Series Related show debugging...
Page 503
default-test Invoke one of three preset system-monitoring test groups. Syntax default-test {hardware | software | exception} Parameters hardware hardware Enter the keyword to monitor hardware conditions. See the FTOS Configuration Guide for the list of conditions monitored by this keyword. software software Enter the keyword...
Page 504
domain-name Specify the domain name for the Administrator’s email address. Syntax domain-name domain_name To remove the domain name, use the no domain-name command. Parameters domain name domain-name Enter the keyword followed by the complete domain name of the Administrator’s email address, for example, domain_name.com. Defaults The domain name specified in the admin-email command Command Modes...
Page 505
Related admin-email Specify the Administrator’s email address. Commands call-home Start FTSA and Enter the FTSA mode. smtp server-address Configure the SMTP server detail. enable-all Enable (start) the sending of FTSA email messages to all designated recipients. Syntax enable-all To disable (end) the sending of FTSA email messages to all designated recipients, use the no enable command.
Page 506
Usage Encryption is supported through PGP (Pretty Good Privacy). Encryption cannot be enabled without a Information public key for the server. On E-Series chassis, this command is only supported for TeraScale cards. Note: Execute the encrypt command only after the keyadd command is executed. Related call-home Start FTSA and Enter the FTSA mode.
Page 507
However, if the Dell Force10 public key is changed, a notification will be made to download the new key from the Dell Force10 website and to replace the old key with that new key. Also, if you set up other recipients, use this command to enter their key filenames.
Page 508
The default severity level of 7 is the recommended severity level. Lower values will result in partial log data sent to the server because messages with higher values are filtered out. Related call-home Start FTSA and Enter the FTSA mode. Commands log-only Select the information collection action that matches the selected test group.
Page 509
match This command enables you to execute the configured action list based on one of three test list criteria. Syntax match {any | all | simultaneous} Parameters Entering this keyword will require that all conditions in the test list be matched in order to execute the associated action list.
Page 511
Create an entry for a PR number in policy mode. The PR number is the issue identifier (bug ID) maintained by Dell Force10, and is associated with the test list. test-list Enter the name of a configured policy test list to be associated with the selected policy.
Page 512
Enter a PR (problem report) number associated with the selected policy. The number is the issue identifier (bug ID) maintained by Dell Force10. Syntax pr-number number Parameters number Enter a 5-digit PR number, as supplied by Dell Force10. Defaults none Command Mode config-callhome-policy-name Command Version 7.8.1.0...
Page 513
run-cpu Set whether the action list associated with the selected test list should be executed, as a function of utilization. Syntax run-cpu {cpu | rpm-any} {less-than | greater-than} percentage Parameters percentage Enter a CPU utilization percentage. Range: 0–100 Select a CPU: CP, LP, RP1, or RP2 rpm-any run-cpu Monitor all RPM CPUs for the...
Page 514
FTOS(conf-callhome-freedom_bird)#? Usage The Dell Force10 server name is configured for FTSA messages to be sent by default to Dell Force10 Support at ftsa@force10networks.com. If you want to change that address, enter the command server FTOS. You will be placed at that server-specific prompt (conf-callhome-FTOS), where you would then use the recipient command to enter a new address.
Page 515
If you want to use encryption for a particular recipient’s email messages, the server name must match the user ID that is in the encryption file that the recipient will use to decrypt the messages. Use the keyadd command to designate the encryption file. Related call-home Start FTSA and Enter the FTSA mode.
Page 516
Example Figure 19-3. show debugging (FTSA) Command Example FTOS(conf-callhome)#show debugging CALLHOME: Callhome service debugging is on FTOS(conf-callhome)# Related debug call-home Monitor FTSA email messages through the CLI. Commands show keys Display the email encryption (PGP) keys. On E-Series chassis, this command is only supported for TeraScale cards.
Page 517
smtp server-address Identify the local SMTP (Simple Mail Transfer Protocol) server from which FTSA email messages will be forwarded. Syntax smtp server-address server-address [smtp-port port number] To remove the SMTP address, use the no smtp server-address command. This action will disable email messaging until you enter a new SMTP server address.
Page 518
test-condition (comparing samples) Configure an action to collect and compare multiple samples of a statistic. Syntax test-condition statistic operator sample {cpu | rpm-any} number Parameters test-condition statistic test-condition Enter the keyword , followed by one of the following statistic request types: cpu-1-min •...
Page 519
Examples FTOS(conf-call-home-testlist-test)#test-condition cpu-1-min increase number ? <0-100> Enter the boolean comparision value FTOS(conf-call-home-testlist-test)#test-condition cpu-1-min increase number 80 sample 5 FTOS(conf-callhome-testlist-test)#test-condition cpu-5-min decrease ? <0-100> Enter the boolean comparision value FTOS(conf-callhome-testlist-test)#test-condition cpu-5-min decrease 10 In this next example, the configuration is to subtract the bit rate that was found in the second sample from the bit rate found in the first sample.
Page 520
Parameters test-condition statistic test-condition Enter the keyword , followed by one of the following statistic request types: cpu-1-min : Average CPU utilization for 1 minute cpu-5-min : Average CPU utilization for 5 minutes interface-bit-rate input | output slot# : Instantaneous bit rate on a given line card interface-crc interface: Number of CRC errors on a given interface...
Page 521
test-condition Collect multiple samples of a statistic and compare them using the specified (comparing samples) comparator and hurdle value. test-condition show Search for a stated value in the output of the designated command or message-text message type. (deprecated) test-condition message-text (deprecated) Configure a search for a stated value in the output of the designated show command or message type —...
Page 522
Example FTOS(conf-callhome-testlist-test)#test-condition message-text ? command Enter the show command FTOS(conf-callhome-testlist-test)#test-condition message-text command ? WORD Enter the show command FTOS(conf-callhome-testlist-test)#test-condition message-text command "show interfaces gi 1/0 | display xml" ? equal-to Keyword boolean value equal to FTOS(conf-callhome-testlist-test)#test-condition message-text command "show interfaces gi 1/0 | display xml" equal-to ? string Enter the search string pattern FTOS(conf-callhome-testlist-test)#test-condition message-text command "show...
Page 523
test-limit Set the number of times that the test list should be executed. Syntax test -limit number Parameters number Set the number of times the test list matches that should be attempted. Range: 0–256 Default none. If the test-limit number is removed or not configured, there is no limit for how many times to test for the condition.
Page 524
test-list Enter the name of a configured test list to be associated with the selected policy. Syntax test-list word Parameters word test-list Enter the keyword followed by the name of a configured test list. Defaults No default behavior or values Command Mode config-callhome-policy-name Command...
Page 526
Important Points to Remember • GVRP is supported on Layer 2 ports only. • All VLAN ports added by GVRP are tagged. • GVRP is supported on untagged ports belonging to a default VLAN, and tagged ports. • GVRP cannot be enabled on untagged ports belonging to a non-default VLAN unless native VLAN is turned on.
Page 527
clear gvrp statistics c e s Clear GVRP statistics on an interface. clear gvrp statistics interface interface Syntax Parameters interface interface Enter the following keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information.
Page 528
Defaults Disabled Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on C, E, and S-Series History disable c e s Globally disable GVRP. Syntax disable To re-enable GVRP, use the no disable command. Defaults Enabled Command Modes CONFIGURATION-GVRP Command Version 7.6.1.0 Introduced on C, E, and S-Series History Related...
Page 529
Command Modes CONFIGURATION-GVRP Command Version 7.6.1.0 Introduced on C, E, and S-Series History Usage Join Timer—Join messages announce the willingness to register some attributes with other Information participants. Each GARP application entity sends a Join message twice, for reliability, and uses a join timer to set the sending interval.
Page 530
Parameters fixed fixed Enter the keyword followed by the VLAN range in a comma separated VLAN ID set. normal normal Enter the keyword followed by the VLAN range in a comma separated VLAN ID set. This is the default forbidden forbidden Enter the keyword followed by the VLAN range in a comma...
Page 531
Command Modes CONFIGURATION-GVRP Command Version 7.6.1.0 Introduced on C, E, and S-Series History Related gvrp enable Enable GVRP on physical interfaces and LAGs. Commands protocol gvrp Access GVRP protocol. show garp timers c e s Display the GARP timer settings for sending GARP messages. Syntax show garp timers Defaults...
Page 532
Parameters brief brief (OPTIONAL) Enter the keyword to display a brief summary of the GVRP configuration. interface (OPTIONAL) Enter the following keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information.
Page 533
Parameters interface interface interface Enter the keyword followed by one of the interface keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information. GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 534
• An entry for a new GVRP VLAN could not be created in the GVRP database. Related show gvrp Display the GVRP configuration Commands GARP VLAN Registration (GVRP)
Page 535
High Availability (HA) Overview High Availability (HA) in FTOS is configuration synchronization to minimize recovery time in the event of a Route Processor Module (RPM) failure. The feature is available on the C-Series and E-Series where noted by these symbols under command headings: FTOS on the E-Series supports RPM 1 + 1 redundancy.
Page 536
patch flash://RUNTIME_PATCH_DIR Insert an In-Service Modular Hot-Fix patch. Syntax patch flash://RUNTIME_PATCH_DIR/patch-filename To remove the patch, enter no patch flash://RUNTIME_PATCH_DIR/patch-filename Defaults None Command Modes CONFIGURATION Command Version 8.2.1.0 Introduced History Usage The patch filename includes the FTOS version, the platform, the cpu, and the process it affects Information (FTOS-platform-cpu-process-patchversion.rtp).
Page 537
Related show processes restartable Commands redundancy auto-failover-limit Specify an auto-failover limit for RPMs. When an non-recoverable fatal error is detected, an automatic RPM failover occurs. This command does not affect user-initiated (manual) failovers. Syntax redundancy auto-failover-limit [count number [period minutes] | period minutes]] To disable the auto-failover limit control, enter no redundancy auto-failover-limit.
Page 538
Command Version 8.3.1.0 Added the option History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on E-Series Usage Enabling this command will keep the failed RPM in the failed state. If there are two RPMs in the Information system, enabling this command prevents the failed RPM from becoming a working Standby RPM. If there is only one RPM in the system, the failed RPM will not recover—this will effect the system.
Page 539
Example Figure 21-2. redundancy force-failover sfm (EtherScale only) Command Example FTOS#redundancy force-failover sfm 0 %TSM-6-SFM_FAILOVER: Standby switch to SFM 8 Standby switch to SFM 0 FTOS# redundancy primary Set an RPM as the primary RPM. Syntax redundancy primary [rpm0 | rpm1] To delete a configuration, enter no redundancy primary.
Page 540
Related show lacp Display the lacp configuration Commands show redundancy Display the current redundancy configuration. redundancy reset-counter Reset failover counter and timestamp information displayed in the show redundancy command output. Syntax redundancy reset-counter Defaults Not configured Command Modes EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale...
Page 541
Example Figure 21-3. redundancy sfm standby Command Example FTOS#show sfm Switch Fabric State: Switch Fabric Modules Slot Status --------------------------------------------------------------------------- active active FTOS#configure FTOS(conf)#redundancy sfm standby Taking secondary SFM offline... FTOS(conf)#do show sfm all Switch Fabric State: Switch Fabric Modules Slot Status --------------------------------------------------------------------------- active...
Page 542
show patch Display the system patches loaded with the In-Service Modular Hot Fix Command. Syntax show patch Command Modes EXEC Command Version 8.2.1.0 Introduced on E-Series History Related patch flash:// Insert an In-Service Modular Hot-Fix patch. Commands RUNTIME_PATCH_DIR show processes restartable Display the processes and tasks configured for restartability.
Page 543
Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.5.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series Example Figure 21-4. show redundancy Command Example FTOS#show redundancy RPM Status ------------------------------------------------ RPM Slot ID: RPM Redundancy Role: Primary RPM State: Active...
Page 544
Table 21-1. show redundancy Command Example Fields (continued) Field Description RPM Redundancy Displays the following information: Configuration • which RPM is the preferred Primary on next boot (redundancy primary command) • the data sync method configured (redundancy synchronize command). • the failover type (you cannot change this;...
Page 545
Internet Group Management Protocol (IGMP) Overview The platforms on which a command is supported is indicated by the character — for the E-Series, for the C-Series, and for the S-Series — that appears below each command heading. This chapter contains the following sections: •...
Page 546
• ip igmp ssm-map • ip igmp static-group • ip igmp version • show ip igmp groups • show ip igmp interface • show ip igmp ssm-map clear ip igmp groups c e s Clear entries from the group cache table. Syntax clear ip igmp groups [group-address | interface] Parameters...
Page 547
Parameters group-address (OPTIONAL) Enter the IP multicast group address in dotted decimal format. interface (OPTIONAL) Enter the following keywords and slot/port or number information: Defaults Disabled Command Modes EXEC Privilege Command Version 7.6.1.0 Introduced on S-Series History Version 7.5.1.0 Introduced on C-Series E-Series legacy command Usage IGMP commands accept only non-VLAN interfaces—specifying a VLAN will not yield results.
Page 548
ip igmp group-join-limit c e s Use this feature to limit the number of IGMP groups that can be joined in a second. Syntax ip igmp group-join-limit number Parameters number Enter the number of IGMP groups permitted to join in a second. Range: 1 to 10000 Defaults No default values or behavior...
Page 549
ip igmp last-member-query-interval c e s Change the last member query interval, which is the Max Response Time inserted into Group-Specific Queries sent in response to Leave Group messages. This interval is also the interval between Group-Specific Query messages. Syntax ip igmp last-member-query-interval milliseconds To return to the default value, enter no ip igmp last-member-query-interval.
Page 550
ip igmp query-interval c e s Change the transmission frequency of IGMP general queries sent by the Querier. Syntax ip igmp query-interval seconds To return to the default values, enter no ip igmp query-interval. Parameters seconds Enter the number of seconds between queries sent out. Default: 60 seconds Range: 1 to 18000 Defaults...
Page 551
ip igmp ssm-map c e s Use a statically configured list to translate (*,G) memberships to (S,G) memberships. ip igmp ssm-map std-access-list source-address Syntax Undo this configuration, that is, remove SSM map (S,G) states and replace them with (*,G) states using the command ip igmp ssm-map std-access-list source-address command.
Page 552
exclude include Version 7.5.1.0 Expanded to support the options E-Series legacy command Usage A group in the include mode should have at least one source address defined. In exclude mode if no Information source address is specified, FTOS implicitly assumes all sources are included. If neither include or exclude is specified, FTOS implicitly assumes a IGMPv2 static join.
Page 553
Parameters group-address (OPTIONAL) Enter the group address in dotted decimal format to view information on that group only. interface (OPTIONAL) Enter the interface type and slot/port information: gigabitethernet • For a 100/1000 Ethernet interface, enter the keyword followed by the slot/port information. gigabitethernet •...
Page 554
show ip igmp interface c e s View information on the interfaces participating in IGMP. Syntax show ip igmp interface [interface] Parameters interface (OPTIONAL) Enter the interface type and slot/port information: gigabitethernet • For a 100/1000 Ethernet interface, enter the keyword followed by the slot/port information.
Page 555
Use a statically configured list to translate (*,G) memberships to (S,G) memberships. Commands ssm-map IGMP Snooping Commands FTOS supports IGMP Snooping version 2 and 3 on all Dell Force10 systems: • ip igmp snooping enable • ip igmp snooping fast-leave •...
Page 556
• IGMP snooping reacts to Layer 2 topology changes triggered by MSTP by sending a general query on the interface that comes in FWD state. Important Points to Remember for IGMP Querier • The IGMP snooping Querier supports version 2. •...
Page 557
ip igmp snooping fast-leave c e s Enable IGMP snooping fast leave for this VLAN. ip igmp snooping fast-leave Syntax To disable IGMP snooping fast leave, use the no igmp snooping fast-leave command. Defaults Not configured Command Modes INTERFACE VLAN—(conf-if-vl-n) Command Version 7.6.1.0 Introduced on S-Series...
Page 558
ip igmp snooping last-member-query-interval c e s The last member query interval is the “maximum response time” inserted into Group-Specific queries sent in response to Group-Leave messages. This interval is also the interval between successive Group-Specific Query messages. Use this command to change the last member query interval. Syntax ip igmp snooping last-member-query-interval milliseconds To return to the default value, enter no ip igmp snooping last-member-query-interval.
Page 559
Usage FTOS provides the capability of statically configuring interface to which a multicast router is attached. Information To configure a static connection to the multicast router, enter the ip igmp snooping mrouter interface command in the VLAN context. The interface to the router must be a part of the VLAN where you are entering the command.
Page 560
Example Figure 22-3. show ip igmp snooping mrouter Command Example FTOS#show ip igmp snooping mrouter Interface Router Ports Vlan 2 Gi 13/3, Po 1 FTOS# Related show ip igmp groups Use this IGMP command to view groups Commands Internet Group Management Protocol (IGMP)
Page 561
UDP Broadcast c e s The symbols under command headings indicate which Dell Force10 platforms — C-Series, E-Series, or S-Series, respectively — support the command. Although all interfaces are supported on E-Series ExaScale, some interface functionality is supported on E-Series ExaScale ex with FTOS 8.2.1.0. and later. When this is the case that is noted in the command history.
Page 562
• ipg (10 Gigabit Ethernet interfaces) • keepalive • lfs enable (EtherScale) • link debounce-timer • monitor • • negotiation auto • portmode hybrid • rate-interval • show config • show config (from INTERFACE RANGE mode) • show interfaces • show interfaces configured •...
Page 563
Parameters interface (OPTIONAL) Enter any of the following keywords and slot/port or number to clear counters from a specified interface: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. loopback • For a Loopback interface, enter the keyword followed by a number from 0 to 16383.
Page 564
clear dampening c e s Clear the dampening counters on all the interfaces or just the specified interface. Syntax clear dampening [interface] Parameters interface (Optional) Enter one of the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Page 565
Defaults medium Mode Interface Command Version 7.7.1.0 Introduced on S-Series History Usage This command only works on ports that the system recognizes as CX4 ports. The figure below shows Information an attempt to configure an XFP port in an S25P with the command after inserting a CX4 converter into the port: Note: When using a long CX4 cable between the C-Series and the S-Series, configure the...
Page 566
Parameters half-life Enter the number of seconds after which the penalty is decreased. The penalty is decreased by half after the half-life period expires. Range: 1 to 30 seconds Default: 5 seconds reuse threshold Enter a number as the reuse threshold, the penalty value below which the interface state is changed to “up”.
Page 567
description c e s Assign a descriptive text string to the interface. description desc_text Syntax To delete a description, enter no description. Parameters desc_text Enter a text string up to 240 characters long. Defaults No description is defined. Command Modes INTERFACE Command Version 8.1.1.0...
Page 568
duplex (Management) Set the mode of the Management interface. Syntax duplex {half | full} To return to the default setting, enter no duplex. Parameters half half Enter the keyword to set the Management interface to transmit only in one direction. full full Enter the keyword...
Page 569
Usage This command applies to any physical interface with speed set to 10/100. Information Note: Starting with FTOS 7.8.1.0, when a copper SFP2 module with catalog number GP-SFP2-1T is used in the S25P model of the S-Series, its speed can be manually set with the speed command.
Page 570
Important Points to Remember • Do not enable tx pause when buffer carving is enabled. Consult Dell Force10 TAC for information and assistance. • Asymmetric flow control (rx on tx off or rx off tx on) setting for the interface port less than 100 Mb/s speed is not permitted.
Page 571
The table below displays how FTOS negotiates the flow control values between two Dell Force10 chassis connected back-to-back using 1G copper ports. Table 23-1. Negotiated Flow Control Values Configured Negotiated LocRxConf LocTxConf RemoteRxConf RemoteTxConf LocNegRx LocNegTx RemNegRx RemNegTx Related show running-config Display the flow configuration parameters (non-default values only).
Page 572
interface c e s Configure a physical interface on the switch. Syntax interface interface Parameters interface Enter one of the following keywords and slot/port or number information: GigabitEthernet • For 100/1000 Ethernet interface, enter the keyword followed by the slot/port information. GigabitEthernet •...
Page 573
Parameters number Enter a number as the interface number. Range: 0 to 16383. Defaults Not configured. Command Modes CONFIGURATION Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.1.0 Introduced Example Figure 23-6.
Page 574
If two RPMs are installed in your system, use the show redundancy command to display which RPM is the Primary RPM. Related management route Configure a static route that points to the Management interface or a Commands forwarding router. duplex (Management) Clear FIB entries on a specified line card.
Page 575
interface range c e s This command permits configuration of a range of interfaces to which subsequent commands are applied (bulk configuration). Using the interface range command, identical commands can be entered for a range of interface. Syntax interface range interface , interface , ... Parameters interface , interface range...
Page 576
Example Figure 23-9. Bulk Configuration Warning Message FTOS(conf)#interface range so 2/0 - 1 , te 10/0 , gi 3/0 , fa 0/0 % Warning: Non-existing ports (not configured) are ignored by interface-range Example Figure 23-10. Interface Range prompt with Multiple Ports FTOS(conf)#interface range gi 2/0 - 23 , gi 2/1 - 10 FTOS(conf-if-range-gi-2/0-23# Example...
Page 577
The following figure shows how to use commas to add SONET, VLAN, and port-channel interfaces to the range. Example Figure 23-14. Multiple Range Bulk Configuration with SONET, VLAN, and port channel FTOS(config-if)# interface range gigabitethernet 5/1 - 23, tengigabitethernet 1/1 – 2, Vlan 2 –...
Page 578
Command Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.2.1.1 Introduced Example Figure 23-15. define interface-range macro Command Example FTOS(config)# define interface-range test tengigabitethernet 0/0 - 3 , gigabitethernet 5/0 - 47 , gigabitethernet 13/0 - 89 FTOS# show running-config | grep define...
Page 579
Related interface range Configure a range of command (bulk configuration) Commands interface range macro (define) Define a macro for an interface range (bulk configuration) interface vlan c e s Configure a VLAN. You can configure up to 4094 VLANs. Syntax interface vlan vlan-id To delete a VLAN, use the no interface vlan vlan-id command.
Page 580
ipg (Gigabit Ethernet interfaces) Set the Inter-packet gap (IPG) to 8 bytes for traffic on a Gigabit Ethernet interface. Syntax ipg 8 To return to the default setting, enter no ipg. Parameters Enter the keyword to set the IPG to 8 bytes. Defaults 12 bytes Command Modes...
Page 581
keepalive c e s On SONET interfaces, send keepalive packets periodically to keep an interface alive when it is not transmitting data. Syntax keepalive [seconds] To stop sending SONET keepalive packets, enter no keepalive. Parameters seconds (OPTIONAL) For SONET interfaces with PPP encapsulation enabled, enter the number of seconds between keepalive packets.
Page 582
link debounce-timer Assign the debounce time for link change notification on this interface. Syntax link debounce [milliseconds] Parameters milliseconds Enter the time to delay link status change notification on this interface. Range: 100-5000 ms • Default for copper is 3100 ms •...
Page 583
Example Figure 23-18. monitor Command Example of a Single Interface systest-3 Monitor time: 00:00:06 Refresh Intvl.: 2s Time: 03:26:26 Interface: Gi 0/3, Enabled, Link is Up, Linespeed is 1000 Mbit Traffic statistics: Current Rate Delta Input bytes: 9069828 43 Bps Output bytes: 606915800 43 Bps...
Page 584
Table 23-2. monitor Command Menu Options Description systest-3 Displays the host name assigned to the system. monitor time Displays the amount of time since the monitor command was entered. time Displays the amount of time the chassis is up (since last reboot). Change the view from a single interface to all interfaces on the line card or visa-versa.
Page 585
When you enter the no command, FTOS reduces the IP MTU value to 1536 bytes. On the E-Series, to return the IP MTU value to the default, enter no ip mtu. Link MTU and IP MTU considerations for port channels and VLANs are as follows. port channels: •...
Page 586
The no negotiation auto command is only available if you first manually set the speed of a port to 10Mbits or 100Mbits. The negotiation auto command provides a mode option for configuring an individual port to forced-master/forced slave once auto-negotiation is enabled Note: The mode option is not available on non-10/100/1000 Base-T Ethernet line cards.
Page 587
The following table details the possible speed and auto-negotiation combinations for a line between two 10/100/1000 Base-T Ethernet interfaces. Table 23-4. Auto-negotiation and Link Speed Combinations Link Status between Port 0 Port 1 Port 1 and Port 2 auto-negotiation enabled* auto-negotiation enabled* Up at 1000 Mb/s speed 1000 or auto...
Page 588
Usage The figure above sets a port as hybrid, makes the port a tagged member of VLAN 20, and an untagged Information member of VLAN 10, which becomes the native VLAN of the port. The port will now accept: • untagged frames and classify them as VLAN 10 frames •...
Page 589
Defaults 299 seconds Command Modes INTERFACE Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.1.1.0 Introduced The configured rate interval is displayed, along with the collected traffic data, in the output of show Usage Information interfaces commands.
Page 590
Version 7.5.1.0 Introduced on C-Series Version 6.1.1.0 Introduced on E-Series Example Figure 23-26. show config (Bulk Configuration) Command Example FTOS(conf)#interface range gigabitethernet 1/1 - 2 FTOS(conf-if-range-gi-1/1-2)#show config interface GigabitEthernet 1/1 no ip address switchport no shutdown interface GigabitEthernet 1/2 no ip address switchport no shutdown FTOS(conf-if-range-gi-1/1-2)#...
Page 591
Version 6.4.1.0 Changed organization of display output Version 6.3.1.0 Added Pluggable Media Type field in E-Series TeraScale output Usage Use this show interfaces command for details on a specific interface. Use the show interfaces linecard command for details on all interfaces on the designated line card. Note that, in an E-Series EtherScale chassis, the show interfaces command output does not include details about installed SFP or XFP transceivers.
Page 592
Table 23-5. Lines in show interfaces Command Example (EtherScale) (continued) Line Description Input Statistics: Displays all the input statistics including: • Number of packets and bytes into the interface • Number of packets with IP headers, VLAN tagged headers and MPLS headers Note: The sum of the number of packets may not be as expected since a VLAN tagged IP packet counts as both a VLAN packet and an...
Page 593
Unknown, Non-qualified— if wavelength is reading error, and F10 ID is not present Dell Force10 allows unsupported SFP and XFP transceivers to be used, but FTOS might not be able to retrieve some data about them. In that case, typically when the output of this field is “Pluggable media present, Media type is unknown”, the Medium and the XFP/SFP receive power reading data...
Page 594
Table 23-6. Fields in show interfaces Command Example (TeraScale) Line Description Queuing strategy... States the packet queuing strategy. FIFO means first in first out. Input Statistics: Displays all the input statistics including: • Number of packets and bytes into the interface •...
Page 595
Example Figure 23-29. show interfaces Command Example for 1G SFP Interface FTOS#show interfaces gigabitethernet 2/0 GigabitEthernet 2/0 is up, line protocol is down Hardware is Force10Eth, address is 00:01:e8:41:77:95 Current address is 00:01:e8:41:77:95 Pluggable media present, SFP type is 1000BASE-SX Wavelength is 850nm Interface index is 100974648 Port will not be disabled on partial SFM failure...
Page 596
Usage On the C-Series and S-Series, the interface counter “over 1023-byte pkts” does not increment for Information packets in the range 9216 > x < 1023. The Management port is enabled by default shutdown). If necessary, use the ip address command to assign an IP address to the Management port.
Page 597
show interfaces configured c e s any interface with a non-default configuration. Display show interfaces configured Syntax Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.1.0 Changed organization of display output Example...
Page 598
show interfaces dampening c e s interface dampening information. Display Syntax show interfaces dampening [[interface] [summary] [detail]] Parameters interface (Optional) Enter one of the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Page 599
show interfaces debounce Display information on interfaces with debounce timer configured. show interfaces debounce interface Syntax Parameters interface Enter one of the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. TenGigabitEthernet •...
Page 600
Command Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Example Figure 23-34. show interfaces description Command Example FTOS>...
Page 601
The following figure shows a line card that has an XFP interface. The type, medium, wavelength, and receive power details are displayed. When a device that is not certified by Dell Force10 is inserted, it might work, but its details might not be readable by FTOS and not displayed here.
Page 602
show interfaces phy c e s Display auto-negotiation and link partner information. Syntax show interfaces gigabitethernet slot/port phy Parameters gigabitethernet gigabitethernet Enter the keyword followed by the slot/port information. Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on C-Series and S-Series...
Page 603
Table 23-8. Lines in show interfaces gigabitethernet Command Example Line Description AutoNegotiation Remote Displays the control words advertised by the remote interface during Partner’s Ability negotiation. Duplex is either half or full. Asym- and Sym Pause is the types of flow control supported by the remote interface AutoNegotiation Expansion ParallelDetectionFault is the handshaking scheme in which the link partner...
Page 604
Command Version 7.6.1.0 Introduced for S-Series only History Example Figure 23-37. show interfaces status Command Example FTOS#show interfaces stack-unit 0 GigabitEthernet 0/1 is down, line protocol is down Hardware is Force10Eth, address is 00:01:e8:4c:f2:82 Current address is 00:01:e8:4c:f2:82 Pluggable media not present Interface index is 34129154 Internet address is not set MTU 1554 bytes, IP MTU 1500 bytes...
Page 605
Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.5.1.0 Introduced on E-Series Example Figure 23-38. show interfaces status Command Example FTOS#show interfaces status Port Description Status Speed Duplex Vlan...
Page 606
Parameters interface Enter one of the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for...
Page 607
Table 23-9. Items in show interfaces switchport Command Example Items Description Name Displays the interface’s type, slot and port number. 802.1QTagged Displays whether if the VLAN tagged (“True”), untagged (“False”), or hybrid (“Hybrid”, which supports both untagged and tagged VLANs by port 13/0. Vlan membership Lists the VLANs to which the interface is a member.
Page 608
Example Figure 23-40. show interfaces gigabitethernet transceiver Command Example FTOS#show interfaces gigabitethernet 1/0 transceiver SFP is present. SFP 0 Serial Base ID fields SFP 0 Id = 0x03 SFP 0 Ext Id = 0x04 SFP 0 Connector = 0x07 SFP 0 Transciever Code = 0x00 0x00 0x00 0x01 0x20 0x40 0x0c 0x05 SFP 0 Encoding = 0x01...
Page 609
Table 23-10. Diagnostic Data in show interfaces transceiver Line Description Rx Power measurement type Output depends on the vendor, typically either “Average” or “OMA” (Receiver optical modulation amplitude). Temp High Alarm threshold Factory-defined setting, typically in Centigrade. Value differs between SFPs and SFP+.
Page 610
Table 23-10. Diagnostic Data in show interfaces transceiver (continued) Line Description Tx Power Present Tx power of the SFP. If this crosses Tx power alarm/warning thresholds, then the Tx power high alarm/warning flag is set to true. If it falls below the low alarm/warning thresholds, then the Tx power low alarm/ warning flag is set to true.
Page 611
Table 23-10. Diagnostic Data in show interfaces transceiver (continued) Line Description Tx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Rx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above.
Page 612
Related interface Configure a physical interface on the switch. Commands show ip interface Displays Layer 3 information about the interfaces. show interfaces Display information on a specific physical interface or virtual interface. shutdown c e s Disable an interface. Syntax shutdown To activate an interface, enter no shutdown.
Page 613
speed (for 10/100/1000 interfaces) c e s Set the speed for 10/100/1000 Base-T Ethernet interfaces. Both sides of a link must be set to the same speed (10/100/1000) or to auto or the link may not come upSyntax speed {10 | 100 | 1000 | auto} To return to the default setting, use the no speed {10 | 100 | 1000} command.
Page 614
speed (Management interface) Set the speed for the Management interface. Syntax speed {10 | 100 | auto} To return to the default setting, use the no speed {10 | 100} command. Parameters Enter the keyword to set the interface’s speed to 10 Mb/s. Enter the keyword to set the interface’s speed to 100 Mb/s.
Page 615
Defaults Disabled (The interface is in Layer 3 mode.) Command Modes INTERFACE Command Version 8.4.1.0 Added support for port-channel interfaces (port-channel number option). History Version 8.1.1.0 Introduced on E-Series ExaScale Added backup interface option. Version 7.7.1.0 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.0...
Page 616
Example Figure 23-42. wanport Command with shutdown Command Example interface TenGigabitEthernet 13/0 no ip address no shutdown FTOS(conf-if-te-13/0)# FTOS(conf-if-te-13/0)#wanport % Error: Port should be in shutdown mode, config ignored Te 13/0. FTOS(conf-if-te-13/0)# FTOS(conf-if-te-13/0)#shutdown FTOS(conf-if-te-13/0)# FTOS(conf-if-te-13/0)#wanport FTOS(conf-if-te-13/0)# Related ais-shut Send LAIS on shutdown Commands alarm-report Enable reporting of a selected alarm...
Page 617
• show interfaces port-channel • show port-channel-flow Note: The FTOS implementation of LAG or Port Channel requires that you configure a LAG on both switches manually. For information on FTOS Link Aggregation Control Protocol (LACP) for dynamic LAGs, refer to Chapter 29, Link Aggregation Control Protocol (LACP).
Page 618
When an interface is removed from a Port Channel with the no channel-member command syntax, the interface reverts to its configuration prior to joining the Port Channel. An interface can belong to only one Port Channel. On the E-Series TeraScale, you can add up to 16 interfaces to a Port Channel; E-Series ExaScale can have up to 64.
Page 619
Related port-channel failover-group Access the PORT-CHANNEL FAILOVER-GROUP mode to configure a Commands LAG failover group. show interfaces port-channel Display information on configured Port Channel groups. interface port-channel c e s Create a Port Channel interface, which is a link aggregation group containing up to 16 physical interfaces on E-Series, eight physical interfaces on C-Series and S-Series.
Page 620
Related channel-member Add a physical interface to the LAG. Commands interface Configure a physical interface. interface loopback Configure a Loopback interface. interface null Configure a null interface. interface vlan Configure a VLAN. shutdown Disable/Enable the port channel. minimum-links c e s Configure the minimum number of links in a LAG (Port Channel) that must be in “oper up”...
Page 621
Usage This feature groups two LAGs to work in tandem as a supergroup, so that, for example, if one LAG Information goes down, the other LAG is taken down automatically, providing an alternate path to reroute traffic, avoiding oversubscription on the other LAG. You can use both static and dynamic (LACP) LAGs to configure failover groups.
Page 622
Version 7.5.1.0 Introduced for C-Series E-Series legacy command Example Figure 23-45. show interfaces port-channel Command Example (EtherScale) FTOS#show interfaces port-channel 20 Port-channel 20 is up, line protocol is up (Failover-group 1 is down) Hardware address is 00:01:e8:01:46:fa Port-channel is part of failover-group 1 Internet address is 1.1.120.1/24 MTU 1554 bytes, IP MTU 1500 bytes LineSpeed 2000 Mbit...
Page 623
Table 23-12. show interfaces port-channel Command Example Fields (continued) Field Description 0 64-byte... Displays the size of packets and the number of those packets entering that interface. This information is displayed over two lines. Received 0... Displays the type and number of errors or other specific packets received. This information is displayed over three lines.
Page 624
show port-channel-flow c e s Display an egress port in a given port-channel flow. Syntax show port-channel-flow outgoing-port-channel number incoming-interface interface {source-ip address destination-ip address} | protocol number icmp {source-port number destination-port number} | {source-mac address destination-mac address} Parameters outgoing-port-channel outgoing-port-channel Enter the keyword followed by the...
Page 625
Usage Since this command calculates based on a Layer 2 hash algorithm, use this command to display flows Information for switched Layer 2 packets, not for routed packets (use the show ip flow command to display routed packets). The show port-channel-flow command returns the egress port identification in a given port-channel, if a valid flow is entered.
Page 626
TDR is useful for troubleshooting an interface that is not establishing a link; either it is flapping or not coming up at all. TDR detects open or short conditions of copper cables on 100/1000 Base-T modules. • tdr-cable-test • show tdr Important Points to Remember •...
Page 627
show tdr c e s Display the TDR test results. show tdr interface Syntax Parameters interface GigabitEthernet Enter the keyword followed by the slot/port information for the 100/1000 Ethernet interface. Defaults No default behavior or settings Command Modes EXEC Command Version 8.2.1.0 Introduced on E-Series ExaScale History...
Page 628
Important Points to Remember • This feature is available only on the E-Series platform, as noted by this symbol under each command heading: • This feature applies only to E-Series Layer 3 physical or VLAN interfaces. • Routing Information Protocol (RIP) is not supported with the UDP Broadcast feature. •...
Page 629
ip udp-broadcast-address Configure an IP UDP address for broadcast. ip udp-broadcast-address address Syntax To delete the configuration, use the no ip udp-broadcast-address address command. Parameters address Enter an IP broadcast address in dotted decimal format (A.B.C.D). Defaults Not Configured Command Modes INTERFACE (config-if) Usage When a UDP broadcast packet is flooded out of an interface, and the outgoing interface is configured...
Page 630
show ip udp-helper Display the configured UDP helper(s) on all interfaces. Syntax show ip udp-helper Defaults No default configuration or values Command Modes EXEC Example Figure 23-50. show ip udp-helper Command Example FTOS#show ip udp-helper -------------------------------------------------- Port UDP port list -------------------------------------------------- Gi 10/0 656, 658...
Page 631
IPv4 Routing Overview The characters that appear below command headings indicate support for the associated Dell Force10 platform, as follows: • C-Series: • E-Series: • S-Series: Commands IPv4-related commands are described in this chapter. They are: • • arp learn-enable •...
Page 632
• ip name-server • ip proxy-arp • ip redirects • ip route • ip source-route • ip unreachables • ip vlan-flooding • load-balance (C-Series and S-Series) • load-balance (E-Series) • management route • show arp • show arp retries • show hosts •...
Page 633
mac-address Enter a MAC address in nnnn.nnnn.nnnn format. interface Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. ManagementEthernet • For the Management interface, enter the keyword followed by the slot/port information.
Page 634
At time t=2 FTOS installs an ARP entry for A.B.C.D only on RP2. Beginning with version 8.3.1.0, when a Gratuitous ARP is received, FTOS installs an ARP entry on all 3 CPUs. arp retries c e s Set the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request.
Page 635
Related show interfaces Displays the ARP timeout value for all available interfaces. Commands clear arp-cache c e s Clear the dynamic ARP entries from a specific interface or optionally delete (no-refresh) ARP entries from CAM. Syntax clear arp-cache [vrf name | interface | ip ip-address] [no-refresh] Parameters vrf name E-Series Only: Clear only the ARP cache entries tied to the VRF process.
Page 636
clear host c e s Remove one or all dynamically learnt host table entries. Syntax clear host name Parameters name Enter the name of the host to delete. Enter * to delete all host table entries. Command Modes EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale...
Page 637
clear ip route c e s Clear one or all routes in the routing table. clear ip route {* | ip-address mask | vrf vrf instance} Syntax Parameters Enter an asterisk ( ) to clear all learned IP routes. ip-address mask Enter a specific IP address and mask in dotted decimal format to clear that IP address from the routing table.
Page 638
debug arp c e s View information on ARP transactions. Syntax debug arp [interface] [count value] To stop debugging ARP transactions, enter no debug arp. Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: gigabitethernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 639
Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.10 Introduced on E-Series Example Figure 24-1. debug ip dhcp Command Example FTOS#debug ip dhcp 00:12:21 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP Request, hops = 0, XID = 0xbf05140f, secs = 0, hwaddr = 00:60:CF:20:7B:8C, giaddr = 0.0.0.0 00:12:21 : %RELAY-I-BOOTREQUEST: Forwarded BOOTREQUEST for 00:60:CF:20:7B:8C to 14.4.4.2 00:12:26 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP...
Page 640
Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. ManagementEthernet • For the Management interface, enter the keyword followed by the slot/port information. The slot range is 0 and the port range is 0-1. port-channel •...
Page 641
Parameters access-group access-group name Enter the keyword followed by the access list name (maximum 16 characters) to limit the debug output based on the defined rules in the ACL. count value count (OPTIONAL) Enter the keyword followed by the count value. Range: 1 to 65534 Default: Infinity interface...
Page 642
Example Figure 24-3. debug ip packet Command Example (Partial) IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 54, sending TCP src=23, dst=40869, seq=2112994894, ack=606901739, win=8191 ACK PUSH IP: s=10.1.2.206 (Ma 0/0), d=10.1.2.62, len 40, rcvd TCP src=0, dst=0, seq=0, ack=0, win=0 IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 226, sending TCP src=23, dst=40869, seq=2112994896, ack=606901739, win=8192 ACK PUSH IP: s=10.1.2.216 (Ma 0/0), d=10.1.2.255, len 78, rcvd...
Page 643
• Internet Control Message Protocol* icmp * but not the ICMP message type (0-255) • Any Internet Protocol • Transmission Control Protocol* * but not on the rst, syn, or urg bit • User Datagram Protocol In the case of ambiguous access control list rules, the debug ip packet access-control command will be disabled.
Page 644
ip directed-broadcast c e s Enables the interface to receive directed broadcast packets. Syntax ip directed-broadcast To disable the interface from receiving directed broadcast packets, enter no ip directed-broadcast. Defaults Disabled (that is, the interface does not receive directed broadcast packets) Command Modes INTERFACE Command...
Page 645
ip domain-lookup c e s Enable dynamic host-name to address resolution (that is, DNS). ip domain-lookup Syntax To disable DNS lookup, use the no ip domain-lookup. Defaults Disabled. Command Mode CONFIGURATION Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series...
Page 646
• enable DNS with the ip domain-lookup command. To view current bindings, use the show hosts command. Related ip domain-list Configure additional names. Commands ip fib download-igp-only Configure the E-Series to download only IGP routes (for example, OSPF) on to line cards. When the command is configured or removed, it clears the routing table (similar to clear ip route command) and...
Page 647
Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series Usage You can add multiple DHCP servers by entering the ip helper-address command multiple times. If Information multiple servers are defined, an incoming request is sent simultaneously to all configured servers and the reply is forwarded to the DHCP client.
Page 648
Parameters name Enter a text string to associate with one IP address. ip-address Enter an IP address, in dotted decimal format, to be mapped to the name. Defaults Not configured. Command Modes CONFIGURATION Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.6.1.0 Added support for S-Series...
Page 649
Defaults 1500 bytes Command Modes INTERFACE (Gigabit Ethernet and 10 Gigabit Ethernet interfaces) Command Version 8.1.1.0 Introduced on E-Series ExaScale History pre-Version 6.1.1.0 Introduced for E-Series Usage When you enter no mtu command, FTOS reduces the ip mtu value to 1536 bytes. To return the IP Information MTU value to the default, enter no ip mtu.
Page 650
ip name-server c e s Enter up to 6 IPv4 addresses of name servers. The order you enter the addresses determines the order of their use. Syntax ip name-server ipv4-address [ipv4-address2...ipv4-address6] To remove a name server, use the no ip name-server ip-address command. Parameters ipv4-address Enter the IPv4 address, in dotted decimal format, of the name server to be used.
Page 651
ip redirects Enable the interface to send ICMP redirect messages. ip redirects Syntax To return to default, enter no ip redirects. Defaults Disabled Command Modes INTERFACE Command Version 8.1.1.0 Introduced on E-Series ExaScale History pre-Version 6.1.1.0 Introduced for E-Series Usage This command is available for physical interfaces and port-channel interfaces on the E-Series.
Page 652
interface Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. loopback • For a loopback interface, enter the keyword followed by a number from zero (0) to 16383. null •...
Page 653
Related show ip route View the switch routing table. Commands ip source-route c e s Enable FTOS to forward IP packets with source route information in the header. Syntax ip source-route To drop packets with source route information, enter no ip route-source. Defaults Enabled.
Page 654
Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.4.1.0 Introduced on E-Series Usage By default this command is disabled. When enabled, all the Layer 3 unicast routed data traffic going Information through a VLAN member port is flooded across all the member ports of that VLAN. There might be some ARP table entries which are resolved through ARP packets which had Ethernet MAC SA different from MAC information inside the ARP packet.
Page 655
Usage By default, FTOS distributes incoming traffic based on a hash algorithm using the following criteria: Information • IP source address • IP destination address • TCP/UDP source port • TCP/UDP destination port Related hash-algorithm ecmp Commands load-balance (E-Series) By default, for E-Series chassis, FTOS uses an IP 5-tuple to distribute IP traffic over members of a Port Channel as well as equal cost paths.
Page 656
• IP source address • IP destination address • IP Protocol type • TCP/UDP source port • TCP/UDP destination port Note: For IPV6, only the first 32 bits (LSB) of IP Source Address and IP Destination Address are used for hash generation. lists the load balance command options and how the command combinations effect the The table below distribution of traffic.
Page 657
Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Usage When a static route (or a protocol route) overlaps with Management static route, the static route (or a Information protocol route) is preferred over the Management Static route. Also, Management static routes and the Management Connected prefix are not reflected in the hardware routing tables.
Page 658
dynamic dynamic (OPTIONAL) Enter the keyword to view dynamic entries. summary summary (OPTIONAL) Enter the keyword to view a summary of ARP entries. Command Modes EXEC Privilege Command Version 8.2.1.0 Support 4094 VLANs on E-Series ExaScale (prior limit was 2094) History Version 8.1.1.0 Introduced on E-Series ExaScale...
Page 659
Figure 24-7. show arp cpu cp Command Example FTOS#sho arp cpu cp Protocol Address Age(min) Hardware Address Interface VLAN -------------------------------------------------------------------------------- Internet 10.1.2.206 00:a0:80:00:15:b8 Ma 0/0 Internet 182.16.1.20 00:30:19:24:2d:70 Gi 8/0 Internet 100.10.10.10 00:30:19:4f:d3:80 Gi 8/12 Internet 10.1.2.209 00:a0:80:00:12:6c Ma 0/0 FTOS# Table 24-4.
Page 660
Syntax show arp retries Command Modes EXEC EXEC Privilege Command Version 8.3.1.0 Introduced History Related arp retries Set the number of ARP retries in case the system does not receive an ARP reply Commands in response to an ARP request. show hosts c e s View the host table and DNS configuration.
Page 661
Table 24-6. show hosts Command Example Fields (continued) Field Description Flags Classifies the entry as one of the following: • perm - the entry was manually configured and will not time out • temp - the entry was learned and will time out after 72 hours of inactivity. Also included in the flag is an indication of the validity of the route: •...
Page 662
Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series Example Figure 24-10. show ip cam Command Example on E-Series FTOS#show ip cam linecard 13 port-set 0 Index Destination EC CG V C Next-Hop Mac-Addr Port ------ --------------- -- -- - - --------------- ---- ---------------- ------- 3276 6.6.6.2 0 0 1 1 0.0.0.0...
Page 663
Example Figure 24-11. show ip cam summary Command Example FTOS#show ip cam linecard 4 port-set 0 summary Total Number of Routes in the CAM is 13 Total Number of Routes which can be entered in CAM is 131072 Prefix Len Current Use Initial Sz ---------- ----------- ---------- 37994 1312...
Page 664
ip-address mask (OPTIONAL) Enter the IP address and mask of a route to CAM entries for that route only. longer-prefix longer-prefixes Enter the keyword to view routes with a common prefix. summary summary (OPTIONAL) Enter the keyword to view a table listing route prefixes and the total number routes which can be entered in to CAM.
Page 665
Parameters vrf instance (OPTIONAL) E-Series Only: Enter the keyword followed by the VRF INstance name to show the FIB cache entries tied to that VRF instance. slot-number Enter the number of the line card slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, 0 to 5 on a E300 ip-address mask (OPTIONAL) Enter the IP address of the network destination to view only information on that destination.
Page 666
Related clear ip fib linecard Clear FIB entries on a specified line card. Commands show ip fib stack-unit View all Forwarding Information Base (FIB) entries. show ip fib stack-unit 0-7 [ip-address [mask] [longer-prefixes] | summary] Syntax Parameters Enter the S-Series stack unit ID, from 0 to 7. ip-address mask (OPTIONAL) Enter the IP address of the network destination to view only information on that destination.
Page 667
Related clear ip fib linecard Clear FIB entries on a specified line card. Commands show ip flow c e s Show how a Layer 3 packet is forwarded when it arrives at a particular interface. Syntax show ip flow interface [vrf vrf instance] interface {source-ip address destination-ip address} {protocol number [tcp | udp] | icmp} {src-port number destination-port number} Parameters vrf instance...
Page 668
S-Series produces the following error message: %Error: Unable to read IP route table C-Series produces the message: %Error: FIB cannot compute the egress port with the current trunk hash setting. Example Figure 24-15. Command Example show ip flow on E-Series FTOS#show ip flow interface Gi 1/8 189.1.1.1 63.0.0.1 protocol tcp source-port 7898 destination-port 8976 flow: 189.1.1.1 63.0.0.1 protocol 6 7868 8976 Ingress interface: Gi 1/20...
Page 669
linecard linecard (OPTIONAL) Enter the keyword followed by the number of the line card slot-number slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300 Note: This keyword is not available on the S-Series.
Page 670
Figure 24-17. show ip interface brief Command Example (Partial) FTOS#show ip int brief Interface IP-Address OK? Method Status Protocol GigabitEthernet 1/0 unassigned Manual administratively down down GigabitEthernet 1/1 unassigned Manual administratively down down GigabitEthernet 1/2 unassigned YES Manual up GigabitEthernet 1/3 unassigned YES Manual up GigabitEthernet 1/4...
Page 671
Example Figure 24-18. show ip management route Command Example FTOS#show ip management-route Destination Gateway State ----------- ------- ----- 10.1.2.0/24 ManagementEthernet 0/0 Connected 172.16.1.0/24 10.1.2.4 Active FTOS# show ipv6 management-route Display the IPv6 static routes configured for the management interface. Syntax show ipv6 management-route [all | connected | summary | static] Parameters Enter the keyword...
Page 672
Example Figure 24-19. show ip protocols Command Example FTOS#show ip protocols Routing Protocol is "bgp 1" Cluster Id is set to 20.20.20.3 Router Id is set to 20.20.20.3 Fast-external-fallover enabled Regular expression evaluation optimization enabled Capable of ROUTE_REFRESH For Address Family IPv4 Unicast BGP table version is 0, main routing table version 0 Distance: external 20 internal 200 local 200 Neighbor(s):...
Page 673
Command Modes EXEC EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 7.9.1.0 Introduced VRF on the E-Series Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 24-20. show ip route all Command Example Example FTOS#show ip route all Codes: C - connected, S - static, R - RIP...
Page 674
Table 24-14. show ip route all Command Example Fields Field Description (undefined) Identifies the type of route: • = connected • = static • = RIP • = BGP • = internal BGP • = external BGP • = Locally Originated •...
Page 675
Related ip prefix-list Enter the CONFIGURATION-IP PREFIX-LIST mode and configure a Commands prefix list. show ip prefix-list summary Display a summary of the configured prefix lists. Example Figure 24-22. show ip route summary Command Example FTOS#show ip route list test Codes: C - connected, S - static, R - RIP, B - BGP, IN - internal BGP, EX - external BGP,LO - Locally Originated, O - OSPF, IA - OSPF inter area, N1 - OSPF NSSA external type 1,...
Page 676
Table 24-15. show ip route summary Column Headings Description Column Heading Route Source Identifies how the route is configured in FTOS. Active Routes Identifies the best route if a route is learned from two protocol sources. Non-active Routes Identifies the back-up routes when a route is learned by two different protocols. If the best route or active route goes down, the non-active route will become the best route.
Page 677
Example Figure 24-24. show ip traffic Command Example (partial) FTOS#show ip traffic Control Processor IP Traffic: IP statistics: Rcvd: 23857 total, 23829 local destination 0 format errors, 0 checksum errors, 0 bad hop count 0 unknown protocol, 0 not a gateway 0 security failures, 0 bad options Frags: 0 reassembled, 0 timeouts, 0 too big 0 fragmented, 0 couldn't fragment...
Page 678
Table 24-16. show ip traffic output definitions Keyword Definition ...no port broadcasts The incoming broadcast/multicast packet did not have any listener..socket full The applications buffer was full and the incoming packet had to be dropped. Usage The F10 Monitoring MIB provides access to the statistics described below. Information Table 24-17.
Page 679
Command Version 8.1.1.2 Introduced support for E-Series ExaScale E600i History Version 8.1.1.0 Introduced on E-Series ExaScale Version 6.4.1.0 Introduced Example Figure 24-25. show protocol-termination-table Command Output FTOS#show protocol-termination-table linecard 2 port-set 0 Index Protocol Src-Port Dst-Port Queue Blk-Hole VlanCPU EgPort ----- -------- --------...
Page 680
Enter the keyword to view only TCP statistics from Route Processor 1. Enter the keyword to view only TCP statistics from Route Processor 2. Command Modes EXEC Privilege Command Version 8.1.1.0 Introduced on E-Series ExaScale History Version 6.4.1.0 Introduced Example Figure 24-26.
Page 681
Table 24-18. show tcp statistics cp Command Example Fields (continued) Field Description 10184 ack... Displays the number of acknowledgement packets and bytes received. Sent: Displays the total number of TCP packets sent and the number of urgent packets sent. 25 control packets... Displays the number of control packets sent and the number retransmitted.
Page 683
IPv6 Access Control Lists (IPv6 ACLs) Overview c e s IPv6 ACLs and IPv6 Route Map commands are supported on platforms: • IPv6 ACL Commands • IPv6 Route Map Commands Note: For IPv4 ACL commands, see Chapter 9, Access Control Lists (ACL).
Page 685
Command Modes CONFIGURATION Command Version 8.4.2.0 Introduced on the E-Series TeraScale History Version 8.2.1.0 Introduced on the S-Series Version 7.8.1.0 Introduced on the C-Series Usage You must save the new CAM settings to the startup-config (write-mem or copy run start) then Information reload the system for the new settings to take effect.
Page 686
deny c e s Configure a filter that drops IPv6 packets that match the filter criteria. Syntax deny {ipv6-protocol-number | icmp | ipv6 | tcp | udp} To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number •...
Page 687
deny icmp c e s Configure a filter to drop all or specific ICMP messages. deny icmp {source address mask | any | host ipv6-address} {destination address | any | Syntax host ipv6-address} [message-type] [count [byte]] | [log] [monitor] To remove this filter, you have two choices: •...
Page 688
Usage The C-Series cannot count both packets and bytes, so when you enter the count byte options, only Information bytes are incremented. The following table lists the keywords displayed in the CLI help and their corresponding ICMP Message Type Name. Table 25-1.
Page 689
deny tcp c e s Configure a filter that drops TCP packets that match the filter criteria. deny tcp {source address mask | any | host ipv6-address} [operator port [port]] {destination Syntax address | any | host ipv6-address} [bit] [operator port [port]] [count [byte]] | [log] [monitor] To remove this filter, you have two choices: •...
Page 690
count count (OPTIONAL) Enter the keyword to count packets processed by the filter. byte byte (OPTIONAL) Enter the keyword to count bytes processed by the filter. (OPTIONAL) Enter the keyword to enter ACL matches in the log. Supported on Jumbo-enabled line cards only. monitor monitor (OPTIONAL) Enter the keyword...
Page 691
deny udp c e s Configure a filter to drop UDP packets meeting the filter criteria. deny udp {source address mask | any | host ipv6-address} [operator port [port]] {destination Syntax address | any | host ipv6-address} [operator port [port]] [count [byte]] | [log] [monitor] To remove this filter, you have two choices: •...
Page 692
Command Version 8.4.2.1 Introduced on the S-Series History Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.8.1.0 Introduced on the C-Series Version 7.4.1.0 Introduced on the E-Series TeraScale monitor Added option Usage The C-Series cannot count both packets and bytes, so when you enter the count byte options, only Information bytes are incremented.
Page 693
implicit-permit implicit-permit (OPTIONAL) Enter the keyword to change the default action of the IPv6 ACL from implicit-deny to implicit-permit (that is, if the traffic does not match the filters in the IPv6 ACL, the traffic is permitted instead of dropped). vlan range vlan (OPTIONAL) Enter the keyword...
Page 694
Usage The number of entries allowed per ACL is hardware-dependent. Refer to your line card documentation Information for detailed specification on entries allowed per ACL. Related show config View the current configuration. Commands permit Select an IPv6 protocol number, ICMP, IPv6, TCP, or UDP to configure a filter that match the filter criteria.
Page 695
Enter the keyword to specify that all routes are subject to the filter. host ipv6-address host Enter the keyword followed by the IPv6 address of the host in the x:x:x:x::x format. notation specifies successive hexadecimal fields of zero destination address Enter the IPv6 address of the network or host to which the packets are sent in x:x:x:x::x format followed by the prefix length in the...
Page 696
Parameters source address Enter the IPv6 address of the network or host from which the packets were sent x:x:x:x::x in the format followed by the prefix length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format ( Enter the keyword...
Page 697
Command Version 8.4.2.1 Introduced on the S-Series History Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.8.1.0 Introduced on the C-Series Version 7.4.1.0 Introduced on the E-Series TeraScale monitor Added option Usage The C-Series cannot count both packets and bytes, so when you enter the count byte options, only Information bytes are incremented.
Page 698
Parameters source address Enter the IPv6 address of the network or host from which the packets were sent x:x:x:x::x in the format followed by the prefix length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format ( Enter the keyword...
Page 699
For example, an ACL rule with TCP port range 4000 - 8000 uses 8 entries in the CAM: Rule# Data Mask From #Covered 0000111110100000 1111111111100000 4000 4031 0000111111000000 1111111111000000 4032 4095 0001000000000000 1111100000000000 4096 6143 2048 0001100000000000 1111110000000000 6144 7167 1024 0001110000000000 1111111000000000 7168 7679...
Page 700
remark c e s Enter a description for an IPv6 ACL entry. Syntax remark remark number [description] To delete the description, use the no remark remark number command (it is not necessary to include the remark description that you are deleting). Parameters remark number Enter the remark number.
Page 701
resequence access-list c e s Re-assign sequence numbers to entries of an existing access-list. resequence access-list {ipv4 | ipv6 | mac} {access-list-name StartingSeqNum Syntax Step-to-Increment} Parameters ipv4 |ipv6 | mac ipv4, ipv6 Enter the keyword to identify the access list type to resequence.
Page 702
resequence prefix-list ipv6 c e s Re-assign sequence numbers to entries of an existing prefix list. Syntax resequence prefix-list ipv6 {prefix-list-name StartingSeqNum Step-to-increment} Parameters prefix-list-name Enter the name of configured prefix list, up to 140 characters. Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long.
Page 703
c e s Assign a sequence number to a deny or permit filter in an IPv6 access list while creating the filter. seq sequence-number {deny | permit} {ipv6-protocol-number | icmp | ip | tcp | udp} Syntax {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} [operator port [port]] [count [byte]] | [log] [monitor] To delete a filter, use the no seq sequence-number command.
Page 704
destination address Enter the IPv6 address of the network or host to which the packets are sent in x:x:x:x::x format followed by the prefix length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zero. message-type (OPTIONAL) Enter an ICMP message type, either with the type (and code, if necessary) numbers or with the name of the message type.
Page 705
show cam-acl c e s Show space allocated for IPv6 ACLs. show cam-acl Syntax Command Modes EXEC EXEC Privileged Command Version 8.4.2.1 Introduced on the S-Series History Version 8.4.2.0 Introduced on the E-Series TeraScale Version 7.8.1.0 Introduced on the C-Series Related cam-acl Configure CAM profiles to support IPv6 ACLs...
Page 706
show config c e s View the current IPv6 ACL configuration. Syntax show config Command Modes ACCESS-LIST Command Version 8.4.2.1 Introduced on the S-Series History Version 8.4.2.0 Introduced on the E-Series TeraScale Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.8.1.0 Introduced on the C-Series Example Figure 25-5.
Page 707
Version 7.8.1.0 Introduced on the C-Series Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.4.1.0 Introduced on the E-Series TeraScale Example Figure 25-6. Command Example: show ipv6 accounting access-lists FTOS#show ipv6 accounting access-list Ingress IPv6 access list AclList1 on GigabitEthernet 9/0 Total cam count 15...
Page 708
test cam-usage c e s Verify that enough ACL CAM space is available for the IPv6 ACLs you have created. Syntax test cam-usage service-policy input input policy name linecard {number | all} Parameters policy-map name Enter the name of the policy-map to verify. number number Enter...
Page 709
Example The following example shows the output shown when using the test cam-usage command. Figure 25-8. Command Example: test cam-usage (C-Series) FTOS#test cam-usage service-policy input LauraMapTest linecard all Linecard | Portpipe | CAM Partition | Available CAM | Estimated CAM per Port | Status ------------------------------------------------------------------------------------------ 1 | IPv4Flow 232 |...
Page 710
IPv6 Route Map Commands The following commands allow you to configure route maps and their redistribution criteria. • match ipv6 address • match ipv6 next-hop • match ipv6 route-source • route-map • set ipv6 next-hop • show config • show route-map match ipv6 address c e s Configure a filter to match routes based on IPv6 addresses specified in an access list.
Page 711
Defaults Not configured. Command Modes ROUTE-MAP Command Version 8.4.2.1 Introduced on the S-Series History Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.0 Introduced support on the C-Series Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long.
Page 712
route-map c e s Designate a IPv6 route map name and enter the ROUTE-MAP mode. Syntax route-map map-name To delete a route map, use the no route-map map-name command. Parameters map-name Enter a text string to name the route map, up to 140 characters. Defaults Not configured Command Modes...
Page 713
Command Version 8.4.2.1 Introduced on the S-Series History Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.0 Introduced support on the C-Series Version 7.4.1.0 Introduced support on the E-Series TeraScale Usage set ipv6 next-hop command is the only way to set an IPv6 Next-Hop. Information show config c e s...
Page 714
Example Figure 25-11. Command Example: show route-map FTOS#show route-map route-map Rmap1, permit, sequence 10 Match clauses: ip address: v4plist ipv6 address: plist1 ipv6 next-hop prefix-lists: plist2 ipv6 route-source prefix-lists: plist3 Set clauses: next-hop 1.1.1.1 ipv6 next-hop 3333:2222:: Related route-map Configure a route map. Commands IPv6 Access Control Lists (IPv6 ACLs)
Page 715
IPv6 Basics Overview c e s IPv6 Basic Commands are supported on platforms: Note: Basic IPv6 basic commands are supported on all platforms. See Table 23-2 on page 506 Chapter 23, IPv6 Addressing for information on the FTOS version and platform that supports IPv6 in each software feature.
Page 716
clear ipv6 fib c e s Clear (refresh) all FIB entries on a linecard. clear ipv6 fib linecard slot Syntax Parameters slot Enter the slot number to clear the FIB for a linecard. Command Mode EXEC Privilege Command Version 8.2.1.0 Introduced on E-Series ExaScale History Version 7.8.1.0...
Page 717
Command Version 8.4.1.0 Support added on the management Ethernet port. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series TeraScale Example Figure 26-1. Command Example: ipv6 address FTOS(conf)#interface gigabitethernet 10/0 FTOS(conf-if-gi-10/0)#ipv6 address ? X:X:X:X::X IPv6 address...
Page 718
ipv6 host c e s Assign a name and IPv6 address to be used by the host-to-IP address mapping table. Syntax ipv6 host name ip-address Parameters name Enter a text string to associate with one IP address. ipv6-address Enter an IPv6 address (X:X:X:X::X) to be mapped to the name. Defaults Not configured.
Page 719
ipv6 nd prefix-advertisement c e s Specify which IPv6 prefixes are include in Neighbor Advertisements. By default, all prefixes configured as addresses on the interface are advertised. This command allows control over the individual parameters per prefix; the default keyword can be used to use the default parameters for all prefixes.
Page 720
ipv6 route c e s Establish a static IPv6 route. Syntax ipv6 route ipv6-address prefix-length {interface | ipv6-address} [distance] [tag value] [permanent] To remove the IPv6 route, use the no ipv6 route ipv6-address prefix-length {interface | ipv6-address} [distance] [tag value] [permanent] command. Parameters ipv6-address x:x:x:x::x...
Page 721
Example Figure 26-2. Command Example: ipv6 route FTOS(conf)#ipv6 route 44::0 /64 33::1 ? <1-255> Distance metric for this route permanent Permanent route Set tag for this route FTOS(conf)#ipv6 route 55::0 /64 ? X:X:X:X::X Forwarding router's address gigabitethernet Gigabit Ethernet interface loopback Loopback interface null...
Page 722
ipv6 unicast-routing c e s Enable IPv6 Unicast routing. Syntax ipv6 unicast-routing To disable unicast routing, use the no ipv6 unicast-routing command. Defaults Enabled Command Modes CONFIGURATION Command Version 8.4.2.1 Introduced on S-Series History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series Version 7.4.1.0...
Page 723
show ipv6 cam linecard c e s Displays the IPv6 CAM entries for the specified line card. show ipv6 cam linecard slot-number port-set {0-1} [summary | index | ipv6 address] Syntax Parameters slot-number Enter the line card slot ID number. Range: 0 to 13 on the E1200;...
Page 724
Examples Figure 26-3. Command Example: show ipv6 cam linecard fib (C or E-Series) FTOS#show ipv6 cam linecard 13 fib Neighbor Mac-Addr Port ---------------------------------------------- ----------------- --------- ---- 31] 2002:44:1:1::11 00:00:01:1a:1e:d5 Gi 13/2 Prefix Next-Hop Mac-Addr Port ------------------------------- ------------------------------- ----------------- --------- ---- -- [ 3147] 100::/64 0] 2002:44:1:1::11 Gi 0/0...
Page 725
show ipv6 cam stack-unit c e s Displays the IPv6 CAM entries for the specified stack-unit. show ipv6 cam stack-unit unit-number port-set {0-1} [summary | index | ipv6 address] Syntax Parameters unit-number Enter the stack unit’s ID number. Range: 0 to 7 port-set Enter the Port Set to summary...
Page 726
show ipv6 fib linecard View all Forwarding Information Base entries. Syntax show ipv6 fib linecard slot-number {summary | ipv6-address} Parameters slot-number Enter the number of the line card slot. E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300 summary summary (OPTIONAL) Enter the keyword...
Page 727
show ipv6 interface c e s Display the status of interfaces configured for IPv6. show ipv6 interface interface [brief] [configured] [gigabitethernet slot | slot/port] [linecard Syntax slot-number] [loopback interface-number] [managementethernet slot/port] [port-channel number] [tengigabitethernet slot | slot/port] [vlan vlan-id] Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information:...
Page 728
Example Figure 26-5. Command Example: show ipv6 interface FTOS#show ipv6 interface gigabitethernet 1/1 GigabitEthernet 1/1 is up, line protocol is up IPV6 is enabled Link Local address: fe80::201:e8ff:fe04:62c4 Global Unicast address(es): 2001::1, subnet is 2001::/64 2002::1, subnet is 2002::/120 2003::1, subnet is 2003::/120 2004::1, subnet is 2004::/32 Global Anycast address(es): Joined Group address(es):...
Page 729
show ipv6 route c e s Displays the IPv6 routes. show ipv6 route [ipv6-address prefix-length] [hostname] [all] [bgp as number] Syntax [connected] [isis tag] [list prefix-list name] [ospf process-id] [rip] [static] [summary] Parameter ipv6-address x:x:x:x::x (OPTIONAL) Enter the IPv6 address in the format followed by the prefix-length prefix length in the...
Page 730
Example Figure 26-9. Command Example: show ipv6 route summary FTOS#show ipv6 route summary Route Source Active Routes Non-active Routes connected static Total Total 5 active route(s) using 952 bytes Table 26-1. show ipv6 route Command Example Fields Field Description (undefined) Identifies the type of route: •...
Page 731
trust ipv6-diffserv c e s Allows the dynamic classification of IPv6 DSCP. trust ipv6-diffserv Syntax To remove the definition, use the no trust ipv6-diffserv command. Defaults This command has no default behavior or values. Command Modes CONFIGURATION-POLICY-MAP-IN Command Version 8.4.2.1 Introduced on C-Series and S-Series History Version 8.2.1.0...
Page 733
IPv6 Border Gateway Protocol (IPv6 BGP) Overview IPv6 Border Gateway Protocol (IPv6 BGP) is supported on platforms: This chapter includes the following commands: • IPv6 BGP Commands • IPv6 MBGP Commands IPv6 BGP Commands Border Gateway Protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between Autonomous Systems (AS).
Page 734
• bgp regex-eval-optz-disable • bgp router-id • bgp soft-reconfig-backup • capture bgp-pdu neighbor (ipv6) • capture bgp-pdu max-buffer-size • clear ip bgp as-number • clear ip bgp ipv6-address • clear ip bgp peer-group • clear ip bgp ipv6 dampening • clear ip bgp ipv6 flap-statistics •...
Page 735
• neighbor update-source • neighbor weight • network • network backdoor • redistribute • redistribute isis • redistribute ospf • router bgp • show capture bgp-pdu neighbor • show config • show ip bgp ipv6 unicast • show ip bgp ipv6 unicast cluster-list •...
Page 736
Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 6.5.1.0 Introduced on E-Series TeraScale Usage Enter ipv6 unicast to enter the BGP for IPv6 mode (CONF-ROUTER_BGPv6_AF). Information aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table. aggregate-address ipv6-address prefix-length [advertise-map map-name] [as-set] Syntax [attribute-map map-name] [summary-only] [suppress-map map-name]...
Page 737
In route maps used in the suppress-map parameter, routes meeting the deny clause are not suppress; in other words, they are allowed. The opposite is true: routes meeting the permit clause are suppressed. If the route is injected via the network command, that route will still appear in the routing table if the summary-only parameter is configured in the...
Page 738
Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage If you enable this command, use the capture bgp-pdu max-buffer-size * command to recompute the Information best path. bgp bestpath med confed Enable MULTI_EXIT_DISC (MED) attribute comparison on paths learned from BGP confederations. bgp bestpath med confed Syntax To disable MED comparison on BGP confederation paths, enter no bgp bestpath med confed.
Page 739
bgp client-to-client reflection Allows you to enable route reflection between clients in a cluster. Syntax bgp client-to-client reflection To disable client-to-client reflection, enter no bgp client-to-client reflection. Defaults Enabled when a route reflector is configured. Command Modes ROUTER BGP Command Version 8.4.2.1 Introduced on C-Series and S4810.
Page 740
Related bgp client-to-client reflection Enable route reflection between route reflector and clients. Commands neighbor route-reflector-client Configure a route reflector and clients. show ip bgp ipv6 unicast View paths with a cluster ID. cluster-list bgp confederation identifier Configure an identifier for a BGP confederation. Syntax bgp confederation identifier as-number To delete a BGP confederation identifier, use the no bgp confederation identifier as-number...
Page 741
Command Modes ROUTER BGP Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage The Autonomous Systems configured in this command are visible to the EBGP neighbors. Each Information Autonomous System is fully meshed and contains a few connections to other Autonomous Systems.
Page 742
Command Modes ROUTER BGPV6-ADDRESS FAMILY Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage If you enter bgp dampening, the default values for half-life, reuse, suppress, and Information max-suppress-time are applied.
Page 743
Command Modes ROUTER BGP Usage This is enabled by default, that is for all updates received from EBGP peers, BGP ensures that the first Information AS of the first AS segment is always the AS of the peer. If not, the update is dropped and a counter is incremented.
Page 744
Usage Routers supporting 4-Byte ASNs advertise that function in the OPEN message. The behavior of a Information 4-Byte router will be slightly different depending on whether it is speaking to a 2-Byte router or a 4-Byte router. When creating Confederations, all the routers in the Confederation must be 4 or 2 byte identified routers.
Page 745
bgp log-neighbor-changes Enable logging of BGP neighbor resets. Syntax bgp log-neighbor-changes To disable logging, enter no bgp log-neighbor-changes. Defaults Enabled Command Modes ROUTER BGP Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage bgp log-neighbor-changes...
Page 746
bgp recursive-bgp-next-hop Enable next-hop resolution through other routes learned by BGP. Syntax bgp recursive-bgp-next-hop To disable next-hop resolution, use the no bgp recursive-bgp-next-hop command. Defaults Enabled Command Modes ROUTER BGP Usage This command is a knob to disable BGP next-hop resolution via BGP learned routes. During the Information next-hop resolution, only the first route that the next-hop resolves through is verified for the route’s protocol source and is checked if the route is learned from BGP or not.
Page 747
Related show ip protocols View information on all routing protocols enabled and active on the Commands E-Series. Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale bgp router-id Assign a user-given ID to a BGP router.
Page 748
Related clear ip bgp ipv6 unicast soft Activate inbound policies for IPv6 routes without resetting the BGP TCP Commands session. Command Version 8.4.1.0 Added support for IPv4 multicast and IPv6 unicast address families History Version 7.8.1.0 Introduced support on S4810 Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0...
Page 749
Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Related capture bgp-pdu neighbor (ipv6) Enable capture of an IPv6 BGP neighbor packet. Commands show capture bgp-pdu neighbor Configure a route reflector and clients.
Page 750
Parameters as-number Enter an autonomous system (AS) number to reset neighbors belonging to that AS. If used without a qualifier, the keyword resets all neighbors belonging to that AS. Range: 1 to 65535 flap-statistics flap-statistics (OPTIONAL) Enter the keyword to clear all flap statistics belonging to that AS or a specified address family within that AS.
Page 751
multicast multicast (OPTIONAL) Enter the keyword to select the multicast option within the selected address family. Multicast is supported on IPv4 only soft soft (OPTIONAL) Enter the keyword to configure and activate policies without resetting the BGP TCP session, that is, BGP Soft Reconfiguration. Note: clear ip bgp ip6-address soft If you enter...
Page 752
Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage After you enter this command, the software deletes history routes and returns suppressed routes to Information active state. clear ip bgp ipv6 flap-statistics Clear BGP flap statistics, which includes number of flaps and the time of the last flap. clear ip bgp ipv6 unicast flap-statistics [ipv6-address | filter-list as-path-name | regexp Syntax regular-expression]...
Page 753
clear ip bgp ipv6 unicast soft Clear and reapply policies for IPv6 unicast routes without resetting the TCP connection; that is, perform BGP soft reconfiguration. Syntax clear ip bgp {* | as-number | ipv4-neighbor-addr | ipv6-neighbor-addr | peer-group name} ipv6 unicast soft [in | out] Parameters Clear and reapply policies for all BGP sessions.
Page 754
(OPTIONAL) Enter the keyword to view only information on inbound BGP routes. (OPTIONAL) Enter the keyword to view only information on outbound BGP routes. Command Modes EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage...
Page 755
Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage Enter the no debug ip bgp command to remove all configured debug commands for BGP. Information debug ip bgp ipv6 dampening View information on IPv6 routes being dampened. Syntax debug ip bgp ipv6 unicast dampening [in | out] To disable debugging, enter no debug ip bgp ipv6 unicast dampening.
Page 756
Command Modes EXEC Privilege Usage This command turns on BGP soft-reconfiguration inbound debugging for IPv6 unicast routes. If no Information neighbor is specified, debug is turned on for all neighbors. Command Version 8.4.1.0 Added support for IPv4 multicast and IPv6 unicast routes History Version 7.8.1.0 Introduced support on S4810...
Page 757
To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] notifications [in | out] command. Parameters ipv6-address x:x:x:x::x (OPTIONAL) Enter the IPv6 address in the format followed by the prefix length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zeros.
Page 758
Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage Enter the no debug ip bgp command to remove all configured debug commands for BGP. Information default-metric Allows you to change the metrics of redistributed routes to locally originated routes. Use this command with the redistribute command.
Page 759
Version 7.4.1.0 Introduced on E-Series TeraScale Caution: Dell Force10 recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. Usage The higher the administrative distance assigned to a route means that your confidence in that route is Information low.
Page 760
Syntax maximum-paths {ebgp | ibgp} number To return to the default values, enter no maximum-paths. Parameters ebgp ebgp Enter the keyword to enable multipath support for External BGP routes. ibgp ibgp Enter the keyword to enable multipath support for Internal BGP routes. number Enter a number as the maximum number of parallel paths.
Page 761
neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group. Syntax neighbor {ipv6-address | peer-group-name} advertisement-interval seconds To return to the default value, use the no neighbor {ipv6-address | peer-group-name} advertisement-interval command. Parameters ipv6-address x:x:x:x::x Enter the IPv6 address in the format.
Page 762
Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale neighbor default-originate Inject the default route to a BGP peer or neighbor. neighbor {ipv6-address | peer-group-name} default-originate [route-map map-name] Syntax To remove a default route, use the no neighbor {ipv6-address | peer-group-name} default-originate [route-map map-name] command.
Page 763
Command Modes ROUTER BGP Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale neighbor distribute-list Distribute BGP information via an established prefix list. Syntax neighbor {ipv6-address | peer-group-name} distribute-list prefix-list-name {in | out} To delete a neighbor distribution list, use the no neighbor {ipv6-address | peer-group-name} distribute-list prefix-list-name {in | out} command.
Page 764
Parameters ipv6-address x:x:x:x::x Enter the IPv6 address in the format. notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. (OPTIONAL) Enter the number of hops as the Time to Live (ttl) value. Range: 1 to 255. Default: 255 Defaults Disabled.
Page 765
neighbor filter-list Configure a BGP filter based on the AS-PATH attribute. Syntax neighbor {ipv6-address | peer-group-name} filter-list as-path-name {in | out} To delete a BGP filter, use the no neighbor {ipv6-address | peer-group-name} filter-list as-path-name {in | out} command. Parameters ipv6-address x:x:x:x::x Enter the IPv6 address in the...
Page 766
threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage maximum of the value, the E-Series software sends a message. Range: 1 to 100 percent. Default: 75 warning-only warning-only (OPTIONAL) Enter the keyword...
Page 767
neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. (This command is used for IBGP). Syntax neighbor {ipv6-address | peer-group-name} next-hop-self To return to the default setting, use the no neighbor {ipv6-address | peer-group-name} next-hop-self command.
Page 768
Usage You can assign up to 64 peers to one peer group. Information When you add a peer to a peer group, it inherits all the peer group’s configured parameters. A peer cannot become part of a peer group if any of the following commands are configured on the peer: •...
Page 769
neighbor remote-as Assign a indirectly connected AS to a neighbor or peer group. neighbor shutdown Disable a peer or peer group. neighbor peer-group passive Enable passive peering on a BGP peer group, that is, the peer group does not send an OPEN message, but will respond to one.
Page 770
Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage If the number parameter is the same as the AS number used in the router bgp command, the remote Information AS entry in the neighbor is considered an internal BGP peer entry.
Page 771
Syntax neighbor {ipv6-address | peer-group-name} route-map map-name {in | out} To remove the route map, use the no neighbor {ipv6-address | peer-group-name} route-map map-name {in | out} command. Parameters ipv6-address x:x:x:x::x Enter the IPv6 address in the format. notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group.
Page 772
Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage The first time you enter this command it configures the neighbor as a route reflector and members of Information the route-reflector cluster.
Page 773
Defaults Enabled (that is, BGP neighbors and peer groups are disabled.) Command Modes ROUTER BGP Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage Peers that are enabled within a peer group are disabled when their peer group is disabled. Information neighbor shutdown command terminates all BGP sessions on the BGP neighbor or BGP peer...
Page 774
neighbor subnet Enable passive peering so that the members of the peer group are dynamic Syntax neighbor peer-group-name subnet subnet-number mask To remove passive peering, use the no neighbor peer-group-name subnet subnet-number mask command. Parameters subnet-number Enter a subnet number in dotted decimal format (A.B.C.D.) as the allowable range of addresses included in the Peer group.
Page 775
Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage Timer values configured with the neighbor timers command override the timer values configured with Information timers bgp command. When two neighbors, configured with different keepalive and holdtime values, negotiate for new values, the resulting values will be as follows: the lower of the holdtime values is the new holdtime value, and...
Page 776
neighbor weight Assign a weight to the neighbor connection, which is used to determine the best path. Syntax neighbor {ipv6-address | peer-group-name} weight weight To remove a weight value, use the no neighbor {ipv6-address | peer-group-name} weight weight command. Parameters ipv6-address x:x:x:x::x Enter the IPv6 address in the...
Page 777
mask Enter the mask of the IP address in the slash prefix length format (for example, /24). The mask appears in command outputs in dotted decimal format (A.B.C.D). route-map map-name route-map (OPTIONAL) Enter the keyword followed by the name of an established route map.
Page 778
Usage Though FTOS does not generate a route due to backdoor config, there is an option for injecting/ Information sourcing a local route in presence of network backdoor config on a learned route. redistribute Redistribute routes into BGP. redistribute {connected | static} [route-map map-name] Syntax To disable redistribution, use the no redistribution {connected | static} command.
Page 779
Parameters level-1 | level-1-2 (OPTIONAL) Enter the type (level) of routes to redistribute. | level-2] metric Assign metric to an interface for use with IPv6 information (OPTIONAL) metric-type (OPTIONAL) The external link type associated with the default route advertised into a routing domain.
Page 780
Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage When you enter redistribute ospf process-id command without any other parameters, FTOS Information redistributes all OSPF internal routes, external type 1 routes, and external type 2 routes.
Page 781
Related capture bgp-pdu neighbor (ipv6) Enable capture of an IPv6 BGP neighbor packet. Commands capture bgp-pdu max-buffer-size Specify a size for the capture buffer. show config View the current ROUTER BGP configuration. Syntax show config Command Modes ROUTER BGPV6-ADDRESS FAMILY Example Figure 27-1.
Page 782
Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage When you enable bgp non-deterministic-med command, the show ip bgp command output for a Information BGP route does not list the INACTIVE reason. show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster.
Page 783
Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage To view the total number of COMMUNITY attributes found, use the show ip bgp ipv6 unicast Information summary command.
Page 784
show ip bgp ipv6 unicast detail Display BGP internal information for IPv6 Unicast address family. Syntax show ip bgp ipv6 unicast detail Defaults none Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale...
Page 785
Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes. Syntax show ip bgp ipv6 unicast flap-statistics [ipv6-address prefix-length] [filter-list as-path-name] [regexp regular-expression] Parameters ipv6-address prefix-length...
Page 786
Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale IPv6 Border Gateway Protocol (IPv6 BGP)
Page 787
show ip bgp ipv6 unicast neighbors Displays information on IPv6 unicast routes exchanged by BGP neighbors. show ip bgp ipv6 unicast neighbors [ipv4-neighbor-addr | ipv6-neighbor-addr] Syntax [advertised-routes | dampened-routes | detail | flap-statistics | routes | received-routes [network [network-mask]] | denied-routes [network [network-mask]]] Parameters ipv6 unicast ipv6 unicast...
Page 788
Example 1 Figure 27-2. Command Example: show ip bgp ipv6 unicast neighbors FTOS#show ip bgp ipv6 unicast neighbors BGP neighbor is 5ffe:10::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.3 BGP state ESTABLISHED, in this state for 00:00:32 Last read 00:00:32, last write 00:00:32 Hold time is 180, keepalive interval is 60 seconds Received 1404 messages, 0 in queue...
Page 789
Table 27-1. Command Example fields: show ip bgp ipv6 unicast neighbors Lines beginning with Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one.
Page 790
show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. Syntax show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] Parameters peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only.
Page 791
show ip bgp ipv6 unicast summary Allows you to view the status of all BGP connections. show ip bgp ipv6 unicast summary Syntax Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Example...
Page 792
Example Figure 27-5. show ip bgp next-hop Command Example FTOS#show ip bgp next-hop Next-hop RefCount Cost Flaps Time Elapsed 9000::5:2 9000::5:2, Gi 8/38 0 00:23:22 9000::6:2 9000::6:2, Gi 8/38 0 00:23:22 9000::7:2 9000::7:2, Gi 8/38 0 00:23:22 9000::8:2 9000::8:2, Gi 8/38 0 00:23:22 9000::9:2 9000::9:2, Gi 8/38...
Page 793
Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale show ip bgp paths community View all unique COMMUNITY numbers in the BGP database. Syntax show ip bgp paths community Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810.
Page 794
Parameters regular-expression [character] Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space) • = (asterisk) the sequences in a pattern (0 or more sequences) •...
Page 795
IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). FTOS MBGP is implemented as per IETF RFC 1858. The MBGP commands are: •...
Page 796
To remove SAFI context, use the no address family ipv6 unicast command. Parameters ipv6 ipv6 Enter the keyword to specify the address family as IPv6. unicast unicast Enter the keyword to specify multicast as SAFI. Defaults IPv6 Unicast Command Modes ROUTER BGPV6-ADDRESS FAMILY Command Version 8.4.2.1...
Page 797
Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 7.4.1.0 Introduced on E-Series TeraScale Usage At least one of the routes included in the aggregate address must be in the BGP routing table for the Information configured aggregate to become active. Do not add the as-set parameter to the aggregate.
Page 798
Syntax clear ip bgp ipv6 unicast * ipv6-address prefix-length [dampening | flap-statistics] peer-group] Parameters Enter the character to clear all peers. ipv6-address x:x:x:x::x Enter the IPv6 address in the format followed by the prefix prefix-length length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zeros dampening dampening...
Page 799
filter-list filter-list (OPTIONAL) Enter the keyword followed by the name of a configured AS-PATH list (max 16 characters). list regexp regexp (OPTIONAL) Enter the keyword followed by regular expressions. Use one or a regexp combination of the following: (period) matches on any single character, including white space (asterisk) matches on sequences in a pattern (zero or more sequences) (plus sign) matches on sequences in a pattern (one or more sequences) (question mark) matches sequences in a pattern (0 or 1 sequences)
Page 800
(OPTIONAL) Enter the keyword to view only BGP updates received from neighbors. (OPTIONAL) Enter the keyword to view only BGP updates sent to neighbors. Command Modes EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 7.4.1.0 Introduced on E-Series TeraScale debug ip bgp ipv6 unicast updates View information about BGP updates.
Page 801
History Version 7.4.1.0 Introduced on E-Series TeraScale Caution: Dell Force10 recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. Usage The higher the administrative distance assigned to a route means that your confidence in that route is Information low.
Page 802
Usage By default, when a neighbor/peer group configuration is created in the Router BGP context, it is Information enabled for the IPv6/Unicast AFI/SAFI. By using activate in the new context, the neighbor/peer group is enabled for AFI/SAFI. Related address family Changes the context to SAFI Commands neighbor advertisement-interval...
Page 803
Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 7.4.1.0 Introduced on E-Series TeraScale neighbor distribute-list Distribute BGP information via an established prefix list. Syntax neighbor [ipv6-address | peer-group-name] distribute-list prefix-list-name [in | out] To delete a neighbor distribution list, use the no neighbor [ipv6-address | peer-group-name] distribute-list prefix-list-name [in | out] command.
Page 804
Parameters ipv6-address x:x:x:x::x (OPTIONAL) Enter the IPv6 address in the format. notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to apply the filter to all routers in the peer group. access-list-name Enter the name of an established AS-PATH access list. If the AS-PATH access list is not configured, the default is permit (to allow routes).
Page 805
neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. Syntax neighbor ipv6-address | peer-group-name next-hop-self To return to the default setting, use the no neighbor ipv6-address | peer-group-name next-hop-self command. Parameters ipv6-address x:x:x:x::x (OPTIONAL) Enter the IPv6 address in the format.
Page 806
neighbor route-map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group. Syntax neighbor ipv6-address | peer-group-name route-map map-name [in | out] To remove the route map, use the no neighbor [ipv6-address | peer-group-name] route-map map-name [in | out] command.
Page 807
Command Modes ROUTER BGPV6-ADDRESS FAMILY Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 7.4.1.0 Introduced on E-Series TeraScale Usage The first time you enter this command it configures the neighbor as a route reflector and members of Information the route-reflector cluster.
Page 808
redistribute Redistribute routes into BGP. Syntax redistribute [connected | static] [route-map map-name] To disable redistribution, use the no redistribution [connected | static] [route-map map-name] command. Parameters connected connected Enter the keyword to redistribute routes from physically connected interfaces. static static Enter the keyword to redistribute manually configured routes.
Page 809
Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810. History Version 7.4.1.0 Introduced on E-Series TeraScale Example Figure 27-6. show ip bgp ipv6 unicast FTOS#show ip bgp ipv6 unicast BGP table version is 8, local router ID is 5.5.10.4 Status codes: s suppressed, S stale, d damped, h history, * valid, >...
Page 810
show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster. Syntax show ip bgp ipv6 unicast cluster-list [cluster-id] Parameters cluster-id (OPTIONAL) Enter the cluster id in dotted decimal format. Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810.
Page 811
show ip bgp ipv6 unicast community-list View routes that are affected by a specific community list. Syntax show ip bgp ipv6 unicast community-list community-list-name Parameters community-list-name Enter the name of a configured IP community list. Command Modes EXEC EXEC Privilege Command Version 8.4.2.1 Introduced on C-Series and S4810.
Page 813
Parameters ipv6-address x:x:x:x::x (OPTIONAL) Enter the IPv6 address in the format followed by prefix-length the prefix length in the format. Range: /0 to /128 notation specifies successive hexadecimal fields of zeros. filter-list as-path-name filter-list (OPTIONAL) Enter the keyword followed by the name of a configured AS-PATH ACL.
Page 814
show ip bgp ipv6 unicast inconsistent-as View routes with inconsistent originating Autonomous System (AS) numbers, that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. Syntax show ip bgp ipv6 unicast inconsistent-as Command Modes EXEC EXEC Privilege Command...
Page 815
Example Figure 27-9. show ip bgp ipv6 unicast neighbors Command Example (Partial) FTOS#show ip bgp ipv6 unicast neighbors BGP neighbor is 5ffe:10::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.3 BGP state ESTABLISHED, in this state for 00:00:32 Last read 00:00:32, last write 00:00:32 Hold time is 180, keepalive interval is 60 seconds Received 1404 messages, 0 in queue...
Page 816
Table 27-3. show ip bgp neighbors Command Fields Lines beginning with Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one. If they are located in the same AS, then the link is internal;...
Page 817
show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. Syntax show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] Parameters peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only.
Page 818
Table 27-4. show ip bgp summary Command Fields Field Description BGP router identifier Displays the local router ID and the AS number. BGP table version Displays the BGP table version and the main routing table version. network entries Displays the number of network entries and route paths and the amount of memory used to process those entries.
Page 819
Intermediate System to Intermediate System (IS-IS) Overview Intermediate System to Intermediate System Protocol (IS-IS) for IPv4 and IPv6is supported only on the E-Series platform, as indicated by the character under each command heading. IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic.
Page 821
• show isis database • show isis graceful-restart detail • show isis hostname • show isis interface • show isis neighbors • show isis protocol • show isis traffic • spf-interval adjacency-check Verify that the “protocols supported” field of the IS-IS neighbor contains matching values to this router.
Page 822
Command Modes ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Command Version 7.5.1.0 Introduced IPv6 ISIS support History Version 6.3.1.0 Introduced Usage You cannot disable leaking from one level to another, however you can regulate the rate flow from one Information level to another via an IP Prefix list.
Page 823
Command Modes ROUTER ISIS Usage Use caution when you enter this command. Back up your configuration prior to using this command or Information your IS-IS configuration will be erased. Related copy Use this command to save the current configuration to another location. Commands clear isis Restart the IS-IS process.
Page 824
To disable debugging of IS-IS, enter no debug isis. Command Modes EXEC Privilege Usage Entering debug isis enables all debugging parameters. Information Use this command to display all debugging information in one output. To turn off debugging, you normally enter separate no forms of each command. Enter the no debug isis command to disable all debug messages for IS-IS at once.
Page 825
Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: GigabitEthernet • For a Gigabit Ethernet interface, enter the keyword followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for...
Page 826
debug isis update-packets that are detected by a router. Enable debugging on Link State PDUs (LSPs) Syntax debug isis update-packets [interface] To turn off debugging, enter the no debug isis update-packets [interface] command. Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: GigabitEthernet •...
Page 827
Usage When you use this command to redistribute routes into a routing domain, the router becomes an Information autonomous system (AS) boundary router. An AS boundary router does not always generate a default route into a routing domain. The router still requires its own default route before it can generate one. How a metric value assigned to a default route is advertised depends on how on the configuration of metric-style command.
Page 828
Parameters weight The administrative distance value indicates the reliability of a routing information source. Range: 1 to 255. (A higher relative value indicates lower reliability. Routes with smaller values are given preference.) Default: 115 ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and enter a mask in either dotted decimal or /prefix format.
Page 829
Command Version 7.5.1.0 Introduced IPv6 ISIS support History Version 6.3.1.0 Introduced Related distribute-list out Suppress networks from being advertised in updates. Commands redistribute Redistributes routes from one routing domain to another routing domain. distribute-list out Suppress network prefixes from being advertised in outbound updates. Syntax distribute-list prefix-list-name out [connected | bgp as number | ospf process-id | rip | static] To return to the default values, enter the no distribute-list prefix-list-name out [bgp as number...
Page 830
Syntax distribute-list redistributed-override in To return to the default, use the no distribute-list redistributed-override in command. Defaults No default behavior or values Command Modes ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Command Version 7.8.1.0 Introduced IPv6 ISIS support History Version 6.3.1.0 Introduced Usage When the command is executed, IS-IS will not download the route to the routing table if the same route...
Page 831
Parameters ietf ietf Enter to enable Graceful Restart on the IS-IS router. Defaults Default is Graceful Restart disabled Command Modes ROUTER ISIS Command Version 8.3.1.0 Introduced on the E-Series History Usage A Restart TLV included in every Graceful Restart enabled router’s HELLO PDUs. This enables the Information (re)starting as well as the existing ISIS peers to detect the GR capability of the routers on the connected network.
Page 832
Parameters interval Enter the keyword interval to set the wait time. Range: 5-120 seconds Default: 5 seconds retry-times Enter the keyword retry-times to set the number of times the request interval is extended until a CSNP is received from the helping router.
Page 833
Parameters adjacency adjacency so that the restarting router receives the Enter the keyword remaining time value from its peer and adjusts its T3 value accordingly if user has configured this option. manual manual to specify a time value that the restarting Enter the keyword router uses.
Page 834
hello padding Use to turn ON or OFF padding for LAN and point-to-point hello PDUs or to selectively turn padding ON or OFF for LAN or point-to-point hello PDUs. Syntax hello padding [multi-point | point-to-point] To return to default, use no hello padding [multi-point | point-to-point]. Parameters multi-point multi-point...
Page 835
Defaults In IS-IS, the default deletes LSPs with internal checksum errors (no ignore-lsp-errors). Command Modes ROUTER ISIS Usage IS-IS normally purges LSPs with an incorrect data link checksum, causing the LSP source to Information regenerate the message. A cycle of purging and regenerating LSPs can occur when a network link continues to deliver accurate LSPs even though there is a link causing data corruption.
Page 836
Usage You must configure a network entity title (the command) to specify the area address and the router Information system ID. You must enable routing on one or more interfaces to establish adjacencies and establish dynamic routing. Only one IS-IS routing process can be configured to perform Level 2 routing. A level-1-2 designation performs Level 1 and Level 2 routing at the same time.
Page 837
Parameters seconds Interval of transmission time between CSNPs on multi-access networks for the designated intermediate system. Range: 0 to 65535 Default: 10 level-1 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 1. level-2 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 2.
Page 838
isis hello-multiplier Specify the number of IS-IS hello packets a neighbor must miss before the router declares the adjacency down. Syntax isis hello-multiplier multiplier [level-1 | level-2] To return to the default values, enter no isis hello-multiplier [multiplier] [level-1 | level-2]. Parameters multiplier Specifies an integer that sets the multiplier for hello holding time.
Page 839
INTERFACE Command Version 7.5.1.0 Introduced on E-Series History Usage Dell Force10 recommends configuring metrics on all interfaces. Without configuring this command, Information the IS-IS metrics are similar to hop-count metrics. isis metric Assign a metric to an interface. Syntax isis metric default-metric [level-1 | level-2] To return to the default values, enter no isis metric [default-metric] [level-1 | level-2].
Page 840
Command Modes INTERFACE Usage Dell Force10 recommends configuring metrics on all interfaces. Without configuring this command, Information the IS-IS metrics are similar to hop-count metrics. isis network point-to-point Enable the software to treat a broadcast interface as a point-to-point interface.
Page 841
isis priority Set priority of the designated router you select. Syntax isis priority value [level-1 | level-2] To return to the default values, enter the no isis priority [value] [level-1 | level-2] command. Parameters value This value sets the router priority. The higher the value, the higher the priority. Range: 0 to 127 Default: 64 level-1...
Page 842
log-adjacency-changes Generate a log messages for adjacency state changes. Syntax log-adjacency-changes To disable this function, enter no log-adjacency-changes. Defaults Adjacency changes are not logged. Command Modes ROUTER ISIS Usage This command enables you to monitor adjacency state changes, which is useful when you monitor Information large networks.
Page 843
Usage LSP throttling slows down the frequency at which LSPs are generated during network instability. Even Information though throttling LSP generations slows down network convergence, no throttling can result in a network not functioning as expected. If network topology is unstable, throttling slows down the scheduling of LSP generations until the topology regains its stability.
Page 844
Defaults 900 seconds Command Modes ROUTER ISIS Command Version 7.5.1.0 Expanded to support LSP Throttling Enhancement History Usage The refresh interval determines the rate at which route topology information is transmitted preventing Information the information from becoming obsolete. The refresh interval must be less than the LSP lifetime specified with the max-lsp-lifetime command.
Page 845
Defaults 1200 seconds Command Modes ROUTER ISIS Usage Change the maximum LSP lifetime with this command. The maximum LSP lifetime must always be Information greater than the LSP refresh interval. The seconds parameter enables the router to keep LSPs for the specified length of time. If the value is higher, the overhead is reduced on slower-speed links.
Page 846
wide Allows you to configure the E-Series to generate and accept only new-style TLVs. Metric range: 0 to 16777215 level-1 Enables the metric style on Level 1. level-2 Enables the metric style on Level 2. Defaults narrow; if no Level is specified, Level-1 and Level-2 are configured. Command Modes ROUTER ISIS Usage...
Page 847
Defaults Not configured. Command Modes ROUTER ISIS passive-interface Suppress routing updates on an interface. This command stops the router from sending updates on that interface. Syntax passive-interface interface To delete a passive interface configuration, enter the no passive-interface interface command. Parameters interface Enter the following keywords and slot/port or number information:...
Page 848
metric metric-value (OPTIONAL) Assign a value to the redistributed route. Range: 0 to 16777215 Default: 0. You should use a value that is consistent with the destination protocol. metric-type external (OPTIONAL) The external link type associated with the default route advertised into a routing domain.
Page 849
redistribute bgp Redistribute routing information from a BGP process. (new command in Release 6.3.1) Syntax redistribute bgp AS number [level-1| level-1-2 | level-2] [metric metric-value] [metric-type {external internal ] [route-map map-name] To return to the default values, enter the no redistribute bgp command with the appropriate parameters.
Page 850
Usage BGP to IS-IS redistribution supports “match” options using route maps. The metric value, level, and Information metric-type of redistributed routes can be set by the redistribution command. More advanced “set” options can be performed using route maps. redistribute ospf Redistribute routing information from an OSPF process.
Page 851
Command Version 7.5.1.0 Introduced IPv6 ISIS support History Version 6.3.1.0 Introduced Usage How a metric value assigned to a redistributed route is advertised depends on how on the configuration Information of the metric-style command. If the metric-style command is set for narrow mode and the metric value in the redistribute ospf command is set to a number higher than 63, the metric value advertised in LSPs...
Page 852
Command Mode ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Usage Set the overload bit when a router experiences problems, such as a memory shortage due to an Information incomplete link state database which can result in an incomplete or inaccurate routing table. If you set the overload bit in its LSPs, other routers ignore the unreliable router in their SPF calculations until the router has recovered.
Page 853
Parameters level-1 (OPTIONAL) Displays the Level 1 IS-IS link-state database. level-2 (OPTIONAL) Displays the Level 2 IS-IS link-state database. local (OPTIONAL) Displays local link-state database information. detail (OPTIONAL) Detailed link-state database information of each LSP displays when specified. If not specified, a summary displays. summary (OPTIONAL) Summary of link-state database information displays when specified.
Page 854
Level 2 routers use the Attach bit to find the closest Level 2 router. They point a default route to the closest Level 2 router. This value represents the P bit. This bit will always set be zero as Dell Force10 does not support area partition repair.
Page 855
Example Figure 28-5. Command Example: show isis graceful-restart detail FTOS#show isis graceful-restart detail Configured Timer Value ====================== Graceful Restart : Enabled T3 Timer : Manual T3 Timeout Value : 30 T2 Timeout Value : 30 (level-1), 30 (level-2) T1 Timeout Value : 5, retry count: 1 Adjacency wait time : 30...
Page 856
Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. loopback • For Loopback interface, enter the keyword followed by a number from zero (0) to 16383.
Page 857
detail (OPTIONAL) Displays detailed information about neighbors. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: GigabitEthernet • For a Gigabit Ethernet interface, enter the keyword followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: C-Series and S-Series Range: 1-128...
Page 858
show isis protocol Display IS-IS routing information. Syntax show isis protocol Command Modes EXEC EXEC Privilege Example Figure 28-9. Command Example: show isis protocol FTOS#show isis protocol IS-IS Router: <Null Tag> System Id: F100.E120.0013 IS-Type: level-1-2 Manual area address(es): 49.0000.0001 Routing for area address(es): 49.0000.0001 Interfaces supported by IS-IS:...
Page 860
Parameters level-l level-1 (OPTIONAL) Enter the keyword to apply the configuration to Level-1 SPF calculations. level-2 level-2 (OPTIONAL) Enter the keyword to apply the configuration to Level-2 SPF calculations. interval seconds Enter the maximum number of seconds between SPF calculations. Range: 0 to 120 seconds Default: 10 seconds initial_wait_interval...
Page 861
Interfaces chapter), based on the standards specified in the IEEE 802.3 Carrier sense multiple access with collision detection (CSMA/CD) access method and physical layer specifications. Commands in this chapter generally are supported on all three Dell Force10 platforms — C-Series, c e s E-Series, and S-Series —...
Page 862
Defaults Without a Port Channel specified, the command clears all Port Channel counters. Command Modes EXEC EXEC Privilege Command Version 7.6.1.0 Support added for S-Series History Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced on E-Series Related show lacp Display the lacp configuration Commands debug lacp...
Page 863
lacp long-timeout Configure a long timeout period (30 seconds) for an LACP session. lacp long-timeout Syntax To reset the timeout period to a short timeout (1 second), use the no lacp long-timeout command. Defaults 1 second Command Modes INTERFACE (conf-if-po-number) Command Version 7.6.1.0 Support added for S-Series...
Page 864
lacp system-priority c e s Configure the LACP system priority. Syntax lacp system-priority priority-value Parameters priority-value Enter the system-priority value. The higher the value, the lower the priority. Range: 1 to 65535 Default: 32768 Defaults 32768 Command Modes CONFIGURATION Command Version 7.6.1.0 Support added for S-Series History...
Page 865
Table 29-1. LACP Modes Mode Function An interface is in an active negotiating state in this mode. LACP runs on any link active configured in the active state and also automatically initiates negotiation with other ports by initiating LACP packets. An interface is not in an active negotiating state in this mode.
Page 866
Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced Example 1 Figure 29-1. show lacp port-channel-number command FTOS#show lacp 1 Port-channel 1 admin up, oper up, mode lacp Actor System ID: Priority 32768, Address 0001.e800.a12b Partner System ID: Priority 32768, Address 0001.e801.45a5 Actor Admin Key 1, Oper Key 1, Partner Oper Key 1 LACP LAG 1 is an aggregatable link A - Active LACP, B - Passive LACP, C - Short Timeout, D - Long Timeout...
Page 867
MAC Addressing Commands • Virtual LAN (VLAN) Commands Some MAC addressing commands are supported only on the E-Series, some on all three Dell Force10 platforms and some on two Dell Force10 platforms. Support is indicated by these characters, where c e s...
Page 868
• show mac learning-limit clear mac-address-table dynamic c e s Clear the MAC address table of all MAC address learned dynamically. Syntax clear mac-address-table dynamic {address mac-address | all | interface interface | vlan vlan-id} Parameters address mac-address address Enter the keyword followed by a MAC address in nn:nn:nn:nn:nn:nn format.
Page 869
Defaults Not configured. Command Modes INTERFACE (available on physical interfaces only) Command Version 7.4.1.0 Introduced on E-Series History Usage You must place the interface in Layer 2 mode (using the switchport command) prior to configuring the Information command. mac accounting destination mac-address-table aging-time c e s Specify an aging time for MAC addresses to be removed from the MAC Address Table.
Page 870
Parameters mac-address Enter the 48-bit hexidecimal address in nn:nn:nn:nn:nn:nn format. output interface output Enter the keyword followed by one of the following interfaces: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: C-Series and S-Series Range: 1-128...
Page 871
Usage For information on the specific trap sent and the corresponding Syslog refer to Appendix , Information mac-address-table station-move time-interval Reduce the amount of time FTOS takes to detect aged entries and station moves. Syntax [no] mac-address-table station-move time-interval number Parameters time-interval number Select the interval of the successive scans of the MAC address table that are...
Page 872
mac cam fib-partition Reapportion the amount of Content Addressable Memory (CAM) available for MAC address learning (FIB) versus the amount available for MAC ACLs on a line card. Syntax mac cam fib-partition {25 | 50 | 75 | 100} slot-number To return to the default setting, enter no mac cam fib-partition.
Page 873
station-move station-move (OPTIONAL) Enter the keyword to allow a station move on learned MAC addresses. sticky (OPTIONAL) C-Series and S-Series only: Enter the keyword sticky to enable sticky MAC-address learning, which converts dynamically-learned MAC addresses on a port or port-channel interface to “sticky” MAC addresses that prevent trusted devices from moving to a different interface.
Page 874
When you enable sticky MAC-address learning (sticky), dynamically-learned MAC addresses of trusted devices are added to the running configuration and “stick” to the port or VLAN on which they are learned even if an interface goes down and comes back up. If you save sticky MAC addresses to the start-up configuration file by entering the write config command, the addresses are deleted from the running-configuration, do not have to be dynamically relearned, and do not change when the switch reboots.
Page 875
mac learning-limit station-move-violation c e s Specify the actions for a station move violation. mac learning-limit station-move-violation {log | shutdown-both | shutdown-offending | Syntax shutdown-original} To disable a configuration, use the no mac learning-limit station-move-violation command, followed by the configured keyword. Parameters Enter the keyword to generate a syslog message on a station move...
Page 876
show cam mac linecard (count) CAM size and the portions allocated for MAC addresses and for MAC ACLs. Display the Syntax show cam mac linecard slot port-set port-pipe count [vlan vlan-id] [interface interface] Parameters linecard slot linecard (REQUIRED) Enter the keyword followed by a slot number to select the linecard for which to gather information.
Page 877
Command Modes EXEC EXEC Privilege Command Version 7.6.1.0 Introduced on C-Series History Example Figure 30-1. show cam maccheck linecard Command Output Example FTOS#show cam maccheck linecard 2 port-set 0 Dumping entries. From 0 to 16383. Progress . marks 100 memory table entries......Index 5576 (0x15c8) has valid entries (H: 2b9, E: 0) <MAC_ADDR=0xffffffffffff,VLAN_ID=0xfff,PRI=0,CPU=0,DST_DISCARD=0,SRC_DISCARD=0,SCP =0,TGID_LO=0,PORT_TGID=0,TGID_PORT=0,T=0,TGID_HI=0,L2MC_PTR=0,MODULE_ID=0,REMOTE_T...
Page 878
show cam mac linecard (dynamic or static) CAM size and the portions allocated for MAC addresses and for MAC ACLs. Display the Syntax show cam mac linecard slot port-set port-pipe [address mac_addr | dynamic | interface interface | static | vlan vlan-id] Parameters linecard slot linecard...
Page 879
Example Figure 30-4. show cam mac linecard Command Example FTOS#show cam mac linecard 1 port-set 0 Port - (TableID) assignments: 00(01) 01(01) 02(01) 03(01) 04(01) 05(01) 06(01) 07(01) 08(01) 09(01) 10(01) 11(01) 12(01) 13(01) 14(01) 15(01) 16(01) 17(01) 18(01) 19(01) 20(01) 21(01) 22(01) 23(01) Index Table ID VlanId Mac Address...
Page 880
interface interface interface (OPTIONAL) Enter the keyword followed by the interface type, slot and port information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: S-Series Range: 1-128 •...
Page 881
interface interface interface (OPTIONAL) Enter the keyword followed by the interface type, slot and port information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to...
Page 882
Table 30-1. show mac-address-table Information (continued) Column Heading Description Interface Displays the interface type and slot/port information. The following abbreviations describe the interface types: • gi—Gigabit Ethernet followed by a slot/port. • po—Port Channel followed by a number. Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale •...
Page 883
Command vlan Version 8.3.1.0 Added the option on the E-Series. History Version 7.7.1.0 Introduced on C-Series and S-Series pre-Version 6.2.1.1 Introduced on E-Series Example Figure 30-7. show mac-address-table aging-time Command Example FTOS#show mac-address-table aging-time Mac-address-table aging time : 1800 FTOS# Related show mac-address-table Display the current MAC address configuration.
Page 884
show mac accounting destination destination counters for Layer 2 traffic (available on physical interfaces only). Display Syntax show mac accounting destination [mac-address vlan vlan-id] [interface interface [mac-address vlan vlan-id] [vlan vlan-id]] [vlan vlan-id] Parameters mac-address (OPTIONAL) Enter the MAC address in the nn:nn:nn:nn:nn:nn format to display information on that MAC address.
Page 885
show mac cam the CAM size and the portions allocated for MAC addresses and for MAC ACLs. Display show mac cam Syntax Command Modes EXEC EXEC Privilege Command pre-Version 6.2.1.1 Introduced on E-Series History Figure 30-9. show mac cam Command Example Example FTOS#show mac cam Slot...
Page 886
interface interface interface (OPTIONAL) Enter the keyword with the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. sonet • For SONET interfaces, enter the keyword followed by the slot/ port information.
Page 887
Virtual LAN (VLAN) Commands The following commands configure and monitor Virtual LANs (VLANs). VLANs are a virtual interface and use many of the same commands as physical interfaces. You can configure an IP address and Layer 3 protocols on a VLAN called Inter-VLAN routing. FTP, TFTP, ACLs and SNMP are not supported on a VLAN.
Page 888
default vlan-id c e s Specify a VLAN as the Default VLAN. Syntax default vlan-id vlan-id To remove the default VLAN status from a VLAN and VLAN 1 does not exist, use the no default vlan-id vlan-id syntax. Parameters vlan-id Enter the VLAN ID number of the VLAN to become the new Default VLAN.
Page 889
Defaults Disabled—VLAN counters are disabled in hardware (all linecards/port-pipes) by default. Command Modes CONFIGURATION Command Version 8.1.1.2 Introduced on E-Series ExaScale E600i History Version 8.1.1.0 Introduced on E-Series ExaScale E1200i Example FTOS(conf)#enable vlan-output-counters FTOS(conf)#exit FTOS#show interface vlan 101 Vlan 101 is down, line protocol is down Address is 00:01:e8:26:e0:5b, Current address is 00:01:e8:26:e0:5b Interface index is 1107787877 Internet address is not set...
Page 890
name c e s Assign a name to the VLAN. Syntax name vlan-name To remove the name from the VLAN, enter no name. Parameters vlan-name Enter up to 32 characters as the name of the VLAN. Defaults Not configured. Command Modes INTERFACE VLAN Command Version 7.6.1.0...
Page 891
show vlan c e s the current VLAN configurations on the switch. Display show vlan [brief | id vlan-id | name vlan-name] Syntax Parameters brief brief (OPTIONAL) Enter the keyword to display the following information: • VLAN ID • VLAN name (left blank if none is configured.) •...
Page 892
Table 30-4. show vlan Information Column Heading Description (Column 1 — no heading) asterisk symbol (*) = Default VLAN = GVRP VLAN = primary VLAN = community VLAN = isolated VLAN Displays existing VLAN IDs. Status Inactive Displays the word for inactive VLANs and the word Active for active VLANs.
Page 893
Figure 30-13. Example of Output of show vlan brief FTOS#show vlan br VLAN Name MAC Aging IP Address ---- -------------------------------- ---- --------- ------------------ 1800 unassigned 1800 2.2.2.2/24 1800 3.3.3.2/24 FTOS# Figure 30-14. Using VLAN Name FTOS(conf)#interface vlan 222 FTOS(conf-if-vl-222)#name test FTOS(conf-if-vl-222)#do show vlan name test Codes: * - Default VLAN, G - GVRP VLANs Q: U - Untagged, T - Tagged...
Page 894
Usage When you use the no tagged command, the interface is automatically placed in the Default VLAN as Information an untagged interface unless the interface is a member of another VLAN. If the interface belongs to several VLANs, you must remove it from all VLANs to change it to an untagged interface. Tagged interfaces can belong to multiple VLANs, while untagged interfaces can only belong to one VLAN at a time.
Page 895
Related interface vlan Configure a VLAN. Commands tagged Specify which interfaces in a VLAN are tagged. untagged c e s Add a Layer 2 interface to a VLAN as an untagged interface. Syntax untagged interface To remove an untagged interface from a VLAN, use the no untagged interface command. Parameters interface Enter the following keywords and slot/port or number information:...
Page 897
The FTOS implementation of LLDP is based on IEEE standard 801.1ab. The basic LLDP commands are supported by FTOS on all Dell Force10 systems, as indicated by the characters that appear below each command heading: •...
Page 898
The information distributed by LLDP is stored by its recipients in a standard Management Information Base (MIB). The information can be accessed by a network management system through a management protocol such as SNMP. See the Link Layer Discovery Protocol chapter of the FTOS Configuration Guide for details on implementing LLDP/LLDP-MED.
Page 899
Defaults No default values or behavior Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command Version 7.7.1.0 Introduced on S-Series History Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series advertise management c e s Advertise management TLVs (Type, Length, Value). Syntax advertise management -tlv {system-capabilities | system-description | system-name} To remove advertised management TLVs, use the no advertise management -tlv...
Page 900
Parameters interface Enter the following keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information. gigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. tenGigabitEthernet •...
Page 901
Parameters interface Enter the following keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information. gigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. tenGigabitEthernet •...
Page 902
show lldp neighbors Display the LLDP neighbors show running-config lldp Display the LLDP running configuration hello c e s Configure the rate at which the LLDP control packets are sent to its peer. Syntax hello seconds To revert to the default, use the no hello seconds command. Parameters seconds Enter the rate, in seconds, at which the control packets are sent to its peer.
Page 903
multiplier c e s Set the number of consecutive misses before LLDP declares the interface dead. multiplier integer Syntax To return to the default, use the no multiplier integer command. Parameters integer Enter the number of consecutive misses before the LLDP declares the interface dead. Range: 2 - 10 Defaults 4 x hello...
Page 904
Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series Usage LLDP must be enabled globally from CONFIGURATION mode, before it can be configured on an Information interface. This command places you in LLDP mode on the interface; it does not enable the protocol. When you enter the LLDP protocol in the Interface context, it overrides global configurations.
Page 905
show lldp statistics c e s Display the LLDP statistical information. show lldp statistics Syntax Defaults No default values or behavior Command Modes EXEC Privilege Command Version 7.7.1.0 Introduced on S-Series History Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series Example Figure 31-2.
Page 906
LLDP-MED Network Connectivity Device—any device that provides access to an IEEE 802 LAN to an LLDP-MED endpoint device, and supports IEEE 802.1AB (LLDP) and TIA-1057 (LLDP-MED). The Dell Force10 system is an LLDP-MED network connectivity device. With regard to connected endpoint devices, LLDP-MED provides network connectivity devices with the ability to: •...
Page 907
advertise med guest-voice c e s Configure the system to advertise a separate limited voice service for a guest user with their own IP telephony handset or other appliances that support interactive voice services. Syntax advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command.
Page 908
DSCP_value Enter the DSCP value. Range: 0 to 63 priority-tagged number priority-tagged Enter the keyword followed the Layer 2 priority. Range: 0 to 7 Defaults unconfigured Command Modes CONFIGURATION (conf-lldp) Command Version 7.7.1.0 Introduced on S-Series History Version 7.6.1.0 Introduced on C-Series and E-Series Related debug lldp interface Debug LLDP...
Page 909
Related debug lldp interface Debug LLDP Commands show lldp neighbors Display the LLDP neighbors show running-config lldp Display the LLDP running configuration advertise med power-via-mdi Configure the system to advertise the Extended Power via MDI TLV. Syntax advertise med power-via-mdi To return to the default, use the no advertise med power-via-mdi command.
Page 910
Command Modes CONFIGURATION (conf-lldp) Command Version 7.7.1.0 Introduced on S-Series History Version 7.6.1.0 Introduced on C-Series and E-Series Related debug lldp interface Debug LLDP Commands show lldp neighbors Display the LLDP neighbors show lldp neighbors Display the LLDP running configuration advertise med streaming-video c e s Configure the system to advertise streaming video services for broadcast or multicast-based video.
Page 911
advertise med video-conferencing c e s Configure the system to advertise dedicated video conferencing and other similar appliances that support real-time interactive video. Syntax advertise med video-conferencing {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med video-conferencing {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command.
Page 912
DSCP_value Enter the DSCP value (C-Series and E-Series only). Range: 0 to 63 priority-tagged number priority-tagged Enter the keyword followed the Layer 2 priority. Range: 0 to 7 Defaults unconfigured Command Modes CONFIGURATION (conf-lldp) Command Version 7.7.1.0 Introduced on S-Series History Version 7.6.1.0 Introduced on C-Series and E-Series...
Page 913
advertise med voice-signaling c e s Configure the system to advertise when voice control packets use a separate network policy than voice data. Syntax advertise med voice-signaling {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med voice-signaling {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command.
Page 915
Multicast Listener Discovery (MLD) Overview The platforms on which a command is supported is indicated by the character — for the E-Series, for the C-Series, and for the S-Series — that appears below each command heading. This chapter contains the following sections: •...
Page 916
Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. port-channel • For a Port Channel interface, enter the keyword followed by a number: E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
Page 917
Command Version 7.4.1.0 Introduced History ipv6 mld explicit-tracking Enable MLD explicit tracking of receivers. Syntax ipv6 mld explicit-tracking To disable explicit tracking, use the no ipv6 mld explicit-tracking command. Defaults Disabled Command Modes INTERFACE (conf-if) Command Version 7.4.1.0 Introduced History Usage If snooping is enabled on the VLAN, this command has no effect.
Page 918
Parameters seconds Enter the querier timeout in seconds. Range: 60 - 300 Default: 255 Defaults 255 seconds Command Modes INTERFACE (conf-if) Command Version 7.4.1.0 Introduced History ipv6 mld query-interval Change the transmission frequency of the MLD host. Syntax ipv6 mld query-interval {seconds} To return to the default interval, use the no ipv6 mld query-interval command.
Page 919
ipv6 mld static-group Configure an MLD static group to exclude or include mode. ipv6 mld static-group group-address {exclude [source-address] | include source-address} Syntax To return to default, use the no ipv6 mld static-group group-address {exclude [source-address] | include source-address} command. Parameters group-address x:x:x:x::x...
Page 920
Parameters explicit Enter this keyword to display explicit tracking information. link-local Enter this keyword to display link-local groups. group-address Enter the group address for which you want to display information. interface interface interface Enter the keyword followed by the interface type. detail View detailed group information.
Page 921
Parameters interface interface Enter the keyword to display the configured MDL interfaces. Optionally, interface interface enter the keyword followed by one of the keywords below, with slot/port or number information, to display information for that specific interface: GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 923
ipv6 mld snooping Enable MLD Snooping (v1 and v2) on a VLAN. ipv6 mld snooping Syntax To disable MLD Snooping, use the no ipv6 mld snooping command. Defaults Enabled on all VLAN interfaces Command Modes INTERFACE VLAN (conf-if-vl-n) Command Version 7.4.1.0 Introduced History ipv6 mld snooping explicit-tracking...
Page 924
Command Modes INTERFACE VLAN (conf-if-vl-n) Command Version 7.4.1.0 Introduced History ipv6 mld snooping querier Enable the MLD querier processing for the VLAN interface. Syntax ipv6 mld snooping querier To disable the querier feature, use the no ipv6 mld snooping querier command. Defaults Disabled Command Modes...
Page 925
Example Figure 32-3. show ipv6 mld snooping groups summary Command Example FTOS#show ipv6 mld snooping groups summary MLD snooping connected groups summary: (*,G) routes :12 FTOS# show ipv6 mld snooping mrouter Display information on the MLD Snooping router. Syntax show ipv6 mld snooping mrouter [vlan] Parameters vlan vlan...
Page 927
Multicast Source Discovery Protocol (MSDP) Overview MSDP (Multicast Source Discovery Protocol) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections.
Page 928
Defaults Not configured Command Modes EXEC Privilege Command Version 6.2.1.1 Introduced History clear ip msdp sa-cache Clears the entire source-active cache, the source-active entries of a particular multicast group, rejected, or local source-active entries. Syntax clear ip msdp sa-cache [group-address | rejected-sa | local] Parameters group-address Enter the group IP address in dotted decimal format (A.B.C.D.)
Page 929
Command Version 6.2.1.1 Introduced History ip msdp cache-rejected-sa Enable a MSDP cache for the rejected source-active entries. Syntax ip msdp cache-rejected-sa {number} To clear the MSDP rejected source-active entries, use the no ip msdp cache-rejected-sa {number} command followed by the ip msdp cache-rejected-sa {number} command. Parameters number Enter the number of rejected SA entries to cache.
Page 930
ip msdp log-adjacency-changes Enable logging of MSDP adjacency changes. Syntax ip msdp log-adjacency-changes To disable logging, use the no ip msdp log-adjacency-changes command. Defaults Not configured Command Modes CONFIGURATION Command Version 6.2.1.1 Introduced History ip msdp mesh-group Configure a peer to be a member of a mesh group. Syntax ip msdp mesh-group {name} {peer address} To remove the peer from a mesh group, use the no ip msdp mesh-group {name} {peer address}...
Page 931
Parameters interface Enter the following keywords and slot/port or number information: FastEthernet • For a Fast Ethernet interface, enter the keyword followed by the slot/port information. GigabitEthernet • For a 1-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. loopback •...
Page 932
description name description (OPTIONAL) Enter the keyword followed by a description name (max 80 characters) to designate a description for the MSDP peer. sa-limit number (OPTIONAL) Enter the maximum number of SA entries in SA-cache. Range: 1 to 500000 Default: 500000 Defaults As above Command Modes...
Page 933
ip msdp sa-filter Permit or deny MSDP source active (SA) messages based on multicast source and/or group from the specified peer. Syntax ip msdp sa-filter {in | out} peer-address list [access-list name] Remove this configuration using the command no ip msdp sa-filter {in | out} peer address list [access-list name] Parameters Enter the keyword...
Page 934
Related ip msdp peer Configure the MSDP peer Commands clear ip msdp peer Clear the MSDP peer. show ip msdp Display the MSDP information ip msdp shutdown Administratively shut down a configured MSDP peer. Syntax ip msdp shutdown {peer address} Parameters peer address Enter the peer address in a dotted decimal format (A.B.C.D.)
Page 935
Command Modes EXEC EXEC Privilege Command Version 6.2.1.1 Introduced History Example 1 Figure 33-1. show ip msdp peer Command Example FTOS#show ip msdp peer 100.1.1.1 Peer Addr: 100.1.1.1 Local Addr: 100.1.1.2(639) Connect Source: none State: Established Up/Down Time: 00:00:08 Timers: KeepAlive 60 sec, Hold time 75 sec SourceActive packet count (in/out): 0/0...
Page 936
Example Figure 33-4. show ip msdp sa-cache rejected-sa Command Example FTOS#sh ip msdp sa-cache rejected-sa MSDP Rejected SA Cache 200 rejected SAs received, cache-size 1000 UpTime GroupAddr SourceAddr RPAddr LearnedFrom Reason 00:00:13 225.1.2.1 10.1.1.3 110.1.1.1 13.1.1.2 Rpf-Fail 00:00:13 225.1.2.2 10.1.1.4 110.1.1.1 13.1.1.2 Rpf-Fail...
Page 937
Overview Multiple Spanning Tree Protocol (MSTP), as implemented by FTOS, conforms to IEEE 802.1s. MSTP is supported by FTOS on all Dell Force10 systems (C-Series, E-Series, and S-Series), as indicated by the characters that appear below each command heading: •...
Page 938
debug spanning-tree mstp c e s Enable debugging of Multiple Spanning Tree Protocol and view information on the protocol. Syntax debug spanning-tree mstp [all | bpdu interface {in | out} | events] To disable debugging, enter no debug spanning-tree mstp. Parameters (OPTIONAL) Enter the keyword to debug all spanning tree operations.
Page 939
description c e s Enter a description of the Multiple Spanning Tree description {description} Syntax To remove the description, use the no description {description} command. Parameters description Enter a description to identify the Multiple Spanning Tree (80 characters maximum). Defaults No default behavior or values Command Modes SPANNING TREE (The prompt is “config-mstp”.)
Page 940
forward-delay c e s The amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. Syntax forward-delay seconds To return to the default setting, enter no forward-delay. Parameters seconds Enter the number of seconds the interface waits in the Blocking State and the Learning State before transiting to the Forwarding State.
Page 941
Related forward-delay The amount of time the interface waits in the Blocking State and the Learning State Commands before transitioning to the Forwarding State. max-age Change the wait time before MSTP refreshes protocol configuration information. max-age c e s Set the time interval for the Multiple Spanning Tree bridge to maintain configuration information before refreshing that information.
Page 942
max-hops c e s Configure the maximum hop count. Syntax max-hops number To return to the default values, enter no max-hops. Parameters range Enter a number for the maximum hop count. Range: 1 to 40 Default: 20 Defaults 20 hops Command Modes MULTIPLE SPANNING TREE Command...
Page 943
Command Version 7.6.1.0 Added support for S-Series History Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series Usage By default, all VLANs are mapped to MST instance zero (0) unless you use the vlan range command Information to map it to a non-zero instance. name c e s The name you assign to the Multiple Spanning Tree region.
Page 944
protocol spanning-tree mstp c e s Enter the MULTIPLE SPANNING TREE mode to enable and configure the Multiple Spanning Tree group. Syntax protocol spanning-tree mstp To disable the Multiple Spanning Tree group, enter no protocol spanning-tree mstp command. Defaults Not configured. Command Modes CONFIGURATION Command...
Page 945
revision c e s The revision number for the Multiple Spanning Tree configuration revision range Syntax To return to the default values, enter no revision. Parameters range Enter the revision number for the MST configuration. Range: 0 to 65535 Default: 0 Defaults Command Modes MULTIPLE SPANNING TREE...
Page 946
show spanning-tree mst configuration c e s View the Multiple Spanning Tree configuration. Syntax show spanning-tree mst configuration Command Modes EXEC EXEC Privilege Command Version 7.6.1.0 Added support for S-Series History Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series Example Figure 34-4.
Page 947
show spanning-tree msti c e s View the Multiple Spanning Tree instance. show spanning-tree msti [instance-number [brief]] [guard] Syntax Parameters instance-number [Optional] Enter the Multiple Spanning Tree Instance number Range: 0 to 63 brief [Optional] Enter the keyword brief to view a synopsis of the MST instance. guard [Optional] Enter the keyword guard to display the type of guard enabled on an MSTP interface and the current port state.
Page 948
Example 2 Figure 34-6. show spanning-tree msti with EDS and LBK FTOS#show spanning-tree msti 0 brief MSTI 0 VLANs mapped 1-4094 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15, max hops 20 Bridge ID Priority 32768, Address 0001.e801.6aa8 We are the root of MSTI 0 (CIST)
Page 949
spanning-tree c e s Enable Multiple Spanning Tree Protocol on the interface. Syntax spanning-tree To disable the Multiple Spanning Tree Protocol on the interface, use no spanning-tree Parameters spanning-tree spanning-tree Enter the keyword to enable the MSTP on the interface. Default: Enable Defaults Enable...
Page 950
Command Version 7.6.1.0 Added support for S-Series History Version 7.5.1.0 Added support for C-Series Version 6.5.1.0 Introduced on E-Series spanning-tree mstp c e s Configures a Layer 2 MSTP interface as an edge port with (optionally) a Bridge Protocol Data Unit (BPDU) guard, or enables the root guard or loop guard feature on the interface.
Page 951
Enabling Portfast BPDU guard and loop guard at the same time on a port results in a port that remains in a blocking state and prevents traffic from flowing through it. For example, when Portfast BPDU guard and loop guard are both configured: •...
Page 953
Multicast Overview The platforms on which a command is supported is indicated by the character — for the E-Series, for the C-Series, and for the S-Series — that appears below each command heading. This chapter contains the following sections: • IPv4 Multicast Commands •...
Page 954
clear ip mroute c e s Clear learned multicast routes on the multicast forwarding table. To clear the PIM tree information base, use clear ip pim tib command. Syntax clear ip mroute {group-address [source-address] | *} Parameters group-address Enter multicast group address and source address (if desired), in dotted decimal format, to clear information on a specific group.
Page 955
ip mroute show ip pim tib Show the PIM Tree Information Base. c e s Assign a static mroute. Syntax ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] To delete a specific static mroute, use the command ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance].
Page 956
ip multicast-lag-hashing Distribute multicast traffic among Port Channel members in a round-robin fashion. Syntax ip multicast-lag-hashing To revert to the default, enter no ip multicast-lag-hashing. Defaults Disabled Command Modes CONFIGURATION Command Version 6.3.1.0 Introduced for E-Series History Usage By default, one Port Channel member is chosen to forward multicast traffic. With this feature turned Information on, multicast traffic will be distributed among the Port Channel members in a round-robin fashion.
Page 957
ip multicast-limit c e s Use this feature to limit the number of multicast entries on the system. ip multicast-limit limit Syntax Parameters limit Enter the desired maximum number of multicast entries on the system. E-Series Range: 1 to 50000 E-Series Default: 15000 C-Series Range: 1 to 10000 C-Series Default: 4000...
Page 958
ip multicast-mode l2 Enable Layer 2 multicast switching. Syntax ip multicast-mode l2 To return to the default Layer 3 multicast forwarding on the router, enter the no ip multicast-mode l2 command after you remove the static multicast MAC address ( no mac-address-table static multicast multicast-mac-address command).
Page 959
mac-address-table static Configure a static multicast MAC address, associate the multicast MAC address with the VLAN used to switch Layer 2 multicast traffic, and add output ports that will receive multicast streams on the VLAN. To delete a configured static multicast MAC address from the MAC address table on the router, enter multicast-mac-address command.
Page 960
mac-flood-list Provide an exception to the restrict-flood configuration so that multicast frames within a specified MAC address range to be flooded on all ports in a VLAN. Syntax mac-flood-list mac-address mask vlan vlan-list [min-speed speed] Parameters mac-address Enter a multicast MAC address in hexadecimal format. mac-mask Enter the MAC Address mask.
Page 961
mtrace Trace a multicast route from the source to the receiver. Syntax mtrace {source-address/hostname} {destination-address/hostname} {group-address} Parameters source-address/ Enter the source IP address in dotted decimal format (A.B.C.D). hostname destination-address/ Enter the destination (receiver) IP address in dotted decimal format (A.B.C.D). hostname group-address Enter the multicast group address in dotted decimal format (A.B.C.D).
Page 962
queue backplane multicast Reallocate the amount of bandwidth dedicated to multicast traffic. Syntax queue backplane multicast bandwidth-percentage percentage Parameters percentage Enter the percentage of backplane bandwidth to be dedicated to multicast traffic. Range: 5-95 Defaults 80% of the scheduler weight is for unicast traffic and 20% is for multicast traffic by default. Command Modes CONFIGURATION Command...
Page 963
restrict-flooding Prevent Layer 2 multicast traffic from being flooded on ports below a specified link speed. Syntax restrict-flooding multicast min-speed speed Parameters min-speed min-speed Enter the minimum link speed that a port must have to receive flooded multicast traffic. Range: 1000 Defaults None Command Modes...
Page 964
show ip mroute c e s View the Multicast Routing Table. Syntax show ip mroute [static | group-address [source-address] | active [rate] | count | snooping [vlan vlan-id] [group-address [source-address]] | summary] Parameters static (OPTIONAL) Enter the keyword static to view static multicast routes. group-address (OPTIONAL) Enter the multicast group-address to view only routes associated [source-address]...
Page 966
show ip rpf c e s View reverse path forwarding. Syntax show ip rpf Command Modes EXEC EXEC Privilege Command E-Series legacy command History Usage Static mroutes are used by network administrators to control the reachability of the multicast sources. Information If a PIM registered multicast source is reachable via static mroute as well as unicast route, the distance of each route is examined and the route with shorter distance is the one the PIM selects for reachability.
Page 967
show mac-address-table static multicast current configuration of Layer 2 multicast switching on a router. Display information on the show mac-address-table static multicast [multicast-mac-address [vlan vlan-id] | vlan Syntax vlan-id | count [vlan vlan-id]] Parameters multicast-mac-address Enter the static multicast MAC address in nn:nn:nn:nn:nn:nn format and (optionally) the VLAN ID of a VLAN used to switch Layer 2 multicast [vlan vlan-id] traffic on the router.
Page 968
Table 35-2. show mac-address-table static multicast Information Column Heading Description L2MCIndex Displays the Layer 2 multicast index used to represent a group of outbound interfaces. The L2 multicast index is a hardware-specific index that is used an internal command and useful for debugging purposes. Range: 0 - 1023. Interfaces Displays the interface type and slot/port of output ports assigned to the VLAN used for Layer 2 multicast forwarding, where the following abbreviations are used for output...
Page 969
show queue backplane multicast Display the backplane bandwidth configuration about how much bandwidth is dedicated to multicast versus unicast. Syntax show queue backplane multicast bandwidth-percentage Defaults None Command Modes EXEC EXEC Privilege Command Version 7.7.1.0 Introduced on E-Series History Example Figure 35-8.
Page 970
IPv6 Multicast Commands IPv6 Multicast commands are: • clear ipv6 mroute • ipv6 multicast-limit • ip multicast-routing • show ipv6 mroute • show ipv6 mroute mld • show ipv6 mroute summary clear ipv6 mroute Clear learned multicast routes on the multicast forwarding table. To clear the PIM tib, use clear ip pim command.
Page 971
ipv6 multicast-limit Limit the number of multicast entries on the system. Syntax ipv6 multicast-limit limit Parameters limit Enter the desired maximum number of multicast entries on the system. Range: 1 to 50000 Default: 15000 Defaults 15000 routes Command Modes CONFIGURATION Command Version 8.3.1.0 Introduced...
Page 972
show ipv6 mroute View IPv6 multicast routes. Syntax show ipv6 mroute [group-address [source-address]] [ active rate] count group-address source source-address]] Parameters group-address (OPTIONAL) Enter the IPv6 multicast group-address to view only routes associated with that group. Optionally, enter the IPv6 source-address source-address to view routes with that group-address and source-address.
Page 973
Example Figure 35-10. show ipv6 mroute active Command Example FTOS#show ipv6 mroute active 10 Active Multicast Sources - sending >= 10 pps Group: ff05:300::1 Source: 165:87:31::30 Rate: 100 pps Group: ff05:3300::1 Source: 165:87:31::30 Rate: 100 pps Group: ff3e:300::4000:1 Source: 165:87:31::20 Rate: 100 pps Group: ff3e:3300::4000:1 Source: 165:87:31::20...
Page 974
show ipv6 mroute mld Display the Multicast MLD information. Syntax show ipv6 mroute group-address vlan vlan-id Parameters (OPTIONAL) Enter the keyword mld to display Multicast MLD information. group-address x:x:x:x::x (OPTIONAL) Enter the multicast group address in the format. notation specifies successive hexadecimal fields of zero. (OPTIONAL) Enter the keyword all to view all the MLD information.
Page 975
show ipv6 mroute summary Display a summary of the Multicast routing table. show ipv6 mroute summary Syntax Defaults No default values or behavior Command Modes EXEC EXEC Privilege Command Version 7.4.1.0 Introduced History Example Figure 35-14. show ipv6 mroute summary Command Example FTOS#show ipv6 mroute summary IP Multicast Routing Table 12 groups, 12 routes...
Page 977
Neighbor Discovery Protocol (NDP) Overview Neighbor Discovery Protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4. It defines mechanisms for solving the following problems: •...
Page 978
• ipv6 nd suppress-ra • ipv6 neighbor • show ipv6 neighbors clear ipv6 neighbors Delete all entries in the IPv6 neighbor discovery cache, or neighbors of a specific interface. Static entries will not be removed using this command. Syntax clear ipv6 neighbors ipv6-address interface Parameters...
Page 979
ipv6 nd max-ra-interval Configure the interval between the IPv6 router advertisement (RA) transmissions on an interface. ipv6 nd max-ra-interval {interval} min-ra-interval {interval} Syntax To restore the default interval, use the no ipv6 nd max-ra-interval command. Parameters max-ra-interval max-ra-interval interval Enter the keyword followed by the interval in seconds.
Page 980
ipv6 nd other-config-flag Set the other stateful configuration flag in the IPv6 router advertisement. The description of this flag from RFC 2461 (http://tools.ietf.org/html/rfc2461) is: O: 1-bit “Other stateful configuration” flag. When set, hosts use the administered (stateful) protocol for autoconfiguration of other (non-address) information. The use of this flag is described in: Thomson, S.
Page 981
ipv6 nd ra-lifetime Configure the router lifetime value in the IPv6 router advertisements on an interface. The description of router lifetime from RFC 2461(http://tools.ietf.org/html/rfc2461) is: Router Lifetime: 16-bit unsigned integer. The lifetime associated with the default router in units of seconds.
Page 982
Defaults Enabled Command Modes INTERFACE ipv6 neighbor Configure a static entry in the IPv6 neighbor discovery. Syntax ipv6 neighbor {ipv6-address} {interface interface} {hardware_address} To remove a static IPv6 entry from the IPv6 neighbor discovery, use the no ipv6 neighbor {ipv6-address} {interface interface} command. Parameters ipv6-address x:x:x:x::x...
Page 983
Enter the keyword followed by either (Route Processor 1 or 2), optionally followed by an IPv6 address to display the IPv6 neighbor entries stored on the designated RP. fastEthernet interface interface • For a Fast Ethernet interface, enter the keyword followed by the slot/port information.
Page 985
Object Tracking c e s Object Tracking supports IPv4 and IPv6, and is available on platforms: Overview Object tracking allows you to define objects of interest, monitor their state, and report to a client when a change in an object’s state occurs. The following tracked objects are supported: •...
Page 986
debug track c e s Enables debugging for tracked objects. Syntax debug track [all | notifications | object-id] Parameters Enables debugging on the state and notifications of all tracked objects. notifications Enables debugging on the notifications of all tracked objects. object-id Enables debugging on the state and notifications of the specified tracked object.
Page 987
delay c e s Configure the time delay used before communicating a change in the status of a tracked object to clients. Syntax delay {[up seconds] [down seconds]} To return to the default setting, enter no delay. Parameters seconds Enter the number of seconds the object tracker waits before sending a notification about the change in the UP and/or DOWN state of a tracked object to clients.
Page 988
description c e s Enter a description of a tracked object. Syntax description {text} To remove the description, enter the no description {text} command. Parameters text Enter a description to identify a tracked object (80 characters maximum). Defaults No default behavior or values Command Modes OBJECT TRACKING (conf_track_object-id) Command...
Page 989
show running-config track c e s Display the current configuration of tracked objects. show running-config track [object-id] Syntax Parameters object-id (OPTIONAL) Display information on the specified tracked object. Range: 1 to 65535. Command Modes EXEC Privilege Command Version 8.4.1.0 Introduced History Related show track...
Page 990
show track c e s Display information about tracked objects, including configuration, current tracked state (UP or DOWN), and the clients which are tracking an object. Syntax show track [object-id [brief] | interface [brief] [vrf vrf-name] | ip route [brief] [vrf vrf-name] | resolution | vrf vrf-name [brief] | brief] Parameters object-id...
Page 991
Example Figure 37-1. Command Example: show track FTOS#show track Track 1 IP route 23.0.0.0/8 reachability Reachability is Down (route not in route table) 2 changes, last change 00:16:08 Tracked by: Track 2 IPv6 route 2040::/64 metric threshold Metric threshold is Up (STATIC/0/0) 5 changes, last change 00:02:16 Metric threshold down 255 up 254 First-hop interface is GigabitEthernet 13/2...
Page 992
Table 37-2. Command Example Description: show track brief ResID Number of the tracked object Resource Type of tracked object Parameter Detailed description of the tracked object State Up or Down state of the tracked object Last Change Time since the last change in the state of the tracked object threshold metric c e s Configure the metric threshold used to determine the UP and/or DOWN state of a tracked IPv4 or IPv6...
Page 993
• If the scaled metric for a route entry is less than or equal to the UP threshold, the state of a route is • If the scaled metric for a route is greater than or equal to the DOWN threshold or the route is not entered in the routing table, the state of a route is DOWN.
Page 994
ip-address/ Enter an IPv4 address in dotted decimal format. Valid IPv4 prefix lengths are from /0 to /32. prefix-len vrf vrf-name (Optional) E-Series only: You can configure a VPN routing and forwarding (VRF) instance to specify the virtual routing table to which the tracked route belongs. Defaults None Command Modes...
Page 995
Parameters object-id Enter the ID number of the tracked object. Range: 1 to 65535. ip-address/ Enter an IPv4 address in dotted decimal format. Valid IPv4 prefix lengths are from /0 to / prefix-len vrf vrf-name (Optional) E-Series only: You can configure a VPN routing and forwarding (VRF) instance to specify the virtual routing table to which the tracked route belongs.
Page 996
track interface ip routing c e s Configure object tracking on the routing status of an IPv4 Layer 3 interface. Syntax track object-id interface interface ip routing To return to the default setting, enter no track object-id. Parameters object-id Enter the ID number of the tracked object. Range: 1 to 65535. interface Enter one of the following values: For a 1-Gigabit Ethernet interface, enter gigabitethernet slot-number/...
Page 997
track interface line-protocol c e s Configure object tracking on the line-protocol state of a Layer 2 interface. Syntax track object-id interface interface line-protocol To return to the default setting, enter no track object-id. Parameters object-id Enter the ID number of the tracked object. Range: 1 to 65535. interface Enter one of the following values: For a 1-Gigabit Ethernet interface, enter gigabitethernet slot-number/...
Page 998
track resolution ip route c e s Configure the protocol-specific resolution value used to scale an IPv4 route metric. Syntax track resolution ip route {isis resolution-value | ospf resolution-value} To return to the default setting, enter no track object-id. Parameters object-id Enter the ID number of the tracked object.
Page 999
IPv6 Object Tracking Commands The IPv6 object tracking commands are: • show track ipv6 route • track interface ipv6 routing • track ipv6 route metric threshold • track ipv6 route reachability • track resolution ipv6 route The following object tracking commands apply to IPv4 and IPv6: •...
Page 1000
Example Figure 37-3. Command Example: show track ipv6 route FTOS#show track ipv6 route Track 2 IPv6 route 2040::/64 metric threshold Metric threshold is Up (STATIC/0/0) 5 changes, last change 00:02:30 Metric threshold down 255 up 254 First-hop interface is GigabitEthernet 13/2 Tracked by: VRRP GigabitEthernet 7/30 IPv6 VRID 1 Track 3...