H3C S12500-X Series Command Reference Manual
  1. Manuals
  2. Brands
  3. H3C Manuals
  4. Switch
  5. S12500-X
  6. Command reference manual
H3C S12500-X Series Command Reference Manual

H3C S12500-X Series Command Reference Manual

Vxlan command reference
Hide thumbs Also See for S12500-X Series:
Table of Contents

Advertisement

Quick Links

Download this manual
H3C S12500-X & S12500X-AF Switch Series
VXLAN Command Reference
Hangzhou H3C Technologies Co., Ltd.
http://www.h3c.com
Software version: Release 1135 and later
Document version: 6W101-20151130

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the S12500-X Series and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for H3C S12500-X Series

Summary of Contents for H3C S12500-X Series

  • Page 1 H3C S12500-X & S12500X-AF Switch Series VXLAN Command Reference Hangzhou H3C Technologies Co., Ltd. http://www.h3c.com Software version: Release 1135 and later Document version: 6W101-20151130...
  • Page 2 Copyright ©2015, Hangzhou H3C Technologies Co., Ltd. and its licensors All rights reserved No part of this manual may be reproduced or transmitted in any form or by any means without prior written consent of Hangzhou H3C Technologies Co., Ltd.
  • Page 3 Preface The H3C S12500-X & S12500X-AF documentation set includes 17 command references. These references describe the commands and command syntax options available for the H3C S12500-X & S12500X-AF Switch Series running Release 1135 and later. The VXLAN Command Reference describes the commands for configuring VXLAN.
  • Page 4 GUI conventions Convention Description Window names, button names, field names, and menu items are in Boldface. For Boldface example, the New User window appears; click OK. Multi-level menus are separated by angle brackets. For example, File > Create > > Folder.
  • Page 5 Obtaining documentation Access the most up-to-date H3C product documentation on the World Wide Web at http://www.h3c.com. Click the links on the top navigation bar to obtain different categories of product documentation: [Technical Support & Documents > Technical Documents]—Provides hardware installation, software upgrading, and software feature configuration and maintenance documentation.

  • Page 6: Table Of Contents

    Contents VXLAN commands ··········································································· 1     Basic VXLAN commands ············································································································· 1   arp suppression enable ········································································································ 1   description ························································································································· 2   destination ························································································································· 2   display arp suppression vsi ···································································································· 3   display igmp host group ········································································································ 4  ...
  • Page 7   OVSDB commands ·················································································································· 49   ovsdb server bootstrap ca-certificate ····················································································· 49   ovsdb server enable ··········································································································· 50   ovsdb server pki domain ····································································································· 50   ovsdb server pssl ·············································································································· 51   ovsdb server ptcp ·············································································································· 52   ovsdb server ssl ················································································································ 53  ...

  • Page 8: Vxlan Commands

    VXLAN commands Only FC, FE, and FX cards support VXLANs. FC cards cannot provide VXLAN IP gateway services. An FE or FX card cannot connect to a user site if it acts as a centralized VXLAN IP gateway. Before you can configure VXLANs, you must perform the following tasks: •...

  • Page 9: Description

    Examples # Enable ARP flood suppression for the VSI vsi1. <Sysname> system-view [Sysname] vsi vsi1 [Sysname-vsi-vsi1] arp suppression enable Related commands • display arp suppression vsi • reset arp suppression vsi description Use description to configure a description for a VSI. Use undo description to delete the description of a VSI.

  • Page 10: Display Arp Suppression Vsi

    Default No destination address is specified for a tunnel. Views Tunnel interface view Predefined user roles network-admin mdc-admin Parameters ipv4-address: Specifies an IPv4 address. Examples # Specify the source address 193.101.1.1 and destination address 192.100.1.1 for Tunnel 1 on Sysname 1. <Sysname1>...

  • Page 11: Display Igmp Host Group

    Parameters name vsi-name: Specifies a VSI by its name. If you do not specify a VSI, this command displays entries for all VSIs. slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays entries on the active MPU.
  • Page 12 Views Any view Predefined user roles network-admin network-operator mdc-admin mdc-operator Parameters group-address: Specifies a multicast group address. The value range is 224.0.1.0 to 239.255.255.255. If you do not specify a multicast group, this command displays information about all multicast groups. interface interface-type interface-number: Specifies an interface by its type and number.

  • Page 13: Display L2Vpn Mac-Address

    Table 2 Command output Field Description IGMP host groups in total Total number of multicast groups that contain IGMP host-enabled interfaces. Vlan-interface10(1.1.1.20) Name and IP address of the IGMP host-enabled interface. IGMP host groups in total Total number of multicast groups on the interface. Group address/Group Address of the multicast group.

  • Page 14: Display L2Vpn Service-Instance

    dynamic remote- and local-MAC entries, manually added static remote-MAC entries, and remote-MAC entries issued through OpenFlow. VXLAN does not support static local-MAC entries. count: Displays the number of MAC address entries. If you do not specify this keyword, the command displays detailed information about MAC address entries. Examples # Display MAC address entries for all VSIs.
  • Page 15 Views Any view Predefined user roles network-admin network-operator mdc-admin mdc-operator Parameters interface interface-type interface-number: Specifies a Layer 2 Ethernet interface or Layer 2 aggregate interface by its interface type and number. If you do not specify an interface, this command displays Ethernet service instance information for all Layer 2 Ethernet interfaces and Layer 2 aggregate interfaces.
  • Page 16 # Display detailed information about all Ethernet service instances on FortyGigE 1/0/3. <Sysname> display l2vpn service-instance interface fortygige 1/0/3 verbose Interface: FGE1/0/3 Service Instance: 1 Encapsulation : s-vid 16 VSI Name : vsi10 Link ID State : Up Statistics : Enabled Input Statistics: Octets Packets...

  • Page 17: Display L2Vpn Vsi

    Field Description Incoming traffic statistics: • Octets—Number of incoming bytes. Input Statistics • Packets—Number of incoming packets. This field is available in Release 1138P01 and later versions. Outgoing traffic statistics: • Octets—Number of outgoing bytes. Output Statistics • Packets—Number of outgoing packets. This field is available in Release 1138P01 and later versions.
  • Page 18 Broadcast Restrain Multicast Restrain Unknown Unicast Restrain: - MAC Learning : Enabled MAC Table Limit Drop Unknown Flooding : Enabled Statistics : Enabled Input statistics: Octets Packets Errors Discards : 0 Output statistics: Octets Packets Errors Discards : 0 Gateway Interface : VSI-interface 100 VXLAN ID : 10...
  • Page 19 Field Description Action on source MAC-unknown frames received after the maximum number of Drop Unknown MAC entries is reached. Hub-Spoke State of the hub-spoke function. State of the VSI's flooding function: • Enabled—Flooding is enabled on the VSI. The VTEP floods unknown Flooding unicast frames to both local and remote sites.

  • Page 20: Display Interface Tunnel

    Field Description AC state: • State • Down. display interface tunnel Use display interface tunnel to display information about tunnel interfaces. Syntax display interface [ tunnel [ number ] ] [ brief [ description | down ] ] Views Any view Predefined user roles network-admin network-operator...

  • Page 21: Display Statistic Mode

    Table 7 Command output Field Description State of the tunnel interface: • Administratively DOWN—The interface has been shut down by using the shutdown command. • DOWN—The interface is administratively up, but its physical Current state state is down. • DOWN (Tunnel-Bundle administratively down)—The tunnel bundle interface to which the interface belongs has been shut down by using the shutdown command.

  • Page 22: Display Vxlan Tunnel

    Syntax display statistic mode Views Any view Predefined user roles network-admin network-operator Examples # Display the current packet statistic collection mode. <Sysname> display statistic mode The packet statistic mode is vsi. Related commands statistic mode display vxlan tunnel Use display vxlan tunnel to display VXLAN tunnel information for VXLANs. Syntax display vxlan tunnel [ vxlan-id vxlan-id ] Views...

  • Page 23: Encapsulation

    VXLAN ID: 10, VSI name: vpna, Total tunnels: 4 (4 up, 0 down, 0 defect, 0 blocked) Tunnel name Link ID State Type Flooding proxy Tunnel0 0x5000000 Auto Disabled Tunnel1 0x5000001 Manual Disabled Tunnel2 0x5000002 Manual/Auto Disabled MTunnel0 0x6002710 Auto Disabled Table 8 Command output Field...

  • Page 24: Flooding Disable

    Views Ethernet service instance view Predefined user roles network-admin mdc-admin Parameters default: Matches any frames. tagged: Matches any frames that have an 802.1Q VLAN tag. This keyword is not supported in the current software version. untagged: Matches any frames that do not have an 802.1Q VLAN tag. s-vid vlan-id: Matches frames that are tagged with the specified outer 802.1Q VLAN ID.

  • Page 25: Interface Tunnel

    Default Flooding is enabled for a VSI. Views VSI view Predefined user roles network-admin mdc-admin Usage guidelines By default, the device floods unknown unicast frames received from the local site to the following interfaces in the frame's VXLAN: • All interfaces in the local site except for the incoming interface. •...

  • Page 26: Group

    The tunnel interfaces at the two ends of a tunnel can use the same or different interface numbers. Examples # Create the VXLAN tunnel interface Tunnel 1 and enter tunnel interface view. <Sysname> system-view [Sysname] interface tunnel 1 mode vxlan [Sysname-Tunnel1] Related commands •...

  • Page 27: Hardware-Resource Vxlan

    Examples # Set the multicast group address to 233.1.1.1 for flood traffic in VXLAN 100. Set the source IP address to 2.1.1.1 for multicast VXLAN packets. <Sysname> system-view [Sysname] vsi aaa [Sysname-vsi-aaa] vxlan 100 [Sysname-vsi-aaa-vxlan-100] group 233.1.1.1 source 2.1.1.1 Related commands igmp host enable hardware-resource vxlan Use hardware-resource vxlan to set the VXLAN hardware resource allocation mode.

  • Page 28: Igmp Host Enable

    igmp host enable Use igmp host enable to enable the IGMP host feature on an interface. Use undo igmp host enable to disable the IGMP host feature on an interface. Syntax igmp host enable undo igmp host enable Default The IGMP host feature is disabled on an interface. Views Interface view Predefined user roles...

  • Page 29: Mac-Address Static

    Views System view Predefined user roles network-admin mdc-admin Usage guidelines You must enable L2VPN before you can configure L2VPN settings. Examples # Enable L2VPN. <Sysname> system-view [Sysname] l2vpn enable mac-address static Use mac-address static to add a static remote-MAC address entry. Use undo mac-address static to remove a static remote-MAC address entry.

  • Page 30: Reset Arp Suppression Vsi

    Examples # Add the MAC address 000f-e201-0101 to the VSI vsi1, and specify Tunnel-interface 1 as the outgoing interface. <Sysname> system-view [Sysname] mac-address static 000f-e201-0101 interface tunnel 1 vsi vsi1 Related commands vxlan tunnel mac-learning disable reset arp suppression vsi Use reset arp suppression vsi to clear ARP flood suppression entries on VSIs.

  • Page 31: Reset L2Vpn Statistics Ac

    Parameters vsi vsi-name: Specifies a VSI name, a case-sensitive string of 1 to 31 characters. If you do not specify a VSI, this command clears the dynamic MAC address entries on all VSIs. Usage guidelines Use this command when the number of dynamic MAC address entries reaches the limit or the device learns incorrect MAC addresses.

  • Page 32: Selective-Flooding Mac-Address

    Views User view Predefined user roles network-admin mdc-admin Parameters name vsi-name: Specifies a VSI by its name, a case-sensitive string of 1 to 31 characters. If you do not specify a VSI, this command clears packet statistics on all VSIs. Examples # Clear packet statistics on all VSIs.

  • Page 33: Service-Instance

    service-instance Use service-instance to create an Ethernet service instance and enter Ethernet service instance view. Use undo service-instance to delete an Ethernet service instance. Syntax service-instance instance-id undo service-instance instance-id Default No Ethernet service instances exist on an interface. Views Layer 2 Ethernet interface view, Layer 2 aggregate interface view Predefined user roles network-admin...

  • Page 34: Source

    Usage guidelines To temporarily disable a VSI to provide Layer 2 switching services, use this command. The shutdown action does not change settings on the VSI. You can continue to configure the VSI. After you bring up the VSI again, the VSI provides services based on the latest settings. Examples # Shut down the VSI vpn1.

  • Page 35: Statistic Mode

    statistic mode Use statistic mode to set the packet statistic collection mode. Use undo statistic mode to restore the default. Syntax statistic mode { ac | vsi } undo statistic mode Default The packet statistic collection mode is VSI. Views System view Predefined user roles network-admin...

  • Page 36: Statistics Enable (Ethernet Service Instance View)

    statistics enable (Ethernet service instance view) Use statistics enable to enable packet statistics for an Ethernet service instance. Use undo statistics enable to disable packet statistics for an Ethernet service instance. Syntax statistics enable undo statistics enable Default The packet statistics feature is disabled for an Ethernet service instance. Views Ethernet service instance view Predefined user roles...

  • Page 37: Tunnel

    Predefined user roles network-admin mdc-admin Examples # Enable packet statistics for the VSI vpls1. <Sysname> system-view [Sysname] vsi vpls1 [Sysname-vsi-vpls1] statistics enable Related commands • reset l2vpn statistics vsi • display l2vpn vsi verbose tunnel Use tunnel to assign a VXLAN tunnel to a VXLAN. Use undo tunnel to remove a VXLAN tunnel from a VXLAN.

  • Page 38: Tunnel Global Source-Address

    To change a flood proxy tunnel for a VXLAN, perform the following tasks: • Use the undo tunnel command to remove the flood proxy tunnel. • Use the tunnel command to enable flood proxy on another tunnel and assign the tunnel to the VXLAN.

  • Page 39: Vsi

    [Sysname] tunnel global source-address 1.1.1.1 Use vsi to create a VSI and enter VSI view. Use undo vsi to delete a VSI. Syntax vsi vsi-name undo vsi vsi-name Default No VSIs are created on the device. Views System view Predefined user roles network-admin mdc-admin Parameters...

  • Page 40: Vxlan Invalid-Udp-Checksum Discard

    Views VSI view Predefined user roles network-admin mdc-admin Parameters vxlan-id: Specifies a VXLAN ID in the range of 0 to 16777215. Usage guidelines You can create only one VXLAN for a VSI. The VXLAN ID for each VSI must be unique. Examples # Create VXLAN 10000 for VSI vpna and enter VXLAN view.

  • Page 41: Vxlan Invalid-Vlan-Tag Discard

    Related commands vxlan invalid-vlan-tag discard vxlan invalid-vlan-tag discard Use vxlan invalid-vlan-tag discard to enable the device to drop the VXLAN packets that have 802.1Q VLAN tags in the inner Ethernet header. Use undo vxlan invalid-vlan-tag discard to restore the default. Syntax vxlan invalid-vlan-tag discard undo vxlan invalid-vlan-tag discard...

  • Page 42: Vxlan Local-Mac Report

    Views System view Predefined user roles network-admin mdc-admin Parameters tagged: Specifies the tagged mode. In this mode, the VTEP adds a VLAN tag to a VXLAN packet. This keyword is available in Release 1138P01 and later versions. untagged: Specifies the untagged mode. In this mode, the VTEP does not add a VLAN tag to a VXLAN packet.

  • Page 43: Vxlan Tunnel Arp-Learning Disable

    Default VXLAN local-MAC change logging is disabled. Views System view Predefined user roles network-admin mdc-admin Usage guidelines Local-MAC change logging enables VXLAN to send a log message to the information center when a local MAC address is added or removed. With the information center, you can set log message filtering and output rules, including output destinations.

  • Page 44: Vxlan Tunnel Mac-Learning Disable

    <Sysname> system [Sysname] vxlan tunnel arp-learning disable vxlan tunnel mac-learning disable Use vxlan tunnel mac-learning disable to disable remote-MAC address learning. Use undo vxlan tunnel mac-learning disable to restore the default. Syntax vxlan tunnel mac-learning disable undo vxlan tunnel mac-learning disable Default Remote-MAC address learning is enabled.

  • Page 45: Xconnect Vsi

    Parameters port-number: Specifies a UDP port number in the range of 1 to 65535. As a best practice, specify a port number in the range of 1024 to 65535 to avoid conflict with well-known ports. Usage guidelines You must configure the same destination UDP port number on all VTEPs in a VXLAN. Examples # Set the destination UDP port number to 6666 for VXLAN packets.

  • Page 46: Vxlan Ip Gateway Commands

    In VLAN access mode, VXLAN packets sent between VXLAN sites do not contain 802.1Q VLAN tags. VXLAN can provide Layer 2 connectivity for different 802.1Q VLANs between sites. You can use different 802.1Q VLANs to provide the same service in different sites. •...

  • Page 47: Bandwidth

    Parameters pps: Specifies a rate limit in the range of 1 to 500 pps. Usage guidelines This command is available in Release 1138P01 and later versions. VMs have limited capacity to process packets. To prevent packet processing from degrading VM performance, limit the ARP packet sending rate of the VSI interface for VMs.

  • Page 48: Description

    Syntax default Views VSI interface view Predefined user roles network-admin mdc-admin Usage guidelines CAUTION: The default command might interrupt ongoing network services. Make sure you are fully aware of the impacts of this command when you execute it on a live network. This command might fail to restore the default settings for some commands for reasons such as command dependencies and system restrictions.

  • Page 49: Display Interface Vsi-Interface

    Examples # Configure the description as gateway for VXLAN 10 for VSI-interface 100. <Sysname> system-view [Sysname] interface vsi-interface 100 [Sysname-Vsi-interface100] description gateway for VXLAN 10 display interface vsi-interface Use display interface vsi-interface to display information about VSI interfaces. Syntax display interface [ vsi-interface [ vsi-interface-id ] ] [ brief [ description | down ] ] Views Any view Predefined user roles...
  • Page 50 Input: 0 packets, 0 bytes, 0 drops Output: 0 packets, 0 bytes, 0 drops Table 9 Command output Field Description State of the interface: • Administratively DOWN—The interface has been shut down by using the shutdown command. Current state • DOWN—The interface is administratively up, but its physical state is down.
  • Page 51 <Sysname> display interface vsi-interface brief Brief information on interfaces in route mode: Link: ADM - administratively down; Stby - standby Protocol: (s) - spoofing Interface Link Protocol Main IP Description Vsi100 DOWN DOWN # Display brief information and complete description for VSI-interface 100. <Sysname>...

  • Page 52: Gateway Vsi-Interface

    gateway vsi-interface Use gateway vsi-interface to specify a gateway interface for a VSI. Use undo gateway vsi-interface to restore the default. Syntax gateway vsi-interface vsi-interface-id undo gateway vsi-interface Default No gateway interface is specified for a VSI. Views VSI view Predefined user roles network-admin mdc-admin...

  • Page 53: Mtu

    Parameters vsi-interface-id: Specifies a VSI interface number in the range of 0 to 4093. Examples # Create VSI-interface 100 and enter VSI interface view. <Sysname> system-view [Sysname] interface vsi-interface 100 [Sysname-Vsi-interface100] Related commands gateway vsi-interface Use mtu to set the MTU for a VSI interface. Use undo mtu to restore the default.

  • Page 54: Shutdown

    Predefined user roles network-admin mdc-admin Parameters vsi-interface [ vsi-interface-id ]: Specifies VSI interfaces. If you specify a VSI interface number in the range of 0 to 1023, this command clears packet statistics on the specified interface. If you specify only the vsi-interface keyword, this command clears packet statistics on all VSI interfaces. If you do not specify the vsi-interface [ vsi-interface-id ] option, this command clears packet statistics on all interfaces.

  • Page 55: Vtep Group Member Remote

    Syntax vtep group group-ip member local member-ip undo vtep group group-ip member local Default A VTEP is not assigned to any VTEP group. Views System view Predefined user roles network-admin mdc-admin Parameters group-ip: Specifies a VTEP group by its group IP address. The IP address must already exist on the local VTEP.

  • Page 56: Ovsdb Commands

    Parameters group-ip: Specifies a VTEP group by its group IP address. member-ip&<1-8>: Specifies a space-separated list of up to eight member VTEP IP addresses. Usage guidelines This command is available in Release 1138P01 and later versions. Examples # Specify the VTEP group 1.1.1.1 and its member VTEPs at 2.2.2.2, 3.3.3.3, and 4.4.4.4. <Sysname>...

  • Page 57: Ovsdb Server Enable

    <Sysname> system-view [Sysname] ovsdb server bootstrap ca-certificate ca-new Related commands • ovsdb server enable • ovsdb server pki domain • ovsdb server pssl • ovsdb server ssl ovsdb server enable Use ovsdb server enable to enable the OVSDB server. Use undo ovsdb server enable to disable the OVSDB server. Syntax ovsdb server enable undo ovsdb server enable...

  • Page 58: Ovsdb Server Pssl

    undo ovsdb server pki domain Default No PKI domain is specified. Views System view Predefined user roles network-admin mdc-admin Parameters domain-name: Specifies a PKI domain name, a case-sensitive string of 1 to 31 characters. The PKI domain must already exist and contain a complete certificate and key. Usage guidelines To communicate with controllers through SSL, you must specify a PKI domain.

  • Page 59: Ovsdb Server Ptcp

    Parameters port port-number: Specifies a port to listen for OVSDB SSL connection requests. The value range for the port-number argument is 1 to 65535. If you do not specify a port, the device uses the port number 6640. Usage guidelines Before you use this command, you must specify a PKI domain for SSL.

  • Page 60: Ovsdb Server Ssl

    For the specified port setting to take effect, you must execute the ovsdb server enable command to enable the OVSDB server. You must disable and then re-enable the OVSDB server if it has been enabled. Examples # Enable the device to listen for OVSDB TCP connection requests on port 6640. <Sysname>...

  • Page 61: Ovsdb Server Tcp

    • ovsdb server pssl ovsdb server tcp Use ovsdb server tcp to set up an active OVSDB TCP connection to a controller. Use undo ovsdb server tcp to remove an OVSDB TCP connection. Syntax ovsdb server tcp ip ip-address port port-number undo ovsdb server tcp ip ip-address port port-number Default The device does not have active TCP connections.

  • Page 62: Vtep Enable

    Views Layer 2 aggregate interface view Layer 2 Ethernet interface view Predefined user roles network-admin mdc-admin Usage guidelines For controllers to manage a site-facing interface, you must specify the interface as a VTEP access port. Examples # Specify FortyGigE 1/0/1 as a VTEP access port. <Sysname>...
  • Page 63 Default Flood proxy is disabled on multicast VXLAN tunnels. Views System view Predefined user roles network-admin mdc-admin Usage guidelines If you use a flood proxy server, you must enable flood proxy globally on multicast tunnels. Then the multicast tunnels are converted into flood proxy tunnels. The VTEP sends broadcast, multicast, and unknown unicast traffic for a VXLAN to the flood proxy server through the tunnels.

  • Page 64: Index

    Index A B D E F G H I L M O R S T V X ovsdb server bootstrap ca-certificate,49 send-rate,39 ovsdb server enable,50 arp suppression enable,1 ovsdb server pki domain,50 ovsdb server pssl,51 bandwidth,40 ovsdb server ptcp,52 ovsdb server ssl,53 default,40 ovsdb server...
  • Page 65 vxlan udp-port,37 xconnect vsi,38...

This manual is also suitable for:

S12500x-af series

Table of Contents