Page 1 SFTOS Command Reference...
Page 2 © 2010 Dell Force10. All rights reserved. Reproduction of these materials in any manner whatsoever without the written permission of Dell Inc. is strictly forbidden. Trademarks used in this text: Dell™, the DELL logo, Dell Precision™, OptiPlex™, Latitude™, PowerEdge™, PowerVault™, PowerConnect™, OpenManage™, EqualLogic™, KACE™, FlexAddress™...
Page 3: New Features
Unsupported Features: The major change was to note features that were at least partially implemented in SFTOS 2.5.2, but not supported by Dell Force10, because they were not sufficiently tested. The Release Notes document for SFTOS 2.5.2.2 contains a list of those features, including DSCP options in QoS commands, DVMRP, GARP, GVRP, IP subnet-based VLANs, MAC-based VLANs, PIM-DM, protocol-based VLANs, VLAN-Stacking, and the Web UI.
Page 4 System Configuration chapter: Added details to show process cpu and to show memory • commands • Security chapter: — Deprecated single-connection command — Revised show tacacs command output — Noted for ip ssh server enable command that offline key generation no longer required. System Management chapter: The list of outputs of the show tech-support command is corrected.
Page 5: Table Of Contents
Table of Contents New Features ..........3 Other Changes to the Document .
Page 6 Keyboard Shortcuts ........... . .26 Obtaining Help at the Command Line .
Page 7 12 Stacking Commands ........217 Stacking .
Page 8 Bootp/DHCP Relay Commands ......... .407 Router Discovery Protocol Commands .
Page 9: About This Guide
This guide describes configuration commands for SFTOS software. The commands can be accessed from the SFTOS Command Line Interface (CLI), accessed through the console port or through a Telnet connection, and from the Node Manager component of Dell Force10 Management System (FTMS). This chapter covers the following topics: •...
Page 10: Audience
CLI syntax statements that are new or changed include a Command History table. Related Documents and Sources of Additional Information The following documents provide information on using Dell Force10 S-Series switches and SFTOS software. All of the documents are available on the Documents tab of iSupport (the Dell Force10 support website): http://www.force10networks.com/support:...
Page 11: Products And Services Liability
Force10 intends to make these available in all countries in which Dell Force10 operates. Any reference to a Dell Force10 product, program, or service is not intended to state or imply that only Dell Force10's product, program, or service may be used. Any functionally equivalent product, program, or service that does not infringe on any of Dell Force10 's intellectual property rights may be used instead of the Dell Force10 product, program, or service.
Page 12: Technical Support
Technical Support The iSupport Website Dell Force10 iSupport provides a range of support programs to assist you with effectively using Dell Force10 equipment and mitigating the impact of network outages. Through iSupport you can obtain technical information regarding Dell Force10 products, access to software upgrades and patches, and open and manage your Technical Assistance Center (TAC) cases.
Page 13: Sftos Overview
System (FTMS), a graphical network management software product that provides a global view of your complete Dell Force10 network. FTMS includes Node Manager, which not only provides GUI-based device management, it also includes the ability to execute CLI commands, either individually from Node Manager or by having Node Manager open a Telnet window to the device.
Page 14: Layer 2 Package Features
Layer 2 Package Features The core SFTOS software provides the following features. Basic Routing and Switching Support • 10 GigE (IEEE 802.3ae) • 1000 Base-T (IEEE 802.3ab) • 16k MAC Address Table • BootP (RFC951, 1542) • BootP/DHCP Relay and Server (RFC 2131) •...
Page 15: Multicast Protocols
Multicast Protocols • IGMP Snooping • Layer 2 Multicast Forwarding Security and Packet Control Features • Access Profiles on Routing Protocols • DOS Protection • IEEE 802.1x • Ingress Rate Limiting • Login Access Control • MAC-based Port Security • Port Mirroring •...
Page 16: Layer 3 Package Features
Layer 3 Package Features The Layer 3 Package (“Routing”) of SFTOS includes all of the features listed above, along with the following features: Extended Routing and Switching Support • 4k IPv4 Routing Table Entry • ARP (RFC 826) • CIDR (RFC 1519) •...
Page 17: Quick Start
Quick Start This chapter summarizes the procedures to start and operate S-Series switches. For more detail, see the Getting Started chapter in the SFTOS Configuration Guide (and the rest of that guide) or the Quick Reference for your switch model. This chapter covers the following topics: •...
Page 18: System Info And System Setup
System Info and System Setup To get information on the software version, use the show hardware command Command Syntax Command Mode Purpose show hardware Privileged Exec Displays the serial number, software version the device contains, burned-in MAC address, and other device information. Information is listed for all units in the stack.
Page 19: Management Ip Address
Command Syntax Command Mode Purpose [no] username user passwd Global Config This command adds a new user (account) if space permits, along with the user’s password. The user name and password can each be up to password eight alphanumeric characters in length. no username user To remove a user, use the command...
Page 20: Uploading From The Switch Through Xmodem
To configure the management IP address, use the following commands: Command Syntax Command Mode Purpose show interface Privileged Exec Displays the Network Configurations managementethernet IP Address: IP Address of the interface. Default IP is 0.0.0.0 Subnet Mask: IP Subnet Mask for the interface. Default is 0.0.0.0 Default Gateway: The default Gateway for this interface.
Page 21: Downloading To The Switch Through Xmodem
Note: Keywords and parameters that are shown within braces in syntax statements must be entered in the CLI. Keywords and parameters that are shown separated by a bar in syntax statements indicate that you choose only one. For details, see Command Syntax Conventions on page Downloading to the Switch through XMODEM...
Page 22: Resetting To Factory Defaults
Resetting to Factory Defaults To help configure factory defaults, use one of the following commands: Command Syntax Command Mode Purpose clear config Privileged Exec Enter when the prompt pops up to clear all the configurations made to the switch. This option replaces the current running-config with the most recent startup configuration file.
Page 23: Using The Command Line Interface
Using the Command Line Interface The command line interface (CLI) for SFTOS is the primary way to manage S-Series switches, and is the focus of this book. This chapter covers the following topics: • Command Syntax Conventions on page 23 •...
Page 24: Command Format
Command Format Some commands, such as clear vlan do not require parameters. Other commands have parameters for which you must supply a value. Parameters are positional — you must enter the values in the correct order. Optional parameters follow required parameters. For example: snmp-server location loc —...
Page 25: Common Command Parameters
Almost every configuration command has a “no” form. In general, use the “no” form to reverse the action of a command or reset a value to the default. For example, the no shutdown command reverses the shutdown of an interface. Use the command without the keyword no to re-enable a disabled feature or to enable a feature that is disabled by default.
Page 26: Annotations
Double quotation marks such as “System Name with Spaces” set off user defined strings. If the operator wishes to use spaces as part of a name parameter then it must be enclosed in double quotation marks. Empty strings are not valid user-defined strings. Command completion finishes spelling the command when enough letters of a command are entered to uniquely identify the command word.
Page 27: Obtaining Help At The Command Line
Ctrl-E—go to end of line Ctrl-F—go forward one character Ctrl-H—display command history or retrieve a command Ctrl-I—complete a keyword Ctrl-K—delete to end of line Ctrl-N—go to next line in history buffer Ctrl-P—go to previous line in history buffer Ctrl-T—transpose previous character Ctrl-U, X—delete to beginning of line Ctrl-W—delete previous word Ctrl-Z—return to root command prompt...
Page 28: Using Command Modes
Figure 4-1. Partial Keyword Example (Force10) #show ? access-lists Display Access List information. Display Address Resolution Protocol cache. authentication Display ordered methods for authentication lists bootpdhcprelay Display the value of BOOTP/DHCP relay parameters. class-map Display DiffServ Class information. classofservice Display class of service information. diffserv Display DiffServ information.
Page 29: Mode-Based Topology
Mode-based Topology As detailed above, the CLI is built on a mode concept, where related commands are grouped together within modes that you access with particular mode-access commands. The mode-access commands are listed in Table 4-2 on page 30. Access to the modes is depicted in a tree format in Figure 4-2.
Page 30 Note: Previous to Release 2.3, the VLAN mode was accessed from the Privileged Exec mode with the command vlan database. Starting in Release 2.3, you access the mode from the Global Config mode with the command interface vlan vlanid . Note: Some modes may be unavailable, depending on the installed SFTOS image.
Page 31: Mode-Based Command Hierarchy
Table 4-2. Command Modes Command Mode Mode Access Method Prompt Exit or Access Previous Mode Interface VLAN In the Global Config mode, hostname (conf-if-vl-vlan-id) # To exit to the Global Config mode, enter the interface exit enter the command command, or press Ctrl-Z to switch to vlan vlanid the User Exec mode.
Page 32 The commands available to the operator at any point in time depend upon the mode. Entering a question mark (?) at the CLI prompt displays a list of the available commands, along with descriptions of the commands. The CLI provides the following modes: User Exec Mode.
Page 33: Flow Of Cli Operation
hostname (Config-policy-classmap)# Class Map Mode: This mode consists of class creation/deletion and matching commands. The class match commands specify Layer 2, Layer 3 and general match criteria. Use the class-map class-map-name commands to access the QoS class map configuration mode to configure QoS class maps.
Page 34 output message displays the marker under the extra “p”, followed by “ ” $%Invalid input detected at '^' marker. Another typical case when an error message appears is when you have entered an invalid input parameter in the command. The marker shows where in the com- mand the first character of invalid input was detected.
Page 35: System Management Commands
System Management Commands The commands in this chapter either manage the switch in general, configure management interfaces, or show current management settings. For every configuration command, there is a nieA command that displays the configuration setting. This chapter contains the following major sections: •...
Page 36 • show interfaces on page 59 • show logging on page 60 • show mac-addr-table on page 61 • show memory on page 63 • show msglog on page 63 • show network on page 64 • show process cpu on page 64 •...
Page 37 Related Commands show cx4-cable-length Displays CX4 cable lengths connected to the system. This command displays the directory structure and files stored in NVRAM. dir nvram Syntax Default none Mode Privileged Exec Command Version 2.3 Introduced History Example Figure 5-4. Example of dir nvram Command Output Force10 #dir nvram RamDiskVol:filesystem>...
Page 38: Interface Managementethernet
Mode Global Config Command Version 2.3 Modified: Moved from Privileged Exec mode to Global Config mode. History set prompt Version 2.2 Replaced command. interface managementethernet This command invokes the Interface ManagementEthernet mode (uses the (Config-if-ma)# prompt), where you can set up a management IP interface. For details on management interfaces, see the Management chapter of the SFTOS Configuration Guide.
Page 39 The value for ipaddr is the IP Address of the management interface. The value for subnetmask is a 4-digit dotted-decimal number which represents the subnet mask of the interface. Enter no ip address to remove the IP Address and subnet mask. Mode Interface ManagementEthernet —...
Page 40: Management Route Default
Command Version 2.3 Introduced. Replaces the network mac-type command. History Related interface managementethernet Invokes the Interface ManagementEthernet mode, the Commands (Config-if-ma)# prompt. management route default This command sets the IP gateway of the switch. The management IP address (configured with the ip address, above) and the gateway must be on the same subnet.
Page 41: Network Protocol
Related interface managementethernet Invokes the (Config-if-ma)# prompt, where you can set up a Commands management IP interface (the ip address command; see next). ip address (management) Configures the IP address of the management interface. show interface Displays a summary of statistics for a specific port, including the management port, or a count of all CPU traffic based upon the argument.
Page 42: Show Arp Switch
Parameters bootp Set BootP as the network configuration protocol. This keyword has the switch periodically send requests to a Bootstrap Protocol (BootP) server until a response is received. dhcp Set DHCP as the network configuration protocol. This keyword has the switch periodically send requests to a DHCP server until a response is received.
Page 43: Show Cx4-Cable-Length
show cx4-cable-length Display the cable lengths of the cables connected to CX4 cards in the system. show cx4-cable-length Syntax Default none Mode EXEC Privilege Command Version 2.5.1 Introduced History Usage Figure 5-3 on page Related Commands cx4-cable-length Set the cable length of the cable connected to the CX4 card at the port. show ethernet This command displays detailed statistics for a specific port or for all CPU traffic based upon the argument.
Page 44 Example 1 Figure 5-7. Example of show ethernet switchport Output (Force10) #show ethernet switchport Total Packets Received (Octets)....0 Unicast Packets Received....... 0 Multicast Packets Received..... 0 Broadcast Packets Received..... 0 Octets Transmitted......0 Unicast Packets Transmitted....0 Multicast Packets Transmitted....0 Broadcast Packets Transmitted....
Page 45 Example 2 Figure 5-8. Example of show ethernet unit/slot/port Output (Force10) #show ethernet 1/0/1 Type........... Normal Admin Mode........Disable Physical Mode........Auto Physical Status........ Down Speed.......... 0 - None Duplex......... N/A Link Status........Down MAC Address........0001.E8D5.BBDE Native Vlan........1 Total Packets Received (Octets)....
Page 46: Show Hardware
show hardware This command displays inventory information for the switch. show hardware Syntax Mode Privileged Exec Command Version 2.5.1 Modified to include information about XFP/SFPs plugged into the system. History Figure 5-9. Example of Using show hardware Command Example (Force10#show hardware Switch: 1 System Description......
Page 47: Show Interface
Table 5-4. Fields in the Output of the show hardware Command Field Description Switch Description Text used to identify the product name of this switch Vendor ID Number used to identify the manufacturer of the device Plant ID Country Code Date Code Month and year of manufacture of the switch Serial Number...
Page 48 shows an example of the show interface unit/slot/port report on the S50 model. Usage Figure 5-10 Information Table 5-5 contains an explanation of the report fields. Figure 5-11 on page 49 shows an example of the report on the S50 model. Table 5-6 on page 49 contains the report fields.
Page 49 Figure 5-11. S50V: Output of the show interface unit/slot/port Command Force10-S50V#show interface 1/0/1 Packets Received Without Error....1555 Packets Received With Error....0 Broadcast Packets Received..... 642 Packets Transmitted Without Errors..... 0 Transmit Packet Errors......0 Collision Frames....... 0 Time Since Counters Last Cleared....3 day 20 hr 59 min 6 sec Native Vlan........
Page 50: Show Interface Ethernet
show interface Displays information about the management interface to the switch. managementethernet show interfaces port-channel Displays detailed statistics for a specific LAG or summary information for all LAGs, based upon the argument. show ip interface Displays summary information about IP configuration settings for all ports in the router.
Page 51 Example 1 Figure 5-12. Example of show interface ethernet switchport Output (Force10) #show interface ethernet switchport Total Packets Received (Octets)....40648140 Unicast Packets Received....... 324 Multicast Packets Received..... 307772 Broadcast Packets Received..... 3 Receive Packets Discarded...... 0 Octets Transmitted......42855160 Packets Transmitted Without Errors.....
Page 52 Table 5-7. Fields in Output of show interface ethernet switchport Command Field Description Transmit Packets Discarded The number of outbound packets which were chosen to be discarded even though no errors had been detected to prevent their being deliverable to a higher-layer protocol. A possible reason for discarding a packet could be to free up buffer space.
Page 53 Table 5-8. Fields in Output of show interface ethernet unit/slot/port Command Field Description Physical Status Whether the port is physically connected or disconnected Speed The port speed setting Duplex Link Status Whether the link is up or down. MAC Address MAC address of the port Native Vlan Total Packets Received (Octets)
Page 54 Table 5-8. Fields in Output of show interface ethernet unit/slot/port Command Field Description Multicast Packets Received The total number of good packets received that were directed to a multicast address. Note that this number does not include packets directed to the broadcast address. Broadcast Packets Received The total number of good packets received that were directed to the broadcast address.
Page 55 Table 5-8. Fields in Output of show interface ethernet unit/slot/port Command Field Description Reserved Address Discards The number of frames discarded that are destined to an IEEE 802.1 reserved address and are not supported by the system. Broadcast Storm Recovery The number of frames discarded that are destined for FF:FF:FF:FF:FF:FF when Broadcast Storm Recovery is enabled CFI Discards...
Page 56 Table 5-8. Fields in Output of show interface ethernet unit/slot/port Command Field Description Broadcast Packets Transmitted The total number of packets that higher-level protocols requested be transmitted to the Broadcast address, including those that were discarded or not sent Transmit Errors Total Transmit Errors The sum of Single, Multiple, and Excessive Collisions FCS Errors...
Page 57: Show Interface Managementethernet
Table 5-8. Fields in Output of show interface ethernet unit/slot/port Command Field Description RST BPDUs Transmitted Rapid Spanning Tree Protocol Bridge Protocol Data Units sent RSTP BPDUs Received Rapid Spanning Tree Protocol Bridge Protocol Data Units received MSTP BPDUs Transmitted Multiple Spanning Tree Protocol Bridge Protocol Data Units sent MSTP BPDUs Received Multiple Spanning Tree Protocol Bridge Protocol Data Units...
Page 58 Table 5-9. Fields in Output of show interface managementethernet command Field Description Java Mode Enable or Disable. Specifies if the switch should allow access to the Java applet in the header frame. Enabled means the applet can be viewed. The factory default is disabled.
Page 59: Show Interface Switchport
show interface switchport This command displays a summary of statistics on Layer 2 interfaces. show interface switchport Syntax Mode Privileged Exec The display parameters of show interface, when the argument is switchport, are as follows: Usage Information Table 5-10. Fields in Output of show interface switchport Command Field Description Packets Received Without Error...
Page 60: Show Logging
show interfaces {cos-queue [ unit/slot/port ] | description Syntax unit/slot/port 1-3965 port-channel { 1-128 | brief} | switchport unit/slot/port 0-2 } Parameters show interfaces cos-queue (OPTIONAL) For details on this option, see unit/slot/port cos-queue on page 334. description description unit/slot/port (OPTIONAL) Enter the keyword followed by the unit/slot/port.
Page 61: Show Mac-Addr-Table
show logging traplogs Displays trap summaries (number of traps since last reset and last view) and trap details. show logging show tech-support Displays the output of many show commands, including show mac-addr-table This command displays the forwarding database entries. If the command is entered with no parameter, the entire table is displayed.
Page 62 IfIndex—This object indicates the IfIndex of the interface table entry associated with this port. It is a reserved ID that the switch assigns to physical, logical, and VLAN interfaces for the switch to transmit data across the ports within a switch. In the S50 switch running SFTOS 2.5.1, the IfIndex ID ranges are: •...
Page 63: Show Memory
Related show mac-address-table Depending on selected display parameters, displays various Multicast Commands Forwarding Database (MFDB) information, including GMRP or IGMP Snooping entries in the table. show memory The output from this command displays current memory usage in bytes, in tabular format. show memory Syntax Mode...
Page 64: Show Network
show network Command managementethernet show interface Version 2.3 Deprecated: The keyword in the command History provides the information that had been available through this command. Related show interface Displays information about the management address of the switch. Commands managementethernet show process cpu The output from this command displays current switch memory used by application, in percentage form and in a list of all currently running tasks, along with their individual usage.
Page 65 show running-config This command is used to display/capture the current setting of different protocol packages supported on the switch. This command displays/captures only commands with settings/configurations with values that differ from the default value. The output is displayed in script format, which can be used to configure another switch with the same configuration.
Page 66: Show Sysinfo
Command Version 2.5.1 Modified: Output is indented in outline form. History Note: Starting with Release 2.3, show running-config startup-config provides the user the opportunity Usage Information to capture the running-config data to the startup-config file as a text file. If a startup-config file is already present, the system will prompt the user to overwrite it.
Page 67 Example Figure 5-21. Using the show sysinfo command (Force10) #show sysinfo System Description......Force10-S50 48GE 2TENGIG L3 Stackable switch System Name........System Location........ System Contact......... System Object ID....... force10 System Up Time......... 0 days 0 hrs 26 mins 39 secs Current SNTP Syncronized Time....
Page 68: Show Tech-Support
Table 5-11. Fields in Output of show sysinfo Command (continued) Field Description System Contact Text used to identify a contact person for this switch. May be up to 31 alpha-numeric characters. The factory default is blank System ObjectID The base object ID for the switch’s enterprise MIB System Up Time The time in days, hours and minutes since the last switch reboot Current SNTP Synchronized Time...
Page 69: Show Version
show version This command displays version details of the software/hardware present on the system, which would be used for trouble-shooting. This command provides the details shown with the show hardware and show sysinfo commands, along with interface information, the u-boot version number, and the system image file version.
Page 70 The release.version.revision number of the code currently running on the switch Additional Packages This displays the additional packages that are incorporated into this system, such as Dell Force10 Multicast. 10/100 Ethernet/802.3 interface(s) Copper ports running at 10/100 speed reporting link UP Gig Ethernet/802.3 interface(s) Copper/fiber ports running at 1Gb speed reporting link UP 10Gig Ethernet/802.3 interface(s)
Page 71: Telnet Commands
ip address (routed) Configures an IP address on a routed interface. show interface Displays a summary of statistics for a specific port, including the management port, or a count of all CPU traffic based upon the argument. Telnet Commands This section describes the following SFTOS Telnet commands: •...
Page 72: Ip Telnet Server Enable
The time is a decimal value from 1to 160. The no ip telnet timeout command sets the Telnet connection session timeout value, in minutes, to the default. Default 5 (minutes) Mode Global Config Command telnetcon timeout Version 2.3 Changed from and moved from Privileged Exec mode to Global History Config.
Page 73: Show Telnet
Default 1 (minute) Mode Line Config show telnet This command displays the current outbound telnet settings. show telnet Syntax Modes Privileged Exec and User Exec Outbound Telnet Login Timeout (in minutes)—Indicates the number of minutes an outbound telnet session is allowed to remain inactive before being logged off. A value of 0, which is the default, results in no timeout.
Page 74: Remotecon Timeout
The oe version of this command sets the maximum number of remote connection sessions that can be established to the default value. Default remotecon maxsessions 0-5 Syntax no remotecon maxsessions Mode Privileged EXEC remotecon timeout This command sets the remote connection session timeout value, in minutes. A session is active as long as the session has been idle for the value set.
Page 75: Serial Commands
Serial Commands This section describes the following SFTOS system management commands pertaining to console port connections (serial connections, EIA-232): • lineconfig on page 75 • serial baudrate on page 75 • serial timeout on page 76 • show serial on page 76 lineconfig This command accesses the Line Config mode from the Global Config mode.
Page 76: Serial Timeout
serial timeout This command specifies the maximum connect time (in minutes) without console activity. serial timeout 0-160 Syntax A value of 0 means no console timeout. The range is 0 to 160 minutes. The no serial timeout command sets the maximum connect time (in minutes) without console activity to the 5-minute default.
Page 77: Snmp Management Commands
Table 5-13. Fields of show serial Command Output (continued) Field Description Stop Bits The number of stop bits per character. The number of stop bits is always 1. Parity The parity method used on the serial port. The parity method is always None.
Page 78: Show Snmpcommunity
show snmpcommunity This command displays SNMP community information. Six communities are supported. You can add, change, or delete communities. The switch does not have to be reset for changes to take effect. The SNMP agent of the switch complies with SNMP Version 1 (for more about the SNMP specification, see the SNMP RFCs).
Page 79: Show Trapflags
show trapflags This command displays trap conditions. Configure which traps the switch should generate by enabling or disabling the trap condition. If a trap condition is enabled and the condition is detected, the switch's SNMP agent sends the trap to all enabled trap receivers. The switch does not have to be reset to implement the changes.
Page 80: Snmp-Server Community
snmp-server community This command adds (and names) a new SNMP community. A community name is a name associated with the switch and with a set of SNMP managers that manage it with a specified privileged level. The length of name can be up to 16 case-sensitive characters. Note: Community names in the SNMP community table must be unique.
Page 81: Snmp-Server Community Mode
Default 0.0.0.0 Mode Global Config snmp-server community mode This command activates an SNMP community. If a community is enabled, an SNMP manager associated with this community manages the switch according to its access right. If the community is disabled, no SNMP requests using this community are accepted. In this case, the SNMP manager associated with this community cannot manage the switch until the status is changed back to Enable.The no version of this command deactivates an SNMP community.
Page 82: Snmp-Server Enable Traps Linkmode
Mode Global Config Command Version 2.3 Introduced History Note: The CLI indicates successful execution of this command, and the show trapflags report shows successful execution of the command, but this trap is not currently supported. snmp-server enable traps linkmode This command enables Link Up/Down traps for the entire switch. When enabled, link traps are sent only if the Link Trap flag setting associated with the port is enabled (see ‘snmp trap link-status’...
Page 83 snmp-server enable trap violation This command enables the sending of new violation traps designating when a packet with a disallowed MAC address is received on a locked port. [no] snmp-server enable trap violation Syntax The no version of this command disables the sending of new violation traps. Default Disabled Mode...
Page 84: Snmptrap Ipaddr
snmptrap ipaddr This command assigns an IP address to a specified community name. The maximum name length is 16 case-sensitive alphanumeric characters. Note: IP addresses in the SNMP trap receiver table must be unique. If you make multiple entries using the same IP address, the first entry is retained and processed. All duplicate entries are ignored.
Page 85: Snmp Trap Link-Status All
snmp trap link-status all This command enables link status traps for all interfaces. [no] snmp trap link-status all Syntax The no version of this command disables link status traps for all interfaces. Note: This command is valid only when the Link Up/Down Flag is enabled. See snmp-server enable traps linkmode.
Page 86 System Management Commands...
Page 87: System Configuration Commands
System Configuration Commands This chapter provides a detailed explanation of the system configuration commands in the following major sections: • System Configuration Commands on page 87 • System Utility Commands on page 105 • PoE Commands on page 114 • Dual Image Management Commands on page 119 •...
Page 88 • rate-interval on page 98 • show forwardingdb agetime on page 98 • show interface loopback on page 99 • show mac-address-table on page 99 • show mac-address-table multicast on page 100 • show mac-address-table stats on page 100 • show monitor session on page 101 •...
Page 89: Auto-Negotiate All
The no version of this command disables automatic speed negotiation on a port. Mode Interface Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command Version 2.3 Interface Range mode added History Related interface range Defines an interface range and accesses the Interface Range mode Commands speed...
Page 90 configure This command enables the user to enter the Global Config mode from the Privileged Exec mode. configure Syntax Command Modes Privileged Exec Usage Users executing this command enter the Global Config mode, which provides access to many Information commands within that mode. Also, this mode is a gateway to all other more protocol-specific modes except the VLAN mode.
Page 91: Interface Range
interface This command accesses the Interface Config mode for a designated logical or physical interface. The Interface Config mode provides access to configuration commands for the specified interface. interface unit/slot/port Syntax The unit/slot/port is a valid physical or logical port number. Physical ports are numbered #/0/1 through #/0/50.
Page 92 port-channel port-channel Enter the keyword and one or more port channel IDs separated by commas or grouped in a range, as above: For example: ,... range,range (In this example, you previously assigned IDs 3, 4, port-channel 3-5 and 5 to three port channels.) vlan vlan Enter the keyword...
Page 93 The VLAN Range mode commands appear in Figure 6-27. Figure 6-27. Commands Available in VLAN Range Mode (s50-1) (conf-if-range-vl-10,20)#? encapsulation Configure interface link layer encapsulation type. exit To exit from the mode. igmp Configure IGMP Snooping parameters for the Vlan Configure IP parameters.
Page 94 Figure 6-29. Commands Available in Interface Range Mode (s50-1) (conf-if-range-et-1/0/10-1/0/22)#? addport Add this port to a port-channel. auto-negotiate Enables/Disables automatic negotiation on a port. classofservice Configure Class of Service parameters. cos-queue Configure the Cos Queue Parameters. deleteport Delete this port from a port-channel. description Add Description to the interface dot1x...
Page 95: Interface Loopback
Related interface Accesses the Interface Config mode for a designated logical or physical interface. Commands ip address (VLAN) Assigns an IP address and subnet mask to the selected VLAN to support Layer 3 routing. interface vlan Creates a new VLAN and accesses the Interface VLAN mode for it, or selects an existing VLAN and accesses the Interface VLAN mode for it.
Page 96: Monitor Session 1 Mode
destination interface Parameters Specify the probe port (target port). The probe port cannot be a VLAN member. unit/slot/port source interface unit/ Specify the source interface (mirrored port). The port can be a part of any VLAN. slot/port mode Enable/disable the port mirroring session. See monitor session 1 mode on page To remove the destination port, use no monitor session 1 destination interface.
Page 97: Mtu (Port)
Related monitor session Adds a mirrored port (source port) or mirroring port (destination port) to a session Commands identified with the session ID of 1. mtu (port) Removes the destination port and all source ports from the mirroring configuration. show monitor session Shows the mirroring configuration.
Page 98 no monitor session 1 This command removes all the source ports and a destination port of the mirroring session and restore the default value for mirroring session mode. The 1 or session-id parameter is an integer value used to identify the session. In the current version of the software, the session-id parameter is always 1.
Page 99: Show Interface Loopback
show interface loopback Display loopback interface configuration. show interface loopback 0 Syntax Modes Privileged Exec; User Exec Command Version 2.5.1 Introduced History Related access-list Creates an IP access control list. Commands interface loopback Configures loopback interface 0. ip access-group (Interface) Attaches a specified access control list to an interface.
Page 100: Show Mac-Address-Table Multicast
show mac-address-table multicast This command displays the Multicast Forwarding Database (MFDB) information. If the command is entered with no parameter, the entire table is displayed. This is the same as entering the optional all parameter. The user can display the table entry for one MAC Address by specifying the MAC address as an optional parameter.
Page 101: Show Monitor Session
Example Figure 6-32. Command Example: show mac-address-table stats Force10 #show mac-address-table stats Max MFDB Table Entries......256 Most MFDB Entries Since Last Reset..... 0 Current Entries........ 0 Related show mac-address-table Displays the Multicast Forwarding Database (MFDB) Commands multicast information show monitor session This command displays the port monitoring information for the system.
Page 102 Mode Privileged Exec Command Version 2.3 Modified: Revised to include VLAN interface IDs in the Interface column of the report. History Example Figure 6-34. Command Example: show port (Force10_S50) #show port 1/0/1 Admin Physical Physical Link Link LACP Intf Type Mode Mode Status...
Page 103: Show Port Protocol
show show tech-support Displays the output of many commands, including this one. Related Commands show port protocol This command displays the protocol-based VLAN information for either the entire system (use all keyword), or for the indicated group (specify the group with the value of groupid ). show port protocol { groupid | all} Syntax Mode...
Page 104: Speed All
[no] shutdown all Syntax Default enabled Mode Global Config speed This command sets the speed and duplex setting for the selected interface. speed {{10 | 100 | 1000} {half-duplex | full-duplex}} Syntax Parameters 10 half-duplex half-duplex Enter to set the speed as 10BASE-T, followed by for half duplex.
Page 105: System Utility Commands
100 half-duplex half-duplex Enter to set the speed as 100BASE-T, followed by for half duplex. 100 full-duplex full-duplex Enter to set the speed as 100BASE-T, followed by for full duplex. 1000 half-duplex 1000 half-duplex Enter to set the speed as 1000BASE-T, followed by for half duplex.
Page 106: Clear Counters
Mode Privileged Exec clear counters This command clears the stats for a specified unit/slot/port or for all the ports or for the entire switch based upon the argument. clear counters {unit/slot/port | all} Syntax Mode Privileged Exec clear traplog This command clears the trap log. clear traplog Syntax Mode...
Page 107 copy {{{nvram:script url } | nvram:errorlog | nvram:startup-config | nvram:traplog} url } | Syntax { url {image1 | image2 | nvram:cli-banner | nvram:script | nvram:sshkey-dsa | nvram:sshkey-rsa1 | nvram:sshkey-rsa2 | nvram:sslpem-dhstrong | nvram:sslpem-dhweak | nvram:sslpem-root | nvram:sslpem-server | nvram:startup-config} | {system:running-config nvram:startup-config} | {image1 | image2} unit:// unit/ {image1 | image2} | {image1 | image2} unit://*/{image1 | image2}} nvram: nvram:...
Page 108 The copy command can also be used to download the following files: • CLI banner: See copy (clibanner). • SFTOS software (often called the “software image”): system:image before SFTOS 2.5: filename filename { image1 | image2} SFTOS 2.5.1: For example, to download the software to the location where the current backup image is stored, assuming the backup image is stored in the “image 2”...
Page 109: Copy (Clibanner)
The following command copies the running config from the switch system memory to flash memory, overwriting the startup configuration file: copy system:running-config nvram:startup-config Note: Starting with SFTOS version 2.3, this command creates a text-based startup-config file instead of a binary file. Example Figure 6-35.
Page 110: Enable Passwd
Example Figure 6-36. Using the copy command to Download the CLI Banner copy tftp://192.168.77.52/banner.txt nvram:clibanner Mode........... TFTP Set TFTP Server IP......192.168.77.52 TFTP Path......../ TFTP Filename........banner.txt Data Type........Cli Banner Are you sure you want to start? (y/n) y CLI Banner file transfer operation completed successfully! (Force10 S50) #exit Force10 S50) >logout...
Page 111 quit This command duplicates the functionality of the logout command, closing the current Telnet connection, or resetting the current serial connection. Note: Save configuration changes before logging out. quit Syntax Mode Privileged Exec Related logout lose the current Telnet connection, or reset the current serial connection Commands ping This command checks if another computer is on the network and listens for connections.
Page 112: Terminal Length
show terminal length This command displays how many lines are currently in one page of “show” command output, as configured by the terminal length command. show terminal length Syntax Mode Privileged Exec and User Exec Command Version 2.3 Introduced History Related terminal length Sets the number of lines displayed on the terminal without pausing.
Page 113 traceroute This command discovers the routes that packets take when traveling to their destination through the network on a hop-by-hop basis. traceroute ipaddr [ port ] Syntax ipaddr should be a valid IP address. port should be a valid decimal integer in the range of 0 (zero) to 65535. The default value is 33434. The optional parameter is the UDP port used as the destination of packets sent as part of port...
Page 114: Poe Commands
PoE Commands SFTOS software, starting with version 2.5.1, supports Power over Ethernet (PoE) functionality on the S50V switch. The commands that support PoE are: • inlinepower on page 114 • inlinepower threshold on page 115 • inlinepower admin on page 115 •...
Page 115: Inlinepower Threshold
Related show inlinepower (stack) Display PoE status of stack members. Commands show inlinepower Display PoE status of designated port. inlinepower threshold Configure the amount of Power over Ethernet (PoE) allotted for a specified switch in the S-Series stack. The amount is specified as a percentage of the total possible power budget. inlinepower threshold 0-100 unit-id Syntax Parameters...
Page 116: Inlinepower Priority
inlinepower priority Configure the priority of a port in terms of access to power. inlinepower priority {critical | high | low} Syntax Parameters critical | high | low critical Enter to enable the selected port to receive power at the highest priority.
Page 117: Show Inlinepower (Stack)
Parameters type-string Enter an alphanumeric description. Defaults no description Mode Interface Config; Interface Range Ethernet Command Version 2.5.1 Introduced History Related show inlinepower (stack) Display PoE status of stack members. Commands show inlinepower Display PoE status of designated port. show inlinepower (stack) This command shows the status for all switches in a stack that support PoE.
Page 118 inlinepower threshold Set the percentage of the PoE power that could be made available. show inlinepower Display detailed PoE information for ports. show inlinepower This command displays PoE status information for a designated port basis or for all ports. show inlinepower {unit/slot/port | all} Syntax Command Modes Privileged Exec...
Page 119: Dual Image Management Commands
Related inlinepower Enable or disable PoE for the switch. Commands inlinepower threshold Set the percentage of the PoE power that could be made available. show inlinepower (stack) Display summary PoE information for each unit in the stack. Dual Image Management Commands SFTOS software, starting with version 2.5.1, supports a dual image feature that allows the switch to have two software images in the permanent storage.
Page 120: Delete (Software Image)
Related copy Download files to the switch, or upload files from the switch. Commands update bootcode Activate the specified software image for subsequent reboots. show bootvar Display version information and activation status for the current active and backup images. delete (software image) This command deletes the designated image file from permanent storage on the switch.
Page 121: Show Bootvar
Command Version 2.5.1 Introduced History Related update bootcode Activate the specified software image for subsequent reboots. Commands show bootvar Display version information and activation status for the current active and backup images. show bootvar This command displays version information and activation status for the current active and backup images on the specified stack member.
Page 122: Configuration Scripting
update bootcode This command updates the bootcode (boot loader) on the switch. The bootcode is read from the active image for subsequent reboots. update bootcode [ Syntax unit Parameters unit (OPTIONAL) This parameter is valid only on stacks. An error is returned if a number is entered on a standalone system.
Page 123: Script Apply
script apply This command backs up the running configuration and then starts applying the commands in the script file. Application of the commands stops at the first failure of a command. script apply scriptname Syntax The scriptname is the file name of the script file (including extension) to be applied. The script name must be “startup-config”...
Page 124: Script Show
script show This command displays the contents of a script file. script show Syntax scriptname scriptname is the file name of the script file, including extension. The script name must be “startup-config” or have a file extension of “.scr”. Mode Privileged Exec The format of the display is: Line <no>: <Line contents>...
Page 125: Vlan Commands
VLAN Commands Use the commands in this chapter to configure virtual local area networks (VLANs) that conform to IEEE 802.1Q. The three major sections in this chapter are: • Virtual LAN (VLAN) Commands • Protected-Port (PVLAN) Commands on page 147 •...
Page 126 Table 7-19. Commands in the Interface VLAN Mode (continued) Command/Command Family Location of Commands Description Command Syntax Description makestatic Change the VLAN type from Dynamic to This chapter Static. mtu (VLAN) Set the default MTU size. This chapter name (VLAN) Configure an optional VLAN name.
Page 127: Clear Vlan
• vlan port ingressfilter all on page 144 • vlan port pvid all on page 144 • vlan port tagging all on page 145 • vlan protocol group on page 145 • vlan protocol group add protocol on page 146 •...
Page 128: Encapsulation (Vlan)
Usage The following example shows the use of both single quotes and double quotes in entering a description for a port. The example also shows the resulting descriptions presented in show interfaces Information description commands. Example Figure 7-40. show interfaces description Command Example S50 #conf S50 (Config)#interface 1/0/1 S50 (Interface 1/0/1)#description "1/0/1 is access port"...
Page 129: Interface Vlan
interface vlan This command creates a new VLAN if the identified VLAN ID does not already exist, or else the command selects the existing VLAN. Then, in either case, the command invokes the Interface VLAN mode, in which you have access to VLAN configuration commands for the specified VLAN. interface vlan vlanid Syntax The vlanid is a valid VLAN identification number (ID 1 is reserved for the default VLAN).
Page 130 interface vlan Groups a set of individual interfaces, a range of interfaces, or more than one range of interfaces, to which subsequent configuration commands can be applied (bulk configuration) ip address (VLAN) Assigns an IP address and subnet mask to the selected VLAN to support Layer 3 routing.
Page 131 name (VLAN) This command changes the name of a VLAN. [no] name newname Syntax The newname is an alphanumeric string of up to 32 characters. version of this command sets the name of a VLAN to a blank string. Default The name for VLAN ID 1 is always Default.
Page 132: Protocol Group
priority (VLAN) Configure the priority for untagged frames. Mode Interface VLAN Command Version 2.5.1 Removed from CLI History Version 2.3 Deprecated Related tagged Sets tagging to enabled for a specific port (or range of ports) in the selected VLAN. Commands protocol group Attach a group ID to the selected VLAN.
Page 133: Protocol Vlan Group All
The no version of this command removes the interface from this protocol-based VLAN group that is identified by this groupid . [no] protocol vlan group groupid Syntax Default None Mode Global Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#.
Page 134: Show Vlan
Related untagged Sets tagging to disabled for a specific port (or range of ports) in the selected VLAN. Commands show vlan This command displays information about VLANs, either detailed information for a specific VLAN or summary information for all configured VLANs. The ID is a valid VLAN identification number. show vlan [association | brief | id vlanid | name | port] Syntax Parameters...
Page 135 Example Figure 7-42. Output of the show vlan Command Force10#show vlan Codes: * - Default VLAN, G - GVRP VLANs, E - Ethernet interface, ^ - Native VLAN VlanId Status Ports ------ --------- -------- Active ^1/0/1 , 1/0/2 ,^1/0/3 ,^1/0/4 ,^1/0/6 ,^1/0/7 ^1/0/8 ,^1/0/9 ,^1/0/10,^1/0/11,^1/0/12,^1/0/13 ^1/0/14,^1/0/15,^1/0/16,^1/0/17,^1/0/18,^1/0/19 ^1/0/23,^1/0/25,^1/0/26,^1/0/27,^1/0/28,^1/0/29...
Page 136: Show Vlan Association Mac
For the show vlan id Usage vlan-id command, the output is shown in the following example: Information Example Figure 7-44. Output of the show vlan id Command Force10#R1 #show vlan id 2 Codes: * - Default VLAN, G - GVRP VLANs, E - Ethernet interface, ^ - Native Vlan VlanId Status Ports...
Page 137: Show Vlan Association Subnet
Example Figure 7-45. Output of the show vlan association mac Command Force10#show vlan association mac MAC Address VLAN ID ----------------------- ------- 00:06:11:11:11:11:11:11 00:07:11:12:13:14:15:16 Force10-S50V #show vlan association mac 11:11:11:11:11:11 MAC Address VLAN ID ----------------------- ------- 00:06:11:11:11:11:11:11 Related vlan association mac Configures a VLAN by associating the VLAN with a set of MAC addresses.
Page 138: Show Vlan Port
Example Figure 7-46. Output of the show vlan association subnet Command Force10#show vlan association subnet IP Address IP Mask VLAN ID ---------------- ---------------- ------- 2.2.2.2 255.0.0.0 3.3.3.2 255.0.0.0 Force10-S50V #show vlan association subnet 2.2.2.2 255.0.0.0 IP Address IP Mask VLAN ID ---------------- ---------------- -------...
Page 139 Example Figure 7-47. Output of the show vlan port Command Force10-S50 #show vlan port 1/0/1 Port Acceptable Ingress Default Interface VLAN ID Frame Types Filtering GVRP Priority --------- ------- ------------ ----------- ------- -------- 1/0/1 Admit All Enable Disable Protected Port ......False Force10-S50 #show vlan port all Port Acceptable...
Page 140 The tagged command includes the functionality of the vlan participation include command and Usage the vlan acceptframe vlanOnly command. For details, see the VLAN chapter in the SFTOS Information Configuration Guide. The tagged command cannot be applied to ports in VLAN 1, which is the default VLAN. Figure 7-48.
Page 141: Vlan Association Mac
Command Version 2.5.1 Modified: Added ranges for ports and port channels. Added Interface Range Vlan Config History mode. Version 2.3 Introduced The untagged command includes the functionality of these commands: participation include, Usage pvid, and acceptframe untagged. For details, see the VLAN chapter in the SFTOS Configuration Information Guide.
Page 142: Vlan Association Subnet
Default enabled Mode Interface VLAN Command Version 2.5.2 Unsupported: not tested in 2.5.2 History Version 2.5.1 Introduced Related interface vlan Creates a new VLAN, or selects one based on ID, and then enters the Interface Commands VLAN mode, which provides access to VLAN configuration commands for the specified VLAN.
Page 143: Vlan Database
Related interface vlan Creates a new VLAN, or selects one based on ID, and then enters the Interface Commands VLAN mode, which provides access to VLAN configuration commands for the specified VLAN. show vlan association Displays information about either all IP subnet-based VLANs or the VLAN subnet associated with a specific IP address and mask.
Page 144: Vlan Participation All
vlan participation all This command configures the degree of participation for all interfaces in a VLAN Mode Global Config Command Version 2.5.1 Deprecated. Removed from CLI History Version 2.3 Modified: Moved from Interface Config mode to Global Config mode. Related tagged Configure a tagged interface in the selected VLAN.
Page 145: Vlan Protocol Group
Related tagged Configure a tagged interface in the selected VLAN. Commands untagged Configure an untagged interface in the selected VLAN. vlan port tagging all This command sets the tagging behavior for all interfaces in a VLAN to enabled. Mode Global Config Command Version 2.5.1 Deprecated.
Page 146: Vlan Protocol Group Add Protocol
vlan protocol group add protocol This command adds the named protocol to the protocol-based VLAN identified by groupid. A group may have more than one protocol associated with it. Each interface and protocol combination can only be associated with one group. If adding a protocol to a group causes any conflicts with interfaces currently associated with the group, this command will fail and the protocol will not be added to the group.
Page 147: Protected-Port (Pvlan) Commands
Mode Interface Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command Version 2.5.1 Removed from CLI History Version 2.3 Deprecated Related untagged Adds a Layer 2 interface to the selected VLAN as an untagged interface. Commands vlan tagging This command sets tagging to enabled for the selected interface in a specified VLAN.
Page 148: Show Interfaces Switchport
This section describes commands you use to configure and view protected ports. Ports are unprotected by default. A Private Edge VLAN, also referred to as a “protected VLAN” — PVLAN), prevents ports designated as such in the specified protected port group from forwarding traffic to each other even if they are on the same VLAN.
Page 149 Mode User Exec; Privileged Exec Command Version 2.5.1 Introduced History Example Figure 7-50. Example of Output from the show switchport protected Command (Force10) #show switchport protected 0 Name.........willstest Member Ports : 1/0/10 An optional name of the protected port group. The name can be up to 32 alphanumeric –...
Page 150: Vlan-Stacking Commands
Related show switchport protected Displays current memory usage in bytes in tabular format. Commands switchport protected (Interface Config) Add ports to a protected port group. switchport protected (Interface Config) Use this command to add the selected interface to a protected port group. You can only configure an interface as protected in one group.
Page 151: Dvlan-Tunnel L2Pdu-Forwarding Enable
• mode dvlan-tunnel on page 153 • show dot1q-tunnel on page 154 • show dvlan-tunnel on page 155 • show dvlan-tunnel l2pdu-forwarding on page 155 dvlan-tunnel l2pdu-forwarding enable This command is used to enable/disable the l2pdu-forwarding mode, used for BPDU tunneling. [no] dvlan-tunnel l2pdu-forwarding enable Syntax The no version of this command disables the l2pdu-forwarding mode.
Page 152: Dvlan-Tunnel Ethertype
Related dvlan-tunnel Enable/disable the l2pdu-forwarding mode. Commands l2pdu-forwarding enable show dvlan-tunnel Displays the current l2pdu tunneling configuration on the switch. l2pdu-forwarding show dot1q-tunnel Displays whether an interface is enabled for Double VLAN Tunneling, along with the system-configured etherType and detailed information about Double VLAN Tunneling for the specified interface, or a list of interfaces and their tunneling status.
Page 153 mode dot1q-tunnel Syntax Default disabled Mode Interface Config Command Version 2.5.2 Unsupported: This command was not tested in SFTOS 2.5.2, so is not supported History Version 2.5.1 Unsupported: This command was not tested in SFTOS 2.5.1, so is not supported Usage By default, all ports become core ports.
Page 154: Show Dot1Q-Tunnel
show dot1q-tunnel This command displays whether an interface is enabled for Double VLAN Tunneling, along with the system-configured etherType and detailed information about Double VLAN Tunneling for the specified interface, or a list of interfaces and their tunneling status. This command performs the same function as show dvlan-tunnel.
Page 155: Show Dvlan-Tunnel
show dvlan-tunnel This command displays whether an interface is enabled for Double VLAN Tunneling, along with the system-configured etherType and detailed information about Double VLAN Tunneling for the specified interface, or a list of interfaces and their tunneling status. This command performs the same function as show dot1q-tunnel.
Page 156 Command Version 2.5.2 Unsupported: This command was not tested in SFTOS 2.5.2, so is not supported History Version 2.5.1 Unsupported: This command was not tested in SFTOS 2.5.1, so is not supported Version 2.3.1.9 Introduced Example Figure 7-53. Example of Use of show dvlan-tunnel l2pdu-forwarding Command Force10 S50 #show dvlan-tunnel l2pdu-forwarding L2Pdu-Forwarding Mode: enabled.
Page 157: Link Layer Discovery Protocol (Lldp) Commands
Link Layer Discovery Protocol (LLDP) Commands The IEEE 802.1AB standard defines the Link Layer Discovery Protocol (LLDP). LLDP support is new in SFTOS 2.5.1. The commands in this chapter are: • To clear LLDP information: — clear lldp neighbors on page 159 —...
Page 158: Lldp Commands
Figure 8-54 presents a diagram of the basic LLDP packet sent to a multicast MAC address. The Ethertype is set to 88cc. Figure 8-54. TLV Packet Overview Figure 8-55 shows a more detailed diagram of the TLV sequence in the LLDPDU section of the LLDP packet, showing how TLVs are strung together in the payload of the LLDP PDU: Figure 8-55.
Page 159: Clear Lldp Neighbors
• lldp multiplier on page 161 • lldp notification on page 162 • lldp notification-interval on page 162 • lldp timers-reinit on page 163 • lldp transmit-mgmt on page 163 • lldp transmit-tlv on page 163 • show lldp interface on page 164 •...
Page 160: Lldp Hello
Related clear lldp neighbors Clear LLDP neighbor information. Commands lldp mode (global) Enable/disable LLDP globally. lldp mode (interface) Enable/disable LLDP on a particular interface. show lldp local-device Display LLDP neighbor information. lldp hello Use this command to set the interval, in seconds, to transmit local LLDP data (LLDPDUs). lldp hello Syntax interval...
Page 161: Lldp Mode (Interface)
Command Version 2.5.1 Introduced History Related clear lldp neighbors Clear LLDP neighbor information. Commands lldp mode (interface) Enable/disable LLDP on a selected port. show lldp local-device Display LLDP neighbor information. lldp mode (interface) Set whether the LLDP Enable LLDP on the selected port (timers not supported on one interface). protocol is enabled on sent packets, received packets, or both.
Page 162: Lldp Notification
Command Version 2.5.1 Introduced History Related lldp hello The interval in seconds to transmit local LLDP data Commands lldp notification Configure minimum interval to send remote data change notifications lldp timers-reinit Configure LLDP global timer for delay before re-initialization. show lldp local-device Display LLDP neighbor information.
Page 163: Lldp Timers-Reinit
Related lldp hello The interval in seconds to transmit local LLDP data Commands lldp multiplier The interval multiplier to set local LLDP data TTL lldp timers-reinit Configure LLDP global timer for delay before re-initialization. lldp notification Display LLDP neighbor information. lldp timers-reinit Configure LLDP global timer for delay before re-initialization.
Page 164: Show Lldp Interface
port-desc Parameters Include/Exclude LLDP port description TLV (the description configured for description the transmitting port using the command within the Interface Config mode). sys-cap Include/Exclude LLDP system capabilities TLV (general info about this switch, e.g. ‘switch, router’; not configurable). sys-desc Include/Exclude LLDP system description TLV (the system description that show run also appears in...
Page 165 Example Figure 8-57. Example Output from show lldp interface Commands Force10 #show lldp interface 1/0/1 LLDP Interface Configuration Interface Link Transmit Receive Notify TLVs Mgmt --------- ------ -------- -------- -------- ------- ---- 1/0/1 Down Disabled Disabled Disabled TLV Codes: 0- Port Description, 1- System Name 2- System Description, 3- System Capabilities Force10 #show lldp interface all...
Page 166: Show Lldp Neighbors
Example Figure 8-58. Example Output from show lldp interface Commands Force10 #show lldp interface 1/0/1 LLDP Interface Configuration Interface Link Transmit Receive Notify TLVs Mgmt --------- ------ -------- -------- -------- ------- ---- 1/0/1 Down Disabled Disabled Disabled TLV Codes: 0- Port Description, 1- System Name 2- System Description, 3- System Capabilities Force10 #show lldp interface all...
Page 167 Example Figure 8-59. Example Output from show lldp neighbors Commands (S50) #show lldp neighbors interface 1/0/1 Local Intf Dead Interval Remote Intf ChassisID 1/0/1 2/0/3 S50-2 S50# show lldp neighbors interface 1/0/2 detail Local Interface: 1/0/2 Remote Interface: 2/0/4 Dead Interval: 14 seconds Tx: 51 Rx: 224 Remote Chassis ID: 2...
Page 168 Example Figure 8-60. Example Output from show lldp interface Commands Force10 #show lldp interface 1/0/1 LLDP Interface Configuration Interface Link Transmit Receive Notify TLVs Mgmt --------- ------ -------- -------- -------- ------- ---- 1/0/1 Down Disabled Disabled Disabled TLV Codes: 0- Port Description, 1- System Name 2- System Description, 3- System Capabilities Force10 #show lldp interface all...
Page 169: System Logs
System Logs This chapter provides a detailed explanation of the following syslog commands: • logging buffered on page 169 • logging buffered wrap on page 170 • logging cli-command on page 170 • logging console on page 170 • logging facility on page 171 •...
Page 170: Logging Console
Related logging buffered wrap Enables wrapping of in-memory logging when full capacity is Commands reached. logging cli-command Enables logging to the System Log of all Command Line Interface (CLI) commands issued on the system. logging console Enables logging of System log messages to the console. logging host Configures mirroring of System log messages to a syslog server.
Page 171: Logging Facility
Use no logging console to disable logging to the console. Default disabled; severity = critical Mode Global Config logging facility Configure the facility type sent to Syslog servers. logging facility [ facility-type ] Syntax To remove to the configured value, enter no logging facility. Parameters facility-type (OPTIONAL) Enter one of the following keywords.
Page 172: Logging History
logging history This command enables logging of system messages to the SFTOS logging history table. Optionally, specify how many messages are to be saved in the SFTOS logging history table before being overwritten. This log collects the same messages as the System log. logging history [size Syntax size...
Page 173: Logging Persistent
reconfigure Revise the IP address of a configured syslog host. To learn the current association of show logging hosts host-index host-id hostaddress with , use the command The value for hostaddress index host- is in the Index column of the output of that command. remove host-index Remove the identified host, using...
Page 174 show logging This command displays the buffered log (the in-memory log). show logging Syntax Mode Privileged Exec Example Figure 9-61. Sample Output from the show logging Command Force10-S50 #show logging Syslog Logging : enabled CLI Command Logging : disabled Console Logging : disabled Buffered (In-Memory) Logging : level debug, 305807 Messages Logged...
Page 175: Show Logging Eventlog
Related logging buffered Enables logging of the system log to RAM and any other enabled destination, Commands including the console and any enabled syslog server. logging cli-command Displays CLI activity in the log. logging facility Configure the Syslog facility, used for error messages sent to Syslog servers. show logging eventlog Displays the persistent event log.
Page 176: Show Logging History
Related logging buffered Enables logging of the system log to RAM and any other enabled destination, Commands including the console and any enabled syslog server. logging cli-command Displays CLI activity in the log. logging facility Configure the Syslog facility, used for error messages sent to Syslog servers. show logging history Show the messages stored in the buffered log —...
Page 177: Show Logging Hosts
show logging hosts This command displays configured logging hosts. show logging hosts unit Syntax The unit variable is the host index Mode Privileged Exec Example Figure 9-64. Using the show logging hosts Command Force10 #show logging hosts ? <unit> Enter switch ID in the range of 1 to 8. Force10 #show logging hosts 1 ? <cr>...
Page 178 Number of Traps since last reset—The number of traps that have occurred since the last reset of this Report Fields device. Number of Traps since log last displayed—The number of traps that have occurred since the traps were last displayed. Getting the traps by any method (terminal interface display, upload file from switch, etc.) will result in this counter being cleared to 0.
Page 179: User Account Commands
User Account Commands These commands manage user accounts. The commands are divided into two functional groups: • Show commands display switch settings, statistics, and other information. • Configuration commands configure features and options of the switch. For every configuration command, there is a show command that displays the configuration setting. The user account commands are: •...
Page 180: Show Users
User Name—The name the user will use to login using the serial port or Telnet. A new user may be Report Fields added to the switch by entering a name in a blank entry. The user name may be up to 8 characters, and is not case sensitive.
Page 181 Parameters user Enter a string to represent the new user’s name. The name can be up to eight characters in length. The name can be comprised of alphanumeric characters, as well as the dash (‘-’) and underscore (‘_’). password password password keyword a new password, which...
Page 182 users snmpv3 authentication username [none | md5 | sha] Syntax users snmpv3 authentication username Mode Global Config users snmpv3 encryption This command specifies the encryption protocol to be used for the specified login user. The valid encryption protocols are des or none If des is specified, the required key may be specified on the command line.
Page 183: Security Commands
Security Commands This chapter provides a detailed explanation of the security commands available in SFTOS, presented in the following sections: • Port Security Commands • Port-Based Network Access (IEEE 802.1X) Commands on page 187 • RADIUS Commands on page 199 •...
Page 184 [no] port-security Syntax Default Disabled Modes Global Config; Interface Config; Interface Port Channel Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command Version 2.5.1 Modified: Added Interface Port Channel Config mode. History Version 2.3 Added Interface VLAN and Interface Range modes.
Page 185 port-security max-dynamic This command sets the maximum of dynamically locked MAC addresses allowed on a selected interface. port-security max-dynamic maxvalue Syntax no port-security max-dynamic command resets the maximum of dynamically locked MAC addresses allowed on a selected interface to its default value. range is from 0 to 600.
Page 186: Show Port-Security
show port-security This command displays the port-security settings for a particular interface or for the entire system. show port-security [unit/slot/port | all] Syntax Mode Privileged Exec When no parameter is entered, the one report field is: Report Fields Port Security Administration Mode—Port-locking mode for the entire system 186, when either the unit/slot/port or all parameter is entered, the As shown in Figure 11-65 on page...
Page 187: Port-Based Network Access (Ieee 802.1X) Commands
show port-security dynamic This command displays the dynamically locked MAC addresses for the designated port. show port-security dynamic unit/slot/port Syntax Mode Privileged Exec MAC Address — MAC address of the dynamically locked MAC Report Field show port-security static This command displays the statically locked MAC addresses for the designated port. show port-security static unit/slot/port Syntax Mode...
Page 188: Authentication Login
• dot1x timeout on page 192 • dot1x user on page 193 • show authentication on page 193 • show authentication users on page 194 • show dot1x on page 194 • show dot1x users on page 197 • show users authentication on page 198 •...
Page 189: Clear Dot1X Statistics
Mode Global Config Related radius server host Configure the RADIUS authentication and accounting server. Commands tacacs-server host Specify a TACACS+ server host. users defaultlogin Assign the authentication login list to use for non-configured users when attempting to log in to the system. clear dot1x statistics This command resets the 802.1x statistics for the specified port or for all ports.
Page 190: Dot1X Login
dot1x login This command assigns the specified authentication login list to the specified user for 802.1x port security. The user parameter must be a configured user and the listname parameter must be a configured authentication login list. dot1x login Syntax user listname Mode Global Config...
Page 191: Dot1X Port-Control All
Mode Interface Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command Version 2.3 Interface Range mode added History Related interface range Defines an interface range and accesses the Interface Range mode Commands dot1x port-control all This command sets the authentication mode to be used on all ports.
Page 192: Dot1X System-Auth-Control
Default disabled Mode Interface Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command Version 2.3 Interface Range mode added History Related interface range Defines an interface range and accesses the Interface Range mode Commands dot1x system-auth-control This command is used to enable the dot1x authentication support on the switch.
Page 193: Dot1X User
supp-timeout—Sets the value, in seconds, of the timer used by the authenticator state machine on this port to timeout the supplicant. The supp-timeout must be a value in the range 1 - 65535. server-timeout—Sets the value, in seconds, of the timer used by the authenticator state machine on this port to timeout the authentication server.
Page 194: Show Dot1X
Example Figure 11-66. show authentication Command Example (Force10 ) #show authentication Authentication Login List Method 1 Method 2 Method 3 ------------------------- -------- -------- -------- defaultList local undefined undefined Authentication Login List—This displays the authentication methods log-in list names. Figure 11-66 Report Fields shows only the default log-in authentication method list.
Page 195 Mode Privileged Exec Report Fields If none of the optional parameters are used, the global dot1x configuration summary is displayed, as follows: Administrative mode—Indicates whether authentication control on the switch is enabled or disabled. If the optional parameter detail unit/slot/port is used, the detailed dot1x configuration for the specified port are displayed, as follows: Example Figure 11-67.
Page 196 Reauthentication Enabled—Indicates if reauthentication is enabled on this port. Possible values are “True” or “False”. Key Transmission Enabled—Indicates if the key is transmitted to the supplicant for the specified port. Possible values are True or False. Control Direction—Indicates the control direction for the specified port or ports. Possible values are both or in.
Page 197: Show Dot1X Users
Invalid EAPOL Frames Received—The number of EAPOL frames that have been received by this authenticator in which the frame type is not recognized EAP Length Error Frames Received—The number of EAPOL frames that have been received by this authenticator in which the frame type is not recognized If the optional parameter summary {unit/slot/port | all} is used, the dot1x configuration for the specified port or all ports are displayed, as follows: Example...
Page 198: Show Users Authentication
Example Figure 11-70. Example of Output from the show dot1x users Command Force10 #show dot1x users 1/0/1 Users ----------------- admin User—Users configured locally to have access to the specified port. Related dot1x user Add the specified user to the list of users with access to the specified port or all ports. Commands show users authentication This command displays all user and all authentication login information.
Page 199: Radius Commands
users defaultlogin listname Syntax Mode Global Config users login This command assigns the specified authentication login list to the specified user for system login. The user must be a configured user and the listname must be a configured login list. If the user is assigned a login list that requires remote authentication, all user access (from all sessions) will be blocked until authentication is complete.
Page 200: Radius Server Host
radius server host Configure the RADIUS authentication and accounting server connections. radius server host {auth | acct} Syntax ipaddr port no radius server host {auth | acct} ipaddr auth Parameters Use this keyword if you want to configure a connection to a RADIUS authentication server.
Page 201: Radius Server Key
radius server key Configure the shared secret between the RADIUS client and the RADIUS accounting / authentication server. radius server key {auth | acct} ipaddr Syntax Depending on whether the auth or acct keyword is used, the shared secret will be configured for the RADIUS authentication or RADIUS accounting server.
Page 202: Show Radius
Default Mode Global Config radius server timeout This command sets the timeout value (in seconds) after which a request must be retransmitted to the RADIUS server if no response is received. The timeout value is an integer in the range of 1 to 30. radius server timeout Syntax seconds...
Page 203: Show Radius Accounting Statistics
show radius accounting statistics This command is used to display the configured RADIUS accounting mode, accounting server, and the statistics for the configured accounting server. show radius accounting [statistics IP address ] Syntax Mode Privileged Exec Figure 11-72. show radius accounting Command Example Example (Force10_S50) #show radius accounting RADIUS Accounting Mode......
Page 204: Show Radius Statistics (Authentication)
Table 11-21. show radius accounting Command Example Fields Field Description RADIUS Accounting IP Address of the configured RADIUS accounting server Server IP Address Round Trip Time The time interval, in hundredths of a second, between the most recent Accounting-Response and the Accounting-Request that matched it from the RADIUS accounting server.
Page 205: Tacacs+ Commands
Access Requests—The number of RADIUS Access-Request packets sent to this server. This number does not include retransmissions. Access Retransmission—The number of RADIUS Access-Request packets retransmitted to this RADIUS authentication server. Access Accepts—The number of RADIUS Access-Accept packets, including both valid and invalid packets, which were received from this server.
Page 206 tacacs-server host Syntax ip-address To remove a TACACS+ server host, use the no tacacs-server host { hostname ip-address command. Parameters ip-address Enter the IP address, in dotted decimal format, of the TACACS+ server host. Default Not configured Mode CONFIGURATION Usage In CONFIGURATION mode, you can set several global values for all TACACS+ servers, as listed below.
Page 207 Related tacacs-server host Identify a TACACS server. Commands Specify the authentication and encryption key for all communications between the client and a particular TACACS server. tacacs-server timeout Specify a global timeout value for all TACACS+ hosts. tacacs-server timeout timeout Syntax To restore the default, enter no tacacs-server timeout.
Page 208: Show Tacacs
port-number Parameters Range: zero (0) to 65535 Default If unspecified, the port number defaults to 49. Command Mode TACACS Configuration tacacs-server host Identify a TACACS server. show tacacs Display TACACS+ settings. priority Use the priority command to determine the order in which the servers will be used, with 0 being the highest priority.
Page 209: Secure Shell (Ssh) Commands
Example Figure 11-74. Example of show tacacs Command Output Force10 #show tacacs Global Timeout: 5 IP address Port Timeout Priority --------------- ----- ------- -------- 10.10.10.226 Global 10.16.1.58 Global Force10# Command Version 2.5.1 Modified: Removed fields from report output — Status, Single, Connection History Related tacacs-server host...
Page 210: Ip Ssh Maxsessions
This section provides a detailed explanation of the SSH commands. The commands are of two functional types: • Configuration commands are used to configure features and options of the switch. For every configuration command there is a show command that will display the configuration setting. •...
Page 211: Ip Ssh Server Enable
ip ssh server enable Enable SSH. The no version of this command disables SSH. Note: Previous to SFTOS 2.5.1, this command required keys/certificates to be generated offline before the service starts. s50-secure-management.pdf at: https://www.force10networks.com/csportal20/KnowledgeBase/Documentation.aspx ip ssh server enable Syntax no ip ssh server enable Default disabled Mode...
Page 212: Hypertext Transfer Protocol (Http) Commands
show ip ssh This command displays the ssh settings. show ip ssh Syntax Mode Privileged Exec Administrative Mode—This field indicates whether the administrative mode of SSH is enabled or Report Fields disabled. Protocol Levels—The protocol level may have the values of version 1, version 2 or both versions 1 and version 2.
Page 213: Ip Http Javamode Enable
• Configuration commands are used to configure features and options of the switch. For every configuration command there is a show command that will display the configuration setting. • Show commands are used to display switch settings, statistics and other information. ip http javamode enable Enable Java mode for the Web User interface (Web UI) to SFTOS.
Page 214: Ip Http Secure-Server Enable
Mode Global Config Command Version 2.5.1 SFTOS Unsupported: The Web UI is not supported in v. 2.5.1 or 2.5.2. History Version 2.3 Modified: Moved from Privileged Exec mode to Global Config mode. ip http secure-server enable This command is used to enable the secure socket layer for secure HTTP. The no version of this command is used to disable the secure socket layer for secure HTTP.
Page 215: Show Ip Http
ip http secure-server enable Enable the secure socket layer for secure HTTP. show ip http Displays the HTTP settings for the switch. show ip http This command displays the HTTP settings for the switch. show ip http Syntax Mode Privileged Exec Command Version 2.5.1 SFTOS...
Page 216 Security Commands...
Page 217: Stacking Commands
Stacking Commands This chapter provides a detailed explanation of the stacking commands. The commands are listed under two headings: • Stacking on page 217 • Slot and Card Commands on page 226 See also the copy Dual Image Management Commands on page 119 in the System Configuration chapter.
Page 218: Archive Download-Sw
Command Version 2.5.1 Deprecated History Related copy Copy software from the stack management unit to a stack member. Commands copy image1 image2 unit:// image1 image2 unit archive download-sw This command downloads the SFTOS software image (.OPR file) to the switch. The url is the transfer mode.
Page 219: Show Stack-Port
movemanagement This command moves the management unit functionality from one switch to another. The fromunit is the switch identifier on the current Management Unit. The tounit is the switch identifier on the new management unit. Upon execution, the entire stack (including all interfaces in the stack) will be unconfigured and reconfigured with the configuration on the new management unit.
Page 220: Show Stack-Port Diag
Configured Stack Mode—Stack or Ethernet Stack Mode—Stack or Ethernet Link Status—Status of the link Link Speed—Speed (Gb/s) of the stack port link Example 2 The S50V has two expansion slots for up to four stacking ports, so this report is set up to display all four ports, as shown in Figure 12-77, whether or not all are installed (in this case, only a 10G XFP...
Page 221: Show Switch
Interface—Stack port number (A or B) Diagnostic Entry1—80 character string used for diagnostics. Diagnostic Entry—80 character string used for diagnostics. Diagnostic Entry3—80 character string used for diagnostics. show switch This command displays information about all units in the stack or about a specified unit. show switch [unit] Syntax Mode...
Page 222 shows the output of both show switch and show switch Example Figure 12-79 unit-id for on an S50V. Figure 12-79. Example of Output from the show switch Command on an S50V Force10-S50V>show switch Management Preconfig Plugged-in Switch Code Switch Status Model ID Model ID Status...
Page 223: Show Supported Switchtype
Preconfigured Model Identifier—This field displays the preconfigured model identifier for this switch. A Model Identifier is a 32-character field assigned by the device manufacturer to identify the device. Plugged-in Model Identifier—This field displays the plugged-in model identifier for this switch. Switch Status—This field displays the switch status.
Page 224 Switch Model ID—This field displays the model identifier for the supported switch type. Management Pref—This field indicates the administrative management preference value assigned to the switch. This preference value indicates how likely the switch is to be chosen as the management unit.
Page 225 switch priority This command configures the ability of a switch to become the management unit in a stack. switch unit priority value Syntax The unit is the switch identifier. The value is the preference parameter that allows the user to specify the priority of one backup switch over another.
Page 226: Slot And Card Commands
Slot and Card Commands This section provides detailed explanations of the slot and card commands: • set slot disable on page 226 • set slot power on page 226 • show slot on page 226 • show supported cardtype on page 227 •...
Page 227: Show Supported Cardtype
Admin State—This field displays the slot administrative mode as enabled or disabled. Power State—This field displays the slot power mode as enabled or disabled. Configured Card Model Identifier—This field displays the model identifier of the card preconfigured in the slot. Model Identifier is a 32-character field used to identify a card. Pluggable—This field indicates whether cards are pluggable or non-pluggable in the slot.
Page 228 Example 1 Figure 12-83. Using the show supported cardtype Command on an S50 Force10-S50 #show supported cardtype Card Model ID --- -------------------------------- SA-01-10GE-2P <========= catalog # of Force10 10G XFP fiber module for S50 SA-01-GE-48T <========== catalog # of S50 model switch Force10-S50#show supported cardtype 3 Card Type......
Page 229 slot (This command is not usable for S-Series switches, because they do not have slots in the conventional sense.) This command configures a slot in a system. Command disable power Version 2.3 Modified: Added the options, replacing the set slot disable History slot power commands.
Page 230 Stacking Commands...
Page 231: Dhcp Server Commands
DHCP Server Commands These commands configure the Dynamic Host Configuration Protocol (DHCP) server parameters and address pools. The following commands are covered in this chapter: • bootfile on page 232 • clear ip dhcp binding on page 232 • clear ip dhcp server statistics on page 232 •...
Page 232: Clear Ip Dhcp Binding
bootfile The command specifies the name of the default boot image for a DHCP client. The filename specifies the boot image file. The oe version of this command deletes the boot image name. bootfile Syntax filename no bootfile Default none Mode DHCP Pool Config clear ip dhcp binding...
Page 233 client-identifier This command specifies the unique identifier for a DHCP client. The unique identifier is a valid notation in hexadecimal format. In some systems, such as Microsoft DHCP clients, the client identifier is required instead of hardware addresses. The unique identifier is a concatenation of the media type and the MAC address.
Page 234 dns-server This command specifies the IP servers available to a DHCP client. Address parameters are valid IP addresses; each made up of four decimal bytes ranging from 0 to 255. IP address 0.0.0.0 is invalid. The no version of this command removes the DNS Server list. dns-server Syntax address1...
Page 235: Ip Dhcp Bootp Automatic
host This command specifies the IP address and network mask for a manual binding to a DHCP client. Address and Mask are valid IP addresses; each made up of four decimal bytes ranging from 0 to 255. IP address 0.0.0.0 is invalid. The prefix-length is an integer from 0 to 32.
Page 236: Ip Dhcp Ping Packets
ip dhcp excluded-address lowaddress [highaddress] Syntax The no version of this command removes the excluded IP addresses for a DHCP client. Default none Mode Global Config ip dhcp filtering (global) This command enables DHCP filtering on all interfaces (globally). DHCP requests/replies will be blocked on all physical and VLAN interfaces.
Page 237: Ip Dhcp Pool
ip dhcp pool This command configures a DHCP address pool name on a DHCP server and enters DHCP Pool Config mode. ip dhcp pool name Syntax The no version of this command removes the DHCP address pool. The name should be a previously configured pool name.
Page 238 netbios-name-server This command configures Windows Internet Naming Service (WINS) name servers that are available to DHCP clients. WINS name servers map NetBIOS names to IP addresses on TCP/IP networks. [no] netbios-name-server Syntax address address2 address8 One IP address is required, although one can specify up to eight addresses in one command line. Servers are listed in order of preference ( address1 is the most preferred server,...
Page 239: Service Dhcp
If the next-server command is not used to configure a boot server list, the DHCP Server uses Default inbound interface helper addresses as boot servers. Mode DHCP Pool Config option The command configures DHCP Server options. Code specifies the DHCP option code. Ascii string specifies an NVT ASCII character string.
Page 240: Show Ip Dhcp Global Configuration
Lease expiration—The lease expiration time of the IP Address assigned to the client. Type—The manner in which IP Address was assigned to the client. show ip dhcp global configuration This command displays address bindings for the specific IP address on the DHCP server. If no IP address is specified, the bindings corresponding to all the addresses are displayed.
Page 241: Show Ip Dhcp Server Statistics
Hardware Address Type—The protocol of the hardware platform. Host—The IP address and the mask for a manual binding to a DHCP client. show ip dhcp server statistics This command displays DHCP server statistics. show ip dhcp server statistics Syntax Mode Privileged Exec and User Exec Address Pool—The number of configured address pools in the DHCP server.
Page 242 Detection Method—The manner in which the IP address of the hosts were found on the DHCP Server Detection time—The time when the conflict was found. DHCP Server Commands...
Page 243: Time Commands
Time Commands Use the commands in this chapter to configure and monitor time and date on the switch. You can manually set the system clock or use SNTP (see SNTP Commands on page 244). • clock time on page 243 •...
Page 244: Sntp Commands
Mode Privileged Exec Command Version 2.5.1.0 Introduced History Example Figure 14-85. Example of Output from show clock Command Force10# show clock FRI MAR 02 08:57:47 2006 SNTP Commands This section provides a detailed explanation of the Simple Network Time Protocol (SNTP) commands. The commands are comprised of two functional groups: •...
Page 245: Sntp Client Mode
sntp client mode This command enables the Simple Network Time Protocol (SNTP) client, and optionally sets the mode to either broadcast or unicast. sntp client mode [broadcast | unicast] Syntax Use the no sntp client mode command to disable SNTP client mode. Parameters broadcast SNTP operates in the same manner as multicast mode but uses a local broadcast address...
Page 246: Sntp Server
You can also set the poll interval for an SNTP client with the sntp client port command. Usage Default Mode Global Config sntp unicast client poll-timeout This command sets the number of seconds to wait for an SNTP response when the client is configured in unicast mode.
Page 247: Show Sntp
Parameters ipaddress Specify either the IPv4 address of the server or a DNS hostname. If DNS, then that hostname should be resolved into an IP address each time a SNTP request is sent to it. priority Optionally, specify the priority of this server entry in determining the sequence of servers to which SNTP requests will be sent.
Page 248: Show Sntp Server
show sntp client This command displays SNTP client settings. show sntp client Syntax Mode Privileged Exec Example Figure 14-87. show sntp client Command Example Force10# show sntp client Client Supported Modes: unicast broadcast SNTP Version: Port: Client Mode: disabled Force10# Client Supported Modes—Supported SNTP Modes (broadcast and/or unicast) Field Descriptions...
Page 249 Server IP Address—IP address of configured SNTP server Field Descriptions Server Type—Address type of server Server Stratum—Claimed stratum of the server for the last received valid packet Server Reference ID—Reference clock identifier of the server for the last received valid packet Server Mode—SNTP server mode Server Max Entries—Total number of SNTP Servers allowed Server Current Entries—Total number of SNTP configured...
Page 250 Time Commands...
Page 251: Garp Commands
GARP Commands This chapter provides a detailed explanation of the General Attribute Registration Protocol (GARP) commands, including GVRP and GMRP commands. The commands are divided into two functional groups: • Show commands display switch settings, statistics, and other information. • Configuration commands configure features and options of the switch.
Page 252 The no version of this command sets the GVRP join time per port and per GARP to 20 centiseconds (0.2 seconds). This command has an effect only when GVRP is enabled. Default 20 centiseconds Mode Interface Config, Global Config; Interface Port Channel Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#.
Page 253 set garp timer leaveall This command sets how frequently Leave All PDUs are generated per port. A Leave All PDU indicates that all registrations will be unregistered. Participants would need to rejoin in order to maintain registration. The value applies per port and per GARP participation. The time may range from 200 to 6000 (centiseconds).
Page 254: Garp Vlan Registration Protocol (Gvrp) Commands
GARP VLAN Registration Protocol (GVRP) Commands This section provides a detailed explanation of the GVRP commands: • gvrp adminmode enable on page 254 • gvrp interfacemode enable on page 254] • gvrp interfacemode enable all on page 255 • set gvrp adminmode on page 255 •...
Page 255: Show Gvrp Configuration
gvrp interfacemode enable all This command enables GVRP (GARP VLAN Registration Protocol) for all ports. set gvrp interfacemode enable all Syntax Use no set gvrp interfacemode enable all to disable GVRP for all ports. If GVRP is disabled, Join Time, Leave Time, and Leave All Time have no effect. Default disabled Mode...
Page 256 Example Figure 15-90. Example of show gvrp configuration Command (Force10_S50) #show gvrp configuration 1/0/1 Join Leave LeaveAll Port Interface Timer Timer Timer GVRP Mode (centisecs) (centisecs) (centisecs) ----------- ----------- ----------- ----------- ----------- 1/0/1 1000 Disabled Force10-S50 #show gvrp configuration all Join Leave LeaveAll...
Page 257: Garp Multicast Registration Protocol (Gmrp) Commands
GARP Multicast Registration Protocol (GMRP) Commands This chapter provides a detailed explanation of the GMRP commands. The commands are divided into two functional groups: • Show commands display switch settings, statistics, and other information. • Configuration commands configure features and options of the switch. For every configuration command, there is a show command that displays the configuration setting.
Page 258: Set Gmrp Interfacemode
gmrp interfacemode enable all This command enables GARP Multicast Registration Protocol (GMRP) on all interfaces. If an interface which has GARP enabled is enabled for routing or is enlisted as a member of a port-channel (LAG), GARP functionality will be disabled on that interface. GARP functionality will subsequently be re-enabled if routing is disabled and port-channel (LAG) membership is removed from an interface that has GARP enabled.
Page 259: Show Gmrp Configuration
set gmrp interfacemode all Command Version 2.3 gmrp interfacemode enable all. Changed to History show gmrp configuration This command displays GARP Multicast Registration Protocol information for one or all interfaces. show gmrp configuration {unit/slot/port | all} Syntax Mode Privileged Exec and User Exec Example Figure 15-91.
Page 260: Show Mac-Address-Table Gmrp
Port GMRP Mode—Indicates the GMRP administrative mode for the port. It may be enabled or disabled. If this parameter is disabled, Join Time, Leave Time and Leave All Time have no effect. The factory default is disabled. Port GVRP Mode—Indicates the GVRP administrative mode for the port. It may be enabled or disabled. If this parameter is disabled, Join Time, Leave Time and Leave All Time have no effect.
Page 261: Rmon Commands
RMON Commands This chapter contains syntax statements for the following commands: • rmon alarm on page 261 • rmon collection history on page 263 • rmon collection statistics on page 264 • rmon event on page 264 • show rmon on page 265 •...
Page 262 The MIB object to monitor. The variable must be in the SNMP OID format, for example, 1.3.6.1.2.1.1.3. For general MIB queries, the OIDs start from 1.3.6.1.2.1. For private MIB queries, the OIDs start from 1.3.6.1.4.1.6027.1, where 6027 is the Dell Force10 Enterprise Number. The object type must be a 32-bit integer.
Page 263: Rmon Collection History
Example Figure 16-92. RMON configuration Example Force10# config Force10 (config)#rmon event 10 Force10 (config)#rmon event 20 Force10 (config)#rmon alarm 50 1.3.6.1.4.1.6027.1.1.16.0.2 absolute rising-threshold 200 10 falling-threshold 100 20 Related show rmon alarms Display the contents of the RMON Alarm Table for a specific index number. Commands show rmon alarms brief Display a summary of the contents of the RMON Alarm Table.
Page 264: Rmon Collection Statistics
rmon collection statistics Enable RMON MIB statistics collection on an interface. rmon collection statistics controlEntry Syntax 1-65535 [owner name To remove RMON MIB statistics collection on an interface, use the no rmon collection statistics controlEntry 1-65535 command. controlEntry controlEntry Parameters 1-65535 Enter the keyword to specify the RMON group of statistics...
Page 265: Show Rmon
description string description (OPTIONAL) Enter the keyword followed by a string describing the event. Range: 1–127 alphanumeric characters owner owner name (OPTIONAL) Enter the keyword followed by a name for the owner of this event. Range: 1–127 alphanumeric characters Defaults As described above Mode Global Config...
Page 266: Show Rmon Alarms
rmon collection statistics Enable RMON MIB statistics collection on an interface. rmon event Add an event in the RMON event table. show rmon alarms Display the contents of the RMON Alarm Table for a specific index number. show rmon alarms [ Syntax index Parameters...
Page 267: Show Rmon Events
Mode Privileged Exec Command Version 2.5.1.0 Introduced History Example Figure 16-95. show rmon alarms brief Command Example Force10#show rmon alarms brief index SNMP OID -------------------------------------------------------------------- 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 Force10# Related rmon alarm Set an alarm on a MIB object. Commands show rmon events Display the contents of RMON Event Table for a specific index entry.
Page 268: Show Rmon History
show rmon events brief Display a summary of the contents of the RMON Event Table. show rmon events brief Syntax Defaults No default behavior Mode Privileged Exec Command Version 2.5.1.0 Introduced History Example Figure 16-97. show rmon event brief Command Example Force10#show rmon events brief index description...
Page 269: Show Rmon Log
Example Figure 16-98. show rmon history index Command Example Force10#show rmon history 1800 RMON history control entry 1800 Interface ......0/2 IfIndex ......2 Bucket requested ....678 Bucket granted ....678 Sampling interval ....890 sec Owner ......jhdhd Status ......
Page 270 Defaults No default behavior Mode Privileged Exec Command Version 2.5.1.0 Introduced History Example Figure 16-100. show rmon log index Command Example Force10#show rmon log 1 RMON Log entry 1 Log event Index ......5 Log time ........ Log Description ......xyz Force10# Usage The log table has a maximum of 500 entries.
Page 271: Show Rmon Statistics
Related rmon event Add an event in the RMON event table. Commands rmon collection history Enable the RMON MIB history group of statistics collection on an interface. show rmon statistics Display the contents of RMON Statistics table for a specific index entry. show rmon statistics [ index ] Syntax Parameters...
Page 272 Defaults No default behavior Mode Privileged Exec Command Version 2.5.1.0 Introduced History Example Figure 16-103. show rmon statistics brief Command Example Force10#show rmon statistics brief Index Interface ------- ---------- Force10# Related rmon collection statistics Enable RMON MIB statistics collection on an interface. Commands RMON Commands...
Page 273: Igmp Snooping Commands
IGMP Snooping Commands This chapter provides a detailed explanation of the IGMP (Internet Group Management Protocol) Snooping commands. The IGMP Snooping commands are: • igmp enable (global) on page 274 • igmp enable (interface) on page 274 • igmp fast-leave on page 275 •...
Page 274: Igmp Enable (Interface)
igmp enable (global) This command enables IGMP Snooping on the system. The default value is disabled. Note: The IGMP application supports the following: • Global configuration or per interface configuration. Per VLAN configuration is unsupported in the IGMP snooping application. •...
Page 275 igmp fast-leave This command enables or disables IGMP Snooping fast-leave admin mode on a selected interface. Enabling fast-leave allows the switch to immediately remove the Layer 2 LAN interface from its forwarding table entry upon receiving an IGMP leave message for that multicast group without first sending out MAC-based general queries to the interface.
Page 276: Igmp Interfacemode Enable All
Command set igmp groupmembership-interval. Version 2.3 Modified: Revised from Added Interface History Range mode. Version 2.5.1 Added Interface Port Channel Config mode Related igmp enable (interface) Enables IGMP Snooping on a selected interface. Commands interface range Defines an interface range and accesses the Interface Range mode interface Identifies an interface and enters the Interface Config mode.
Page 277 Interface Mode Config;Interface Port Channel Config; Interface Vlan Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command Version 2.5.1 Modified: Added Interface Port Channel Config mode. History set igmp maxresponse. Version 2.3 Modified: Revised from Added Interface Range and Interface Vlan Config modes.
Page 278: Igmp Mrouter Interface Enable
Interface Mode Config; Interface Port Channel Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command Version 2.5.1 Modified: Added Interface Port Channel Config mode. History set igmp mrouter. Version 2.3 Modified: Revised from Added Interface Range mode. Related igmp enable (interface) Enables IGMP Snooping on a selected interface.
Page 279: Set Igmp Fast-Leave
Related igmp enable (global) Enables IGMP Snooping on the system. Commands igmp enable Enables IGMP Snooping on a selected interface. (interface) set igmp fast-leave Command igmp fast-leave. Version 2.3 Revised to History Related igmp fast-leave Enables or disables IGMP Snooping fast-leave admin mode on a selected interface. Commands igmp enable (global) Enables IGMP Snooping on the system.
Page 280: Set Igmp Groupmembership-Interval All
set igmp groupmembership-interval all This command sets the IGMP Group Membership Interval time on the system for all the interfaces. The Group Membership Interval time is the amount of time in seconds that a switch will wait for a report from a particular group on a particular interface before deleting the interface from the entry. set igmp groupmembership-interval all 2-3600 Syntax This variable must be greater than the IGMP Maximum Response time value.
Page 281 Related igmp enable Enables IGMP Snooping on a selected interface. Commands (interface) show igmpsnooping Displays IGMP Snooping status information. set igmp maxresponse Command igmp maxresponse. Version 2.3 Revised to History Related igmp maxresponse Sets the IGMP Maximum Response time on a particular interface. Commands set igmp maxresponse all This command sets the IGMP Maximum Response time on the system for all the interfaces.
Page 282: Set Igmp Mcrtexpiretime (Interface)
no set igmp mcrtrexpiretime Default Mode Global Config Related igmp enable (interface) Enables IGMP Snooping on a selected interface. Commands set igmp mcrtrexpiretime Sets the Multicast Router Present Expiration time on the system for all the (global) interfaces. show igmpsnooping Displays IGMP Snooping status information.
Page 283: Set Igmp Mrouter Interface
set igmp mrouter interface Command igmp mrouter interface. Version 2.3 Revised to History Related igmp enable (interface) Enables IGMP Snooping on a selected interface. Commands igmp mrouter interface Configures a selected interface as a multicast router interface. enable set igmp mrouter Command igmp mrouter.
Page 284 Example Figure 17-104. Output of the show igmpsnooping Command Force10#show igmpsnooping Admin Mode.......Enable Multicast Control Frame Count....0 Interfaces Enabled for IGMP Snooping..1/0/10 Vlans enabled for IGMP snooping..20 Force10-S50 #show igmpsnooping 1/0/1 IGMP Snooping Admin Mode....... Disable Fast Leave Mode........ Disable Group Membership Interval......
Page 285: Show Igmpsnooping Fast-Leave
show igmpsnooping fast-leave Command Version 2.3 Deprecated: Use show igmpsnooping to display whether or not IGMP Snooping is enabled History on the designated interface. show igmpsnooping mrouter interface This command displays information about statically configured ports. show igmpsnooping mrouter interface {unit/slot/port | vlan 1-3965 } Syntax Parameters unit/slot/port...
Page 286 Example Figure 17-106. Output of the show mac-address-table igmpsnooping Command Force10#show mac-address-table igmpsnooping <cr> Press Enter to execute the command. (LVL7 FASTPATH Routing) #show mac-address-table igmpsnooping Type Description Interfaces ----------------------- -------------------------------- 00:01:01:00:5E:00:01:16 DynamicNetwork AssistFwd: 1/0/47 00:01:01:00:5E:00:01:18 DynamicNetwork AssistFwd: 1/0/47 00:01:01:00:5E:37:96:D0 DynamicNetwork AssistFwd: 1/0/47 00:01:01:00:5E:7F:FF:FA DynamicNetwork AssistFwd: 1/0/47 Mac Address—A multicast MAC address for which the switch has forwarding and or filtering information.
Page 287: Lag/Port Channel Commands
LAG/Port Channel Commands This chapter provides syntax details of the Link Aggregation Group (LAG) commands (802.3ad), also called port channel, port trunking, and other terms. The commands in this chapter are: • addport on page 288 • channel-member on page 289 •...
Page 288 • port-security max-static on page 301 • protocol lacp on page 301 • protocol static on page 302 • rate-interval on page 302 • service-policy on page 302 • set garp timer join on page 302 • set garp timer leave on page 302 •...
Page 289 interface range Defines an interface range and accesses the Interface Range mode interface port-channel Creates the port channel (LAG) and invokes the Interface Port Channel Config mode. Or, if the port channel is already created, simply invokes the Interface Port Channel Config mode. channel-member This command adds/deletes the specified range of ports to the LAG (port channel) selected by the interface port-channel command.
Page 290: Clear Port-Channel
classofservice dot1p-mapping classofservice dot1p-mapping on page 328 in the QoS chapter. clear port-channel This command removes all currently configured port-channels (LAGs). clear port-channel Syntax Mode Privileged Exec Related cos-queue max-bandwidth Deletes the selected port from the specified logical interface. Commands interface port-channel Creates the port channel (LAG) or, if the port channel is already created, invokes the Interface Port Channel Config mode.
Page 291 cos-queue random-detect This command activates weighted random early discard (WRED) for each specified queue on the interface. Specific WRED parameters are configured using the 'random-detect queue-parms' and the 'random-detect exponential-weighting-constant' commands. The no version of this command disables WRED, thereby restoring the default tail drop operation for the specified queues on the interface.
Page 292: Description (Port Channel)
Related addport In Interface Config mode, adds a port to the port-channel (LAG), or, in Commands Interface Range mode, the selected range of interfaces channel-member /deletes Adds the specified range of ports to the LAG selected by the interface port-channel command.
Page 293 Example Figure 18-108. show interfaces description Command Example S50 #conf S50 (Config)#interface 1/0/1 S50 (Interface 1/0/1)#description "1/0/1 is access port" S50 (Interface 1/0/1)#exit S50 (Config)#interface 1/0/30 S50 (Interface 1/0/30)#description 'management port in vlan 30' S50 (Interface 1/0/30)#exit S50 (Config)#exit S50 #show interfaces description 1/0/1 Interface..1/0/1 IfIndex..1 Description..1/0/1 is access port...
Page 294: Igmp Enable
gmrp interfacemode enable (LAG) This command enables GARP Multicast Registration Protocol (GMRP) on the selected LAG. If an interface with GARP enabled is enabled for routing or is enlisted as a member of the LAG (port channel), GARP functionality will be disabled on that interface. GARP functionality will subsequently be re-enabled on that interface if routing is disabled and port-channel (LAG) membership is removed from the interface.
Page 295: Igmp Mrouter Interface
igmp mrouter This command is available in the Interface Port Channel Config mode. igmp mrouter on page 277 in the IGMP chapter. igmp mrouter interface This command is available in the Interface Port Channel Config mode. igmp mrouter interface enable on page 278 in the IGMP chapter.
Page 296: Mac Access-Group (Port Channel)
1–199 Parameters Enter the number of the ACL, which was assigned using the access-list command. 1-4294967295 (OPTIONAL) a sequence number that indicates the desired order Enter of this ACL relative to other ACLs already assigned to this LAG. A lower number indicates higher precedence order. If the number is already in use for this LAG, this ACL replaces the currently attached ACL using that sequence number.
Page 297: Mtu (Lag)
Related interface port-channel Defines a port channel and invokes the Interface Port Channel Config mode Commands interface range Defines an interface range and accesses the Interface Range mode mac access-group In the Global Config, Interface Config, or Interface Range modes, attaches a MAC ACL to the selected interface.
Page 298 Related show interfaces Displays an overview of all port channels (LAGs) on the switch or details on the Commands port-channel selected LAG. addport Add a port to a LAG. LAG ports must be physical ports, not other LAGs. port-channel enable all (global) This command enables the administrative mode for all port channel (LAGs).
Page 299 port-channel name This command defines a name for the port channel (LAG). Mode Global Config Command Version 2.5.1 Deprecated: Replaced by description (port channel), which adds a text description of the History port channel from the new Interface Port Channel Config mode. port-channel staticcapability This command enables the support of port channels (static link aggregations - LAGs) on the device.
Page 300 Command protocol lacp protocol static Version 2.5 Deprecated. Use History port lacpmode all Version 2.3 Revised from [ Related interface range Defines an interface range and accesses the Interface Range mode Commands protocol lacp Reenables LACP on a LAG. protocol static Converts a LAG from LACP to static.
Page 301: Protocol Lacp
port-security This command is available in the Interface Port Channel Config mode. port-security on page 183 in the Security Commands chapter. port-security mac-address This command is available in the Interface Port Channel Config mode. port-security mac-address on page 184 in the Security Commands chapter. port-security mac-address move This command is available in the Interface Port Channel Config mode.
Page 302: Protocol Static
interface range Defines an interface range and accesses the Interface Range mode protocol static Convert the LAG to static mode. protocol static This command converts the selected LAG (port channel) from LACP mode to static. protocol static Syntax Default disabled Mode Interface Port Channel Config Usage...
Page 303: Show Interfaces Port-Channel
set garp timer leaveall This command is available in the Interface Port Channel Config mode. set garp timer leaveall on page 253 in the GARP Commands chapter. show interfaces port-channel This command displays details about the designated LAG (port channel) or a summary of all LAGs. show interfaces port-channel {1–128 | brief} Syntax Parameters...
Page 304: Show Port-Channel
Example 2 Figure 18-110. Example of Output from show interface port-channel Command Force10#show interface port-channel 1 Description........wills_po20-21-22 MAC Address........00:01:E8:D5:A0:81 MTU..........1518 Packets RX and TX 64 Octets....0 Packets RX and TX 65-127 Octets....0 Packets RX and TX 128-255 Octets....0 Packets RX and TX 256-511 Octets....
Page 305: Shutdown (Port Channel)
show port-channel brief Syntax Mode Privileged Exec and User Exec Command Version 2.5.1 Modified to show interfaces port-channel. History shutdown (port channel) This command enables or disables the port channel selected by the interface port-channel command. The port channel is enabled by default. Alternatively, the no version of this command enables the port channel.
Page 306: Spanning-Tree (Lag)
Related interface range Defines an interface range and accesses the Interface Range mode Commands interface port-channel Defines a port channel and invokes the Interface Port Channel Config mode snmp trap link-status Enables link status traps by selected interface (interface) spanning-tree (LAG) This command sets the spanning-tree operational mode on the selected LAG (port channel).
Page 307: Spanning-Tree 0 Priority (Lag)
spanning-tree 0 priority (LAG) This command sets/clears the CST priority for the port channel. [no] spanning-tree 0 priority 0-15 Syntax Default Mode Interface Port Channel Config Command Version 2.5.1 Introduced in the new Interface Port Channel Config mode History Related spanning-tree (LAG) Sets the spanning-tree operational mode on the selected port channel Commands...
Page 308: Spanning-Tree Mstp Edge-Port (Lag)
Defaults 128 (priority) Mode Interface Port Channel Config Command Version 2.5.1 Introduced in the new Interface Port Channel Config mode History Related interface port-channel Defines a port channel and invokes the Interface Port Channel Config mode Commands spanning-tree (LAG) Sets the spanning-tree operational mode on the selected port channel spanning-tree Sets the spanning-tree operational mode to enabled at the global level.
Page 309: Spanning Tree (Stp) Commands
Spanning Tree (STP) Commands This chapter provides a detailed explanation of the Spanning Tree commands. The commands are divided into two functional groups: • Show commands display switch settings, statistics, and other information. • Configuration commands configure features and options of the switch. For every configuration command, there is a show command that displays the configuration setting.
Page 310 show spanning-tree This command displays spanning tree settings for the common and internal spanning tree. nieAund ooao:6CsEEu Syntax [rsaEt ] Mode Privileged Exec and User Exec Example 1 Figure 19-111. Example Output from show spanning-tree Command Force10#show spanning-tree Bridge Priority........ 32768 Bridge Identifier......
Page 311 Bridge Hold Time—Minimum time between transmission of Configuration Bridge Protocol Data Units (BPDUs) CST Regional Root—Bridge Identifier of the common spanning tree regional root. It is derived using the bridge priority and the base MAC address of the bridge. Regional Root Path Cost—Path cost to the common spanning tree Regional Root. Associated FIDs—List of forwarding database identifiers currently associated with this instance.
Page 312: Show Spanning-Tree Mst Detailed
Port Up Time Since Counters Last Cleared—Time since port was reset, displayed in days, hours, minutes, and seconds. Hello Time—Configured value of the parameter for common spanning tree. STP BPDUs Transmitted—Spanning Tree Protocol Bridge Protocol Data Units sent STP BPDUs Received—Spanning Tree Protocol Bridge Protocol Data Units received. RST BPDUs Transmitted—Rapid Spanning Tree Protocol Bridge Protocol Data Units sent RST BPDUs Received—Rapid Spanning Tree Protocol Bridge Protocol Data Units received.
Page 313 show spanning-tree mst port detailed This command displays the detailed settings and parameters for a specific port within a particular multiple spanning tree instance. show spanning-tree mst port detailed mstid unit/slot/port Syntax The instance mstid is a number that corresponds to the desired existing multiple spanning tree instance. The unit/slot/port is the desired switch port.
Page 314: Show Spanning-Tree Mst Port Summary
Edge Port—The configured value indicating if this port is an edge port. Edge Port Status—The derived value of the edge port status. True if operating as an edge port; false otherwise. Point To Point MAC Status—Derived value indicating if this port is part of a point to point link CST Regional Root—The regional root identifier in use for this port CST Port Cost—The configured path cost for this port Related...
Page 315: Show Spanning-Tree Summary
Associated FIDs—List of forwarding database identifiers associated with this instance. Associated VLANs—List of VLAN IDs associated with this instance. show spanning-tree summary This command displays spanning tree settings and parameters for the switch. The following details are displayed on execution of the command. show spanning-tree summary Syntax Mode...
Page 316: Spanning-Tree Bpdumigrationcheck
Mode Global Config Related spanning-tree (LAG) Sets the spanning-tree operational mode on the selected port channel Commands spanning-tree port mode enable all spanning-tree bpdumigrationcheck Use this command to force a transmission of rapid spanning tree (RSTP) and multiple spanning tree (MSTP) BPDUs.
Page 317: Spanning-Tree Edgeport
Default Mode Global Config spanning-tree edgeport This command specifies that this port is an edge port (portfast) within the common and internal spanning tree, allowing this port to transition to forwarding state without delay. The no version of this command specifies that this port is not an edge port within the common and internal spanning tree.
Page 318 The no version of this command sets the Bridge Forward Delay parameter for the common and internal spanning tree to the default value, in other words, 15. [no] spanning-tree forward-time 4-30 Syntax Default Mode Global Config spanning-tree hello-time This command sets the Admin Hello Time parameter to a new value for the common and internal spanning tree.
Page 319: Spanning-Tree Max-Hops
Mode Global Config spanning-tree max-hops This command sets the MSTP Max Hops parameter to a new value for the common and internal spanning tree. The max-hops value is in a range of 1 to 127. The no version of this command sets the Bridge Max Hops parameter for the common and internal spanning tree to the default value.
Page 320 cost : auto Default external-cost : auto port-priorty : 128 Format {cost <1-200000000> | auto } | spanning-tree mst <mstid> { {external-cost <1-200000000> | auto }| port-pri- ority <0-240>} Interface Config Mode no spanning-tree mst This command sets the Path Cost or Port Priority for this port within the multiple spanning tree instance or in the common and internal spanning tree to the respective default values.
Page 321 show spanning-tree This command displays spanning tree settings for the common and internal spanning tree, when the optional parameter “brief” is not included in the command. The following details are displayed. Format show spanning-tree <brief> Privileged EXEC and User EXEC Mode Configured value.
Page 322 show spanning-tree interface < > Format unit/slot/port Privileged EXEC and User EXEC Mode Admin hello time for this port Hello Time Port mode Enabled or disabled Port Up Time Since Counters Last Cleared Time since port was reset, displayed in days, hours, minutes, and seconds.
Page 323: Spanning-Tree Msti
The port identifier for this port within the CST. Port Identifier The priority of the port within the CST. Port Priority The forwarding state of the port within the CST. Port Forwarding State The role of the specified interface within the CST. Port Role The configured path cost for the specified interface.
Page 324: Spanning-Tree Msti Instance
If the external-cost token is specified, this command sets the external-path cost for MST instance “0” (in other words, the CIST instance). The external-path cost is specified as a number in the range of 1 to 200000000. If the priority token is specified, this command sets the priority for this port within a specific multiple spanning tree instance or the common and internal spanning tree instance, depending on the msti parameter.
Page 325: Spanning-Tree Msti Vlan
The instance mstid is a number in the range 0-63 that corresponds to the desired existing multiple spanning tree instance. is the priority value, representing a range of 0 to 61440 in increments of 4096. 0–61440 If 0 (defined as the default CIST ID) is passed as the mstid , this command sets the bridge priority parameter to a new value for the common and internal spanning tree.
Page 326: Spanning-Tree Port Mode Enable
spanning-tree port mode enable This command sets the Administrative Switch Port State for this port to enabled. The no version of this command sets the Administrative Switch Port State for this port to disabled. [no] spanning-tree port mode enable Syntax Default disabled Mode...
Page 327: Quality Of Service (Qos) Commands
Quality of Service (QoS) Commands This chapter provides a detailed explanation of Quality of Service (QoS) commands. The chapter is divided into the following sections: • Class of Service (CoS) Commands • Differentiated Services (DiffServ) Commands on page 335 • Provisioning (IEEE 802.1p) Commands on page 365 •...
Page 328: Classofservice Ip-Dscp-Mapping
Table 20-22. Default CoS Queue Prioritization Queue Fraction (%) of Total Bandwidth 1/28 (3.57%) 2/28 (7.14%) 3/28 (10.71%) 4/28 (14.28%) 5/28 (17.86%) 6/28 (21.43%) 7/28 (25%) classofservice dot1p-mapping This command maps an 802.1p priority to an internal traffic class. classofservice dot1p-mapping Syntax userpriority trafficclass userpriority...
Page 329: Classofservice Trust
Related classofservice dot1p-mapping Maps an 802.1p priority to an internal traffic class. Commands interface range Defines an interface range and accesses the Interface Range mode classofservice ip-precedence-mapping This command maps an IP precedence value to an internal traffic class. classofservice ip-precedence-mapping ipprecedence trafficclass Syntax The ipprecedence and trafficclass can both range from 0-6, although the actual number of available traffic classes depends on the platform.
Page 330 cos-queue max-bandwidth This command specifies the maximum transmission bandwidth limit for each interface queue. Also known as rate shaping, this has the effect of smoothing temporary traffic bursts over time so that the transmitted traffic rate is bounded. The total number of queues supported per interface is platform specific.
Page 331: Show Classofservice Dot1P-Mapping
cos-queue strict This command activates the strict priority scheduler mode for each specified queue. The no version of this command restores the default weighted scheduler mode for each specified queue. [no] cos-queue strict queue-id-1 [ queue-id-2 … queue-id-n> Syntax Modes Global Config;...
Page 332: Show Classofservice Ip-Dscp-Mapping
Mode Privileged Exec Example Figure 20-113. Example of show classofservice dot1p-mapping Command Force10 #show classofservice dot1p-mapping 1/0/1 User Priority Traffic Class ------------- ------------- The following information is repeated for each user priority. User Priority—The 802.1p user priority value Traffic Class—The traffic class internal queue identifier to which the user priority value is mapped Related classofservice Maps an 802.1p priority to an internal traffic class...
Page 333: Show Classofservice Trust
Traffic Class—The traffic class internal queue identifier to which the IP Precedence value is mapped. Related classofservice Maps an IP precedence value to an internal traffic class Commands ip-precedence-mapping show classofservice ip-precedence-mapping This command displays the current IP precedence mapping to internal traffic classes for all interfaces or a specific interface.
Page 334: Show Interfaces Cos-Queue
Example Figure 20-116. Example of show classofservice trust Command Force10 #show classofservice trust Class of Service Trust Mode: Dot1P Non-IP Traffic Class—The traffic class used for non-IP traffic. This is only displayed when the COS trust mode is set to trust IP Precedence or IP DSCP (on platforms that support IP DSCP)—either 'trust ip-dscp' or 'trust ip-precedence'.
Page 335: Differentiated Services (Diffserv) Commands
Differentiated Services (DiffServ) Commands The commands in this section are: • diffserv on page 337 Class Commands on page 337: • class-map match-all on page 338 • class-map rename on page 339 • match ethertype on page 340 • match any on page 340 •...
Page 336 • show service-policy on page 364 For examples of using these commands, see the DiffServ chapter in the SFTOS Configuration Guide. The user configures DiffServ in several stages by specifying: • Class: Creating and deleting classes Defining match criteria for a class. Note: The only way to remove an individual match criterion from an existing class definition is to delete the class and re-create it.
Page 337: Class Commands
The user can display summary and detailed information for classes, policies and services. All configuration information is accessible via the CLI and SNMP user interfaces. diffserv This command sets the DiffServ operational mode to active. While disabled, the DiffServ configuration is retained and can be changed, but it is not activated. When enabled, Diffserv services are activated.
Page 338: Class-Map Match-All
class-map match-all This command defines a new DiffServ class of type match-all. The match-all class type indicates that all of the individual match conditions must be true for a packet to be considered a member of the class.The class type of match-any indicates only one of the match criteria must be true for a packet to belong to the class;...
Page 339: Class-Map Rename
The command defines how matching in the policy works. Policy statements describe what to match in the packet. For example, “class-map match-all Dallas” means “Create a policy named ‘Dallas’ that must match all statements in the policy.” Example Figure 20-117. Creating a Class Map !Create “Dallas”...
Page 340: Match Ethertype
match ethertype This command adds to the specified class definition a match condition based on the value of the value is specified as one of the following keywords: appletalk, arp, ethertype. The ethertype ibmsna, ipv4, ipv6, ipx, mplsmcast, mplsucast, netbios, novell, pppoe, rarp or as a custom ethertype value in the range of 0x0600–0xFFFF.
Page 341: Match Cos
The total number of class rules formed by the complete reference class chain (includes both predecessor and successor classes) must not exceed a platform-specific maximum. In some cases, each removal of a refclass rule reduces the maximum number of available rules in the class definition by one.
Page 342: Match Dstl4Port
match dstl4port This command adds to the specified class definition a match condition based on the destination Layer 4 port of a packet using a single keyword or numeric notation or a numeric range notation. match dstl4port { Syntax portkey 0-65535 0-65535 To specify the match condition as a single keyword, the value for...
Page 343: Match Ip Precedence
match ip precedence This command adds to the specified class definition a match condition based on the value of the IP Precedence field in a packet, which is defined as the high-order three bits of the Service Type octet in the IP header (the low-order five bits are not checked).
Page 344: Match Srcip
To specify the match condition using a single keyword notation, the value for protocol-name is one of the supported protocol name keywords. The currently supported values are: icmp, igmp, ip, tcp, udp. Note that a value of ip is interpreted to match all protocol number values. To specify the match condition using a numeric value notation, the protocol number is a standard value assigned by IANA and is interpreted as an integer from 0 to 255.
Page 345: Match Srcl4Port
match srcl4port This command adds to the specified class definition a match condition based on the source Layer 4 port of a packet using a single keyword or numeric notation or a numeric range notation. match srcl4port { portkey | 0-65535 } [ 0-65535 ] Syntax To specify the match condition as a single keyword notation, the value for portkey is one of the supported port name keywords.
Page 346: Policy Commands
Policy Commands The commands described in this section are: • assign-queue on page 346 • class on page 348 • conform-color on page 348 • drop on page 348 • mark cos on page 350 • mark ip-dscp on page 350 •...
Page 347: Bandwidth Kbps
The queueid is an integer from 0 to n-1, where n is the number of egress queues supported by the device. Mode Policy Class (The prompt is “(Policy-classmap Config)#”.) bandwidth kbps This command identifies a minimum amount of bandwidth to be reserved for the specified class instance within the named policy using an absolute rate notation.
Page 348 Policy Type Expedite (all forms) Incompatibilities class This command creates an instance of a class definition within the specified policy for the purpose of defining treatment of the traffic class through subsequent policy attribute statements. Note that this command causes the specified policy to create a reference to the class definition. Note: The CLI mode is changed to Policy Class mode (“Policy-classmap Config”) when this command is successfully executed.
Page 349: Expedite Kbps
expedite kbps This command identifies the maximum guaranteed amount of bandwidth to be reserved for the specified class instance within the named policy using an absolute rate notation. The committed information rate is specified in kilobits-per-second (Kbps) and is an integer from 1 to 4294967295. The optional committed burst size is specified in kilobytes (KB) as an integer from 1 to 128, with a default of 4.
Page 350: Mark Cos
Policy Type Bandwidth (all forms), Shape Peak Incompatibilities mark cos This command marks all packets for the associated traffic stream with the specified class of service value in the priority field of the 802.1p header. If the packet does not already contain this header, one is inserted.
Page 351 Table 20-23. Mapping of DSCP Keywords to Numerical Codepoints DSCP Keywords Numeric Codepoints AF22 AF23 AF31 AF32 AF33 AF41 AF42 AF43 Mode Policy Class (The prompt is “(Config-policy-classmap)#”) Policy Type Incompatibilities Mark IP Precedence, Police (all forms) mark ip-precedence This command marks all packets for the associated traffic stream with the specified IP Precedence value.
Page 352 police-simple This command establishes the traffic policing style for the specified class. police-simple { conform-action {drop | set-prec-transmit Syntax 1-4294967295 1-128 set-dscp-transmit | set-cos-transmit | set-secondary-cos-transmit 0-63 transmit} [violate-action drop]} The simple form of the command uses a single data rate and burst size, resulting in two outcomes: conform and nonconform.
Page 353 police-single-rate This command is used to establish the traffic policing style for the specified class. The single-rate form of the police command uses a single data rate and two burst sizes, resulting in three outcomes: conform, exceed and violate. The conforming data rate is specified in kilobits-per-second (Kbps) and is an integer from 1 to 4294967295.
Page 354 For set-dscp-transmit, a <dscpval value is required and is specified as either an integer from 0 to 63, > or symbolically through one of the following keywords: af11, af12, af13, af21, af22, af23, af31, af32, af33, af41, af42, af43, be, cs0, cs1, cs2, cs3, cs4, cs5, cs6, cs7, ef. For set-prec-transmit, an IP Precedence value is required and is specified as an integer from 0-7.
Page 355 policy-map rename This command changes the name of a DiffServ policy. policy-map rename policyname newpolicyname Syntax The policyname is the name of an existing DiffServ class. The newpolicyname parameter is a case-sensitive alphanumeric string from 1 to 31 characters uniquely identifying the policy. Mode Global Config mark secondary-cos...
Page 356: Shape Average
The last two parameters, namely sampling rate and decay exponent, are hierarchically specified in this command. That is, in order to provide a value for the decay exponent <0-16>, the user is required to also specify a sampling rate <0-1000000 for proper command interpretation.
Page 357: Service Commands
Incompatibilities Expedite (all forms) Service Commands The service command set consists of service-policy and show service. The service-policy command assigns a DiffServ traffic conditioning policy (as specified by the policy commands) to an interface in the incoming direction. Only one policy may be assigned at any one time to an interface. service-policy This command attaches a policy to an interface in a particular direction.
Page 358: Show Commands
Show Commands The commands in this section are: • show class-map on page 358 • show diffserv on page 359 • show policy-map on page 362 • show diffserv service on page 360 • show diffserv service brief on page 361 •...
Page 359: Show Diffserv
Field If a class name is specified, the following fields are displayed: Descriptions Class Name—The name of this class Class Type—The class type (all, any, or acl) indicating how the match criteria are evaluated for this class. A class type of all means every match criterion defined for the class is evaluated simultaneously they must all be true to indicate a class match.
Page 360: Show Diffserv Service
Example Figure 20-119. Example of Output from the show diffserv Command Force10 #show diffserv DiffServ Admin mode......Enable Class Table Size Current/Max....0 / 25 Class Rule Table Size Current/Max....0 / 150 Policy Table Size Current/Max....0 / 64 Policy Instance Table Size Current/Max..
Page 361: Show Diffserv Service Brief
Example Figure 20-120. Example of Output from the show diffserv service Command Force10 #show diffserv service 1/0/1 in DiffServ Admin mode......Enable Interface........1/0/1 Direction........In No policy is attached to this interface in this direction. Report Fields When a policy is attached to the designated interface, the fields in the report are: DiffServ Admin Mode—The current setting of the DiffServ administrative mode.
Page 362: Show Policy-Map
show policy-map This command displays all configuration information for the specified policy. show policy-map [policyname] Syntax policyname is the name of an existing DiffServ policy. Mode EXEC Privilege Mark Secondary COS—Denotes the secondary class of service value that is set in the 802.1p header of Report Fields outbound packets.
Page 363: Show Policy-Map Interface
Committed Burst Size (KB)—This field displays the committed burst size, used in simple policing. Conform Action—The current setting for the action taken on a packet considered to conform to the policing parameters. This is not displayed if policing is not in use for the class under this policy. Conform DSCP Value—This field shows the DSCP mark value if the conform action is markdscp.
Page 364: Show Service-Policy
parameter specifies a valid interface for the system. The direction parameter unit/slot/port indicates the interface direction of interest. Interface—Valid unit, slot and port number separated by forward slashes. Report Fields Direction—The traffic direction of this interface service, either in or out. Note: SFTOS only supports a policy-map in the “in”...
Page 365: Classofservice Dot1Pmapping
Discarded Packets—A count of the total number of packets discarded for all class instances in this service for any reason due to DiffServ treatment. These are overall per-interface per-direction counts. Sent Packets—A count of the total number of packets forwarded for all class instances in this service after their defined DiffServ treatments were applied.
Page 366: Show Classofservice Dot1Pmapping
dot1p-priority This command configures the 802.1p port priority, from 0 to 7, assigned to untagged packets for a specific interface. dot1p-priority Syntax – Default Mode Interface Port Channel Config Command Version 2.5 Introduced. Replaces vlan priority for port channel ports (LAG ports) History show classofservice dot1pmapping This command displays the current 802.1p priority mapping to internal traffic classes for all or specific...
Page 367: Buffer Carving
Configuration is allowed for all physical ports — 1G, 10G, and stack ports. Caution: Changing the buffer settings from their defaults can yield unpredictable results, because Dell Force10 has not tested the many combinations of possible values and port configurations. If you are using these features for the first time,...
Page 368: Buffer Dedicated (1G And Stacking Ports)
Mode Global Config Usage After you change the buffers, you should execute this command before rebooting the switch to verify that the buffer allocations meet the hardware requirements. Command Version 2.5.1 Introduced History Related buffer dedicated (1G and Set buffer sizes per port and per queue for ports 1 – 48 and the stack port on Commands stacking ports) the S50, and ports 1 –...
Page 369: Buffer Dedicated Interface (10G Ports)
Defaults Equal allocation per queue Mode Global Config Command Version 2.5.1 Introduced History Usage For example, to set the buffer to 50k in each buffer on port 1/0/1 in unit 1 in an S50 stack, the command would be buffer dedicated interface 1/0/1 50 50 50 50 50 50 50. Information Related buffer check...
Page 370 Parameters interface interface unit/slot/port Enter the keyword followed by the port that you want to configure, in unit/slot/port format. The only ports that this command configures are ports 49 and 50 on the S50. Use buffer dedicated (1G and stacking ports) for the other ports.
Page 371 To return buffers to their default values, use the no buffer dynamic interface unit/slot/port or no buffer dynamic system-uplink unit command syntax, depending on the target port. Parameters interface unit/slot/port interface Enter the keyword followed by the port that you want to configure. The possible ports vary by platform: •...
Page 372: Buffer Dynamic Interface (S25P)
buffer dynamic interface (S25P) This command sets the dynamic buffer size for S25P ports. [no] buffer dynamic interface Syntax unit/slot/port buffer To return buffers to their default values, use the no buffer dynamic interface unit/slot/port command syntax. Parameters unit/slot/port buffer unit/slot/port Enter the S25P port to configure (ports 1 –...
Page 373: Buffer Packets Interface
Command Version 2.5.1 Introduced History Related buffer check Verify that the configured buffer allocations meet the hardware requirements. Commands buffer dynamic (1G and stack Set dynamic buffer sizes per port for ports 1 – 48 and the stack port on the S50, ports) and ports 1 –...
Page 374 Usage The total number of packets cannot exceed 2047 per port. Information Related buffer check Verify that the configured buffer allocations meet the hardware requirements. Commands buffer dedicated (1G and Sets buffer sizes per port and per queue for the ASICs controlling ports 1 – 48 stacking ports) and the stack port on the S50, and ports 1 –...
Page 375 Example 2 Figure 20-122. show buffer unit Command Output from an S50V or S25P (Force10 S50) #show buffer unit 2 Broadcom ASIC 56504 (BCM unit 0) Total Physical Buffer………………………….2048 kb Total Dedicated Buffer………………………..1340 kb Total Dynamic Buffer………………………….708 kb Interface Fixed buffer Fixed Buffer Over-sub Over-sub...
Page 376: Show Buffer Allocation Interface
show buffer allocation interface This command displays configured and actual static buffer allocation and packet allocation values per queue for the selected port in an S50, S50V, or S25P. Because configured values do not take effect until the stack is rebooted, the actual values can be different. show buffer allocation interface { | system-uplink | system-downlink} Syntax...
Page 377 Table 20-25. Fields of show buffer unit Command Output (continued) Field Description Pkt Limit (Conf) The packet limit allocation, as configured Pkt Limit (Actual) The packet limit allocation, as it is before reboot sets the value to the configured value Command Version 2.5.1 Introduced...
Page 378 Quality of Service (QoS) Commands...
Page 379: Acl Commands
ACL Commands SFTOS supports the following types of Access Control Lists (ACLs): • IP Access Control List (IP ACL) Commands • MAC Access Control List (ACL) Commands on page 384 • Broadcast Storm Control Commands on page 389 An Access Control List (ACL) ensures that only authorized users and types of traffic have access to specific resources, while blocking unwarranted attempts to reach network resources.
Page 380 Syntax IP Standard ACL: OOEnn6ganC {deny | permit} {every | 1-99 srcip srcmask } [log] [assign-queue queue-id [{mirror | redirect} unit/slot/port The mirror option is supported in the S50V and S25P models only. Note: IP Extended ACL: access-list {deny | permit} {every | icmp | igmp | ip | tcp | udp | 100-199 protocol_number } {any | eq {...
Page 381: Ip Access-Group (Interface)
(OPTIONAL) Specifies that hits on this rule are to be logged (For details, see the System Logs chapter in the SFTOS Configuration Guide). The attribute is deny only for rules. assign-queue (OPTIONAL) The assign-queue ID is the queue identifier to which packets matching this rule are assigned.
Page 382: Ip Access-Group All
Mode Interface Config (including Interface Loopback Config) and Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command Version 2.3 Interface Range mode added History Related interface range Defines an interface range and accesses the Interface Range mode. Commands access-list Creates an IP access control list.
Page 383 Example Figure 21-125. Command Example specifying ACL number: show ip access-lists Force10-S50 #show ip access-lists 1 ACL ID: 1 Interface:1/0/48 Rule Number: 1 Action......... permit Match All........FALSE Source IP Address......1.1.1.1 Source IP Mask......... 255.255.255.0 Rule Number: 2 Action......... permit Match All........
Page 384: Mac Access Control List (Acl) Commands
MAC Access Control List (ACL) Commands The commands in this section are: • {deny|permit} on page 384 • mac access-list extended on page 386 • mac access-list extended rename on page 386 • mac access-group on page 387 • show mac access-lists on page 388 {deny|permit} This command creates a new rule for the selected MAC access list.
Page 385 Note: The 'no' form of this command is not supported, as the rules within an ACL cannot be deleted individually. Rather, the entire ACL must be deleted and re-specified. A rule may either deny or permit traffic according to the specified classification fields. At a minimum, the source and destination MAC value must be specified, each of which may be substituted using the keyword any to indicate a match on any value in that field.
Page 386: Mac Access-List Extended
mac access-list extended This command creates a MAC Access Control List (ACL) identified by name , consisting of classification fields defined for the Layer 2 header of an Ethernet frame. Note: The CLI mode is changed to Mac Access List Config (prompt is “ hostname (Mac-Access-List Config)#”) when this command is successfully executed.
Page 387: Mac Access-Group
Related {deny|permit} Creates a new rule for the MAC access list selected by the Commands access-list extended command. interface range Defines an interface range and accesses the Interface Range mode mac access-group (port In the Interface Port Channel Config mode, attaches a MAC ACL to the channel) selected port channel name...
Page 388: Show Mac Access-Lists
show mac access-lists This command displays the rules defined for all MAC ACLs or the MAC ACL specified by name show mac access-lists [ Syntax name Mode Privileged Exec When the command is used with the name option, the report displays details for the identified MAC access list, in the following fields: Rule Number—The ordered rule number identifier defined within the ACL.
Page 389: Broadcast Storm Control Commands
Broadcast Storm Control Commands This section contains the following commands: • show storm-control • storm-control broadcast on page 390 • storm-control flowcontrol on page 390 show storm-control This command displays switch configuration information. show storm-control [unit/slot/port | all] Syntax Mode Privileged Exec Broadcast Storm Recovery Mode—May be enabled or disabled.
Page 390 storm-control broadcast This command enables broadcast storm recovery mode. If the mode is enabled, broadcast storm recovery with high and low thresholds is implemented. [no] storm-control broadcast Syntax The no version of this command disables broadcast storm recovery mode. The threshold implementation follows a percentage pattern. If the broadcast traffic on any Ethernet port exceeds the high threshold percentage (as represented in the Table 21-27) of the link speed, the...
Page 391: Routing Commands
Routing Commands This chapter provides a detailed explanation of routing commands, in the following sections: • Address Resolution Protocol (ARP) Commands on page 391 • IP Routing on page 397 • Bootp/DHCP Relay Commands on page 407 • Router Discovery Protocol Commands on page 410 (IRDP/ICMP) •...
Page 392: Arp Cachesize
This command creates an ARP entry. [oe] sd Syntax ipaddress macaddr The value for ipaddress is the IP address of a device on a subnet attached to an existing routing interface. macaddr is a unicast MAC address for that device. The format is 6 two-digit hexadecimal numbers that are separated by colons, for example 00:06:29:32:81:40.
Page 393: Arp Resptime
arp resptime This command configures the ARP request response timeout. The value for seconds is a valid positive integer, which represents the IP ARP entry response timeout time in seconds. The range for seconds is between 1-10 seconds. The no version of this command configures the default ARP request response timeout. arp resptime 1-10 Syntax no arp resptime...
Page 394: Show Arp
clear arp-cache This command causes all ARP entries of type dynamic to be removed from the ARP cache. If the gateway parameter is specified, the dynamic entries of type gateway are purged as well. clear arp-cache [gateway] Syntax Mode Privileged Exec ip proxy-arp This command enables proxy ARP on a router interface.
Page 395: Show Arp Brief
Example Figure 22-127. show arp Command Example (Force10 ) #show arp Age Time (seconds)......1200 Response Time (seconds)......1 Retries........4 Cache Size........1920 Dynamic Renew Mode ......Enable Total Entry Count Current / Peak ....0 / 0 Static Entry Count Configured / Active / Max .. 0 / 0 / 64 IP Address MAC Address Interface...
Page 396 Example Figure 22-128. show arp Command Example (Force10 ) #show arp brief Age Time (seconds)......1200 Response Time (seconds)......1 Retries........4 Cache Size........1920 Dynamic Renew Mode ......Enable Total Entry Count Current / Peak ....0 / 0 Static Entry Count Configured / Active / Max ..
Page 397: Ip Routing
IP Routing This section provides a detailed explanation of the IP Routing commands. The commands are divided by functionality into the following different groups: • Show commands are used to display switch settings, statistics and other information. • Configuration Commands are used to configure features and options of the switch. For every configuration command there is a show command that will display the configuration setting.
Page 398: Ip Address (Routed)
Interface Config; Mode Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command Version 2.3 Interface Range mode added History Related interface range Defines an interface range and accesses the Interface Range mode Commands ip address (routed) This command configures an IP address on a routed interface.
Page 399: Ip Netdirbcast
Packets originated on the router, such as OSPF packets, may be fragmented by the IP stack. The IP stack uses its default IP MTU and ignores the value set using the ip mtu command. OSPF advertises the IP MTU in the Database Description packets it sends to its neighbors during database exchange.
Page 400: Ip Route Default
Mode Global Config ip route default This command configures the default route. The value for nextHopRtr is a valid IP address of the next hop router. The preference is an integer value from 1 to 255. The no version of this command deletes all configured default routes. If the optional nextHopRtr parameter is designated, the specific next hop is deleted from the configured default route and if the optional preference value is designated, the preference of the configured default route is reset to its default.
Page 401: Show Ip Interface
routing This command enables routing for the selected interface. [no] routing Syntax The no version of this command disables routing for an interface. The current value for this function is displayed under show ip interface labeled as “Routing Mode”. Default disabled Mode Interface Config...
Page 402 Example 2 Figure 22-130. show ip interface output Command Example (Force10) #show ip interface 1/0/1 Routing Mode........Disable Administrative Mode......Disable Forward Net Directed Broadcasts....Disable Proxy ARP........Enable Active State........Inactive Link Speed Data Rate......Inactive MAC Address........00:01:E8:D5:A2:1A Encapsulation Type......
Page 403: Show Ip Brief
Active State—Displays whether the interface is active or inactive. An interface is considered active if its link is up and in forwarding state. Link Speed Data Rate—Is an integer representing the physical link data rate of the specified interface. This is measured in megabits per second (Mbps). MAC Address—Is the burned-in physical address of the specified interface.
Page 404: Show Ip Route
Routing Mode—Is the administrative mode of router interface participation. The possible values are enable or disable. This value was configured into the unit. Administrative Mode—Is the administrative mode of the specified interface. The possible values of this field are enable or disable. This value was configured into the unit. Forward Net Directed Broadcasts—Displays whether forwarding of network-directed broadcasts is enabled or disabled.
Page 405: Show Ip Route Bestroutes
Subnet Mask—Is a mask of the network and host portion of the IP address for the router interface. Protocol—Tells which protocol added the specified route. The possibilities are: local, static, OSPF or RIP. Total Number of Routes—The total number of routes. For each Next Hop: Next Hop Intf—The outgoing router interface to use when forwarding traffic to the next destination.
Page 406: Show Ip Route Preferences
Subnet Mask—Is a mask of the network and host portion of the IP address for the attached network. Protocol—Tells which protocol added the specified route. The possibilities are: local, static, OSPF or RIP. For each Next Hop: Next Hop Interface—The outgoing router interface to use when forwarding traffic to the next destination. Next Hop IP Address—The outgoing router IP address to use when forwarding traffic to the next router (if any) in the path toward the destination.
Page 407: Bootp/Dhcp Relay Commands
This command is used to discover the routes that packets actually take when traveling to their destination through the network on a hop-by-hop basis. <ipaddr> should be a valid IP address. [port] should be a valid decimal integer in the range of 0(zero) to 65535. The default value is 33434. Format traceroute <ipaddr>...
Page 408: Bootpdhcprelay Maxhopcount
bootpdhcprelay maxhopcount This command configures the maximum allowable relay agent hops. The parameter has a range of 1 to The no version of this command sets the maximum allowable hops to the default. bootpdhcprelay maxhopcount 1-16 Syntax no bootpdhcprelay maxhopcount Default Mode Global Config...
Page 409: Show Bootpdhcprelay
show bootpdhcprelay This command displays the BootP/DHCP Relay information. show bootpdhcprelay Syntax Mode Privileged Exec and User Exec Example Figure 22-132. show bootpdhcprelay Command Example (Force10 ) #show bootpdhcprelay Maximum Hop Count......4 Minimum Wait Time(Seconds)..... 0 Admin Mode........Disable Server IP Address......
Page 410: Router Discovery Protocol Commands
Router Discovery Protocol Commands This section provides a detailed explanation of router discovery commands using IRDP (ICMP Router Discovery Protocol) (ICMP is Internet Control Message Protocol). The commands in this section are, in order: • ip irdp on page 410 •...
Page 411: Ip Irdp Holdtime
ip irdp holdtime This command configures the value, in seconds, of the holdtime field of the router advertisement sent from this interface or VLAN. ip irdp holdtime maxadvertinterval-9000 Syntax The range is the maxadvertinterval to 9000 seconds. The no ip irdp holdtime command configures the default value, in seconds, of the holdtime field of the router advertisement sent from this interface.
Page 412: Ip Irdp Preference
Mode Interface Config or Interface VLAN Command Version 2.3 Modified: Added Interface VLAN as a mode. History ip irdp preference This command configures the preferability of the address as a default router address, relative to other router addresses on the same subnet. ip irdp preference Syntax -2147483648-2147483647...
Page 413: Virtual Lan Routing Commands
Example Figure 22-133. Example of show ip irdp Command Output Force10 #show ip irdp 1/0/1 Interface Ad Mode Advertise Address Max Int Min Int Hold Time Preference --------- ------- ----------------- ------- ------- -------- ----------- 1/0/1 Disable 224.0.0.1 1800 Force10# Virtual LAN Routing Commands This section contains the Virtual LAN Routing (VLAN Routing) commands: •...
Page 414: Virtual Router Redundancy Protocol (Vrrp) Commands
VLAN ID—Is the identifier of the VLAN. Logical Interface—Indicates the logical associated with the VLAN routing interface. unit/slot/port IP Address—Displays the IP Address associated with this VLAN. Subnet Mask—Indicates the subnet mask that is associated with this VLAN. vlan routing Command Version 2.3 Deprecated.
Page 415: Ip Vrrp Authentication
Default enabled Mode Global Config ip vrrp <vrID> This command sets the VRID (virtual router ID) on an interface for virtual router configuration in the router. This command also has options, detailed below, to designate the configured virtual router IP address, set the mode, and set authentication.
Page 416: Ip Vrrp Ip
The no ip vrrp vrID authentication command sets the default authorization details value for the virtual router configured on a specified interface. Default no authorization Mode Interface Config; Interface VLAN; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command Version 2.3 Added Interface Range and Interface VLAN modes.
Page 417: Ip Vrrp Preempt
[no] ip vrrp vrID mode Syntax The parameter vrID is the virtual router ID, which has an integer value ranging from 1 to 255. version of this command disables the virtual router configured on the specified interface. Disabling the status field stops a virtual router. Default disabled Mode...
Page 418: Ip Vrrp Priority
ip vrrp priority This command sets the priority value for the virtual router configured on a specified interface. ip vrrp vrID priority 1-254 Syntax The parameter vrID is the virtual router ID, which is an integer that ranges from 1 to 255. The priority of the interface is an integer from 1 to 254.
Page 419: Show Ip Vrrp Interface Stats
interface vlan Creates a VLAN and assigns it an ID, and then enters the Interface VLAN mode, which provides access to VLAN configuration commands for the specified VLAN. ip vrrp <vrID> Sets the VRID (virtual router ID) on an interface for virtual router configuration in the router.
Page 420: Show Ip Vrrp Interface
show ip vrrp This command displays whether VRRP functionality is enabled or disabled on the SFTOS switch. It also displays some global parameters which are required for monitoring This command takes no options. show ip vrrp Syntax Mode Privileged Exec and User Exec VRRP Admin Mode—Displays the administrative mode for VRRP functionality on the switch.
Page 421 Mode Privileged Exec and User Exec Unit/Slot/Port—Valid unit, slot and port number separated by forward slashes. Report Fields VRID—Represents the router ID of the virtual router. IP Address—Is the IP Address that was configured on the virtual router Mode—Represents whether the virtual router is enabled or disabled. State—Represents the state (Master/backup) of the virtual router.
Page 422 Routing Commands...
Page 423: Ospf Commands
OSPF Commands This chapter provides a detailed explanation of the Open Shortest Path First (OSPF) commands. The commands are divided by functionality into the following groups: • Show commands are used to display switch settings, statistics and other information. • Configuration Commands are used to configure features and options of the switch.
Page 424 • ip ospf authentication-key on page 433 • ip ospf cost on page 434 • ip ospf dead-interval on page 434 • ip ospf hello-interval on page 435 • ip ospf mtu-ignore on page 436 • ip ospf priority on page 436 •...
Page 425: Area Authentication
area authentication Command Version 2.3 Deprecated History area default-cost This command configures the monetary default cost for the stub area. The operator must specify the area ID and an integer value between 1-16777215. area areaid default-cost 1-16777215 Syntax Mode Router OSPF Config area nssa This command configures the specified areaid to function as an NSSA (Not So Stubby Area).
Page 426: Area Range
area nssa no-summary (OSPF) This command configures the NSSA so that summary Link State Advertisements (LSAs) are not advertised into the NSSA. area nssa no-summary Syntax areaid Mode Router OSPF Config area nssa translator-role (OSPF) This command configures the translator role of the NSSA. A value of always will cause the router to assume the role of the translator the instant it becomes a border router and a value of candidate will cause the router to participate in the translator election process when it attains border router status area...
Page 427: Area Stub
area stub This command creates a stub area for the specified area ID. A stub area is characterized by the fact that AS External LSAs are not propagated into the area. Removing AS External LSAs and Summary LSAs can significantly reduce the link state database of routers within the stub area. The no version of this command deletes a stub area for the specified area ID.
Page 428: Area Virtual-Link Dead-Interval
If the authentication type is simple, the authentication key must be 8 bytes or less. If the type is encrypt, the key may be up to 256 bytes. The is composed of standard displayable, non-control keystrokes from a Standard 101/102-key keyboard. If the type is encrypt, a key ID in the range of 0 and 255 must be specified for keyid Neither the default password key nor the default key ID are configured.
Page 429: Area Virtual-Link Retransmit-Interval
no area areaid virtual-link neighbor hello-interval command invokes the default hello interval for the OSPF virtual interface on the virtual interface identified by areaid neighbor Default Mode Router OSPF Config Related show ip ospf Displays the information for the IFO object or virtual interface tables Commands interface area virtual-link retransmit-interval...
Page 430: Distance Ospf
default-information originate (OSPF) This command is used to control the advertisement of default routes. default-information originate [always] [metriO ] [metric-type {1 | 2}] Syntax 0-16777215 The no default-information originate [metric] [metric-type] command sets the advertisement of routes to the default. Default metric—unspecified;...
Page 431: Enable (Ospf)
The no version of this command is used to specify the access list to filter routes received from the source protocol. Mode Router OSPF Config enable (OSPF) This command resets the default administrative mode of OSPF in the router (active). The no version of this command sets the administrative mode of OSPF in the router to inactive.
Page 432: Ip Ospf
If the value of is -1, then there is no limit. The range for is -1 to 2147483647. limit limit Default Router OSPF Config ip ospf This command enables OSPF on a router interface. [no] ip ospf Syntax The no version of this command disables OSPF on a router interface. Default disabled Mode...
Page 433: Ip Ospf Authentication
ip ospf authentication This command enables you to select either no or simple OSPF authentication for the specified interface. If simple authentication is selected, you then select a plain-text key. ip ospf authentication {none | simple key} Syntax The type is either none or simple. The key is composed of standard displayable, non-control keystrokes from a standard 101/102-key keyboard and must be 8 bytes or less.
Page 434: Ip Ospf Cost
Command Version 2.3 Added Interface Range and Interface VLAN modes. History ip ospf authentication Modified: Separated into two commands— ospf authentication ip ospf authentication-key , and encrypt removed as a parameter. Related interface range Defines an interface range and accesses the Interface Range mode Commands interface vlan Creates a VLAN or selects an existing one and enters the Interface VLAN...
Page 435: Ip Ospf Hello-Interval
Mode Interface Config; Interface VLAN; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command Version 2.3 Added Interface Range and Interface VLAN modes. History Related interface range Defines an interface range and accesses the Interface Range mode Commands interface vlan Creates a VLAN or selects an existing one and enters the Interface VLAN mode.
Page 436: Ip Ospf Priority
ip ospf mtu-ignore This command disables OSPF maximum transmission unit (MTU) mismatch detection. OSPF Database Description packets specify the size of the largest IP packet that can be sent without fragmentation on the interface. When a router receives a Database Description packet, it examines the MTU advertised by the neighbor.
Page 437: Ip Ospf Transmit-Delay
ip ospf retransmit-intervalr seconds Syntax The value for seconds is the number of seconds between link-state advertisement retransmissions for adjacencies belonging to this router interface. This value is also used when retransmitting database and link-state request packets. Range: 0 to 3600 seconds (1 hour) The no ip ospf retransmit-interval command sets the OSPF retransmit interval for the specified interface to the default.
Page 438: Router Ospf
maximum-paths This command sets the number of paths that OSPF can report for a given destination where maxpaths is platform dependent. The no version of this command resets the number of paths that OSPF can report for a given destination back to its default value. maximum-paths maxpaths Syntax no maximum-paths...
Page 439: Show Ip Ospf
show ip ospf This command displays information relevant to the OSPF router. This command takes no options. show ip ospf Syntax Mode Privileged Exec Example Figure 23-134. Example Output from the show ip ospf Command S50V-1#show ip ospf Router ID........0.0.0.0 OSPF Admin Mode........
Page 440: Show Ip Ospf Abr
Type-value—External Type 1 or External Type 2 routes Tag-value—Decimal value attached to each external route Subnets—For redistributing routes into OSPF, the scope of redistribution for the specified protocol Distribute-list—The access list used to filter redistributed routes Default-info originate—Indicates whether the default routes received from other source protocols are advertised or not Max Paths—Maximum number of paths that OSPF can report for a given destination show ip ospf abr...
Page 441: Show Ip Ospf Database
Spf Runs—Number of times that the intra-area route table has been calculated using this area's link-state database Area Border Router Count—Total number of area border routers reachable within this area Area LSA Count—Total number of link-state advertisements in this area's link-state database, excluding AS External LSA's.
Page 442 Figure 23-135. Example of Output from the show ip ospf interface Command on an S50V S50V-1#show ip ospf interface 1/0/24 IP Address........10.168.3.2 Subnet Mask........255.255.255.0 OSPF Admin Mode........ Enable OSPF Area ID........0.0.0.0 Router Priority........ 1 Retransmit Interval......5 Hello Interval.........
Page 443: Show Ip Ospf Interface Brief
OSPF Interface Type—Broadcast LANs, such as Ethernet and IEEE 802.5, take the value 'broadcast'. The OSPF Interface Type will be 'broadcast'. State—The OSPF Interface States are: down, loopback, waiting, point-to-point, designated router, and backup designated router. This is the state of the OSPF interface. Designated Router—Is the router ID representing the designated router.
Page 444: Show Ip Ospf Neighbor
show ip ospf interface stats unit/slot/port Syntax Mode Privileged Exec and User Exec Report Fields OSPF Area ID—The area ID of this OSPF interface. Spf Runs—The number of times that the intra-area route table has been calculated using this area's link-state database.
Page 445 Example Figure 23-136. Example Output from the show ip ospf neighbor interface Command S50V-1#show ip ospf neighbor interface 1/0/24 Router ID Priority IP Address Interface State Dead Time ---------------- -------- --------------- ----------- -------- ------ 192.168.2.1 192.168.3.1 1/0/24 Full/BACKUP-DR 31 Report Fields If you do not specify an IP address, a table with the following columns displays for all neighbors or the neighbor associated with the interface that you specify: Interface—Valid unit, slot and port number separated by forward slashes.
Page 446: Show Ip Ospf Range
Options—An integer value that indicates the optional OSPF capabilities supported by the neighbor. The neighbor's optional OSPF capabilities are also listed in its Hello packets. This enables received Hello Packets to be rejected (i.e., neighbor relationships will not even start to form) if there is a mismatch in certain crucial OSPF capabilities.
Page 447: Show Ip Ospf Stub Table
Advertisement—The status of the advertisement. Advertisement has two possible settings: enabled or disabled. show ip ospf stub table This command displays the OSPF stub table. The information below will only be displayed if OSPF is initialized on the switch. show ip ospf stub table Syntax Mode Privileged Exec and User Exec...
Page 448: Show Ip Ospf Virtual-Link Brief
show ip ospf virtual-link brief This command displays the OSPF Virtual Interface information for all areas in the system. show ip ospf virtual-link brief Syntax Mode Privileged Exec and User Exec Report Fields Area Id—Is the area ID of the requested OSPF area. Neighbor—Is the neighbor interface of the OSPF virtual interface.
Page 449: Rip Commands
RIP Commands This chapter provides a detailed explanation of the Routing Information Protocol (RIP) commands. The commands are divided by functionality into the following different groups: • Show commands are used to display switch settings, statistics and other information. • Configuration Commands are used to configure features and options of the switch.
Page 450: Distance Rip
default-information originate (RIP) This command is used to control the advertisement of default routes. The no version of this command is used to control the advertisement of default routes. [no] default-information originate Syntax Mode Router RIP Config default-metric (RIP) This command is used to set a default for the metric of distributed routes. The no version of this command is used to reset the default metric of distributed routes to its default value.
Page 451: Ip Rip Authentication
Default Mode Router RIP Config enable (RIP) This command resets the default administrative mode of RIP in the router (active). The no version of this command sets the administrative mode of RIP in the router to inactive. [no] enable Syntax Default enabled Mode...
Page 452: Ip Rip Receive Version
Default The default authentication type is none. Default The default password key is an empty string. Unauthenticated interfaces do not need an authentication key. Default The default keyid is not defined. Unauthenticated interfaces do not need an authentication key ID. Mode Interface Config;...
Page 453 ip rip send version {1 | rip1c | 2 | none} Syntax To revert to the default of sending RIP version 2 using multicast, use the no ip rip send version command. Default Mode Interface Config; Interface VLAN; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#.
Page 454: Show Ip Rip
redistribute ospf [metric <0-15>] [match [internal] [external 1] [external 2] [nssa-external Syntax for OSPF 1] [nssa-external-2]] as source protocol no redistribute {ospf | static | connected} [metric] [match [internal] [external 1] [external 2] [nssa-external 1] [nssa-external-2]] redistribute {static | connected} [metric <0-15>] Syntax for other source protocol Default...
Page 455: Show Ip Rip Interface Brief
show ip rip interface brief This command displays general information for each RIP interface. For this command to display successful results routing must be enabled per interface (i.e. ip rip). show ip rip interface brief Syntax Mode Privileged Exec and User Exec Unit/Slot/Port—Valid unit, slot and port number separated by forward slashes.
Page 456 Bad Packets Received—The number of RIP response packets received by the RIP process which were subsequently discarded for any reason. Bad Routes Received—The number of routes contained in valid RIP packets that were ignored for any reason. Updates Sent—The number of triggered RIP updates actually sent on this interface. RIP Commands...
Page 457: Ip Multicast Commands
IP Multicast Commands This chapter provides a detailed explanation of the IP Multicast commands that are available in the SFTOS Layer 3 software IP Multicast module. The chapter contains three sections: • Basic IP Multicast Commands on page 457 • Distance Vector Multicast Routing Protocol (DVMRP) on page 465 •...
Page 458: Ip Mcast Boundary
ip mcast boundary This command adds an administrative scope multicast boundary specified by groupipaddr and mask for which this multicast administrative boundary is applicable. adu,O nCureWo. sIu Syntax groupipaddr mask is a group IP address and is a group IP mask. groupipaddr mask The no ip mcast boundary...
Page 459: Ip Multicast Ttl-Threshold
The combination of the sourceipaddr and the mask fields specify the network IP address of the multicast packet source. The groupipaddr is the IP address of the next hop toward the source. The metric is the cost of the route entry for comparison with other routes to the source network and is a value in the range of 0 and 255.
Page 460 mrinfo This command is used to query the neighbor information of a multicast-capable router specified by [ipaddr]. The default value is the IP address of the system at which the command is issued. The mrinfo command can take up to 2 minutes to complete. Only one mrinfo command may be in process at a time.
Page 461 The default value of group is 224.2.0.1. Mode Privileged Exec no ip mcast mroute This command is used to clear entries in the mroute table. The all parameters is used to clear all entries. no ip mcast mroute {group groupipaddr | source sourceipaddr [ groupipaddr ] | all} Syntax The source parameter is used to clear the routes in the mroute table entries containing the specified sourceipaddr or sourceipaddr...
Page 462: Show Ip Mcast Boundary
show ip mcast boundary This command displays all the configured administrative scoped multicast boundaries. show ip mcast boundary {unit/slot/port | all} Syntax Mode Privileged Exec and User Exec Unit/Slot/Port—Valid unit, slot and port number separated by forward slashes. Report Fields Group Ip—The group IP address Mask—The group IP mask show ip mcast interface...
Page 463: Show Ip Mcast Mroute Group
Group IP Addr—This field displays the IP address of the destination of the multicast packet. Protocol—This field displays the multicast routing protocol by which this entry was created. Incoming Interface—This field displays the interface on which the packet for this source/group arrives. Outgoing Interface List—This field displays the list of outgoing interfaces on which this packet is forwarded.
Page 464: Show Ip Mcast Mroute Static
If the summary parameter is specified the follow fields are displayed: Source IP Addr—This field displays the IP address of the multicast data source. Group IP Addr—This field displays the IP address of the destination of the multicast packet. Protocol—This field displays the multicast routing protocol by which this entry was created. Incoming Interface—This field displays the interface on which the packet for this source arrives.
Page 465: Distance Vector Multicast Routing Protocol (Dvmrp)
TTL—The TTL threshold associated with this neighbor Flags—Status of the neighbor show mstat This command is used to display the results of packet rate and loss information from the results buffer pool of the router, subsequent to the execution/completion of a mstat source [ group ] [ receiver ] command.
Page 466 • Configuration commands are used to configure features and options of the switch. For every configuration command there is a show command that will display the configuration setting. Note: The DVMRP feature was available in SFTOS before version 2.5.1, but the commands were not tested in either 2.5.1 or 2.5.2, so the commands in this section are not supported.
Page 467: Ip Dvmrp Metric
Command Version 2.5.2 Unsupported: not tested in 2.5.2 History Version 2.5.1 Unsupported: not tested in 2.5.1 ip dvmrp metric This command configures the value used in DVMRP messages as the cost to reach this network or selected VLAN. ip dvmrp metric value Syntax field has a range of 1 to 63 for a selected interface, 1 to 31 for the selected VLAN.
Page 468: Show Ip Dvmrp Interface
Mode Privileged Exec and User Exec Admin Mode—This field indicates whether DVMRP is enabled or disabled. This is a configured value. Report Fields Version String—This field indicates the version of DVMRP being used. Number of Routes—This field indicates the number of routes in the DVMRP routing table. Reachable Routes—This field indicates the number of entries in the routing table with non-infinite metrics.
Page 469: Show Ip Dvmrp Nexthop
show ip dvmrp neighbor Syntax Mode Privileged Exec and User Exec IfIndex—This field displays the value of the interface used to reach the neighbor. Report Fields Nbr IP Addr—This field indicates the IP Address of the DVMRP neighbor for which this entry contains information.
Page 470: Show Ip Dvmrp Prune
show ip dvmrp prune This command displays the table listing the router’s upstream prune information. show ip dvmrp prune Syntax Mode Privileged Exec and User Exec Group IP—This field identifies the multicast Address that is pruned. Report Fields Source IP—This field displays the IP Address of the source that has pruned. Source Mask—This field displays the network Mask for the prune source.
Page 471: Igmp Commands
IGMP Commands This section provides a detailed explanation of the Internet Group Management Protocol (IGMP) commands available in the Layer 3 package. This section contains the following commands: • ip igmp (global) on page 471 • ip igmp last-member-query-count on page 472 •...
Page 472: Ip Igmp Last-Member-Query-Count
Default disabled Mode Interface VLAN Command Version 2.3 Introduced History ip igmp last-member-query-count This command sets the number of group-specific queries sent before the router assumes that there are no local members on the interface or VLAN. The no version of this command resets the number of Group-Specific Queries to the default value. ip igmp last-member-query-count Syntax count...
Page 473: Ip Igmp-Proxy
ip igmp-proxy When used without parameters, this Layer 3 command enables/disables the IGMP Proxy feature on the selected port. To enable the feature, you must also enable multicast forwarding. Also, make sure that there are no multicast routing protocols enabled on the router. IGMP Proxy is used by the IGMP router to enable the system to issue IGMP host messages on behalf of hosts that the system discovered through standard IGMP router interfaces.
Page 474: Ip Igmp Robustness
Command Version 2.3 Modified: Added Interface VLAN mode. History ip igmp query-max-resp-time This command configures the maximum response time interval for the specified interface or VLAN, which is the maximum query response time advertised in IGMPv2 queries on this interface or VLAN. ip igmp query-max-response-time Syntax 0-255...
Page 475: Ip Igmp Version
The range for count is 1 to 20. The no ip igmp startup-query-count command resets the number of Queries sent out on startup, separated by the Startup Query Interval on the interface to the default value. Default Mode Interface Config; Interface VLAN Command Version 2.3 Modified: Added Interface VLAN mode.
Page 476: Show Ip Igmp
show ip igmp This command displays the system-wide IGMP information. show ip igmp Syntax Mode Privileged Exec and User Exec Example Figure 25-137. Example of show ip igmp Command Output Force10 #show ip igmp IGMP Admin Mode........ Enable IGMP INTERFACE STATUS Interface Interface Mode Protocol State --------- --------------- ---------------...
Page 477: Show Ip Igmp Interface
Mode Privileged Exec and User Exec If detail is not specified for a specified interface, the following fields are displayed: Report Fields IP Address—This displays the IP address of the interface participating in the multicast group. Subnet Mask—This displays the subnet mask of the interface participating in the multicast group.
Page 478 Example Figure 25-138. Example of show ip igmp interface Command Output Force10 #show ip igmp interface 1/0/1 Slot/Port........1/0/1 IGMP Admin Mode........ Enable Interface Mode......... Enable IGMP Version........3 Query Interval (secs)......125 Query Max Response Time (1/10 of a second)..100 Robustness........
Page 479: Show Ip Igmp Interface Stats
show ip igmp interface membership This command displays the list of interfaces that have registered in the specified multicast group. show ip igmp interface membership multiipaddr [detail] Syntax Mode Privileged Exec Interface—Valid unit, slot and port number separated by forward slashes. Report Fields Interface IP—This displays the IP address of the interface participating in the multicast group.
Page 480: Show Ip Igmp-Proxy
Querier Status—This field indicates the status of the IGMP router, whether it is running in querier mode Report Fields or non-querier mode. Querier IP Address—This field displays the IP Address of the IGMP querier on the IP subnet to which this interface is attached.
Page 481: Show Ip Igmp-Proxy Interface
Querier IP Address on Proxy Interface — The IP address of the querier, if any, in the network attached to the upstream interface (IGMP-Proxy interface). Older Version 1 Querier Timeout — The interval used to time out the older version 1 queriers. Older Version 2 Querier Timeout —...
Page 482: Show Ip Igmp-Proxy Groups
show ip igmp-proxy groups This command displays information about the subscribed multicast groups that IGMP Proxy reported. show ip igmp-proxy groups Syntax Mode Privileged Exec and User Exec Command Version 2.5.1 Introduced History Interface index — The interface number of the IGMP Proxy Report Fields Group Address —...
Page 483 Group Address — The IP address of the multicast group Last Reporter — The IP address of host that last sent a membership report for the current group, on the network attached to the IGMP-Proxy interface (upstream interface) Up Time (in secs) — The time elapsed since last created Member State —...
Page 484 IP Multicast Commands...
Page 485: Pim Commands
PIM Commands This chapter contains the following major sections: • PIM-DM Commands on page 485 • PIM-SM Commands on page 488 PIM-DM Commands This section provides Protocol Independent Multicast–Dense Mode (PIM-DM) command syntax. The commands are: • ip pimdm on page 485 •...
Page 486: Ip Pimdm Mode
ip pimdm mode This command sets administrative mode of PIM-DM on an interface to enabled. [no] aduda,.,u,e.E unit/slot/port Syntax The no version of this command sets administrative mode of PIM-DM on an interface to disabled. Default disabled Mode Interface Config or Interface VLAN; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#.
Page 487: Show Ip Pimdm Interface
show ip pimdm Syntax Mode Privileged Exec and User Exec PIM-DM Admin Mode—This field indicates whether PIM-DM is enabled or disabled. This is a configured value. Unit/Slot/Port—Valid unit, slot and port number separated by forward slashes. Interface Mode—This field indicates whether PIM-DM is enabled or disabled on this interface. This is a configured value.
Page 488: Pim-Sm Commands
show ip pimdm neighbor This command displays the neighbor information for PIM-DM on the specified interface. show ip pimdm neighbor {unit/slot/port | all} Syntax The no version of this command Mode Privileged Exec and User Exec Neighbor Address—This field displays the IP Address of the neighbor on an interface. Interface—Valid unit, slot and port number separated by forward slashes.
Page 489: Ip Pimsm Cbsrpreference
ip pimsm cbsrpreference This command is used to configure the CBSR preference for a particular PIM-SM interface. The range of CBSR preference is –1 to 255. ip pimsm cbsrpreference 1-255 Syntax no ip pimsm cbsrpreference The no version of this command is used to reset the CBSR preference for a particular PIM-SM interface to the default value.
Page 490: Ip Pimsm Crppreference
ip pimsm crppreference This command is used to configure the Candidate Rendezvous Point (CRP) for a particular PIM-SM interface. The valid values are from (1 to 255), and the value of -1 is used to indicate that the local interface is not a Candidate RP interface. The active router interface, with the highest IP Address and crppreference greater than -1, is chosen as the CRP for the router.
Page 491: Ip Pimsm
ip pimsm message-interval 10-3600 Syntax The join/prune interval is specified in seconds. This parameter can be configured to a value from 10 to 3600. The no ip pimsm message-interval command resets the global join/prune interval for PIM-SM router to the default value. Default Mode Global Config...
Page 492: Ip Pimsm Query-Interval
ip pimsm query-interval This command configures the transmission frequency of hello messages in seconds between PIM enabled neighbors. This field has a range of 10 to 3600 seconds. ip pimsm query-interval Syntax 10-3600 The no ip pimsm query-interval command resets the transmission frequency of hello messages between PIM enabled neighbors to the default value.
Page 493: Ip Pimsm Staticrp
ip pimsm staticrp This command is used to create the RP IP address for the PIM-SM router. [no] ip pimsm staticrp ipaddress groupaddress groupmask Syntax The ipaddress is the IP address of the RP. The groupaddress is the group address supported by the RP.
Page 494: Show Ip Pimsm Candrptable
Mode Privileged Exec and User Exec PIM-SM Admin Mode—This field indicates whether PIM-SM is enabled or disabled. This is a configured value. Join/Prune Interval (secs)—This field shows the interval at which periodic PIM-SM Join/Prune messages are to be sent. This is a configured value. Data Threshold Rate (K bits/sec)—This field shows the data threshold rate for the PIM-SM router.
Page 495: Show Ip Pimsm Interface
Component BSR Expiry Time—This field displays the minimum time remaining before the BSR in the local domain will be declared down. Component CRP Hold Time—This field displays the hold time of the component when it is a candidate. show ip pimsm interface This command displays the interface information for PIM-SM on the specified interface.
Page 496: Show Ip Pimsm Neighbor
Designated Router—This indicates the IP Address of the Designated Router for this interface. Neighbor Count—This field displays the number of neighbors on the PIM-SM interface. show ip pimsm neighbor This command displays the neighbor information for PIM-SM on the specified interface. show ip pimsm neighbor {unit/slot/port | all} Syntax Mode...
Page 497: Show Ip Pimsm Rp
show ip pimsm rp This command displays the PIM information for candidate Rendezvous Points (RPs) for all IP multicast groups or for the specific groupaddress groupmask provided in the command. The information in the table is displayed for each IP multicast group. show ip pimsm rp {groupaddress groupmask | candidate | all} Syntax Mode...
Page 498 PIM Commands...
Page 499: Index
Index Symbols arp timeout assign-queue {deny|permit} audience authentication Numerics OSPF MD5 1583compatibility OSPF simple 802.1p authentication login 802.1p priority Authentication traps auto-negotiate auto-negotiate all ABR (OSPF Area Border Router) auto-summary Access Control Lists (ACLs) accessing DHCP Pool Config mode access-list Backspace ACL Commands backup image...
Page 500 Class Map mode config switchconfig broadcast class-map config switchconfig flowcontrol class-map command config trapflags bcaststorm class-map match-all config users add class-map rename config users passwd classofservice dot1p-mapping config vlan add classofservice dot1pmapping config vlan delete classofservice ip-dscp-mapping config vlan garp gvarp classofservice ip-precedence-mapping config vlan garp jointime classofservice trust...
Page 501 default-information originate (RIP) Dual Image Commands defaultList (default log-in list) Dual Image Support default-metric (OSPF) duplex settings default-metric (RIP) dvlan-tunnel etherType Delete dvlan-tunnel l2pdu-forwarding enable delete (software image) dvlan-tunnel l2pdu-forwarding mac-address deleteport (global config) dynamic buffers deleteport (interface config) Dynamic Host Configuration Protocol (DHCP) description (port channel) description (port or VLAN) description (VLAN)
Page 502 gmrp adminmode image2 GMRP commands ingress filtering gmrp interfacemode all inlinepower gmrp interfacemode enable (LAG) inlinepower admin GVRP inlinepower limit enabling or disabling inlinepower priority join time inlinepower threshold leave time inlinepower type gvrp adminmode enable input rate limiting GVRP command interface gvrp interfacemode enable interface (access Interface Config mode)
Page 503 ip ospf dead-interval ip address (management) ip ospf hello-interval ip address (routed) ip ospf mtu-ignore ip address (VLAN) ip ospf priority IP Address, Management ip ospf retransmit-interval ip dhcp bootp automatic ip ospf transmit-delay ip dhcp conflict logging ip rip ip dhcp excluded-address ip rip authentication ip dhcp filtering (global)
Page 504 ip ospf cost ip ospf dead-interval join time ip ospf hello-interval ip ospf mtu-ignore ip ospf priority ip ospf retransmit-interval key, tacacs-server ip ospf transmit-delay Keyboard Shortcuts ip pimdm ip pimdm mode ip pimdm query-interval LAG (802.3ad) ip pimsm LAG in VLAN ip pimsm cbsrhashmasklength LAG ports ip pimsm cbsrpreference...
Page 505 logging cli-command match class-map logging console match cos logging facility match destination-address mac logging history match dstip logging host match dstl4port logging persistent match ethertype logging port match ip dscp logging syslog match ip precedence show eventlog match ip tos show logging match protocol show logging eventlog...
Page 506 setting user special characters name (VLAN) user native patents NetBIOS mapping PDUs NetBIOS node type persistent log netbios-name-server PIM-DM commands netbios-node-type PIM-SM commands network PIM-SM-edge network configuration commands ping 201 commands ??– p-node (peer-to-peer) network mac-address PoE (Power over Ethernet) network mac-type PoE Commands network mgmt_vlan...
Page 507 port-channel staticcapability quit portfast ports administrative mode radius accounting mode deleting from LAGs radius server host frame acceptance mode radius server key GVRP radius server msgauth information radius server primary ingress filtering radius server retransmit link traps radius server timeout physical mode randomdrop tagging...
Page 508 S50-01-10GE-2P (10G XFP module) shape peak S50-01-12G-2S (12G stacking module) show accounting S50-01-24G-1S (24G stacking module) show arp S50-01-GE-48T-V (S50V model) show arp brief S50N show arp switch S50N-DC show authentication S50V show authentication users script apply show bootpdhcprelay script delete show bootvar script list show buffer allocation interface...
Page 509 show garp show ip igmp interface membership show gmrp configuration show ip igmp interface stats show gvrp configuration show ip igmp-proxy show hardware show ip igmp-proxy groups show hardware Command show ip igmp-proxy groups detail show igmpsnooping show ip igmp-proxy interface show igmpsnooping command example show ip interface show igmpsnooping fast-leave...
Page 510 show ip route entry show port-channel show ip route preferences show port-channel brief show ip ssh show port-security show ip stats show port-security dynamic show ip vlan show port-security static show ip vrrp show port-security violation show ip vrrp interface show process cpu show ip vrrp interface brief show process cpu command...
Page 511 show users sntp server show users authentication sntp unicast client poll-interval show version sntp unicast client poll-retry show version command sntp unicast client poll-timeout show version sample output source port show vlan spanning-tree show vlan association spanning-tree (LAG) show vlan association subnet spanning-tree 0 cost (LAG) show vlan brief spanning-tree 0 priority (LAG)
Page 512 statistics sessions, displaying switch, related 201 commands telnetcon maxsessions storm-control broadcast telnetcon maxsessions. See ip telnet maxsessions. telnetcon timeout. See ip telnet timeout. storm-control flowcontrol terminal length switch terminal length command inventory timeouts TACACS TLV header TLV information string TLV Length resetting TLV Type statistics, related 201 commands...
Page 513 vlan Web connections, displaying vlan acceptframe wildcard mask vlan association mac wildcard masks, ACL vlan association subnet Windows Internet Naming Service (WINS) vlan commands (Global Config) WINS vlan ingressfilter write VLAN Mode write memory VLAN mode vlan name. See name. vlan participation (interface) vlan participation (management) vlan participation all...
Page 514 Index...

This manual is also suitable for:

Force10

Dell Force10 S2410-01-10GE-24P Command Reference Manual

1 About this Guide

2 SFTOS Overview

3 Quick Start

4 Using the Command Line Interface

5 System Management Commands

6 System Configuration Commands

7 VLAN Commands

8 Link Layer Discovery Protocol (LLDP) Commands

9 System Logs

10 User Account Commands

11 Security Commands

12 Stacking Commands

13 DHCP Server Commands

14 Time Commands

Quick Links

Related Manuals for Dell Force10 S2410-01-10GE-24P

Summary of Contents for Dell Force10 S2410-01-10GE-24P