Summary of Contents for Supermicro Intelligent Switch
Page 1
Super Micro Intelligent Switch User Guide Release 1.0 Document SMIS_CLI_GUIDE-001 Release : 1 / 913...
Page 2
Super Micro. Except as expressly authorized in writing by Super Micro, the holder is granted no rights to use the information contained herein and this document shall not be published, copied, produced or reproduced, modified, translated, compiled, distributed, displayed or transmitted, in whole or part, in any form or media.
Page 8
14.12 ip igmp snooping querier ................283 14.13 ip igmp snooping query-interval..............284 14.14 ip igmp snooping mrouter................285 14.15 shutdown snooping ..................286 14.16 debug ip igmp snooping................287 14.17 show ip igmp snooping mrouter ..............288 14.18 show ip igmp snooping globals..............289 14.19 show ip igmp snooping ................
Page 9
15.35 debug garp....................345 15.36 show vlan ....................347 15.37 show vlan device info ................. 350 15.38 show vlan device capabilities..............353 15.39 show vlan traffic-classes ................355 15.40 show garp timer................... 358 15.41 show vlan port config.................. 360 15.42 show vlan protocols-group................
Page 10
16.3.14 option ....................411 16.3.15 lease..................... 413 16.3.16 utilization threshold ................414 16.3.17 host hardware-type................415 16.3.18 debug ip dhcp server ................416 16.3.19 show ip dhcp server information............417 16.3.20 show ip dhcp server pools..............418 16.3.21 show ip dhcp server binding ............... 419 16.3.22 show ip dhcp server statistics..............
Page 11
19.2 set ip igmp....................... 469 19.3 ip igmp immediate-leave................. 470 19.4 ip igmp version ....................471 19.5 ip igmp query-interval..................472 19.6 ip igmp query-max-response-time ..............473 19.7 ip igmp robustness ..................474 19.8 ip igmp last-member-query-interval ............... 475 19.9 ip igmp static-group ..................
Page 12
23.9 set ip pim static-rp................... 521 23.10 set mode ...................... 522 23.11 rp-candidate rp-address................523 23.12 rp-candidate holdtime ................. 524 23.13 rp-static rp-address..................525 23.14 ip pim query-interval................... 526 23.15 ip pim message-interval ................527 23.16 ip pim bsr-candidate..................528 23.17 ip pim componentId ..................
Page 13
24.21 no ipv6 pim interface .................. 570 24.22 debug ipv6 pim ................... 571 24.23 show ipv6 pim interface................572 24.24 show ipv6 pim neighbor................574 24.25 show ipv6 pim rp-candidate................ 576 24.26 show ipv6 pim rp-set................... 577 24.27 show ipv6 pim bsr..................578 24.28 show ipv6 pim rp-static................
Page 16
28.52 show ip bgp info..................737 28.53 show ip bgp rfl info..................739 28.54 show ip bgp confed info................740 28.55 show ip bgp community................741 28.56 show ip bgp extcommunity................. 743 28.57 show ip bgp dampened-paths..............745 28.58 show ip bgp flap-statistics................746 IPv6 ........................
1 Introduction Purpose Super Micro Intelligent switch (SMIS) is a managed Layer2 / Layer 3 switch. SMIS provides wire speed switching on 1 Gig and 10 Gig Ethernet ports. SMIS provides the basic bridging functionality and also offers advanced features such as link aggregation, GVRP/GMRP, IGMP Snooping and Network Access Control.
Right Arrow 1.4.2 Others Keys Action Helps to list the available commands Exits the output display if display is more than one page and returns to the SMIS prompt show history Displays the command history list Release : 21 / 913...
This section describes the configuration of SMIS using the Command Line Interface. The Command Line Interface (CLI) can be used to configure the Intelligent Switch Solution from a console attached to the serial port of the switch or from a remote terminal using TELNET.
• CLI commands need not be fully typed. The abbreviated forms of CLI commands are also accepted by the SMIS CLI. For example, commands like " show ip global config" can be typed as "sh ip gl co". • CLI commands are case insensitive. •...
command is used. Slave Configuration This is the initial mode smis-boot> The reload to start SMIS in slave command is used to session. restart the switch. User EXEC Mode After logging into the device, the user is automatically in the User EXEC mode. In general, the User EXEC commands are used to temporarily change terminal settings, perform basic tests and list system information.
This mode is used to perform VLAN specific operations. To return to the global configuration mode the exit command is used. Line Configuration Mode Line configuration commands modify the operations of a terminal line. Slave Configuration This mode is used to generate the Slot information (module type). The reload command is used to restart the switch.
class command is entered, the switch enters policy-map class configuration mode. The DiffSrv Policy mode command policy-map <short(1-65535)> is used to enter the DiffSrv Policy-Map Class Configuration mode and. the prompt seen at this mode is smis(config-pmap-c)#. To return to the global configuration mode the exit command is used. 2.9.5 DHCP Pool Configuration Mode This mode is used to configure the network pool / host configurations of a subnet pool.
3 System Features SMIS offers a rich set of system features to a user, such as, login services, copying/writing facilities, duplex/negotiation support, and many other capabilities. Some features might have special hardware requirements and others might have special design considerations. The related command links provide overview descriptions of the features and includes specific information to consider when using these features.
Page 28
cli console flowcontrol shutdown - physical/VLAN/port-channel debug-logging show ip interface show authorized-managers show interfaces show interfaces - counters show interface mtu show interface bridge port-type show nvram show system information show flow-control show debug-logging show debugging show hardware show clock show running-config show http server status help...
Page 29
show privilege show line show aliases show users show history reload monitor session negotiation speed duplex hol blocking prevention storm-control show port-monitoring mac-address-table aging-time sntp server sntp broadcast client enable sntp unicast client enable tz offset Release : 29 / 913...
default mode This command configures the mode by which the default interface acquires its IP address. default mode { manual | dynamic } Syntax Description manual - Manual Mode If manual mode is selected, then the default interface takes the 'issDefaultIpAddr' configured in the system dynamic - Dynamic Mode If dynamic mode is selected, the default interface gets the IP address through the dynamic IP...
default restore-file This command configures the default restoration file. default restore-file <filename> Mode Global Configuration Mode Defaults iss.conf Example smis(config)# default restore-file /home/iss/restore.conf The file path mentioned in the <filename> must exist. Related Commands show nvram - Displays the current information stored in the NVRAM Release : 31 / 913...
default ip address This command configures the IP address and subnet mask for the default interface. default ip address <ip-address> [ subnet-mask <subnet mask> ] [ interface <interface-type> <interface-id> ] Syntax Description ip address - IP address subnet-mask - Subnet Mask interface - Valid interfaces include physical ports (including type, slot, and port number).
ip address This command sets the IP address of an interface. The no form of the command resets the IP Address for the given Interface. ip address <ip-address> <subnet-mask> [secondary] no ip address [<ip_addr>] Syntax Description ip-address - IP address subnet-mask - Subnet mask for the associated IP subnet secondary - Additional IP address that can be configured for the Interface Mode...
switchport This command configures the port as switch port. The no form of the command configures the port as router port. switchport no switchport Mode Interface Configuration Mode Defaults switchport Example smis(config-if)# switchport The specified interface must be shutdown. Related Commands show ip interface - Displays the IP interface statistics and configuration Release : 34 / 913...
default ip address allocation protocol This command configures the protocol by which the default interface acquires its IP address. default ip address allocation protocol {bootp | rarp | dhcp} Syntax Description bootp - Bootp Server rarp RARP Server dhcp - DHCP Server Mode Global Configuration Mode Defaults...
ip address This command configures the current VLAN/OOB interface to dynamically acquire an IP address from the RARP/DHCP Server. The no form of the command resets the IP Address for the Interface. ip address { dhcp | rarp} no ip address Syntax Description rarp - RARP Server dhcp - DHCP Server...
login authentication This command sets the authentication method for user logins and the no form of the command sets the authentication method for user logins to default values. login authentication { local | radius | tacacs} no login authentication Syntax Description local - Local username database for authentication radius - List of all RADIUS servers for authentication tacacs - Terminal Access Controller Access Control System...
authorized-manager ip-source This command configures an IP authorized manager and the no form of the command removes manager from authorized managers list. authorized-manager ip-source <ip-address> [{<subnet-mask> | / <prefixlength(1-32)>}] [interface [<interface-type <0/a-b, 0/c, ...>] [<interfacetype <0/a-b, 0/c, ...>]] [vlan <a,b or a-b or a,b,c-d>] [cpu0] [service [snmp] [telnet] [http] [https] [ssh]] no authorized-manager ip-source <...
3.10 ip http port This command sets the HTTP port and the no form of the command resets the HTTP port. ip http port <port(1-65535)> no ip http port Mode Global Configuration Mode Defaults Example smis(config)# ip http port 90 •...
3.11 set ip http This command enables/disables HTTP. set ip http {enable | disable} Syntax Description enable - Enables HTTP status in the system disable - Disables HTTP status in the system Mode Global Configuration Mode Defaults enable Example smis(config)# set ip http disable Related Commands ip http port - Sets the HTTP port show http server status - Displays the http server status...
3.12 archive download-sw This command performs an image download operation using TFTP from a remote location. firmware upgrade { tftp://ip-address/filename } { flash:filename | flash:fallback } Syntax Description tftp://ipaddress/ filename - Source URL alias for a network (tftp) file system flash:normal –...
3.13 interface This command selects an interface to configure, which can be a physical interface or a port-channel interface or a VLAN interface or OOB (Out of Band) interface or MPLS tunnel. The no form of the command is used to delete a VLAN / port-channel / tunnel / OOB interface/MPLS tunnel. On execution of this command, the user enters the interface configuration mode for that interface.
Page 43
Out of Band management interface is an IP interface dedicated for management operations. Related Command show interfaces - Displays the interface status and configuration Release : 43 / 913...
3.14 mtu frame size This command configures the maximum transmission unit frame size for the interface. mtu <frame-size(90-9202)> Mode Interface Configuration Mode Defaults 1500 Example smis(config-if)# mtu 900 The interface must be brought administratively down, prior to changing the MTU. The MTU frame size of the interface must not be greater than 1522, for Fast ethernet.
3.15 bridge port-type This command configures the bridge port type. bridge port-type { providerNetworkPort | customerNetworkPort {port-based | stagged} | customerEdgePort | propCustomerEdgePort | propCustomerNetworkPort | propProviderNetworkPort | customerBridgePort} Syntax Description providerNetworkPort - Provider Network Port Type customerNetworkPort - Customer Network Port Type which can either be port-based or s-tagged customerEdgePort - Customer Edge Port Type propCustomerEdgePort - Proprietary Customer Edge Port Type propCustomerNetworkPort - Proprietary Customer Network Port Type...
Page 46
snmp trap link-status no snmp trap link-status Mode Interface Configuration Mode Defaults SNMP trap link status is enabled by default Example smis(config-if)# snmp trap link-status Related Command show interfaces - Displays the interface status and configuration Release : 46 / 913...
3.17 write This command writes the running-config to a flash file, startup-configuration file or to a remote site. write { flash:filename | startup-config | tftp://ip-address/filename } Syntax Description flash:filename - Flash or remote site startup-config - Startup Configuration. If this option is chosen, then the switch will start with the saved configuration on reboot tftp - Copies a file to a TFTP server ip-address - the IP address or host name of the server to receive the file...
3.18 copy This command copies the configuration from a remote site to flash. copy { tftp://ip-address/filename startup-config | flash: filename startupconfig } Syntax Description tftp://ipaddress/ filename startup-config - File in remote location to be copied flash: filename startup-config - File in flash to be copied Mode Privileged EXEC Mode Example...
3.19 copy startup-config This command takes a backup of the initial configuration in flash or at a remote location. copy startup-config {flash: filename | tftp://ip-address/filename } Syntax Description flash: filename - Flash or remote site tftp - Copies a file to a TFTP server ip-address - the IP address or host name of the server to receive the file filename - the name assigned to the file on the server Mode...
3.20 copy logs This command writes the system logs to a remote site. copy logs tftp://ip-address/filename Syntax Description tftp - Copies a log file to a TFTP server ip-address - the IP address or host name of the TFTP server to receive the file filename - the name assigned to the file on the server Mode Privileged EXEC Mode...
3.21 copy- file This command copies a file from a source remote site /flash to a destination remote site/flash. copy { tftp://ip-address/filename | flash: filename}{ tftp://ipaddress/ filename | flash: filename} Syntax Description tftp - Copies a log file to a TFTP server ip-address - IP address or host name of the TFTP server to receive the file filename - the name assigned to the file on the server flash: filename - Flash or remote site...
3.22 clock set This command manages the system clock. clock set hh:mm:ss day month year Mode Privileged EXEC Mode Example smis# clock set 18:04:10 18 Oct 2005 The date is configured in the Switch in the format, - Hours:minutes:Seconds Date Month Year - The format for the month is Jan, Feb, Mar, Apr, May, Jun, Jul, Aug, Sep, Oct, Nov, Dec - The format for the year is yyyy Related Command...
3.23 erase This command clears the contents of the startup configuration or sets parameters in NVRAM to default values. erase {startup-config | nvram: | flash:filename} Syntax Description startup-config - Startup Configuration file nvram - Non volatile RAM flash:filename - Local system flash file name Mode Privileged EXEC Mode Example...
3.24 cli console This command enables the console CLI through a serial port. The no form of the command disables console CLI. cli console no cli console Mode Privileged EXEC Mode Defaults Enabled Example iss # cli console This command takes effect only on system restart. Release : 54 / 913...
3.25 flowcontrol This command is used to set the send or receive flow-control value for an interface. If flowcontrol send is on for a device and if it detects any congestion at its end, then it notifies the link partner or the remote device of the congestion by sending a pause frame. If flowcontrol receive is on for the remote device and it receives a pause frame, then it stops sending any data packets.
shutdown - physical/VLAN/port-channel 3.26 Interface This command disables a physical interface/VLAN interface/port-channel interface/OOB Interface. The no form of the command enables a physical interface/VLAN interface/port-channel interface/OOB interface. shutdown no shutdown Mode Interface Configuration Mode for physical interface / port-channel/OOB Interface VLAN Interface Mode for VLAN interface Defaults The Physical Interface eth0 is enabled by default...
3.27 debug-logging This command configures where debug logs are to be displayed and the no form of the command displays debug logs in the console. debug-logging { console | file } no debug-logging Syntax Description console - Debug logs are displayed in the Console file - Debug logs are displayed in the file Mode Global Configuration Mode...
3.28 show ip interface This command displays the IP interface configuration. show ip interface [Vlan <vlan-id(1-4069)>] Syntax Description Vlan - VLAN Identifier Mode Privileged EXEC Mode Example smis# show ip interface vlan1 is up, line protocol is up Internet Address is 12.0.0.2/8 Broadcast Address 12.255.255.255 Secondary Address 12.0.0.10/8 Secondary Address 13.0.0.10/...
3.29 show authorized-managers This command displays the configured authorized managers. show authorized-managers [ip-source < ip-address >] Syntax Description ip-source - Specifies either the Network or Host address Mode Privileged EXEC Mode Example smis# show authorized-managers Ip Authorized Manager Table --------------------------- Ip Address : 10.0.0.4 Ip Mask : 255.255.255.255 Services allowed : SSH...
3.30 show interfaces This command displays the interface status and configuration. show interfaces [{ [<interface-type> <interface-id>] [{ description | stormcontrol | flowcontrol | capabilities | status }] | vlan <vlan-id(1- 4069)> | port-channel <port-channel-id (1-65535)> | tunnel <tunnel-id (0- 128)>}] Syntax Description interface-type - Interface type (fastethernet or gigabitethernet interface) interface-id - Physical interface ID including type, slot and port number...
Page 61
Unknown Protocol : 5963 Transmission Counters Octets : 741775 Unicast Packets : 0 Non Unicast Packets : 5985 Discarded Packets : 0 Error Packets : 0 smis# show interfaces description Interface Status Protocol Description ---------- --------- ---------------------- Gi0/1 up up Gi0/2 up up smis# show interfaces gigabitethernet 0/2 storm-control Gi0/2...
Page 62
Gi0/2 connected Full 100 Mbps Auto smis# show interfaces vlan 1 vlan1 up, line protocol is up (connected) smis# show interfaces port-channel 2 po2 up, line protocol is up (connected) smis# show interfaces tunnel 0 tunnel0 up, line protocol is up (connected) Hardware is Tunnel MTU 1480 bytes Encapsulation TUNNEL...
3.31 show interfaces - counters This command displays the interface statistics for each port. show interfaces [{ <interface-type> <interface-id> | vlan <vlan-id (1-4069)> | tunnel <tunnel-id(0-128)>}] counters Syntax Description interface-type - Can either be gigabitethernet or fastethernet interface-id - Physical interface ID including type, slot and port number vlan - VLAN Identifier tunnel - Tunnel Identifier counters - Various counters for the switch or for the specific interface...
3.32 show interface mtu This command shows the Maximum Transmission Unit (MTU) of ports in the switch. show interface mtu [{ Vlan <vlan-id (1-4069)> | port-channel <port-channel-id (1-65535)> | <interface-type> <interface-id> }] Syntax Description Vlan - VLAN Identifier port-channel - Port Channel Identifier interface-type - Interface type can be either fastethernet or gigabitethernet interface interface-id - Physical interface ID including type, slot and port number Mode...
3.33 show interface bridge port-type This command displays the bridge port type of interfaces in the switch. show interface bridge port-type [{ port-channel <integer (1-65535)> | <interface-type> <ifnum> }] Syntax Description port-channel Port Channel Identifer interfacetype Interface Index Mode Privileged EXEC Mode Example smis# show interface bridge port-type Gi0/1 Bridge port type is Provider Network Port...
3.34 show nvram This command displays the current information stored in the NVRAM. show nvram Mode Privileged EXEC Mode Example smis# show nvram Default IP Address : 12.0.0.1 Default Subnet Mask : 255.0.0.0 Default IP Address Config Mode : Manual Switch Base MAC Address : 00:01:02:03:04:05 Default Interface Name : Gi0/1 Config Restore Option : No restore...
3.35 show system information This command displays system information. show system information Mode Privileged EXEC Mode Example smis# show system information Hardware Version : 5.2.2 Firmware Version : 3.2.0.0 Switch Name : iss System Contact : support@supermicro.com System Location : SuperMicro Logging Option : Console Logging Login Authentication Mode : Local Config Save Status : Successful...
3.36 show flow-control This command displays the flow-control information. show flow-control [ interface <interface-type> <interface-id>] Syntax Description Interface - Can either be a gigabitethernet or fastethernet interface. Physical interface ID including type, slot and port number Mode Privileged EXEC Mode Example smis# show flow-control interface gigabitethernet 0/2 Port Tx FlowControl Rx FlowControl Tx Pause RxPause...
3.38 show debugging This command displays state of each debugging option. show debugging Mode Privileged EXEC Mode Example smis# show debugging Spanning Tree : Spanning tree timers related debugging is on Related Commands debug spanning-tree - Provides spanning tree debugging support debug dot1x - Enables debugging of dot1x module debug radius - Enables RADIUS debugging options debug ip igmp snooping- Specifies the debug levels for the IGMP snooping module...
3.39 show hardware This command displays the Slot Vs Card configuration in the system. show hardware Mode User/Privileged EXEC Mode Example smis# show hardware Line card config Table ------------------------- SlotID Status CardName 0 UP CC 1 UP LC Related Commands slot - Pre-configures a Card information on a Slot load-sharing - Enables or Disables Load-Sharing Release :...
3.40 show clock This command displays the system date and time. show clock Mode Privileged EXEC Mode Example smis# show clock Tue Oct 18 18:04:11 2005 Related Command clock set - Manages the system clock Release : 72 / 913...
3.41 show running-config This command displays the current operating configuration in the system. This command is common for both Single Instance and Multiple Instance. show running-config [{ syslog | dhcp | dvmrp | qos | stp [ switch <context_name> ] | la | pnac | igs | mlds | vlan <vlan-id(1-4069)> [ switch <context_name>...
Page 75
vlan 2 ports gigabitethernet 0/2 untagged gigabitethernet 0/2 interface gigabitethernet 0/1 no shutdown rmon collection history 1 interval 300 owner dee interface gigabitethernet 0/2 no shutdown spanning-tree portfast interface gigabitethernet 0/3 interface vlan 1 no shutdown ip address 10.0.0.1 255.0.0.0 interface vlan 2 no shutdown ip address 20.0.0.1 255.0.0.0...
Page 76
restricted notify restricted snmp access initial v3 auth read iso write iso notify iso snmp access initial v3 priv read iso write iso notify iso snmp view iso 1 included snmp view restricted 1 included snmp targetparams internet user none security-mode v2c message-processing v2c snmp targetparams test1 user none security-mode message-processing v2c...
Page 78
spanning-tree mst 1 disable set garp timer join 20 vlan restricted enable interface vlan 1 no shutdown ip address 10.0.0.1 255.0.0.0 snmp community index NETMAN name NETMAN security none snmp community index PUBLIC name PUBLIC security none snmp engineId 80.00.08.1c.04.46.53 snmp group iso user none security-mode snmp group iso user none security-mode snmp group initial user initial security-mode...
Page 79
message-processing v2c snmp targetparams test1 user none security-mode message-processing v2c snmp user initial snmp user templateMD5 auth md5 AUTH_PASSWD snmp user templateSHA auth sha AUTH_PASSWD priv DES DES_CBC snmp notify iss tag iss type Trap volatile snmp notify iss1 tag iss1 type Trap volatile export ospf area-route rip export ospf external-route rip export ospf area-route bgp...
3.42 show http server status This command displays the http server status. show http server status Mode Privileged EXEC Mode Example smis# show http server status HTTP server status : enabled HTTP port is : 90 Related Commands ip http port – Sets the HTTP port set ip http –...
3.43 help This command displays help for a particular command. help [ command ] Syntax Description Command - The privileged command Mode All modes • "?" can be used as an alternative for the word "help". When "help" or "?" is typed in the specific mode all commands present in that mode as well as all general commands will be listed.
3.45 enable This command turns on privileged commands. enable [Enable Level <0-15>] Syntax Description Enable Level - Level to enter the system Mode User EXEC Mode Level 0 is the most restricted level. User created with level 0 has access only to the following commands: - disable - enable...
3.46 disable This command turns off privileged commands. disable [Privilege level to go to <0-15>] Mode User EXEC Mode Example In User mode the user can monitor and display ISS parameters, but not change them. Related Command enable - Turns on privileged commands Release : 84 / 913...
3.47 configure terminal This command enters the configuration mode configure terminal Mode Privileged EXEC Mode Related Commands end - Exits from Configuration mode exit - Exits the current configuration mode to the next highest configuration mode Release : 85 / 913...
3.48 run script This command runs CLI commands from the specified script file. run script <script file> [<output file>] Syntax Description script file - The script file to be executed output file - The output file Mode Privileged EXEC Mode. Release : 86 / 913...
3.49 listuser This command lists all valid users, along with their permissible mode listuser Mode Privileged EXEC Mode The command lists the user, mode and groups. Related Command show users - Displays information about terminal lines Release : 87 / 913...
3.50 lock This command locks the CLI console. It allows the user/system administrator to lock the console to prevent unauthorized users from gaining access to the CLI command shell. lock Mode Privileged EXEC Mode The login password has to be reentered by the user to release the console lock and access the CLI command shell.
3.51 username This command creates a user and sets the enable password for that user with the privilege level. The no form of the command deletes a user and disables the enable password for that user. username <user-name> [password <passwd>] [privilege <1-15>] no username <...
3.52 enable password This command modifies enable password parameters and the no form of the command disables enable password parameters. enable password [level (1-15)] <LINE 'enable' password> no enable password [level (1-15)] Syntax Description Level - Privilege Level Mode Global Configuration Mode •...
3.53 line This command configures a console/virtual terminal line. line {console | vty} Syntax Description Console - Console Vty - Virtual terminal line Mode Global Configuration Mode Related Commands end - Exits from Configuration mode exit - Exits the current configuration mode to the next highest configuration mode show line - TTY line information Release : 91 / 913...
3.54 alias This command replaces the given token by the given string and the no form of the command removes the alias created for the given string. alias <replacement string> <token to be replaced> no alias <alias> Syntax Description Replacement string - Replacement string token to be replaced - Abbreviated/short form of the replacement string Mode Global Configuration Mode...
3.55 exec-timeout This command sets EXEC timeout (in seconds) for line disconnection and the no form of the command clears EXEC timeout for line disconnection. exec-timeout <integer (1-18000)> no exec-timeout Mode Line Configuration Mode Defaults 1800 seconds Related Command line - Configures a console/virtual terminal line Release : 93 / 913...
3.56 logout This command exits from Privileged EXEC/ User EXEC mode to ISS Login Prompt in case of console session. logout Mode User EXEC Mode In case of a telnet session this command terminates the session. Related Command slot-modtype - Associates card module type information for a slot Release : 94 / 913...
3.57 end This command exits from Configuration mode Mode All modes This command can be executed from any mode but it reverts back to Privileged Exec mode Related Command exit - Exits the current configuration mode to the next highest configuration mode Release : 95 / 913...
3.58 exit This command exits the current configuration mode to the next highest configuration mode in the CLI.. exit Mode All modes The login name and password has to be reentered by the User to gain access to the CLI command shell. Related Command end - Exits from Configuration mode Release :...
3.59 show privilege This command shows current user privilege level. show privilege Mode Privileged EXEC Mode Example smis# show privilege Current privilege level is 15 Release : 97 / 913...
3.60 show line This command displays TTY line information. show line {console | vty <line>} Syntax Description Console - Console Vty - Virtual terminal line Mode Privileged EXEC Mode Example smis# show line console Current Session Timeout (in secs) = 1800 •...
3.61 show aliases This command displays the aliases. show aliases Mode Privileged EXEC Mode Example smis# show aliases show -> sh previlege -> pr • The show aliases command displays the alias commands and associated CLI commands for the current mode Related Command alias - Replaces the given token by the given string Release :...
3.62 show users This command displays information about terminal lines. show users Mode Privileged EXEC Mode Example smis# show users Line User Peer-Address 0 con root Local Peer Related Command listuser - Lists all valid users, along with their permissible mode Release : 100 / 913...
3.63 show history This command displays command list history. show history Mode Privileged EXEC Mode Example smis# show history 1 show ip int 2 show debug-logging 3 show users 4 show line 5 show line console 6 c s 7 show aliases 8 show privilege 9 listuser 10 show users...
3.65 monitor session This command enables port-mirroring in the switch and the no form of the command disables port mirroring in the switch. monitor session [session_number 1-1] { destination interface <interface-type> <interface-id> | source interface <interface-type> <interface-id> [{ rx | tx | both }] } no monitor session [session_number:1] [{ source interface <interface-type>...
3.66 negotiation This command enables auto-negotiation on the interface and the no form of the command disables autonegotiation on the interface. negotiation no negotiation Mode Interface Configuration Mode Example smis(config-if)# negotiation If set as no negotiation, the configured values for interface speed, duplex mode and flow control will be effective Release : 104 / 913...
3.67 speed This command sets the speed of the interface and the no form of the command sets the speed of the interface to its default value. speed { 10 | 100 | 1000 | 10000 | auto } no speed Syntax Description 10 - Port runs at 10Mbps 100 - Port runs at 100Mbps...
Page 106
This command configures the duplex operation and the no form of the command configures the duplex operation to the default value. duplex { full | half } no duplex Syntax Description full - Port is in full-duplex mode half - Port is in half-duplex mode Mode Interface Configuration Mode Defaults...
3.69 hol blocking prevention This command enables the Head-Of-Line blocking prevention on the interface and the no form of the command disables the same. hol blocking prevention no hol blocking prevention Mode Interface Configuration Mode Defaults Enabled Example smis(config-if)#hol blocking prevention Release : 107 / 913...
3.70 storm-control This command sets the storm control rate for broadcast, multicast and DLF packets and the no form of the command sets storm control rate for broadcast, multicast and DLF packets to the default value. storm-control { broadcast |multicast | dlf } level <rate-value> no storm-control { broadcast |multicast | dlf } level Syntax Description broadcast - Broadcast packets...
3.71 show port-monitoring This command displays port-monitoring information. show port-monitoring Mode Privileged EXEC Mode Example smis# show port-monitoring Port Monitoring is enabled Monitor Port : Gi0/2 Port Ingress-Monitoring Egress-Monitoring Gi0/1 Disabled Disabled Gi0/2 Enabled Enabled Gi0/3 Disabled Disabled Gi0/4 Disabled Disabled Gi0/5 Disabled Disabled Gi0/6 Disabled Disabled Related Command...
3.72 mac-address-table aging-time This command sets the maximum age of a dynamically learnt entry in the MAC address table. The no form of the command sets the maximum age of an entry in the MAC address table to its default value. mac-address-table aging-time <1-1000000 seconds>...
3.73 sntp server This command configures the SNTP server IP address. sntp server <ip-address> Syntax Description ip-address – IP address of SNTP sever. Mode Global Configuration Mode Example smis(config)# sntp server 10.10.1.100 Related Command sntp broadcast client enable – Enables SNTP broadcast client sntp unicast client enable –...
3.74 sntp broadcast client enable This command enables the SNTP broadcast client. This is used to enable SNTP client to accept SNTP traffic from any broadcast server. sntp broadcast client enable Mode Global Configuration Mode Example smis(config)# sntp broadcast client enable Related Command sntp server - Configures SNTP server IP address...
3.75 sntp unicast client enable This command enables the SNTP client to operate in unicast mode. In this mode SNTP sends unicast request to configured SNTP server IP address. sntp unicast client enable Mode Global Configuration Mode Example smis(config)# sntp unicast client enable Related Command sntp server - Configures SNTP server IP address...
3.76 tz offset This command configures the time zone offset with respect to coordinated universal time (UTC). tz offset <HH>:<MM> Syntax Description HH – Hour difference from UTC. MM – Minutes difference from UTC. Mode Global Configuration Mode Example smis(config)# tz offset 08:00 Related Command sntp server - Configures SNTP server IP address...
4 Stacking Super Micro Intelligent switch supports stacking of Super Micro switch units. Switch stacking is created by connecting switches in daisy chain. One of the stacked switch is selected as Master based on configurations. Master switch provides management support for the whole stack. Other switches in the stack are referred as slave switches.
Page 116
There is no specifical configuration required to add stack switches. If two stacking enabled switches connected through stacking cables, they form the stack. • Do not use the same switch id for multiple switches on the stack. • In a stack only on master switch user shall be allowed to configure. The slave switches shall not allow user to configure any thing except disabling stacking.
Show stack details This command displays the stacking details. show stack details Syntax Description Mode Privileged EXEC Mode Defaults Stacking is disabled. Example smis# show stack details Related Command stack – Confiugres switch identifier, priority and stacking ports. show stack counters - Displays stack port statistics show stack switchid - Displays stack details for particular switch.
Show stack counters This command shows the port counter statistics for stacking ports. show stack counters Syntax Description Mode Privileged EXEC Mode Defaults Stacking is disabled. Example smis# show stack counters Related Command stack – Confiugres switch identifier, priority and stacking ports. show stack details - Displays stack details show stack switchid - Displays stack details for particular switch.
Show stack switchid This command displays the details of particular switch stacking member. show stack switched <id> Syntax Description switch identifer id – Mode Privileged EXEC Mode Defaults Stacking is disabled. Example smis# show stack switchid Related Command show stack details - Displays stack details show stack counters - Displays stack port statistics stack –...
Show redundancy link status This command displays the stack interface link status. show redundancy link status Syntax Description Mode Privileged EXEC Mode Defaults Stacking is disabled. Example smis# show redundancy link status Related Command show stack details - Displays stack details show stack counters - Displays stack port statistics stack –...
5 Syslog Syslog is a protocol used for capturing log information for devices on a network. The syslog protocol provides a transport to allow a machine to send event notification messages across IP networks to event message collectors, also known as syslog servers. The protocol is simply designed to transport the event messages.
logging This command enables Syslog server and configures the Syslog Server IP address, the log-level and other Syslog related parameters. The no form of the command disables Syslog server and re-sets the configured Syslog server IP address, the log-level and other Syslog related parameters. logging { <ip-address>...
Page 124
Timestamp - enabled Trap - critical iP address - None buffered - 50 facility - Default (mail) Example smis(config)# logging 12.0.0.2 The log file is stored in ASCII text format. The Privileged EXEC command is used to display its contents The logging process controls the distribution of logging messages to the various destinations, such as the logging buffer, logging file, or Syslog server The existing syslog buffers will not be cleared and none of the configured options...
mailserver This command sets the mail server IP address to be used for sending email alert messages and the no form of the command re-sets the mail server IP address used for sending email alert messages. mailserver <ip-address> no mailserver Mode Global Configuration Mode Example...
sender mail-id This command sets the sender mail id and the no form of the command deletes the configured sender mail id. sender mail-id <mail-id (100)> no sender mail-id Mode Global Configuration Mode Defaults syslog@supermicro.com Example smis(config)# sender mail-id plabinik@supermicro.com Primarily, the mailserver must have been configured for this command The sender and receiver email-ids are mandatory for email alert messages to be sent.
receiver mail-id This command sets the receiver mail id and the no form of the command deletes the configured receiver mail id. receiver mail-id <mail-id (100)> no receiver mail-id Mode Global Configuration Mode Defaults syslog@supermicro.com Example smis(config)#receiver mail-id plabinik@supermicro.com Primarily, the mailserver must have been configured for this command. The sender and receiver email-ids are mandatory for email alert messages to be sent.
cmdbuffs This command configures the number of syslog buffers for a particular user. cmdbuffs <user name> <no.of buffers (1-200)> Syntax Description user name - User Name no.of buffers - Number of log buffers to be allocated in the system Mode Global Configuration Mode Defaults Example...
service timestamps This command enables timestamp option for logged messages and the no form of the command disables timestamp option for logged messages. service timestamps no service timestamps Mode Global Configuration Mode Defaults Enabled Example smis(config)#service timestamps When enabled, the messages (log and email alert messages) will hold the time stamp information.
clear logs This command clears the system syslog buffers. clear logs Mode Global Configuration Mode Example smis(config)# clear logs Related Commands cmdbuffs - Configures the number of Syslog buffers for a particular user logging - Enables Syslog Server and configures the Syslog Server IP address, the log-level and other Syslog related parameter show logging - Displays Logging status and configuration information Release :...
show logging This command displays logging status and configuration information. show logging Mode Privileged EXEC Mode Example smis# show logging System Log Information ---------------------- Syslog logging : enabled Console logging : enabled TimeStamp option : enabled Trap logging : Critical Log server IP : 10.0.0.1 Facility : Default (Mail) Buffered size : 100...
show email alerts This command displays email alerts related configuration. show email alerts Mode Privileged EXEC Mode Example smis# show email alerts Sender email-id : syslog@supermicro.com Receiver email-id : admin@supermicro.com Mail server IP : 12.0.0.3 Related Commands mailserver - Sets the mail server IP address to be used for sending email alert messages receiver mail-id - Sets the receiver mail id sender mail-id - Sets the sender mail id Release :...
6 SSH SSH is a protocol for secure remote login and other secure network services over an insecure network. It consists of three major components: • The Transport Layer Protocol provides server authentication, confidentiality, and integrity. • The User Authentication Protocol authenticates the client-side user to the server. It runs over the transport layer protocol.
ip ssh This command enables SSH server on the device and also configures the various parameters associated with SSH server. The no form of the command disables SSH server on the device and also re-sets the various parameters associated with SSH server. ip ssh {version compatibility | cipher ([des-cbc] [3des-cbc]) | auth ([hmacmd5] [hmac-sha1]) } no ip ssh {version compatibility | cipher ([des-cbc] [3des-cbc]) | auth...
debug ssh This command sets the given trace levels for SSH and the no form of the command re-sets the given SSH trace level. debug ssh ([all] [shut] [mgmt] [data] [ctrl] [dump] [resource] [buffer]) no debug ssh ([all] [shut] [mgmt] [data] [ctrl] [dump] [resource] [buffer]) Syntax Description all - Initialization and Shutdown Messages shut - Shutdown Messages...
show ip ssh This command displays SSH server information. show ip ssh Mode Privileged EXEC Mode Example smis# show ip ssh Version : 2 Cipher Algorithm : 3DES-CBC Authentication : HMAC-SHA1 Trace Level : None Related Command ip ssh - Enables SSH server on the device and configures the various parameters associated with SSH server Release : 136 / 913...
7 SSL SSL (Secure Sockets Layer), is a protocol developed for transmitting private documents through the Internet. SSL works by using a private key to encrypt data that is transferred over the SSL connection. Both Netscape Navigator and Internet Explorer support SSL, and many Web sites use the protocol to obtain confidential user information, such as credit card numbers.
ip http secure This command enables SSL server on the device and also configures ciphersuites and crypto keys. The no form of the command disables SSL server on the device and also disables ciphersuites and crypto key configuration. ip http secure { server | ciphersuite [rsa-null-md5] [rsa-null-sha] [rsa- dessha] [rsa-3des-sha] [dh-rsa-des-sha ][dh-rsa-3des-sha][rsa-exp1024-des- sha] | crypto key rsa [usage-keys (512|1024)] } no ip http secure { server | ciphersuite [rsa-null-md5] [rsa-null-sha]...
ssl gen cert-req algo rsa sn This command creates a certificate request using RSA key pair and subjectName. ssl gen cert-req algo rsa sn <SubjectName> Syntax Description SubjectName - Identification of the switch (or) the switch's IP address Mode Privileged EXEC Mode Example smis# ssl gen cert-req algo rsa sn 10.6.4.248 Related Commands...
ssl server-cert This command configures the server cert, input in PEM format. It generates a certificate request, which can be submitted to a CA (Certificate Authority) to obtain the SSL certificate for the device. ssl server-cert Mode Privileged EXEC Mode Example smis# ssl server-cert The certificate request must have been created.
debug ssl This command sets the given debug levels for SSL and the no form of the command re-sets the given SSL debug level. debug ssl ([all] [shut] [mgmt] [data] [ctrl] [dump] [resource] [buffer]) no debug ssl ([all] [shut] [mgmt] [data] [ctrl] [dump] [resource] [buffer]) Syntax Description all - Initialization and Shutdown Messages shut - Shutdown Messages...
show ssl server-cert This command displays SSL server certificate. show ssl server-cert Mode Privileged EXEC Mode Example smis# show ssl server-cert Certificate: Data: Version: 1 (0x0) Serial Number: 1 (0x1) Signature Algorithm: md5WithRSAEncryption Issuer: C=in, ST=tn, L=ch, O=fsoft,OU=ps, CN=dheepaag/Email=products@supermicro.com Validity Not Before: Jan 12 07:40:35 2005 GMT Not After : Feb 11 07:40:35 2005 GMT Subject: CN=dee...
Page 143
13:0f:9c:7c:d6:d2:f6:2b:e4:6f:25:4e:86:08:5a:e2:c9:87: 65:cf:98:6c:99:86:a5:55:66:23:b5:b0:f4:56:e6:35:5e:53: 31:00:bc:9f:00:62:34:d1:15:c0:a4:7e:d9:27:c3:d2:d7:01: 13:18:ee:de:f8:52:c8:90:1c:8b:57:15:50:56:8c:b6:7b:4d: 77:e8:23:41:82:dc:9c:47:66:fb:9a:ba:7f:73:a1:d0:88:93: 7b:c3:4b:c8:a5:ec:db:4a:36:19:02:c9:f7:e6:d1:c7:38:d3: 13:f3 SSL server certificate must have been created. Related Commands ip http secure - Enables SSL server on the device and also configures ciphersuites and crypto keys ssl gen cert-req algo rsa sn - Creates a certificate request using RSA key pair and subjectName ssl server-cert - Configures the server cert, input in PEM format show ip http secure server status - Displays SSL status and configuration information...
show ip http secure server status This command displays SSL status and configuration information. show ip http secure server status Mode Privileged EXEC Mode Example smis# show ip http secure server status HTTP secure server status : Enabled HTTP secure server ciphersuite : RSA-DES-SHA:RSA-3DES-SHA:RSAEXP1024- DES-SHA: Initially, http secure server, ciphersuite, crypto key must have been configured.
8 RMON RMON (Remote Monitoring) is a standard monitoring specification5 that enables various network monitors and console systems to exchange network-monitoring data. The RMON specification defines a set of statistics and functions that can be exchanged between RMONcompliant console managers and network probes. As such, RMON provides network administrators with comprehensive network-fault diagnosis, planning, and performance-tuning information.
set rmon This command is used to enable or disable the RMON feature. set rmon {enable | disable} Syntax Description enable - Enables the RMON feature in the system disable - Disables the RMON feature in the system Mode Global Configuration Mode Defaults The RMON Module is disabled by default Example...
rmon event This command adds an event to the RMON event table. The added event is associated with an RMON event number. The no form of the command deletes an event from the RMON event table. rmon event <number (1-65535)> [description <event-description (127)>] [log] [owner <ownername (127)>] [trap <community (127)>] no rmon event <number (1-65535)>...
rmon alarm This command sets an alarm on a MIB object. The Alarm group periodically takes statistical samples from variables in the probe and compares them to thresholds that have been configured. The no form of the command deletes the alarm configured on the MIB object. rmon alarm <alarm-number (1-65535) >...
Page 149
Related Commands rmon collection stats - Enables RMON statistic collection on the interface rmon event - Adds an event to the RMON event table show rmon - Displays the RMON alarms (show rmon alarms) Release : 149 / 913...
show rmon This command displays the RMON statistics, alarms, events, and history configured on the interface. show rmon [statistics [<stats-index (1-65535)>]] [alarms] [events] [history [history-index (1-65535)] [overview]] Syntax Description Statistics - The configured stats index value Alarms - The configured alarm events - The configured event history - The configured history index overview - Displays only the overview of rmon history entries...
Page 151
Requested # of time intervals, ie buckets, is 3, Granted # of time intervals, ie buckets, is 3, Sample 1 began measuring at 0 Received 0 octets, 0 packets, 0 broadcast and 0 multicast packets, 0 undersized and 0 oversized packets, 0 fragments and 0 jabbers, 0 CRC alignment errors and 0 collisions, # of dropped packet events is 0...
Page 152
smis# show rmon statistics 2 alarms events history 2 RMON is enabled Collection 2 on Gi0/2 is active, and owned by fsoft, Monitors ifEntry.1.2 which has Received 4712 octets, 38 packets, 0 broadcast and 38 multicast packets, 0 undersized and 0 oversized packets, 0 fragments and 0 jabbers, 0 CRC alignment errors and 0 collisions.
Page 153
Sample 2 began measuring at 0 Received 0 octets, 0 packets, 0 broadcast and 0 multicast packets, 0 undersized and 0 oversized packets, 0 fragments and 0 jabbers, 0 CRC alignment errors and 0 collisions, # of dropped packet events is 0 Network utilization is estimated at 0 smis# show rmon history overview RMON is enabled...
9 STP STP (Spanning-Tree Protocol) is a link management protocol that provides path redundancy while preventing undesirable loops in the network that are created by multiple active paths between stations. To establish path redundancy, STP creates a tree that spans all of the switches in an extended network, forcing redundant paths into a standby, or blocked, state.
Page 156
spanning-tree pathcost method spanning-tree mst configuration name revision instance spanning-tree auto-edge spanning-tree - Properties of an interface spanning-tree restricted-role spanning-tree restricted-tcn spanning-tree mst- Properties of an interface for MSTP spanning-tree mst hello-time clear spanning-tree counters clear spanning-tree pathcost dynamic clear spanning-tree detected protocols shutdown spanning-tree debug spanning-tree show spanning-tree - Summary, Blockedports, Pathcost...
spanning-tree mode This command sets the spanning tree operating mode. spanning-tree mode {mst|rst} Syntax Description mst - MSTP configuration rst - RSTP configuration Mode Global Configuration Mode Defaults Example smis(config)#spanning-tree mode rst • When ISS boots up, Spanning Tree is enabled by default with MSTP operating in the switch. •...
spanning-tree This command enables the spanning tree operation and the no form of the command disables the spanning tree operation. spanning-tree no spanning-tree Mode Global Configuration Mode Defaults Spanning tree enabled is MSTP Example smis(config)#spanning-tree Related Comands show spanning-tree - Detail - Displays detailed spanning tree information show spanning-tree - Active - Displays spanning tree information of active ports Release : 158 / 913...
spanning-tree compatibility This command sets the compatibility version for the spanning tree protocol. The no form of the command sets the compatibility version for spanning tree protocol to its default value. spanning-tree compatibility {stp|rst|mst} no spanning-tree compatibility Syntax Description mst - MSTP configuration stp - STP configuration rst - RSTP configuration Mode...
spanning-tree timers This command sets the spanning tree Timers and the no form of the command sets the spanning tree timers to the default values. spanning-tree {forward-time <seconds(4-30)> | hello-time <seconds(1-2)> | maxage <seconds(6-40)>} no spanning-tree { forward-time | hello-time | max-age } Syntax Description forward-time - Controls how fast a port changes its spanning tree state from Blocking state to Forwarding state.
Page 161
hello-time show spanning-tree bridge max-age - Displays spanning tree configuration of the bridge maxage show spanning-tree - Detail - Displays detailed spanning tree information show spanning-tree - Active - Displays spanning tree information of active ports Release : 161 / 913...
spanning-tree transmit hold-count This command sets the transmit hold-count value and the no form of the command sets the transmit holdcount to default value. Transmit hold count value is a counter used to limit the maximum transmission rate of the switch. spanning-tree transmit hold-count <value (1-10)>...
spanning-tree mst max-hops This command sets the maximum number of hops permitted in the MST and the no form of the command sets the maximum number of hops permitted in the MST to the default value. spanning-tree mst max-hops <value(6-40)> no spanning-tree mst max-hops Mode Global Configuration Mode...
spanning-tree priority This command sets the Bridge Priority for the spanning tree only in steps of 4096 and the no form of the command sets the Bridge Priority to the default value. spanning-tree [mst <instance-id>] priority <value(0-61440)> no spanning-tree [mst <instance-id(1-64)>] priority Syntax Description mst - Range of spanning tree instances priority - Switch priority for the specified spanning-tree instance...
spanning-tree pathcost method This command sets the method to calculate the port path cost and the no form of the command sets the method to calculate the port path cost to its default. spanning-tree pathcost method {long|short} no spanning-tree pathcost method Syntax Description long - 32 bit pathcost short - 16 bit path cost...
spanning-tree mst configuration This command helps to enter MST configuration submode spanning-tree mst configuration Mode Global Configuration Mode Example smis(config)#spanning-tree mst configuration In the MST mode the switch supports up to 16 instances. This MST configuration submode is used to make instance-specific and MST region configurations only. The switch supports up to 64 instances.
9.10 name This command sets the configuration name for the MST region and the no form of the command deletes the configuration name. name <string(optional max Length)> no name Mode MSTP configuration Mode Defaults The default configuration name is 00: 00: 00: 00: 00: 00 Example smis(config-mst)#name regionone The name string is case sensitive.
9.11 revision This command sets the configuration revision number for the MST region and the no form of the command deletes the configuration revision number. revision <value(0-65535)> no revision Mode MSTP configuration Mode Defaults Example smis(config-mst)#revision 100 Related Command show spanning-tree mst configuration - Displays Multiple spanning tree instance configuration Release : 168 / 913...
9.12 instance This command maps VLANs to an MST instance and the no form of the command deletes the instance unmaps specific VLANs from the MST instance. instance <instance-id(1-64)> vlan <vlan-range> no instance <instance-id (1-64)> [vlan <vlan-range>] Syntax Description vlan - VLAN range associated with a spanning-tree instance Mode MSTP configuration Mode Defaults...
9.13 spanning-tree auto-edge This command enables automatic detection of bridge attached on an interface and the no form of the command disables automatic detection of bridge attached on an interface. spanning-tree auto-edge no spanning-tree auto-edge Mode Interface Configuration Mode Example smis(config-if)# spanning-tree auto-edge Related Command show spanning-tree bridge - Displays the spanning-tree configuration of the bridge...
9.14 spanning-tree - Properties of an interface This command sets the spanning tree properties of an interface and the no form of the command sets the spanning tree properties of an interface to default value. spanning-tree {cost <value(1-200000000)>|disable|link-type{point-topoint| shared}|portfast|port-priority <value(0-240)>} no spanning-tree {cost |disable|link-type|portfast|port-priority} Syntax Description port-priority - Port priority value...
9.15 spanning-tree restricted-role This command enables the root-guard / restricted role feature (prevents the specific port from becoming the root port) on the port. The no form of the command disables the root-guard / restricted role feature on the port. . spanning-tree restricted-role no spanning-tree restricted-role Mode...
9.16 spanning-tree restricted-tcn This command enables the topology change guard / restricted TCN feature (prevents the Topology change caused by that port ) on the port. The no form of the command disables the topology change guard/ restricted TCN feature on the port. spanning-tree restricted-tcn no spanning-tree restricted-tcn Mode...
9.17 spanning-tree mst- Properties of an interface for MSTP This command sets the spanning tree properties of an interface for MSTP and the no form of the command sets the spanning tree properties of an interface to default value. spanning-tree mst <instance-id(1-64)> { cost <value(1-200000)>| port-priority <value(0-240)>...
9.18 spanning-tree mst hello-time This command sets the port based hello timer value and the no form of the command sets the port based hello timer value to its default. spanning-tree mst hello-time<value(1-10)> no spanning-tree mst hello-time Mode Interface Configuration Mode Defaults 2 seconds Example...
9.19 clear spanning-tree counters This command resets all bridge and port level statistics counters. clear spanning-tree counters Mode Global Configuration Mode Example smis(config)# clear spanning-tree counters Valid interfaces include physical ports, VLANs, and port channels Port protocol migration count gets incremented consistently, when there is a protocol migration Related Commands show spanning-tree interface - Displays the spanning tree properties of an interface...
9.20 spanning-tree pathcost dynamic This command enables dynamic pathcost calculation and the no form of the command disables dynamic pathcost calculation. spanning-tree pathcost dynamic no spanning-tree pathcost dynamic Mode Global Configuration Mode Defaults Disabled Example smis(config)# spanning-tree pathcost dynamic On execution of this command, the pathcost of all the ports will be calculated dynamically based on the speed of the interface.
9.21 clear spanning-tree detected protocols This command restarts the protocol migration process on all the interfaces and forces renegotiation with the neighboring switches. clear spanning-tree detected protocols {interface <interface-type> <interfaceid> | switch <context_name>} Syntax Description interface - Restarts the protocol migration process on the specified interface Valid interfaces include physical ports, VLANs, and port channels switch - Context/Switch Name.
9.22 shutdown spanning-tree This command shuts down spanning tree operation. shutdown spanning-tree Mode Global Configuration Mode Defaults MSTP is started and enabled Example smis(config)# shutdown spanning-tree MSTP and RSTP are mutually exclusive and hence the MSTP Module must be shutdown to start the RSTP Module.
9.23 debug spanning-tree This command provides spanning tree debugging support and the no form of the command disables debugging. debug spanning-tree { global | { all | errors |init-shut | management | memory | bpdu | events | timer | state-machine { port-info | port-recieve | portrole-selection | role-transition | state-transition | protocol-migration | topology-change | port-transmit | bridge-detection } | redundancy | semvariables} switch <context_name>}...
Page 181
redundancy - Redundancy related messages sem-variables - State-machine variables debug messages switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Defaults Debugging is Disabled Example smis# debug spanning-tree all Related Command show spanning-tree - Detail - Displays detailed spanning tree information for STP/RSTP/MSTP configuration Release : 181 / 913...
9.24 show spanning-tree - Summary, Blockedports, Pathcost This command displays spanning tree information. show spanning-tree [{ summary | blockedports | pathcost method }] [ switch <context_name>] Syntax Description summary - Summary of port states blockedports - Blocked ports in the system pathcost method - Pathcost method configured for a bridge switch - Context/Switch Name.
Page 183
Max age is 20 sec, forward delay is 15 sec Name Role State Cost Prio Type ---- ---- ----- ---- ---- ------ Gi0/1 Disabled Discarding 200000 128 SharedLan Gi0/2 Designated Forwarding 200000 128 SharedLan Gi0/3 Designated Forwarding 200000 128 SharedLan Gi0/4 Designated Forwarding 200000 128 SharedLan Gi0/5 Designated Forwarding 200000 128 SharedLan Gi0/6 Designated Forwarding 200000 128 SharedLan...
Page 184
Spanning tree Protocol Enabled. S-VLAN Component: MST00 is executing the mstp compatible Multiple Spanning Tree Protocol Bridge Id Priority 32768 Address 00:01:02:03:04:01 Max age is 20 sec, forward delay is 15 sec Name Role State Cost Prio Type ---- ---- ----- ---- ---- ------ Gi0/1 Disabled Discarding 200000 128 SharedLan Gi0/2 Designated Forwarding 200000 128 SharedLan Gi0/3 Designated Forwarding 200000 128 SharedLan...
Page 185
Spanning Tree port pathcost method is Long Spanning tree enabled protocol is MSTP MST00 Port Roles and States Port-Index Port-Role Port-State Port-Status ---------- --------- ---------- ----------- 7 Designated Forwarding Enabled 8 Root Forwarding Enabled 9 Alternate Discarding Enabled 10 Disabled Discarding Enabled 11 Disabled Discarding Enabled 12 Disabled Discarding Enabled This command is the same for both RSTP and MSTP.
9.25 show spanning-tree - Detail This command displays detailed spanning tree information. show spanning-tree detail [active] [ switch <context_name>] Syntax Description active - Displays the Bridge and details of the active (active ports are those ports that are participating in the spanning-tree) ports switch - Context/Switch Name.
Page 187
BPDUs : sent 735 , recieved 865 Multiple Instance: smis# show spanning-tree detail switch default Switch default MST00 is executing the mstp compatible Multiple Spanning Tree Protocol Bridge Identifier has Priority 32768, Address 00:51:02:03:04:05 Configured Max age 20 sec, Forward delay 15 sec Configured Hello Time 2 sec We are root of the spanning tree Current Root has priority 32768, address 00:51:02:03:04:05...
Page 188
spanning-tree - Enables the spanning tree operation spanning-tree provider – Enables the Spanning tree operation spanning-tree compatibility- Sets the compatibility version for the spanning tree protocol spanning-tree timers - Sets the spanning tree Timers spanning-tree transmit hold-count - Sets the transmit hold-count value spanning-tree priority - Sets the Bridge Priority for the spanning tree only in steps of 4096 spanning-tree - Properties of an interface - Sets spanning tree properties of an interface...
9.26 show spanning-tree - Active This command displays spanning tree information of active ports. show spanning-tree active [detail] [ switch <context_name>] Syntax Description detail - Displays in detail about the port and bridge. This includes designated Bridge details, designated port details, timer values, root bridge, etc. switch - Context/Switch Name.
Page 190
Cost 0 Port 0 [0] This bridge is the root Max age 20 Sec, forward delay 15 Sec MST00 MST00 is executing the mstp compatible Multiple Spanning Tree Protocol Bridge Id Priority 32768 Address 00:51:02:03:04:05 Max age is 20 sec, forward delay is 15 sec Name Role State Cost Prio Type ---- ---- ----- ---- ---- ------ Gi0/1 Designated Forwarding 200000 128 SharedLan...
9.27 show spanning-tree interface This command displays Spanning-tree port configuration. show spanning-tree interface <interface-type> <interface-id> [{ cost | priority | portfast | rootcost | restricted-role | restricted-tcn | state | stats | detail }] Syntax Description cost - Spanning tree port cost state - Spanning tree state stats - Displays the input and output packets by switching path for the interface priority - Spanning tree port priority...
Page 192
smis# show spanning-tree interface gigabitethernet 0/1 rootcost Root Cost is 2000000 smis# show spanning-tree interface gigabitethernet 0/1 state Forwarding smis# show spanning-tree interface gigabitethernet 0/1 stats Statistics for Port Gi0/1 Number of Transitions to forwarding State : 1 Number of RSTP BPDU Count received : 1692 Number of Config BPDU Count received : 9 Number of TCN BPDU Count received : 0 Number of RSTP BPDU Count Transmitted : 735...
Page 193
Switch - default Role State Cost Prio Type ---- ----- ---- ---- ---- Root Forwarding 2000000 128 SharedLan smis# show spanning-tree interface gigabitethernet 0/1 cost Port cost is 2000000 Switch - default smis# show spanning-tree interface gigabitethernet 0/1 priority Switch – default Port Priority is 128 smis# show spanning-tree interface gigabitethernet 0/1 portfast Switch –...
Page 194
smis# show spanning-tree interface gigabitethernet 0/1 detail Switch – default Port 1 [Gi0/1] is Root , Forwarding Port PathCost 2000000, Port Priority 128, Port Identifier 128.1 Designated Root has priority 8192, address 00:01:02:03:04:21 Designated Bridge has priority 8192, address 00:01:02:03:04:21 Designated Port Id is 128.1, Designated PathCost 0 No of Transitions to forwarding State :1 PortFast is disabled...
9.28 show spanning-tree root This command displays Spanning-tree root information. show spanning-tree root [{ address | cost | forward-time | hello-time | id | max-age | port | priority | detail }] [ switch <context_name>] Syntax Description Address - Root bridge MAC address Cost - Cost value associated with the port forward-time - Root bridge forward time hello-time - Root bridge hello time...
Page 196
smis# show spanning-tree root id Root Bridge Id is 80:00:00:01:02:03:04:11 smis# show spanning-tree root hello-time Hello Time is 2 sec smis# show spanning-tree root id Root Bridge Id is 80:00:00:01:02:03:04:11 smis# show spanning-tree root max-age Root MaxAge is 20 smis# show spanning-tree root port Root Port is 1 smis# show spanning-tree root priority Root Priority is 32768...
Page 197
Related Commands spanning-tree timers - Sets the spanning tree Timers spanning-tree priority - Sets the Bridge Priority for the spanning tree only in steps of 4096 show spanning-tree - Detail - Displays detailed spanning tree information Release : 197 / 913...
9.29 show spanning-tree bridge This command displays the spanning-tree configuration of the bridge. show spanning-tree bridge [{ address | forward-time | hello-time | id | maxage | protocol | priority | detail }] [ switch <context_name>] Syntax Description Address - Bridge Address forward-time - Bridge Forward Time hello-time - Bridge Hello Time id - Bridge ID...
Page 199
Bridge Hello Time is 2 sec smis# show spanning-tree bridge id Bridge ID is 80:00:00:01:02:03:04:21 smis# show spanning-tree bridge max-age Bridge Max Age is 20 sec smis# show spanning-tree bridge protocol Bridge Protocol Running is RSTP smis# show spanning-tree bridge priority Bridge Priority is 32768 smis# show spanning-tree bridge detail Bridge Id Priority 32768,...
Page 200
spanning-tree mode - Sets the spanning tree operating mode show spanning-tree - Detail - Displays detailed spanning tree information show spanning-tree - Active - Displays spanning tree information of active ports Release : 200 / 913...
9.30 show spanning-tree mst - CIST or specified mst Instance This command displays multiple spanning tree information for the CIST (Common Internal Spanning Tree) Instance or specified MST Instance. show spanning-tree mst [<instance-id(1-64)>] [detail] [ switch <context_name>] Syntax Description instance-id - Range of Spanning tree instances detail - Spanning tree mst instance specific details switch - Context/Switch Name.
Page 202
Port info port id 128.1 priority 128 cost 2000000 Designated root address 00:01:02:03:04:11 priority 32768 cost 0 Designated bridge address 00:01:02:03:04:11 priority 32768 port id 128.1 Multiple Instance: smis# show spanning-tree mst 1 Switch – default ## MST01 Vlans mapped: 2 Bridge Address 00:01:02:03:04:11 Priority 32768 Root Address 00:01:02:03:04:11 Priority 32768 Root this switch for MST01...
9.31 show spanning-tree mst configuration This command displays multiple spanning tree instance configuration. show spanning-tree mst configuration [ switch <context_name>] Syntax Description switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example Single Instance: smis# show spanning-tree mst configuration Name [fsoft] Revision 2...
Page 204
0 1-1024,1025-2048,2049-3072,3073-4069 ------------------------------------------------------- Related Commands name - Sets Configuration name revision - Sets the configuration revision number instance - Maps VLANs to an MST instance Release : 204 / 913...
9.32 show spanning-tree mst - Port Specific Configuration This command displays multiple spanning tree port specific configuration. show spanning-tree mst [<instance-id(1-64)>] interface <interface-type> <interface-id> [{ stats | hello-time | detail }] Syntax Description instance-id - Range of spanning tree instances interface - Details about a particular interface stats - Displays the input and output packets by switching path for the interface hello-time - Determines how often the switch broadcasts its hello message to other switches when it...
Page 206
Port info port id 128.1 priority 128 cost 2000000 Designated root address 00:01:02:03:04:11 priority 32768 cost 0 Designated bridge address 00:01:02:03:04:11 priority 32768 port id 128.1 Related Commands instance - Maps VLANS to an MST instance spanning-tree mst hello-time - Sets the port based hello timer value spanning-tree - Properties of an interface - Sets spanning tree properties of an interface show customer spanning-tree –...
10 PNAC PNAC (Port Based Network Access Control) is a portable implementation of the IEEE Std 802.1x PNAC. It can be used in both LAN Switches and Wireless LAN Access Points for providing security services. When used in LAN Switches, it offers access control to protected resources existing in the switched network.
10.1 dot1x system-auth-control This command enables dot1x in the switch and the no form of this command disables dot1x in the switch. dot1x system-auth-control no dot1x system-auth-control Mode Global Configuration Mode Defaults dot1x is enabled Example smis(config)# dot1x system-auth-control It is required to enable authentication, authorization, and accounting (AAA) and specify the authentication method before enabling 802.1x globally.
10.2 aaa authentication dot1x default This command enables the dot1x local authentication or RADIUS server based remote authentication method for all ports. aaa authentication dot1x default { group radius | local} Syntax Description group radius - RADIUS server based authentication local - Local authentication Mode Global Configuration Mode...
10.3 dot1x local-database This command configures the dot1x authentication server database with user name and password and the no form of the command deletes an entry from the dot1x authentication server database. dot1x local-database <username> password <password> permission {allow | deny} [<auth-timeout (value(1-7200))>] [interface <interface-type>...
Page 212
aaa authentication dot1x default - Enables the dot1x local authentication show dot1x - Displays dot1x local database information Release : 212 / 913...
10.4 set nas-id This command sets the dot1x network access server id. set nas-id <identifier> Syntax Description identifier - It is a string length of 16 that specifies dot1x network access server ID Mode Global Configuration Mode Defaults fsNas1 Example smis(config)#set nas-id Identifier Network Access Server Identifier is set in the RADIUS packets sent to the Remote Authentication Server.
10.5 dot1x init-session This command initiates dot1x authentication session. dot1x init-session <supp addr - aa.aa.aa.aa.aa.aa> Syntax Description supp addr – aa.aa.aa.aa.aa.aa - Mac Address of the Supplicant Mode Global Configuration Mode Example smis(config)# dot1x init-session 00:01:02:03:04:05 The supplicant MAC address must be authorized prior to the execution of this command. On execution of this command, the Authenticator initiates an authentication session for the specified supplicant MAC address.
10.6 dot1x init session-reauth This command initiates dot1x reauthentication session. dot1x init session-reauth <supp addr - aa.aa.aa.aa.aa.aa> Syntax Description supp addr – aa.aa.aa.aa.aa.aa - MAC address of the supplicant Mode Global Configuration Mode Example smis(config)# dot1x init session-reauth 00:01:02:03:04:05 On execution of this command, the authenticator initiates re-authentication for the specified supplicant MAC address.
10.7 dot1x default This command configures dot1x with default values for this port. dot1x default Mode Interface Configuration Mode Defaults Per-interface 802.1X protocol enable state - Enabled (force-authorized) Periodic reauthentication - Disabled Number of seconds between reauthentication attempts - 3600 seconds Quiet period - 60 seconds Retransmission time - 30 seconds Maximum retransmission number - 2 times...
10.8 dot1x max-req This command sets the maximum number of EAP (Extensible Authentication Protocol) retries to the client before restarting authentication process and the no form of the command sets the maximum number of EAP retries to the client to default value. dot1x max-req <count(1-10)>...
10.9 dot1x max-start This command sets the maximum number of EAPOL retries to the authenticator and the no form of the command sets the maximum number of EAPOL retries to the authenticator to default value. dot1x max-start <count(1-65535)> no dot1x max-start Mode Interface Configuration Mode Defaults...
10.10 dot1x reauthentication This command enables periodic re-authentication from authenticator to client and the no form of the command disables periodic re-authentication from authenticator to client. dot1x reauthentication no dot1x reauthentication Mode Interface Configuration Mode Defaults Periodic re-authentication is disabled Example smis(config-if)# no dot1x reauthentication The amount of time between periodic re-authentication attempts can be configured by using the dot1x...
10.11 dot1x timeout This command sets the dot1x timers and the no form of the command sets the dot1x timers to the default values. dot1x timeout {quiet-period <value (0-65535)> | {reauth-period | servertimeout | supp-timeout | tx-period | start-period | held-period | auth- period }<value (1-65535)>} no dot1x timeout {quiet-period | reauth-period | server-timeout | supp- timeout | tx-period | start-period | held-period | auth-period}...
Page 221
auth-period - 30 seconds Example smis(config-if)# dot1x timeout quiet-period 30 smis(config-if)# dot1x timeout supp-timeout 25 Only one timer can be configured using this command, that is, the user can configure either the quiet- period or tx-period, but not both. Related Commands dot1x default - Configures dot1x with default values for this port dot1x max-req - Sets the maximum number of EAP retries to the client before restarting authentication process...
10.12 dot1x port-control This command configures the authenticator port control parameter and the no form of the command sets the authenticator port control state to force authorized. dot1x port-control {auto|force-authorized|force-unauthorized} no dot1x port-control Syntax Description force-authorized - All the traffic will be allowed without any restrictions forceunauthorized - All the traffic over the interface will be blocked auto - Enables 802.1x authentication on the interface and cause the port to transition to the authorized or unauthorized state based on the 802.1x authentication exchange between the...
10.13 dot1x auth-mode This command configures the authentication mode of a port as either port-based or mac-based. dot1x auth-mode {port-based | mac-based} no dot1x auth-mode Syntax Description port-based - Port-based authentication mac-based MAC-based authentication Mode Interface Configuration Mode Defaults port-based Example smis(config-if)# dot1x auth-mode mac-based...
10.14 dot1x access-control This command configures the supplicant access control and the no form of the command sets the access control to inactive. dot1x access-control {active | inactive} no dot1x access-control Syntax Description active - The port status is the combined port status of the authenticator and supplicant inactive - The port status is the port status of authenticator Mode Interface Configuration Mode...
10.15 dot1x control-direction This command configures port control direction and the no form of the command sets the authenticator port control direction to both. dot1x control-direction {in | both} no dot1x control-direction Syntax Description in - Authentication control is imposed only on the incoming packets both - Authentication control is imposed on both incoming and outgoing packets Mode Interface Configuration Mode...
10.16 dot1x re-authenticate This command initiates re-authentication of all dot1x-enabled ports or the specified dot1x-enabled port. dot1x re-authenticate [interface <interface-type><interface-id>] Syntax Description Interface - Port number of the interface to re-authenticate Mode Privileged EXEC Mode Example smis# dot1x re-authenticate interface fastethernet 0/1 The command re-authenticates a client without waiting for the configured number of seconds between re- authentication attempts (re-authperiod) and automatic reauthentication.
10.17 shutdown dot1x This command shuts down dot1x capability and the no form of the command starts and enables dot1x capability. shutdown dot1x no shutdown dot1x Mode Global Configuration Mode Example smis(config)# shutdown dot1x When shutdown, all resources acquired by dot1x Module are released to the system. Related Commands dot1x system-auth-control - Enables dot1x in the switch show dot1x - Displays dot1x information...
10.19 show dot1x This command displays dot1x information. show dot1x [{ interface <interface-type> <interface-id> | statistics interface <interface-type> <interface-id> | supplicant-statistics interface <interfacetype> <interface-id>|local-database | mac-info [address <aa.aa.aa.aa.aa.aa>] | mac-statistics [address <aa.aa.aa.aa.aa.aa>] | all }] Syntax Description interface - dot1x status for the specified interface statistics interface - dot1x authenticator statistics for the switch or the specified interface supplicantstatistics interface - dot1x supplicant statistics for the switch or the specified...
Page 230
Ports : Gi0/1, Gi0/2, Gi0/3, Gi0/4, Gi0/5, Gi0/6, Gi0/7, Gi0/8, Gi0/9, Gi0/10, Gi0/11, Gi0/12, Gi0/13, Gi0/14, Gi0/15, Gi0/16, Gi0/17, Gi0/18, Gi0/19, Gi0/20, Gi0/21, Gi0/22, Gi0/23, Gi0/24 Permission : Allow --------------------------------- smis# show dot1x all When access-control is made inactive for Gi0/1 and Gi0/2: Dot1x Info for Gi0/1 --------------------- PortStatus = AUTHORIZED...
Page 231
ReAuthPeriod = 3600 Seconds ServerTimeout = 30 Seconds SuppTimeout = 30 Seconds Tx Period = 30 Seconds If access-control for only Gi0/1 is made active then display will be as given below: Dot1x Info for Gi0/1 --------------------- PortStatus = UNAUTHORIZED AccessControl = ACTIVE AuthSM State = CONNECTING SuppSM State = AUTHENTICATED...
Page 233
If an interface is not specified, global parameters and a summary appear. Expressions are case sensitive. If address is not specified for mac-info and mac-statistics, then this command displays the MAC sessions and MAC statistics of all the supplicant MAC addresses. Related Command dot1x default - Configures dot1x with default values for that port.
11 RADIUS RADIUS (Remote Authentication Dial-In User Service), widely used in network environments, is a client/server protocol and software that enables remote access servers to communicate with a central server to authenticate dial-in users and authorize their access to the requested system or service. It is commonly used for embedded network devices such as routers, mode servers, switches, etc.
11.1 radius-server host This command configures the RADIUS client with the parameters (host, timeout, key, retransmit) and the no form of the command deletes RADIUS server configuration. radius-server host <ip-address> [timeout <1-120>] [retransmit <1-254>] key <secret-key-string> no radius-server host <ip address> Syntax Description timeout - The time period in seconds for which a client will wait for a response from the server before re-transmitting the request.
11.2 debug radius This command enables RADIUS debugging options and the no form of the command disables RADIUS debugging options. debug radius {all | errors | events | packets | responses | timers} no debug radius Syntax Description all - All the RADIUS server messages errors - Error code debug messages events - Events related messages packets - Packets related messages...
11.3 show radius server This command displays RADIUS server configuration. show radius server Mode Privileged EXEC Mode Example smis# show radius server Radius Server Host Information ------------------------------ Index : 1 Server address : 10.0.0.1 Shared secret : admin123 Radius Server Status : Enabled Response Time : 20 Maximum Retransmission : 8 --------------------------------------------...
11.4 show radius statistics This command displays RADIUS Server Statistics. show radius statistics Mode Privileged EXEC Mode Example smis# show radius statistics Radius Server Statistics ------------------------- Index : 1 Radius Server Address : 10.0.0.1 UDP port number : 1812 Round trip time : 0 No of request packets : 8 No of retransmitted packets : 80 No of access-accept packets : 0...
12 TACACS TACACS (Terminal Access Controller Access Control System), widely used in network environments, is a client/server protocol that enables remote access servers to communicate with a central server to authenticate dial-in users and authorize their access to the requested system or service. It is commonly used for providing Network Access Security (NAS).
12.1 tacacs-server host This command configures the TACACS server with the parameters (host, timeout, key). The no form of the command deletes server entry from the TACACS server table. tacacs-server host <ip-address> [single-connection] [port <TCP port>] [timeout <time out in seconds>] [key <secret key>] no tacacs-server host <ip-address>...
12.2 tacacs use-server address This command selects a server from the list of servers maintained in the TACACS client and makes the TACACS client to use the specified server. The no form of the command disables the configured TACACS active server. tacacs use-server address<ip-address>...
12.3 tacacs-server retransmit This command specifies the number of times the client searches the active server from the list of servers maintained in the TACACS client, when active server is not configured. The no form of the command sets the default retries. tacacs-server retransmit <1-100>...
12.4 debug tacacs This command sets the debug trace level for TACACS client module. The no form of the command disables the debug trace level for TACACS client module. debug tacacs { all | info | errors | dumptx | dumprx } no debug tacacs Syntax Description all - All TACACS debug messages...
12.5 show tacacs This command displays the statistical log information and server for TACACS+ client. show tacacs Mode Privileged EXEC Mode Example smis# show tacacs Server : 1 Address : 10.0.0.5 Single Connection : no TCP port : 49 Timeout : 5 Secret Key : SuperMicroTACACS Server : 2 Address : 12.0.0.5...
Page 246
13 LA LA (Link Aggregation) is a method of combining physical network links into a single logical link for increased bandwidth. Link aggregation increases the capacity and availability of the communications channel between devices (both switches and end stations) using existing Fast Ethernet and Gigabit Ethernet technology.
13.1 set port-channel This command enables/disables link aggregation in the switch. set port-channel { enable | disable } Syntax Description enable - Enables link aggregation in the switch disable - Disables link aggregation in the switch Mode Global Configuration Mode Defaults disable Example...
13.2 lacp system-priority This command sets the LACP priority for the system and the no form of the command sets the LACP priority for the system to the default value. System Priority represents a 2-octet value indicating the priority value associated with the system involved in link aggregation. lacp system-priority <0-65535>...
13.3 lacp system-identifier This command sets the global LACP System ID. The no form of the command sets the global LACP System ID to the default value. lacp system-identifier <aa:aa:aa:aa:aa:aa> no lacp system-identifier Mode Global Configuration Mode Example smis(config)#lacp system-identifier 00:01:02:03:04:05 The MAC address configured must not be a Null MAC address or a Multicast MAC address.
13.4 port-channel load-balance This command sets the load balancing policy and the no form of the command sets the load balancing policy to the default value. port-channel load-balance {src-mac | dest-mac | src-dest-mac| src-ip | dest- ip | src-dest-ip | vlan-id} [ <port-channel-index(1-65535)>] no port-channel load-balance [ <port-channel-index(1-65535)>...
Page 252
show etherchannel - Displays etherchannel load balance information Release : 252 / 913...
13.5 lacp port-priority This command sets the LACP port priority and the no form of the command sets the LACP port priority to the default value. Port priority determines whether the link is an active link or a standby link, when the number of ports in the aggregation exceeds the maximum number supported by the hardware lacp port-priority <0-65535>...
13.6 lacp port-identifier This command sets the LACP actor admin port to be filled in the LACP PDUs. lacp port-identifier <1-65535> Mode Interface Configuration Mode Example smis(config-if)# lacp port-identifier 2 Related Commands show etherchannel - Displays etherchannel detailed / port information show interfaces –...
13.7 channel-group This command configures an Etherchannel and the no form of the command removes an interface from the Etherchannel. channel-group <channel-group-number(1-65535)> mode {active | passive | on} no channel-group Syntax Description mode - mode represents any one of the following: active - LACP negotiation is started un-conditionally passive - LACP negotiation is started only when LACP packet is received from peer on - Force the interface to channel without LACP.
13.8 lacp wait-time This command sets the LACP wait-time and the no form of the command sets the LACP wait-time to the default value. lacp wait-time <0-10> no lacp wait-time Mode Interface Configuration Mode Defaults Example smis(config-if)# lacp wait-time 1 Configuring the wait-time value as 0 ensures that links get aggregated immediately.
13.9 lacp timeout This command sets the LACP timeout period and the no form of the command sets the LACP timeout period to the default value. lacp timeout {long | short } no lacp timeout Syntax Description long - Long timeout value short - Short timeout value Mode Interface Configuration Mode...
13.10 mac-selection This command configures how the MAC address for the port channel is chosen. mac-selection {dynamic | force aggregation-mac <aa:aa:aa:aa:aa:aa>} Syntax Description dynamic - Port-channel MAC address is address of an active port force aggregation-mac - Port-channel MAC address is configured by the user Mode Interface Configuration Mode Defaults...
13.11 shutdown port-channel This command shuts down Link Aggregation in the switch and the no form of the command starts and enables Link Aggregation in the switch. shutdown port-channel no shutdown port-channel Mode Global Configuration Mode Example smis(config)# shutdown port-channel When shutdown, all resources used by the Link Aggregation Module are released to the system.
13.12 show etherchannel This command displays etherchannel information. show etherchannel [[channel-group-number] { detail | load-balance | port | port-channel | summary | protocol}] Syntax Description channel-groupnumber - Number of the channel group. Valid numbers range from maximum number of ports in the system to maximum number of aggregations supported detail - Detailed EtherChannel information load-balance - Load-balance or frame-distribution scheme among ports in the port channel port - EtherChannel port information...
Page 261
Group: 1 ---------- Protocol :LACP Ports in the Group ------------------ Port : Gi0/1 ------------- Port State = Up in Bundle Channel Group : 1 Mode : Active Pseudo port-channel = Po1 LACP port-priority = 128 LACP Wait-time = 2 secs LACP Activity : Active LACP Timeout : Long Aggregation State : Aggregation, Sync, Collecting, Distributing,...
Page 262
Port state = Port-channel Ag-Inuse Protocol = LACP MAC selection = Dynamic smis# show etherchannel 1 port Channel Group Listing --------------------- Group: 1 ---------- Protocol :LACP Ports in the Group ------------------ Port : Gi0/1 ------------- Port State = Up in Bundle Channel Group : 1 Mode : Active...
Page 263
LACP Activity : Active LACP Timeout : Long Aggregation State : Aggregation, Sync, Collecting, Distributing, LACP Port Admin Oper Port Port Port State Priority Key Key Number State ------------------------------------------------ Gi0/1 Bundle 128 1 1 0x1 0xbc Gi0/2 Bundle 128 1 1 0x2 0xbc smis# show etherchannel 1 port-channel Port-channel is enabled Max Port Channels is 24 with maximum 8 active ports per port...
Page 264
1 Po1(P) LACP Gi0/1(P),Gi0/2(P) smis# show etherchannel 1 protocol Channel Group Listing --------------------- Group : 1 ---------- Protocol : LACP smis# show etherchannel load-balance Channel Group Listing --------------------- Group : 1 ---------- Source IP Address If the channel group number is not specified details on all channels are displayed. Related Commands channel-group - Assigns an Ethernet interface to an EtherChannel group set port-channel - Enables/disables link aggregation in the switch...
13.13 show interfaces This command displays interface specific port-channel information. show interfaces [<interface-type> <interface-id> ] etherchannel Syntax Description Etherchannel - Interface EtherChannel information Mode Privileged EXEC Mode Example smis# show interfaces gigabitethernet 0/1 etherchannel Port : Gi0/1 ------------- Port State = Up in Bundle Channel Group : 2 Mode : Active...
Page 266
Channel Group : 2 Mode : Active Pseudo port-channel = Po2 LACP port-priority = 128 LACP Wait-time = 2 secs LACP Activity : Passive LACP Timeout : Long Aggregation State : Aggregation, Sync, Collecting, Distributing, Port : Gi0/2 ------------- Port State = Up in Bundle Channel Group : 2 Mode : Active...
Page 267
------------------- Number of Ports = 2 HotStandBy port = null Port state = Port-channel Ag-Inuse Protocol = LACP MAC selection = Dynamic Expressions are case sensitive. The port-channel range is 1 to 64. Related Commands set port-channel - Enables/disables link aggregation in the switch channel-group - Assigns an Ethernet interface to an EtherChannel group port-channel load-balance - Sets the load balancing policy lacp port-priority - Sets the LACP port priority...
13.14 show lacp This command displays port-channel traffic/neighbor information. show lacp [<port-channel(1-65535)>] { counters | neighbor [detail] } Syntax Description port-channel - Number of the channel group counters - Traffic information neighbor - Neighbor information detail - Neighbor detail information Mode Privileged EXEC Mode Example...
Page 269
---------- Partner System ID : 00:01:02:03:04:21 Flags : P LACP Partner Port Priority : 128 LACP Partner Oper Key : 2 LACP Partner Port State : 0x3c Port State Flags Decode ------------------------ Activity : Passive LACP Timeout : Long Aggregation State : Aggregation, Sync, Collecting, Distributing Port Gi0/2 ----------...
14 IGMP Snooping IGMP (Internet Group Multicast Protocol), is the protocol a host uses to inform a router when it joins (or leaves) an Internet multicast group. IGMP is only used on a local network; a router must use another multicast routing protocol to inform other routers of group membership.
Page 271
ip igmp snooping version ip igmp snooping fast-leave ip igmp snooping querier ip igmp snooping query-interval ip igmp snooping mrouter shutdown snooping debug ip igmp snooping show ip igmp snooping mrouter show ip igmp snooping globals show ip igmp snooping show ip igmp snooping groups show ip igmp snooping forwarding-database show ip igmp snooping statistics...
14.1 ip igmp snooping This command enables IGMP snooping in the switch/a specific VLAN and the no form of the command disables IGMP snooping in the switch/a specific VLAN. ip igmp snooping no ip igmp snooping Mode Global Configuration Mode / Config-VLAN Mode Defaults IGMP snooping is globally disabled Example...
14.2 ip igmp snooping proxy-reporting This command enables proxy reporting in the IGMP snooping switch and the no form of the command disables proxy reporting in the IGMP snooping switch. ip igmp snooping proxy-reporting no ip igmp snooping proxy-reporting Mode Global Configuration Mode Defaults Proxy-reporting is enabled...
14.3 snooping multicast-forwarding-mode This command specifies the snooping multicast forwarding mode (IP based or MAC based). snooping multicast-forwarding-mode {ip | mac} Syntax Description ip - IP Address based mac - MAC Address based Mode Global Configuration Mode Defaults Example smis(config)# snooping multicast-forwarding-mode mac Related Command show ip igmp snooping globals - Displays the IGMP snooping information for all VLANs or a specific VLAN...
14.4 ip igmp snooping mrouter-time-out This command sets the IGMP snooping router port purge time-out after which the port gets deleted if no IGMP router control packets are received. The no form of the command sets the IGMP snooping router port purge time-out to default value.
14.5 ip igmp snooping port-purge-interval This command sets the IGMP snooping port purge time interval after which the port gets deleted if no IGMP reports are received. The no form of the command sets the IGMP snooping port purge time to default value.
14.6 ip igmp snooping report-suppression interval This command sets the IGMP snooping report-suppression time interval for which the IGMPv2 report messages for the same group will not get forwarded onto the router ports. The no form of the command sets the IGMP snooping report-suppression interval time to the default value. ip igmp snooping report-suppression-interval <(1 –...
14.7 ip igmp snooping retry-count This command sets the maximum number of group specific queries sent on a port on reception of a IGMPv2 leave message. The no form of the command sets the number of group specific queries sent on a port on reception of leave message to default value.
14.8 ip igmp snooping group-query-interval This command sets the time interval after which the switch sends a group specific query on a port. The no form of the commands sets the group specific query interval time to default value. ip igmp snooping group-query-interval <2-5) seconds> no ip igmp snooping group-query-interval Mode Global Configuration Mode...
14.9 ip igmp snooping report-forward This command specifies if IGMP reports must be forwarded on all ports or router ports of a VLAN and the no form of the command sets IGMP report-forwarding status to default value. ip igmp snooping report-forward {all-ports | router-ports} no ip igmp snooping report-forward Syntax Description all-ports - IGMP reports forwarded on all the ports of a VLAN...
14.10 ip igmp snooping version This command sets the operating version of the IGMP snooping switch for a specific VLAN. ip igmp snooping version { v1 |v2 | v3} Syntax Description v1 - IGMP snooping Version 1 v2 - IGMP snooping Version 2 v3 - IGMP snooping Version 3 Mode Config-VLAN Mode...
14.11 ip igmp snooping fast-leave This command enables fast leave processing for a specific VLAN and the no form of the command disables fast leave processing for a specific VLAN. ip igmp snooping fast-leave no ip igmp snooping fast-leave Mode Config-VLAN Mode Defaults Disabled...
14.12 ip igmp snooping querier This commands configures the IGMP snooping switch as a querier for a specific VLAN. The no form of the command configures the IGMP snooping switch as non-querier for a specific VLAN. ip igmp snooping querier no ip igmp snooping querier Mode Config-VLAN Mode...
14.13 ip igmp snooping query-interval This command sets the time period with which the general queries are sent by the IGMP snooping switch when configured as querier on a VLAN. The no form of the command sets the IGMP querier interval to default value.
14.14 ip igmp snooping mrouter This command configures statically the router ports for a VLAN and the no form of the command deletes the statically configured router ports for a VLAN. ip igmp snooping mrouter <interface-type> <0/a-b, 0/c, ...> no ip igmp snooping mrouter <interface-type> <0/a-b, 0/c, ...> Mode Config-VLAN Mode Example...
14.15 shutdown snooping This command shuts down snooping in the switch and the no form of the command starts and enables snooping in the switch. shutdown snooping no shutdown snooping Mode Global Configuration Mode Defaults no shutdown snooping Example smis(config)# shutdown snooping When shutdown, all resources acquired by the Snooping Module are released to the system.
14.16 debug ip igmp snooping This command specifies the debug levels for IGMP snooping module and the no form of the command resets debug options for IGMP snooping module. debug ip igmp snooping {[init][resources][tmr][src][grp][qry] [vlan][pkt][fwd][mgmt][redundancy] | all } switch <switch_name> no debug ip igmp snooping {[init][resources][tmr][src][grp][qry] [vlan][pkt][fwd][mgmt][redundancy] | all } switch <switch_name>...
14.17 show ip igmp snooping mrouter This command displays the router ports for all VLANs or a specific VLAN. show ip igmp snooping mrouter [Vlan <vlan index>] Syntax Description Vlan - Vlan ID value Mode Privileged EXEC Mode Example Single Instance smis# show ip igmp snooping mrouter Vlan Ports ----- ------...
14.18 show ip igmp snooping globals This command displays the IGMP snooping information for all VLANs or a specific VLAN. show ip igmp snooping globals [switch <switch_name>] Syntax switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example Single Instance...
Page 290
Router port purge interval is 125 seconds Port purge interval is 260 seconds Report forward interval is 5 seconds Group specific query interval is 2 seconds Reports are forwarded on router ports Group specific query retry count is 2 Switch cust1 Snooping Configuration ----------------------------- IGMP Snooping globally enabled...
Page 291
Reports are forwarded on router ports Group specific query retry count is 2 Related Commands ip igmp snooping - Enables IGMP snooping in the switch/a specific VLAN ip igmp snooping proxy-reporting - Enables proxy reporting in the IGMP snooping switch snooping multicast-forwarding-mode - Specifies the forwarding mode (IP based or MAC based) that will be effective on switch restart ip igmp snooping port-purge-interval - Sets the IGMP snooping port purge time interval after...
14.19 show ip igmp snooping This command displays IGMP snooping information for all VLANs or a specific VLAN. show ip igmp snooping [Vlan <vlan id>] [switch <switch_name>] Syntax Description vlan - VLAN ID switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example...
Page 293
Query interval is 125 seconds Switch cust2 Snooping VLAN Configuration for the VLAN 1 IGMP Snooping enabled IGMP configured version is V2 IGMP Operating version is V2 Fast leave is disabled Snooping switch is acting as Non-Querier Query interval is 125 seconds Snooping VLAN Configuration for the VLAN 2 IGMP Snooping enabled IGMP configured version is V2...
14.20 show ip igmp snooping groups This command displays IGMP group information for all VLANs or a specific VLAN or a specific VLAN and group address. show ip igmp snooping groups [Vlan <vlan id> [Group <Address>]] [switch <switch_name>] Syntax Description Vlan - VLAN index value Group - Group Address of the VLAN ID switch - Context/Switch Name.
Page 295
12.0.0.40, 12.0.0.30 /* MAC based */ smis# show ip igmp snooping groups IGMP Snooping Group information ------------------------------- VLAN ID:2 Group Address: 227.1.1.1 Filter Mode EXCLUDE Exclude sources: None Receiver Ports: Gi0/2, Gi0/3, Gi0/4, Gi0/5 Multiple Instance smis# show ip igmp snooping groups Switch cust1 Snooping Group information -----------------------------...
Page 296
Gi0/10 Related Command ip igmp snooping - Enables IGMP snooping in the switch/a specific VLAN Release : 296 / 913...
14.21 show ip igmp snooping forwarding-database This command displays the multicast forwarding entries for all VLANs or a specific VLAN. show ip igmp snooping forwarding-database [Vlan <vlan id>] Syntax Description Vlan - VLAN ID switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example...
Page 298
Vlan MAC-Address Ports ---- ----------------- ----- 2 01:00:5e:02:02:02 Gi0/9, Gi0/10 IGS must be enabled in the switch prior to the execution of this command. Related Command ip igmp snooping - Enables IGMP snooping in the switch/a specific VLAN Release : 298 / 913...
14.22 show ip igmp snooping statistics This command displays IGMP snooping statistics for all VLANs or a specific VLAN. show ip igmp snooping statistics [Vlan <vlan id>] [switch <switch_name>] Syntax Description Vlan - VLAN index switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example...
Page 300
Switch cust1 Snooping Statistics for VLAN 1 General queries received : 0 Group specific queries received : 0 Group and source specific queries received : 0 ASM reports received : 20 SSM reports received : 0 IS_INCLUDE messages received : 0 IS_EXCLUDE messages received : 0 TO_INCLUDE messages received : 0 TO_EXCLUDE messages received : 0...
Page 301
Packets dropped : 0 Switch cust2 Snooping Statistics for VLAN 1 General queries received : 0 Group specific queries received : 0 Group and source specific queries received : 0 ASM reports received : 0 SSM reports received : 0 IS_INCLUDE messages received : 0 IS_EXCLUDE messages received : 0 TO_INCLUDE messages received : 0...
Page 302
Leaves transmitted : 0 Packets dropped : 0 Related Command ip igmp snooping - Enables IGMP snooping in the switch/a specific VLAN Release : 302 / 913...
15 VLAN VLANs (Virtual LANs) can be viewed as a group of devices on different physical LAN segments which can communicate with each other as if they were all on the same physical LAN segment, i.e. a network of computers that behave as if they are connected to the same wire even though they may actually be physically located on different segments of a LAN.
Page 304
set port gmrp set vlan traffic-classes mac-map mac-address-table static unicast mac-address-table static multicast mac-address-table aging-time clear vlan statistics set unicast-mac learning vlan unicast-mac learning limit ports vlan active switchport pvid switchport acceptable-frame-type switchport ingress-filter port mac-vlan port protocol-vlan switchport map protocols-group switchport priority default switchport mode set garp timer...
Page 305
show vlan learning params show mac-address-table show mac-address-table count show mac-address-table static unicast show mac-address-table static multicast show mac-address-table dynamic unicast show mac-address-table dynamic multicast show mac-address-table aging-time Release : 305 / 913...
15.1 set vlan This command enables/disables VLAN in the switch. The value enable indicates that VLAN will be enabled in the device on all ports. The value disable indicates that VLAN will be disabled in the device on all ports. set vlan { enable | disable } Syntax Description Enable - Enables VLAN in the switch...
15.2 vlan This command configures a VLAN in the switch and is also used to enter into the config-VLAN mode. The no form of the command deletes a VLAN from the switch. vlan <vlan-id(1-4069)> no vlan <vlan-id(1-4069)> Mode Global Configuration Mode Defaults vlan-id - 1 Example...
15.3 mac-vlan This command enables MAC-based VLAN for all the available interfaces of the VLAN. The no form of the command disables MAC-based VLAN on the device. mac-vlan no mac-vlan Mode Global Configuration Mode Defaults Disabled Example smis(config)# mac-vlan Related Commands show vlan device info - Displays the VLAN global status variables show mac-vlan - Displays the entries in the MAC-VLAN database Release :...
15.4 protocol-vlan This command enables Protocol-VLAN based classification on all the ports. The no form of the command disables Protocol-VLAN based classification on all ports. protocol-vlan no protocol-vlan Mode Global Configuration Mode Defaults Enabled Example smis(config)# protocol-vlan Related Commands show vlan device info - Displays the VLAN related global status variables show protocol-vlan - Displays the entries in the protocol-VLAN database Release : 309 / 913...
15.5 map protocol This command configures the group ID for a specific encapsulation and protocol value combination. This command adds a protocol to a protocol group for protocol based VLAN learning. The no form of the command removes the protocol from the entire group. map protocol {ip | novell | netbios | appletalk | other <aa:aa or aa:aa:aa:aa:aa>} {enet-v2 | snap | llcOther | snap8021H | snapOther} protocols-group <Group id>...
15.6 Set gvrp This command enables or disables GVRP on a global basis. set gvrp { enable | disable } Syntax Description enable - Enables GVRP in the switch disable - Disables GVRP in the switch Mode Global Configuration Mode Defaults enable Example...
15.7 set port gvrp This command enables or disables GVRP on the interface. set port gvrp <interface-type> <interface-id> { enable | disable } Syntax Description interface-type - Interface type interface-id - Interface Id enable - Enables GVRP on the interface disable - Disables GVRP on the interface Mode Global Configuration Mode...
15.8 set gmrp This command enables or disables GMRP globally on the device. set gmrp { enable | disable } Syntax Description enable - Enables GMRP on the device disable - Disables GMRP on the device Mode Global Configuration Mode Defaults enable Example...
15.9 set port gmrp This command enables or disables GMRP on the port. set port gmrp <interface-type> <interface-id> { enable | disable } Syntax Description interface-type - Interface type interface-id - Interface ID enable - Enables GMRP on the interface disable - Disables GMRP on the interface Mode Global Configuration Mode...
15.10 set vlan traffic-classes This command enables / disables traffic classes. set vlan traffic-classes {enable | disable} Syntax Description enable - Enables traffic classes disable - Disables traffic classes Mode Global Configuration Mode Defaults enable Example smis(config)# set vlan traffic-classes enable This command has to be executed prior to executing the vlan max traffic class command.
15.11 mac-map This command configures the VLAN-MAC address mapping. The no form of this command is used to delete the specific mac map entry. mac-map <aa:aa:aa:aa:aa:aa> vlan <vlan-id(1-4069)> [mcast-bcast {discard | allow}] no mac-map <aa:aa:aa:aa:aa:aa> Syntax Description aa:aa:aa:aa:aa:aa - MAC address vlan - VLAN Identifier mcast-bcast - Specifies the way broadcast and multicast traffic will be handled for the packets received from the source address of this MAC classification entry...
15.12 mac-address-table static unicast This command configures a static unicast MAC address in the forwarding database. The no form of the command deletes a configured static Unicast MAC address from the forwarding database. mac-address-table static unicast <aa:aa:aa:aa:aa:aa> vlan <vlan-id(1-4069)> [recv-port <interface-type> <interface-id>] interface ([<interface-type> <0/ab, 0/c, ...>] [<interface-type>...
Page 319
Related Commands show mac-address-table static unicast - Displays the statically configured unicast address from the MAC address table Release : 319 / 913...
15.13 mac-address-table static multicast This command configures a static mulitcast MAC address in the forwarding database. mac-address-table static multicast <aa:aa:aa:aa:aa:aa> vlan <vlan-id(1-4069)> [recv-port <interface-type> <interface-id>] interface ([<interface-type> <0/ab, 0/c, ...>] [<interface-type> <0/a-b, 0/c, ...>] [port-channel <a,b,c- d>]]) [forbidden-ports ([<interface-type> <0/a-b, 0/c, ...>] [<interface- type>...
Page 321
01:02:03:04:05:06 vlan 2 interface gigabitethernet 0/1 • VLAN must have been configured and member ports must have been configured for the specified VLAN. Related Command show mac-address-table static multicast - Displays the statically configured multicast entries Release : 321 / 913...
15.14 mac-address-table aging-time This command sets the maximum age of a dynamically learnt entry in the MAC address table. The no form of the command sets the maximum age of an entry in the MAC address table to its default value.
15.15 clear vlan statistics This command clears the VLAN counters. clear vlan statistics [vlan <integer(1-4069)>] Syntax Description vlan - VLAN Identifier Mode Global Configuration Mode Example smis(config)# clear vlan statistics vlan 1 • If executed without the optional parameters this command clears all the VLAN counters. Related Command show vlan statistics - Displays the VLAN statistics Release :...
15.16 set unicast-mac learning This command enables / disables unicast-mac learning for the VLAN. set unicast-mac learning { enable | disable } Syntax Description enable - Enables unicast-mac learning for the VLAN disable - Disables unicast-mac learning for the VLAN Mode Config-VLAN Mode Defaults...
15.17 vlan unicast-mac learning limit This command sets the unicast-mac learning limit for the VLAN. The no form of the command resets the unicast-mac learning limit for the vlan to the default value. vlan unicast-mac learning limit <size(0-4294967295)> no vlan unicast-mac learning limit Syntax Description learning limit - Specifies the MAC learning limit configured for the VLAN Mode...
15.18 ports This command configures a static VLAN entry with the required member ports, untagged ports and forbidden ports. ports ([<interface-type> <0/a-b,0/c,...>] [<interface-type> <0/a-b,0/c,...>] [port-channel <a,b,c-d>]) [untagged <interface-type> <0/a-b,0/c,...> [<interface-type> <0/a-b,0/c,...>] [port-channel <a,b,c-d>]] [forbidden <interface-type> <0/a-b,0/c,...> [<interface-type> <0/a-b,0/c,...>] [portchannel <a,b,c-d>]] [name <vlan-name>] Syntax Description ports - Member Ports Interface type and ID.
Page 327
• Member-ports represent the set of ports permanently assigned to the egress list. Forbidden-ports represent the set of ports forbidden for the VLAN. Untagged ports represent the set of ports which transmits untagged frames. Related Command show vlan - Displays VLAN information in the database Release : 327 / 913...
15.19 vlan active This command makes the particular VLAN active in the switch. vlan active Mode Config-VLAN Mode Example smis(config-vlan)# vlan active Release : 328 / 913...
15.20 switchport pvid This command configures the PVID (VLAN Identifier) that would be assigned to untagged/priority-tagged frames. The no form of this command sets the PVID to the default value. switchport pvid <vlan-id(1-4069)> no switchport pvid Mode Interface Configuration Mode Defaults vlan-id - 1 Example...
15.21 switchport acceptable-frame-type This command configures the acceptable frame type for the port. The no form of this command sets the default value of acceptable frame type - “all” where all frames will be accepted. switchport acceptable-frame-type {all | tagged | untaggedAndPrioritytagged } no switchport acceptable-frame-type Syntax Description all - All frames...
15.22 switchport ingress-filter This command enables ingress filtering on the port. The no form of this command disables ingress filtering on the port. switchport ingress-filter no switchport ingress-filter Mode Interface Configuration Mode Defaults Disabled Example smis(config-if)# switchport ingress-filter • When ingress-filtering is enabled, the device discards those incoming frames for VLANs which do not include this port in its member set.
15.23 port mac-vlan This command enables MAC-based VLAN learning on the port. The no form of the command disables MAC-based VLAN learning on the port. port mac-vlan no port mac-vlan Mode Interface Configuration Mode Defaults Disabled Example smis(config-if)# port mac-vlan •...
15.24 port protocol-vlan This command enables port protocol based VLANs. The no form of the command disables port Protocol based VLANs. port protocol-vlan no port protocol-vlan Mode Interface Configuration Mode Defaults Enabled Example smis(config-if)# port protocol-vlan • The value enable indicates that the VLAN classification on this port is port and protocol based as long as the port and protocol based classification is enabled globally for the device.
15.25 switchport map protocols-group This command maps the protocol group configured to a particular VLAN identifier for the specified interface. The no form of the command unmaps the VLAN identifier to group Id mapping. switchport map protocols-group <Group id> vlan <vlan-id(1-4069)> no switchport map protocols-group <Group id>...
15.26 switchport priority default This command sets the default user priority for the port. The no form of the command sets the default user priority for the port to the default value. switchport priority default <priority value(0-7)> no switchport priority default Mode Interface Configuration Mode Defaults...
15.27 switchport mode This command configures the VLAN port mode. The no form of the command configures the default VLAN port mode switchport mode { access | trunk | hybrid } no switchport mode Syntax Description access - Access port Mode trunk - Trunk port Mode hybrid - Hybrid VLAN port Mode Interface Configuration Mode...
15.28 set garp timer This command configures the GARP join time, leave time, and leaveall time in milli-seconds. set garp timer {join | leave | leaveall} <time in milli seconds> Syntax Description join - Join Time leave - Leave Time leaveall - Leaveall Time Mode Interface Configuration Mode...
15.30 group restricted This command enables or disables restricted group registration on a port. group restricted {enable | disable } Syntax Description enable - Enables restricted group registration Disable - Disables restricted group registration Mode Interface Configuration Mode Defaults disable Example smis(config-if)# group restricted enable •...
15.31 vlan max-traffic-class This command configures the maximum number of traffic classes supported on a port. The no form of the command assigns the default maximum traffic class value to a port. vlan max-traffic-class <MAX Traffic class(1-8)> no vlan max-traffic-class Syntax Description MAX Traffic class - The number of traffic classes supported on the port Mode...
15.32 vlan map-priority This command maps a priority to a traffic class on the specified port. The frame received on the interface with the configured priority will be processed in the configured traffic class.. The no form of the command maps the default priority to traffic class value on the port. vlan map-priority <priority value(0-7)>...
15.33 shutdown garp This command shutsdown the GARP Module. The no form of the command starts and enables the GARP Module. shutdown garp no shutdown garp Mode Global Configuration Mode Defaults GARP Module is Started and enabled by default Example smis(config)# shutdown garp •...
15.36 show vlan This command displays the VLAN information in the database. show vlan [brief | id <vlan-id(1-4069)> | summary] Syntax Description brief - Information about all the VLANs in brief id - Information specific to the VLAN Id summary - Summary of the VLAN Mode Privileged EXEC Mode Example...
Page 348
Switch - default Vlan database ------------- Vlan ID : 1 Member Ports : Gi0/49 Untagged Ports : Gi0/49 Forbidden Ports : None Name : Status : Permanent ---------------------------------------------------- Switch - cust1 Vlan database ------------- Vlan ID : 1 Member Ports : Gi0/1, Gi0/2, Gi0/3, Gi0/4, Gi0/5, Gi0/6 Untagged Ports : Gi0/1, Gi0/2, Gi0/3, Gi0/4, Gi0/5, Gi0/6 Forbidden Ports : None Name :...
Page 349
Related Commands shutdown vlan - Shutsdown VLAN switching. The no form of the command starts and enables VLAN switching set vlan - Enables/disables VLAN in the switch vlan - Configures a VLAN in the switch and is also used to enter in to the config-VLAN mode ports - Configures a static VLAN entry with the required member ports, untagged ports and forbidden ports Release :...
15.37 show vlan device info This command displays the VLAN related global status variables. show vlan device info [ switch <context_name>] Syntax Description Switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example Single Instance: smis# show vlan device info Vlan device configurations --------------------------...
Page 351
Multiple Instance: smis# show vlan device info Switch default Vlan device configurations -------------------------- Vlan Status : Enabled Vlan Oper status : Enabled Gvrp status : Enabled Gmrp status : Disabled Gvrp Oper status : Enabled Gmrp Oper status : Disabled Mac-Vlan Status : Disabled Protocol-Vlan Status : Enabled Bridge Mode...
Page 352
set port gvrp - Enables or disables GVRP on the interface set gmrp - Enables or disables GMRP on a global basis set port gmrp - Enables or disables GMRP on the interface set vlan traffic-classes - Enables or disables traffic classes vlan max-traffic-class - Assigns traffic class value to a port port protocol-vlan - Enables port protocol based VLANs vlan learning mode - Configures the VLAN learning mode...
15.38 show vlan device capabilities This command displays VLAN capabilities of the device. show vlan device capabilities [ switch <context_name>] Syntax Description Switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example Single Instance: smis# show vlan device capabilities Vlan device capabilities --------------------------...
15.39 show vlan traffic-classes This command displays the traffic classes information of all the available interfaces. show vlan traffic-classes [{port <interface-type> <interface-id> | switch <context_name>}] Syntax Description port - Interface Type and ID of the port switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example...
Page 357
to all the available traffic classes on the port. Related Commands vlan - Configures a VLAN in the switch and is used to enter into the VLAN mode ports - Configures a static VLAN entry with the required member ports, untagged ports and forbidden ports set vlan traffic-classes - Enables / disables traffic classes vlan max-traffic-class - Assigns traffic class value to a port...
15.40 show garp timer This command displays the GARP timer information of the available interfaces. show garp timer [{ port <interface-type> <interface-id> | switch <context_name>}] Syntax Description Port - Interface type and ID of the port switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example...
Page 359
Gi0/3 200 600 10000 Gi0/4 200 600 10000 Gi0/5 200 600 10000 Gi0/6 200 600 10000 • The timer information is the same for GVRP and GMRP. Related Commands ports - Configures a static VLAN entry with the required member ports, untagged ports and forbidden ports show vlan device info - Displays the VLAN related global status variables set garp timer - Configures the GARP join time, leave time, and leaveall time in milli-seconds...
15.41 show vlan port config This command displays the VLAN related parameters specific for ports.. show vlan port config [{port <interface-type> <interface-id> | switch <context_name>}] Syntax Description Port - Interface type and ID of the port switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example...
Page 361
Port Vlan ID : 1 Port Acceptable Frame Type : Admit All Port Ingress Filtering : Enabled Port Mode : Hybrid Port Gvrp Status : Enabled Port Gmrp Status : Enabled Port Gvrp Failed Registrations : 0 Gvrp last pdu origin : 01:02:03:04:05:06 Port Restricted Vlan Registration : Disabled Port Restricted Group Registration : Disabled Mac Based Support : Disabled...
Page 362
Port-and-Protocol Based Support : Enabled Default Priority : 0 ------------------------------------------------------- Switch - cust1 Vlan Port configuration table ------------------------------- Port Gi0/1 Port Vlan ID : 20 Port Acceptable Frame Type : Admit All Port Ingress Filtering : Disabled Port Mode : Hybrid Port Gvrp Status : Enabled Port Gmrp Status : Enabled Port Gvrp Failed Registrations : 0...
Page 363
Mac Based Support : Disabled Port-and-Protocol Based Support : Enabled Default Priority : 0 ------------------------------------------------------- • If executed with out the optional parameter this command displays the port information of all the available ports. Related Commands set port gvrp - Enables or disables GVRP on the interface set port gmrp - Enables or disables GMRP on the interface switchport pvid - Configures the PVID (VLAN ID) that would be assigned to untagged/prioritytagged frames/VLAN tagged frames...
15.42 show vlan protocols-group This command displays the protocol group database. show vlan protocols-group [ switch <context_name>] Syntax Description Switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example Single Instance: smis# show vlan protocols-group Protocol Group Table -------------------- ------------------------------------------...
Page 365
combination show protocol-vlan - Displays the entries in the protocol-VLAN database switchport map protocols-group - Maps the protocol group configured to a particular VLAN identifier for the specified interface Release : 365 / 913...
15.43 show protocol-vlan This command displays the entries in protocol-VLAN database. show protocol-vlan [ switch <context_name>] Syntax Description Switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example Single Instance: smis# show protocol-vlan Port Protocol Table -------------------------------------- Port Group Vlan ID --------------------------------------...
15.44 show mac-vlan This command displays the entries in the MAC-VLAN database. show mac-vlan [{interface <interface-type> <interface-id>] [ switch <context_name>] Syntax Description interface - Interface Type and Identifier switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example Single Instance:...
15.45 Show vlan statistics VLAN statistics such as number of unicast frames forwarded broadcast packets and unknown unicast packets flooded in that VLAN. show vlan statistics [vlan <vlan-id(1-4069)>] [ switch <context_name>] Syntax Description vlan - VLAN ID switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example...
Page 369
Related Command clear vlan statistics - Clears the VLAN counters Release : 369 / 913...
15.46 show vlan learning params This command displays unicast-MAC learning status and learning limit configured for the specified VLAN. show vlan learning params [vlan <vlan-id(1-4069)>] [ switch <string(32)>] Syntax Description vlan - VLAN Identifier switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example...
Page 371
show mac-address-table [vlan <vlan-id(1-4069)>] [address <aa:aa:aa:aa:aa:aa>] [{interface <interface-type> <interface-id> }] Syntax Description vlan - VLAN ID address - MAC address interface - Interface type and ID Mode Privileged EXEC Mode Example Single Instance: smis# show mac-address-table vlan 2 Vlan Mac Address Type Ports ---- ----------- ---- ----- 2 00:01:02:03:04:21 Learnt Gi0/1 Total Mac Addresses displayed: 1...
15.48 show mac-address-table count This command displays the number of MAC addresses present on all the VLANs or on the specified VLAN. show mac-address-table count [vlan <vlan-id(1-4069)>] [ switch <context_name>] Syntax Description vlan - VLAN ID switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example...
15.49 show mac-address-table static unicast This command displays the statically configured unicast addresses from the MAC address table. show mac-address-table static unicast [vlan <vlan-id(1-4069)>] [address <aa:aa:aa:aa:aa:aa>] [{interface <interface-type> <interface-id> | switch <context_name>}] Syntax Description Vlan - VLAN Id Address - MAC address interface - Interface type and ID switch - Context/Switch Name.
Page 376
forbidden ports mac-address-table static unicast - Configures a static unicast MAC address in the forwarding database show mac-address-table dynamic unicast - Displays the dynamic MAC address table for the specified address or for all the addresses Release : 376 / 913...
15.50 show mac-address-table static multicast This command displays the statically configured multicast entries. show mac-address-table static multicast [vlan <vlan-id(1-4069)>] [address <aa:aa:aa:aa:aa:aa>] [{interface <interface-type> <interface-id> | switch <context_name>}] Syntax Description vlan - VLAN Id address - MAC address interface - Interface type and ID switch - Context/Switch Name.
Page 378
Receive Port : Gi0/2 Member Ports : Gi0/3 Status : Permanent ------------------------------------------------ Total Mac Addresses displayed: 1 Related Commands vlan - Configures a VLAN in the switch and is also used to enter in to the config-VLAN mode ports - Configures a static VLAN entry with the required member ports, untagged ports and forbidden ports mac-address-table static multicast - Configures a static mulitcast MAC address in the forwarding database...
15.51 show mac-address-table dynamic unicast This command displays the dynamically learnt unicast entries from the MAC address table. show mac-address-table dynamic unicast [vlan <vlan-id(1-4069)>] [address <aa:aa:aa:aa:aa:aa>] [{interface <interface-type> <interface-id> | switch <context_name>}] Syntax Description vlan - VLAN Id address - MAC address interface - Interface type and ID switch - Context/Switch Name.
Page 380
• If executed without the optional parameters this command displays the MAC address table of all the available interfaces Related Commands vlan - Configures a VLAN in the switch and is also used to enter in to the config-VLAN mode ports - Configures a static VLAN entry with the required member ports, untagged ports and forbidden ports mac-address-table static unicast - Configures a static unicast MAC address in the...
15.52 show mac-address-table dynamic multicast This command displays the dynamically learnt multicast MAC address. show mac-address-table dynamic multicast [vlan <vlan-id(1-4069)>] [address <aa:aa:aa:aa:aa:aa>] [{interface <interface-type> <interface-id> | switch <context_name>}] Syntax Description vlan - VLAN Id address - MAC address interface - Interface type and ID switch - Context/Switch Name.
Page 382
Related Commands vlan - Configures a VLAN in the switch and is also used to enter into the config-VLAN mode ports - Configures a static VLAN entry with the required member ports, untagged ports and forbidden ports mac-address-table static multicast - Configures a static mulitcast MAC address in the forwarding database show mac-address-table static multicast - Displays the statically configured multicast entries Release :...
15.53 show mac-address-table aging-time This command displays the MAC address-table ageing time. show mac-address-table aging-time [ switch <context_name>] Syntax Description Switch - Context/Switch Name. This parameter is specific to Multiple Instance. Mode Privileged EXEC Mode Example Single Instance: smis# show mac-address-table aging-time Mac Address Aging Time: 300 Multiple Instance: smis# show mac-address-table aging-time...
16 DHCP DHCP (Dynamic Host Configuration Protocol) allows dynamic configuration of a host computer. When a DHCP client is turned on, it initially does not have an IP address assigned to it. It issues a broadcast message to any DCHP servers which are on the network. An exchange takes place during which the DHCP server assigns an IP address to the client and tells the client certain key network configuration parameters.
Page 385
ip dhcp pool ip dhcp next-server ip dhcp bootfile ip dhcp ip dhcp option network excluded-address domain-name dns-server netbios-name-server netbios-node-type default-router option lease utilization threshold host hardware-type debug ip dhcp server show ip dhcp server information show ip dhcp server pools show ip dhcp server binding show ip dhcp server statistics Release :...
16.1.2 renew This command immediately renews the DHCP lease for the interface specified. renew dhcp vlan <vlan-id (1-4069)> Syntax Description vlan-id - VLAN Identifier Mode Privileged EXEC Mode Defaults Disabled Example smis# renew dhcp vlan 1 • VLAN interface must have an IP address assigned by the DHCP server •...
16.1.3 debug ip dhcp client This command sets the debug level for tracing the DHCP client module. The no form of the command disables the debug level for the DHCP client. debug ip dhcp client { all | event | packets | errors | bind } no debug ip dhcp client { all | event | packets | errors | bind } Syntax Description all - All trace messages...
16.1.4 show ip dhcp client stats This command displays the DHCP client statistics. show ip dhcp client stats Mode Privileged EXEC Mode Example smis# show ip dhcp client stats Dhcp Client Statistics -------------------------- Interface : vlan3 Client IP Address : 0.0.0.0 Client Lease Time : 0 Client Remain Lease Time : 0 Message Statistics...
16.2 DHCP Relay 16.2.1 service dhcp-relay This command enables the DHCP Relay agent in the switch. The no form of the command disables the DHCP relay agent. service dhcp-relay no service dhcp-relay Mode Global Configuration Mode Defaults Disabled Example smis(config)# service dhcp-relay The relay agent becomes active only after it is enabled Related Commands show dhcp server - Displays the DHCP server information...
16.2.2 ip dhcp server This command set the IP address of the DHCP server. The Relay Agent will now start forwarding the packets from the client to a specific DHCP server. The no form of the command deletes the DHCP server IP address.
16.2.3 ip dhcp relay information option This command enables the Relay Agent to perform any processing related to relay agent Information Options. When this option is enabled, the agent will insert and remove DHCP relay information in forwarded DHCP request messages to the DHCP server. The no form of this command disables the insertion of relay information.
16.2.4 debug ip dhcp relay This command enables the debug level for tracing the DHCP Relay Module. The no form of the command disables the debug level for tracing the DHCP relay Module. debug ip dhcp relay {all | errors} no debug ip dhcp relay {all | errors} Syntax Description all - All trace messages...
16.2.5 show ip dhcp relay information This command displays the DHCP Relay Information. show ip dhcp relay information Mode Privileged EXEC Mode Example smis# show ip dhcp relay information Dhcp Relay : Enabled Dhcp Relay Servers only : Enabled Server Ip Address : 40.0.0.4 Dhcp Relay RAI option : Enabled Debug Level : 0x1 No of Packets inserted RAI option : 0...
16.2.6 show dhcp server This command displays the DHCP server information. show dhcp server Mode Privileged EXEC Mode Example smis# show dhcp server DHCP server: 40.0.0.4 Related Commands service dhcp-relay - Enables the DHCP relay agent in the switch ip dhcp server - Sets the IP address of the DHCP server ip dhcp relay information option - Enables the Relay Agent to perform any processing related to relay agent Information Options Release :...
16.3 DHCP Server 16.3.1 service dhcp-server This command enables the DHCP server. The no form of this command disables the DHCP server. service dhcp-server no service dhcp-server Mode Global Configuration Mode Defaults Disabled Example iss (config)# service dhcp-server • DHCP Relay must be disabled before enabling the DHCP server. Related Command show ip dhcp server information - Displays the DHCP server information Release :...
16.3.2 ip dhcp pool This command creates a DHCP server address pool and places the user in the DHCP pool configuration mode. The no form of the command deletes the DHCP server address pool. ip dhcp pool <index (1-2147483647)> no ip dhcp pool <index (1-2147483647)> Syntax Description Index - Pool Number Mode...
Page 398
host hardware-type - Specifies the hardware address of a Dynamic Host Configuration Protocol (DHCP) client show ip dhcp server information - Displays the DHCP server information show ip dhcp server pools - Displays the DHCP server pools Release : 398 / 913...
16.3.3 ip dhcp next-server This command sets the next boot server in the DHCP server configuration parameters. The no form of this command deletes the next boot server from the DHCP server configuration parameters. ip dhcp next-server <ip address> no ip dhcp next-server Syntax Description ip address - IP address of the server (TFTP server) Mode...
16.3.4 ip dhcp bootfile This command sets the boot file name in the DHCP server configuration parameters. The no form of this command deletes the boot file name from the DHCP server configuration parameters. ip dhcp bootfile <bootfile (63)> no ip dhcp bootfile Syntax Description boot file - Name of the file that specifies the boot image Mode...
16.3.5 ip dhcp This command sets the DHCP server parameters such as enabling ICMP echo mechanism or offer-reuse timeout. The no form of this command is used to set the DHCP server parameters like disabling ICMP echo mechanism or server offer-reuse to its default value or removing a bind entry from the server binding table.
16.3.7 network This command sets the network IP address and mask in DHCP server configuration parameters. The no form of the command deletes the network IP address and mask from DHCP server configuration. network <network- IP> [ { <mask> | / <prefix-length (1-31)> } ] [end ip] no network Syntax Description network-IP - Network IP address of the DHCP pool...
16.3.8 excluded-address This command creates an excluded pool to prevent DHCP Server from assigning certain addresses. The no form of the command deletes the excluded pool. excluded-address <low-address> <high-address> no excluded-address <low-address> [<high-address>] Syntax Description low-address - The excluded IP address, or first IP address in an excluded address range high-address - The last IP address in the excluded address range Mode DHCP Pool Configuration Mode...
16.3.9 domain-name This command sets the domain name in the DHCP server configuration parameters. The no form of the command deletes the domain name from the DHCP server configuration parameters. domain-name <domain (63)> no domain-name Syntax Description domain - Client's domain name string Mode DHCP Pool Configuration Mode Example...
16.3.10 dns-server This command is used to specify the IP address of a DNS server that is available to a DHCP client. The no form of the command deletes the DNS server from the DHCP server configuration parameters. dns-server <ip address> no dns-server Mode DHCP Pool Configuration Mode...
16.3.11 netbios-name-server This command sets the NetBIOS (WINS) name servers in the DHCP server configuration parameters. The no form of the command deletes the NetBIOS name server from the DHCP configuration parameters. netbios-name-server <ip address> no netbios-name-server Mode DHCP Pool Configuration Mode Example smis(dhcp-config)# netbios-name-server 20.0.0.3 •...
16.3.12 netbios-node-type This command is used to set the NetBios node type in the DHCP server configuration parameters. The no form of this command is used to delete the NetBios node type from the DHCP server configuration parameters. The NetBIOS node type for Microsoft DHCP clients can be one of the four settings: broadcast, peer- topeer, mixed, or hybrid.
16.3.13 default-router This command sets the default router in the DHCP server configuration parameters. The no form of the command deletes the default router from the DHCP server configuration parameters. default-router <ip address> no default-router Mode DHCP Pool Configuration Mode Example smis(dhcp-config)# default-router 10.23.2.99 •...
16.3.14 option This command sets the pool specific DHCP server option. The no form of the command deletes the pool specific DHCP server option. option <code (1-2147483647)> { ascii <string> | hex <Hex String> | ip <address> } no option <code (1-2147483647)> Syntax Description code - Option Code ascii - ASCII string...
Page 412
Related Commands service dhcp-server - Enables the DHCP server ip dhcp pool - Creates a DHCP server address pool and places the user in the DHCP pool configuration mode ip dhcp option - Sets the DHCP server options network - Sets the network IP and mask in DHCP server configuration parameters show ip dhcp server pools - Displays the DHCP server pools Release : 412 / 913...
16.3.15 lease This command configures the duration of the lease for an IP address that is assigned from ISS Dynamic Host Configuration Protocol (DHCP) Server to a DHCP client. The no form of this command restores the default value of 3600 seconds. lease { <days (0-365)>...
16.3.16 utilization threshold This command sets the pool utilization threshold value in percentage. If the pool utilization reaches this threshold level, a syslog event and an SNMP trap message will be generated. The no form of this command sets pool utilization threshold to its default value. utilization threshold { <integer (0-100)>...
16.3.17 host hardware-type This command specifies the hardware address of a Dynamic Host Configuration Protocol (DHCP) client and host specific DHCP options. The no form of the command deletes the host option. host hardware-type <type (1-2147483647)> client-identifier <mac-address> option <code (1-2147483647)> { ascii <string> | hex <Hex String> | ip <address>...
16.3.18 debug ip dhcp server This command enables the debug level for tracing the DHCP server Module. The no form of this command disables the debug level for tracing the DHCP server Module. debug ip dhcp server { all | events | packets | errors | bind } no debug ip dhcp server { all | events | packets | errors | bind } Syntax Description all - All trace messages...
16.3.19 show ip dhcp server information This command displays the DHCP server information. show ip dhcp server information Mode Privileged EXEC Mode Example smis# show ip dhcp server information DHCP server status : Enable Send Ping Packets : Disable Debug level : None Server Address Reuse Timeout : 5 secs Next Server Adress : 0.0.0.0 Boot file name : None...
16.3.20 show ip dhcp server pools This command displays the DHCP server pools. show ip dhcp server pools Mode Privileged EXEC Mode Example smis# show ip dhcp server pools Pool Id : 1 ------------------------------------------- Subnet : 12.0.0.0 Subnet Mask : 255.0.0.0 Lease time : 180 secs Start Ip : 12.0.0.1 End Ip : 12.255.255.255...
16.3.21 show ip dhcp server binding This command displays the DHCP server binding information. show ip dhcp server binding Mode Privileged EXEC Mode Example smis# show ip dhcp server binding Ip Hw Hw Alloc Expire Binding Address Type Address Method Time State (Secs) ------- ---- ------- ------ ------ ------- 12.0.0.11 Ethernet 00:01:02:03:04:41 Dynamic 161 Assigned...
16.3.22 show ip dhcp server statistics This command displays the DHCP server statistics. show ip dhcp server statistics Mode Privileged EXEC Mode Example smis# show ip dhcp server statistics Address pools : 2 Message Received ------- -------- DHCPDISCOVER 6 DHCPREQUEST 2 DHCPDECLINE 0 DHCPRELEASE 0 DHCPINFORM 0...
17 SNMPv3 SNMP (Simple Network Management Protocol) is the most widely-used network management protocol on TCP/IP-based networks. SNMPv3 is designed mainly to overcome the security shortcomings of SNMPv1/v2. USM (User based Security Mode ) and VACM (View based Access Control Model) are the main features added as part of the SNMPv3 specification.
Page 422
show snmp group access show snmp engineID show snmp viewtree show snmp targetaddr show snmp targetparam show snmp user show snmp notif show snmp inform statistics Release : 422 / 913...
17.1 snmp community index This command configures the SNMP community details. The no form of this command removes the SNMP community details. snmp community index <CommunityIndex> name <CommunityName> security <SecurityName> [context <ContextName | none>] [{volatile | nonvolatile}] [transporttag <TransportTagIdentifier | none>] no snmp community index <CommunityIndex>...
Page 424
show snmp - Displays the status information of SNMP communications show snmp community - Displays the configured SNMP community details Release : 424 / 913...
17.2 snmp group This command configures SNMP group details. The no form of the command removes the SNMP group details. snmp group <GroupName> user <UserName> security-mode {v1 | v2c | v3 } [{volatile | nonvolatile}] no snmp group <GroupName> user <UserName> security-mode {v1 | v2c | v3 } Syntax Description GroupName - Name of the SNMP group User - User Name...
17.3 snmp access This command configures the SNMP group access details. The no form of the command removes the SNMP group access details. snmp access <GroupName> {v1 | v2c | v3 {auth | noauth | priv}} [read <ReadView | none>] [write <WriteView | none>] [notify <NotifyView | none>] [{volatile | nonvolatile}] no snmp access <GroupName>...
Page 427
smis(config)# snmp access myv2group v2 read v2readview write v2writeview notify v2notifyview nonvolatile • To configure an SNMP access along with the group, a group must have already been created using the snmp group command. • Version 3 is the most secure mode as it allows packet encryption with the priv key word. Related Commands snmp group - Configures SNMP group details snmp view - Configures the SNMP view...
17.4 snmp engineid This command configures the engine identifier. The no form of the command removes the configured engine identifier. snmp engineid <EngineIdentifier> no snmp engineid Syntax Description EngineIdentifier - Engine Id Mode Global Configuration Mode Defaults 80.00.08.1c.04.46.53 Example smis(config)# snmp engineid 80.0.08.1c.04.5f.a9 •...
17.5 snmp view This command configures the SNMP view. The no form of the command removes the SNMP view. snmp view <ViewName> <OIDTree> [mask <OIDMask>] {included | excluded} [{volatile | nonvolatile}] no snmp view <ViewName> <OIDTree> Syntax Description ViewName - View Name OIDTree - Object Identifier OIDMask | none - Defines views' subtrees included | excluded - Type of view...
17.6 snmp targetaddr This command configures the SNMP target address. The no form of the command removes the configured SNMP target address. snmp targetaddr <TargetAddressName> param <ParamName> {<IPAddress> | <IP6Address>} [timeout <TimeoutValue(1-1500)] [retries <RetryCount(1-3)] [taglist <TagIdentifier | none>] [{volatile | nonvolatile}] no snmp targetaddr <TargetAddressName>...
Page 432
snmp targetparams - Configures the SNMP target parameters show snmp targetparam - Displays the configured SNMP Target Address Params Release : 432 / 913...
17.7 snmp targetparams This command configures the SNMP target parameters. The no form of the command removes the SNMP target Params snmp targetparams <ParamName> user <UserName> security-mode {v1 | v2c | v3 {auth | noauth | priv}} message-processing {v1 | v2c | v3} [{volatile | nonvolatile}] no snmp targetparams <ParamName>...
Page 434
Storage Type - Non-volatile Example smis(config)# snmp targetparams param1 user user1 securitymode v3 noauth message-processing v3 User information must have been configured prior to the configuration of SNMP target parameters Related Commands snmp user - Configures the SNMP user details show snmp targetparam - Displays the configured SNMP Target Address Params show snmp user - Displays the configured SNMP users.
17.8 snmp user This command configures the SNMP user details. The no form of the command removes the SNMP user details. snmp user <UserName> [auth {md5 | sha} <passwd> [priv DES <passwd>]] [{volatile | nonvolatile}] no snmp user <UserName> Syntax Description UserName - Name of the User Auth - Authentication Algorithm - can be Message Digest 5 or Secure Hash Algorithm Passwd - Password associated with the Authentication type...
17.9 snmp notify This command configures the SNMP notification details. The no form of this command removes the SNMP notification details. snmp notify <NotifyName> tag <TagName> type {Trap | Inform} [{volatile | nonvolatile}] no snmp notify <NotifyName> Syntax Description NotifyName - Notification Name tag - Tag Name type - Type of Notification volatile | nonvolatile - Storage type of the notification details...
17.10 snmp-server enable traps snmp authentication This command enables generation of authentication traps for SNMPv1 and SNMPv2c. The no form of the command disables generation of authentication traps for SNMPv1 and SNMPv2c. snmp-server enable traps snmp authentication no snmp-server enable traps snmp authentication Mode Global Configuration Mode Defaults...
17.11 show snmp This command displays the status information of SNMP communications. show snmp Mode Privileged EXEC Mode Example smis# show snmp 0 SNMP Packets Input 0 Bad SNMP Version errors 0 Unknown community name 0 Get request PDUs 0 Get Next PDUs 0 Set request PDUs 0 SNMP Packets Output 0 Too big errors...
17.12 show snmp community This command displays the configured SNMP community details. show snmp community Mode Privileged EXEC Mode Example smis# show snmp community Community Index: NETMAN Community Name: NETMAN Security Name: none Context Name: Transport Tag: Storage Type: volatile Row Status: active ------------------------------ Community Index: PUBLIC...
17.13 show snmp group This command displays the configured SNMP groups. show snmp group Mode Privileged EXEC Mode Example smis# show snmp group Security Mode : v1 Security Name: none Group Name: iso Storage Type: volatile Row Status: active ------------------------------ Security Mode : v2c Security Name: none...
Page 441
Security Mode : v3 Security Name: templateMD5 Group Name: initial Storage Type: nonVolatile Row Status: active ------------------------------ Security Mode : v3 Security Name: templateSHA Group Name: initial Storage Type: nonVolatile Row Status: active Related Commands snmp group - Configures the SNMP group details snmp user - Configures the SNMP user details Release : 441 / 913...
17.14 show snmp group access This command displays the configured SNMP group access details. show snmp group access Mode Privileged EXEC Mode Example smis# show snmp group access Group Name: iso Read View: iso Write View: iso Notify View: iso Storage Type: volatile Row Status: active ------------------------------...
Page 443
Related Commands snmp access - Configures the SNMP group access details snmp view - Configures the SNMP view Release : 443 / 913...
17.15 show snmp engineID This command displays the Engine Identifier. show snmp engineID Mode Privileged EXEC Mode Example smis# show snmp engineID EngineId: 80.00.08.1c.04.46.53 Related Command snmp engineid - Configures the engine identifier Release : 444 / 913...
17.16 show snmp viewtree This command displays the configured SNMP Tree views. show snmp viewtree Mode Privileged EXEC Mode Example smis# show snmp viewtree View Name: iso Subtree OID: 1 Subtree Mask: View Type: included Storage Type: nonVolatile Row Status: active ------------------------------ View Name: restricted Subtree OID: 1...
17.17 show snmp targetaddr This command displays the configured SNMP target Addresses. show snmp targetaddr Mode Privileged EXEC Mode Example smis# show snmp targetaddr Target Address Name: issmanager IP Address: 10.0.0.10 Tag List: snmp Parameters: internet Storage Type: volatile Row Status: active ------------------------------ Related Commands snmp targetaddr - Configures the SNMP target address...
17.18 show snmp targetparam This command displays the configured SNMP Target Address Params. show snmp targetparam Mode Privileged EXEC Mode Example smis# show snmp targetparam Target Parameter Name: internet Message Processing Mode : v2c Security Mode : v2c Security Name: none Security Level: noAuthNoPriv Storage Type: volatile Row Status: active...
Page 448
Related Commands snmp targetparams - Configures the SNMP target parameters snmp user - Configures the SNMP user details Release : 448 / 913...
17.19 show snmp user This command displays the configured SNMP users. show snmp user Mode Privileged EXEC Mode Example smis# show snmp user Engine ID: 80.00.08.1c.04.46.53 User: initial Authentication Protocol: none Privacy Protocol: none Storage Type: nonVolatile Row Status: active ------------------------------ Engine ID: 80.00.08.1c.04.46.53 User: templateMD5...
17.21 show snmp inform statistics This command displays the inform message statistics. show snmp inform statistics Mode Privileged EXEC Mode Example smis# show snmp inform statistics Target Address Name : issmanager IP Address : 10.0.0.10 Inform messages sent : 20 Acknowledgement awaited for : 2 Inform messages Inform messages dropped : 0 Acknowledgement failed for : 0 Inform messages...
Page 452
18 IP IP (Internet Protocol) is an identifier for a computer or device on a TCP/IP network. Networks using the TCP/IP protocol route messages based on the IP address of the destination. The format of an IP address is a 32-bit numeric address written as four numbers separated by periods. Each number can be zero to 255.
18.1 show ip rarp This command displays RARP configuration information. show ip rarp Mode Privileged EXEC Mode Example smis# show ip rarp RARP Configurations: -------------------- Maximum number of RARP request retransmission retries is 4 RARP request retransmission timeout is 100 seconds RARP Statistics: ---------------- 0 responses discarded...
18.2 show ip information This command displays IP configuration information. show ip information Mode Privileged EXEC Mode Example smis# show ip information Global IP Configuration: ------------------------ IP routing is enabled Default TTL is 64 IGMP is globally disabled ICMP redirects are always sent ICMP unreachables are always sent ICMP echo replies are always sent ICMP mask replies are always sent...
18.3 ping This command sends echo messages. ping [ip] destination-address [size packet_size (0-2080)] [count packet_count (1-10)] [timeout time_out (1-100)] Syntax Description ip - IP address of the node to be pinged size packet_size - Size of the data portion of the PING PDU count packet_count - Number of times the given node address is to be pinged timeout - Time in seconds after which the entity waiting for the ping response times out Mode...
18.4 ip route This command adds a static route and the no form of the command deletes a static route. ip route <prefix> <mask> {<next-hop> | Vlan <vlan-id (1-4069)> | Linuxvlan <interface-name> | Cpu0} [<distance (1-255)>] no ip route <prefix> <mask> { <next-hop> | Vlan <vlan-id(1-4069)> |Linuxvlan <interface-name>...
18.5 ip routing This command enables IP routing and the no form of the command disables IP routing. ip routing no ip routing Mode Global Configuration Mode Defaults Enabled Example smis(config)# ip routing A static route is appropriate when SMIS cannot dynamically build a route to the destination. Related Commands show ip information –...
18.6 ip default-ttl This command sets the Time-To-Live (TTL) value and the no form of the command sets the TTL to the default value. ip default-ttl <value (1-255)> no ip default-ttl Mode Global Configuration Mode Defaults 64 seconds Example smis(config)# ip default-ttl 1 •...
18.7 arp timeout This command sets the ARP (Address Resolution Protocol) cache timeout and the no form of the command sets the ARP cache timeout to its default value. arp timeout <seconds (30-86400)> no arp timeout Mode Global Configuration Mode Defaults 7200 Example...
18.8 arp – ip address This command adds a static entry in the ARP cache and the no form of the command deletes a static entry from the ARP cache. arp <ip address> <hardware address> {Vlan <vlan-id(1-4069)> | Linuxvlan <interface-name>| Cpu0} [arpa] no arp <ip address>...
18.9 ip arp max-retries This command sets the maximum number of ARP request retries. The no form of the command sets the maximum number of ARP request retries to its default value. ip arp max-retries <value (2-10)> no ip arp max-retries Mode Global Configuration Mode Defaults...
18.10 show ip traffic This command displays the IP protocol statistics. show ip traffic Mode Privileged EXEC Mode Example smis# show ip traffic IP Statistics: -------------- Rcvd: 0 total, 0 header error discards 0 bad ip address discards, 0 unsupported protocol discards Frags: 0 reassembled, 30 timeouts, 0 needs reassembly 0 fragmented, 0 couldn't fragment...
18.11 show ip route This command displays the IP routing table. show ip route [ { <ip-address> [<mask>] | bgp | connected | ospf | rip | static | summary } ] Syntax Description ip-address - Destination IP Address mask - Prefix Mask for the destination bgp - Border Gateway Protocol connected - Directly Connected Network Routes ospf - Open Shortest Path First (OSPF)
Page 464
smis# show ip route 30.0.0.0 255.0.0.0 Codes: C - connected, S - static, R - RIP, B - BGP, O - OSPF S 30.0.0.0/8 [4] via 120.20.6.20 Related Commands ip route – Adds a static route ip routing – Enables IP routing Release : 464 / 913...
18.12 show ip arp This command displays IP ARP table. show ip arp [ { Vlan <vlan-id(1-4069)> | <ip-address> | <mac-address> | summary | information }] Syntax Description Vlan - VLAN ID ip-address - IP Address of ARP Entry mac-address - MAC Address of ARP Entry summary - IP ARP Table summary information - ARP Configuration information Mode...
Page 466
smis# show ip arp summary 3 IP ARP entries, with 0 of them incomplete smis# show ip arp information ARP Configurations: ------------------- Maximum number of ARP request retries is 10 ARP cache timeout is 7200 seconds Related Commands arp timeout – Sets the ARP (Address Resolution Protocol) cache timeout arp –...
19 IGMP SMIS IGMP (Internet Group Management Protocol) is a portable implementation of the Internet Group Management Protocol Version 3. It implements the IGMP router functionalities required by the Multicast Routing Protocol. SMIS IGMP confirms with RFC 3376 for IGMP v3 router functionality. SMIS IGMP supports the MIB defined in draft-ietf-magma-rfc2933-update-00.txt.
19.1 set ip igmp This command enables or disables IGMP. set ip igmp {enable|disable} Syntax Description enable - Enables IGMP disable - Disables IGMP Mode Global Configuration Mode Defaults disable Example smis(config)# set ip igmp enable Related Commands show ip igmp global-config- Displays the global configuration of IGMP Release : 468 / 913...
19.2 set ip igmp This command enables or disables IGMP on the interface. set ip igmp {enable|disable} Syntax Description enable - Enables IGMP disable - Disables IGMP Mode Interface Configuration Mode Defaults disable Example smis(config-if)# set ip igmp enable Related Commands show ip igmp interface - Displays the interface configuration of IGMP Release : 469 / 913...
19.3 ip igmp immediate-leave This command enables immediate leave processing on the interface and the no form of the command disables immediate-leave processing. ip igmp immediate-leave no ip igmp immediate-leave Mode Interface Configuration Mode Defaults disable Example smis(config-if)# ip igmp immediate-leave Related Commands show ip igmp interface - Displays the interface configuration of IGMP Release :...
19.4 ip igmp version This command sets the IGMP version on the interface and the no form of the command sets the default IGMP version on the interface. ip igmp version { 1 | 2 | 3} no ip igmp version Syntax Description 1 | 2 | 3 - IGMP versions Mode...
19.5 ip igmp query-interval This command sets the IGMP query interval for the interface and the no form of the command sets queryinterval to the default value. ip igmp query-interval <value (1-65535) seconds> no ip igmp query-interval Mode Interface Configuration Mode Defaults Example smis(config-if)# ip igmp query-interval 30...
19.6 ip igmp query-max-response-time This command sets the IGMP max query response value for the interface and the no form of the command sets the max query response to the default value. ip igmp query-max-response-time <value (1-255) seconds> no ip igmp query-max-response-time Mode Interface Configuration Mode Defaults...
19.7 ip igmp robustness This command sets the IGMP robustness value for the interface and the no form of the command sets the robustness value to default value. ip igmp robustness <value(1-255)> no ip igmp robustness Mode Interface Configuration Mode Defaults Example smis(config-if)# ip igmp robustness 100...
19.8 ip igmp last-member-query-interval This command sets the IGMP last member query interval for the interface and the no form of the command sets the last member query interval to the default value. ip igmp last-member-query-interval <value(1-255)> no ip igmp last-member-query-interval Mode Interface Configuration Mode Defaults...
19.9 ip igmp static-group This command adds the static group membership on the interface and the no form of the command deletes the static group membership on the interface. ip igmp static-group <Group Address> [source <Source Address>] no ip igmp static-group <Group Address> [source <Source Address>] Syntax Description Group Address - Group IP address source - Source IP address...
19.10 no ip igmp This command deletes the IGMP capable interface. no ip igmp Mode Interface Configuration Mode Example smis(config-if)# no ip igmp Atleast one of the interface configuration command must have been executed to create the IGMP interface. Related Commands show ip igmp interface - Displays the interface configuration of IGMP Release : 477 / 913...
19.11 debug ip igmp This command enables the IGMP trace and the no form of the command disables the IGMP trace. debug ip igmp { [i/o][grp][qry][tmr][mgmt] | [all] } no debug ip igmp { [i/o][grp][qry][tmr][mgmt] | [all] } Syntax Description i/o - Input/Output messages grp - Group Related messages qry - Query Related messages...
19.12 show ip igmp global-config This command displays the global configuration of IGMP. show ip igmp global-config Mode Privileged EXEC Mode Example smis# show ip igmp global-config IGMP is globally enabled Related Commands set ip igmp - Enables or disables IGMP ip igmp proxy-service - Enables IGMP Proxy service in the system Release : 479 / 913...
19.13 show ip igmp interface This command displays the interface configuration of IGMP. show ip igmp interface [Vlan <vlan-id>] Syntax Description Vlan - VLAN ID Mode Privileged EXEC Mode Example smis# show ip igmp interface vlan1, line protocol is up Internet Address is 10.0.0.1/8 IGMP is enabled on interface Current IGMP router version is 2...
Page 481
ip igmp query-max-response-time - Sets the IGMP max query response value for the interface ip igmp robustness - Sets the IGMP robustness value for the interface ip igmp last-member-query-interval - Sets the IGMP last member query interval for the interface no ip igmp - Deletes the IGMP capable interface Release : 481 / 913...
19.14 show ip igmp groups This command displays the IGMP groups information. show ip igmp groups Mode Privileged EXEC Mode Example smis# show ip igmp groups I - Include Mode E - Exclude Mode S - Static Mbr, D - Dynamic Mbr GroupAddress Flg Iface UpTime ExpiryTime LastReporter --------------- ------- ----------------------- --------------- 224.5.5.5 S vlan2 [0d 00:00:22.28] [0d 00:00:00.00] 20.0.0.1...
19.15 show ip igmp sources This command displays the IGMP source information. show ip igmp sources Mode Privileged EXEC Mode Example smis# show ip igmp sources I - Include Mode E - Exclude Mode S - Static Mbr, D - Dynamic Mbr F - Forward List, N - Non-Forward List GroupAddress Iface SrcAddress Flg ExpiryTime LastReporter ------------ ------- ----------- ---- ------------- ---------------...
19.16 show ip igmp statistics This command displays the IGMP statistics information. show ip igmp statistics [Vlan <vlan-id>] Mode Privileged EXEC Mode Example smis# show ip igmp statistics IGMP Statistics for vlan1 Number of General queries received 1 Number of Group Specific queries received 0 Number of Group and Source Specific queries received 0 Number of v1/v2 reports received 0 Number of v3 reports received 8...
20 IGMP Proxy IGMP Proxy (Internet Group Management Protocol Proxy) implementation is used to learn and proxy group membership information, and then forward multicast packets based on the learnt membership information. The IGMP Proxy learns membership information from IGMP hosts in downstream interfaces (interface to which hosts are connected) and substitutes (proxy) the information to upstream interface (interface to which upstream router is connected), based on the requirements of IGMP hosts.
20.1 ip igmp proxy-service This command enables IGMP Proxy service in the system. The no form of the command disables IGMP Proxy service in the system. ip igmp proxy-service no ip igmp proxy-service Mode Global Configuration Mode Defaults Disabled Example smis(config)# ip igmp proxy-service IGMP module must be enabled.
20.2 ip igmp-proxy mrouter This command configures the interface as an upstream interface. The no form of the command removes the interface from the upstream interface list. ip igmp-proxy mrouter no ip igmp-proxy mrouter Mode Interface Configuration Mode Defaults Downstream Interface Example smis(config-if)# ip igmp-proxy mrouter IGMP must be enabled in the interface on which this configuration is executed.
20.3 ip igmp-proxy mrouter-time-out This command configures the upstream interface purge interval, after which the IGMP version on upstream interface will switch back to the configured version. ip igmp-proxy mrouter-time-out <(60 - 600) seconds> Mode Interface Configuration Mode Defaults Example smis(config-if)# ip igmp-proxy mrouter-time-out 100 The interface, on which this configuration is executed, must be an upstream interface.
20.4 ip igmp-proxy mrouter-version This command configures the version of IGMP on upstream interface. ip igmp-proxy mrouter-version { 1 | 2 | 3 } Syntax Description 1 - IGMP Version 1 2 - IGMP Version 2 3 - IGMP Version 3 Mode Interface Configuration Mode Defaults...
21 RRD RRD (Route Redistribution) allows different routing protocols to exchange routing information. Using a routing protocol to advertise routes that are learnt by other means, such as, another routing protocol, static routes, or directly connected routes, is called redistribution. While running a single routing protocol throughout an entire IP internetwork is desirable, multi-protocol routing is widespread for a number of reasons, for example, company mergers, multiple departments managed by multiple network administrators, and multi-vendor environments.
21.1 as-num This command sets the AS (Autonomous System) number for the router. as-num <value(1-65535)> Mode Global Configuration Mode Defaults Example iss (config)# as-num 5 The RRD Module must be enabled before any routing protocol module is configured. Related Command show redistribute information –...
21.2 router-id This command sets the router ID’s address for the router. router-id <addr> Mode Global Configuration Mode Example iss (config)# router-id 12.0.0.1 The router-id must be one of the IP addresses of the IP interfaces configured in the switch. Related Command show redistribute information –...
21.3 export ospf This command enables redistribution of OSPF (Open Shortest Path First) area / External routes to the protocol and the no form of the command disables redistribution of OSPF area / External routes to the protocol. export ospf {area-route|external-route} {rip|bgp} no export ospf {area-route|external-route} {rip|bgp} Syntax Description area-route - OSPF inter-area and intra-area address/mask pairs to be exported into the routing...
21.4 redistribute-policy This command adds the permit/deny Redistribution Policy and the no form of the command removes the permit/deny Redistribution Policy redistribute-policy {permit|deny} <DestIp> <DestRange> {connected|static|rip|ospf|bgp} {rip|bgp|ospf|all} no redistribute-policy <DestIp> <DestRange> Syntax Description permit - Sets the default rule for all prefixes to 'permit' deny - Sets the default rule for all prefixes to 'deny' DestIp - Destination IP address DestRange - Destination range...
Page 498
protocol will be redistributed to other routing protocols, if permit is used and will not be redistributed to other routing protocols, if deny is used. Related Command show redistribute-policy – Displays route redistribution filters Release : 498 / 913...
21.5 default redistribute-policy This command sets the default behavior of RRD Control Table. default redistribute-policy {permit | deny} Syntax Description permit - Sets the default rule for all prefixes to 'permit' deny - Sets the default rule for all prefixes to 'deny' Mode Global Configuration Mode Example...
21.6 show ip protocols This command displays information about the active routing protocol process. show ip protocols Mode Privileged EXEC Mode Example smis# show ip protocols Routing Protocol is rip RIP2 security level is Maximum Redistributing : rip Output Delay is disabled Retransmission timeout interval is 5 seconds Number of retransmission retries is 36 Default metric is 3...
Page 501
Authentication type is none Split Horizon with poissoned reverse is enabled Restrcts default route installation Restricts default route origination Routing Protocol is "ospf" Router ID 0.0.0.0 Number of areas in this router is 0 . 0 normal 0 stub 0 nssa Routing for Networks: Passive Interface(s): Routing Information Sources:...
21.7 show redistribute-policy This command displays route redistribution filters. show redistibute-policy Mode Privileged EXEC Mode Example smis# show redistribute-policy Destination Range SrcProto DestProto Flag ----------- ----- -------- ----------- --- 0.0.0.0 255.255.255.255 none others Deny 10.0.0.0 255.0.0.0 rip all Allow Related Commands redistribute-policy –...
21.8 show redistribute information This command displays RTM (Route Table Manager) RRD status for registered protocols. show redistribute information Mode Privileged EXEC Mode Example smis# show redistribute information Router ID is 0.0.0.0 AS Number is 0 Current State is disabled ProtoName OspfAreaRoutes OspfExtRoutes --------- -------------- ------------- other Disable Disable...
22 DVMRP DVMRP (Distance Vector Multicast Routing Protocol) is an Internet Routing Protocol that provides efficient mechanism for connectionless message multicast to a group of hosts across an internetwork. Distance Vector Multicast Routing Protocol, an interior gateway protocol (IGP) suitable for use within an autonomous system but not between different autonomous systems.
22.1 set ip dvmrp This command enables / disables DVMRP in the switch. set ip dvmrp { enable | disable } Syntax Description enable - Enables DVMRP in the switch disable - Disables DVMRP in the switch Mode Global Configuration Mode Defaults disable Example...
22.2 ip dvmrp prune-life-time This command sets the prune life time value. The no form of the command sets the prune life time to the default value (50 seconds). ip dvmrp prune-life-time <time(1-7200secs)> no ip dvmrp prune-life-time Mode Global Configuration Mode Defaults time - 50 seconds Example...
22.3 set ip dvmrp - interface This command enables/disables DVMRP on the interface. set ip dvmrp { enable | disable } Syntax Description enable - Enables DVMRP on the interface disable - Disables DVMRP on the interface Mode Interface Configuration Mode Defaults disable Example...
22.4 debug ip dvmrp This command enables debugging support for DVMRP. The no form of the command disables debugging support for DVMRP. debug ip dvmrp {[neighbor][group][join-prune][i/o][mrt][mdh][mgmt] | all } no debug ip dvmrp { [neighbor][group][join-prune][i/o][mrt][mdh][mgmt] | all} Syntax Description neighbor - Neighbor Discovery messages group - Group Membership messages join-prune - Join or Prune messages i/o - Input/Output messages...
23 PIM PIM (Protocol Independent Multicast) is a multicast routing architecture that allows the addition of IP multicast routing on existing IP networks. Multicast IP Routing protocols are used to distribute data to multiple recipients. Using multicast, a source can send a single copy of data to a single multicast address, which is then distributed to an entire group of recipients.
Page 512
ip pim bsr-candidate ip pim componentId ip pim hello-holdtime ip pim dr-priority ip pim override-interval ip pim lan-delay set ip pim lan-prune-delay no ip pim interface debug ip pim show ip pim interface show ip pim neighbor show ip pim rp-candidate show ip pim rp-set show ip pim bsr show ip pim rp-static...
23.1 set ip pim This command enables or disables PIM globally. set ip pim { enable | disable } Syntax Description enable - Enables PIM disable - Disables PIM Mode Global Configuration Mode Defaults disable Example iss (config)# set ip pim enable •...
23.2 set ip pim threshold This command specifies the SPT group or source threshold when exceeded, switching to shortest path tree is initiated. To switch to SPT, the threshold MUST be configured. set ip pim threshold { spt-grp | spt-src } < number of packets(0-2147483647)> Syntax Description spt-grp - The threshold of data rate for any group when exceeded, source specific counters are initiated for that particular group.
23.3 set ip pim spt-switchperiod This command specifies the period (in seconds) over which the data rate is to be monitored for switching to shortest path tree. set ip pim spt-switchperiod <0-2147483647(in secs)> Mode Global Configuration Mode Defaults Example iss (config)# set ip pim spt-switchperiod 60 •...
23.4 set ip pim rp-threshold This command specifies the threshold at which the RP (Rendezvous Point) initiates switching to source specific shortest path tree. set ip pim rp-threshold <0-2147483647(number of reg packets)> Mode Global Configuration Mode Defaults Example iss (config)# set ip pim rp-threshold 50 •...
23.5 set ip pim rp-switchperiod This command specifies the period (in seconds) over which RP monitors register packets for switching to the source specific shortest path tree. set ip pim rp-switchperiod <0-2147483647(in secs)> Mode Global Configuration Mode Defaults Example iss (config)# set ip pim rp- switchperiod 100 •...
23.6 set ip pim regstop-ratelimit-period This command specifies the period over which RP monitors the number of register packets after sending the register stop message. set ip pim regstop-ratelimit-period <0-2147483647(in secs)> Mode Global Configuration Mode Defaults Example iss (config)# set ip pim regstop-ratelimit-period 100 •...
23.7 set ip pim pmbr This command enables or disables the PMBR (PIM Multicast Border Router) Status. set ip pim pmbr { enable | disable } Syntax Description enable - Enables the PMBR Status disable - Disables the PMBR Status Mode Global Configuration Mode Defaults...
23.8 ip pim component This command configures the PIM component in the router and the no form of the command destroys the PIM component. ip pim component <ComponentId (1-255)> no ip pim component <ComponentId (2-255)> Mode Global Configuration Mode Example iss (config)# ip pim component 1 •...
23.9 set ip pim static-rp This command enables or disables the Static RP configuration Status. This command specifies whether to use the configured static- RP. set ip pim static-rp { enable | disable } Syntax Description enable - Enables the Static RP configuration Status disable - Disables the Static RP configuration Status Mode Global Configuration Mode...
23.11 rp-candidate rp-address This command sets the address of the interface, which will be advertised as a Candidate-RP and the no form of the command disables the address of the interface, which will be advertised as a Candidate-RP. rp-candidate rp-address <Group Address> <Group Mask> <IP address> no rp-candidate rp-address <Group Address>...
23.12 rp-candidate holdtime This command sets the holdtime of the component when it is a candidate RP in the local domain and the no form of the command sets the default holdtime (0) of the component. rp-candidate holdtime <Holdtime value (0-255)> no rp-candidate holdtime Mode PIM Component Mode...
23.13 rp-static rp-address This command sets the address of the interface, which will be advertised as a Static-RP and the no form of the command disables the address of the interface, which will be advertised as a Static-RP. rp-static rp-address <Group Address> <Group Mask> <IP address> no rp-static rp-address <Group Address>...
23.14 ip pim query-interval This command sets the frequency at which PIM hello messages are transmitted on this interface and the no form of the command sets the default hello timer interval for this interface. ip pim query-interval <Interval (0-65535)secs> no ip pim query-interval Mode Interface Configuration Mode...
23.15 ip pim message-interval This command sets the frequency at which PIM Join/Prune messages are transmitted on this PIM interface and the no form of the command sets the default value for PIM Join/Prune message. ip pim message-interval <Interval(0-65535)> no ip pim message-interval Mode Interface Configuration Mode Defaults...
23.16 ip pim bsr-candidate This command sets the preference value for the local interface as a candidate bootstrap router and the no form of the command sets the default preference value for the local interface as a candidate bootstrap router. ip pim bsr-candidate <value (0-255)>...
23.17 ip pim componentId This command adds the interface to the component. ip pim componentId <value(1-255)> Mode Interface Configuration Mode Defaults Example iss (config-if)# ip pim componentId 1 • This command adds the current VLAN into the specified PIM component. Related Commands ip pim component –...
23.18 ip pim hello-holdtime This command sets the holdtime for the hello message for that interface. The no form of the command sets the default holdtime (105) for the hello message for that interface. ip pim hello-holdtime <holdtime(1-65535)> no ip pim hello-holdtime Mode Interface Configuration Mode Defaults...
23.19 ip pim dr-priority This command sets the designated router priority value configured for the router interface and the no form of the command sets the default designated router priority value (0) for the router interface. ip pim dr-priority <priority(1-65535)> no ip pim dr-priority Mode Interface Configuration Mode...
23.20 ip pim override-interval This command sets the override interval configured for router interface and the no form of the command sets the default override interval (0) for router interface. ip pim override-interval <interval(0-65535)> no ip pim override-interval Mode Interface Configuration Mode Defaults Example iss (config-if)# ip pim override-interval 100...
23.21 ip pim lan-delay This command sets the LanDelay configured for the router interface and the no form of the command sets the default LanDelay (0) for the router per interface. ip pim lan-delay <value(0-65535)> no ip pim lan-delay Mode Interface Configuration Mode Defaults Example...
23.22 set ip pim lan-prune-delay This command sets the LanPruneDelay bit configured for the router interface to advertise the Lan delay. set ip pim lan-prune-delay { enable | disable } Syntax Description enable - Enables LAN-prune-delay disable - Disables LAN-prune-delay Mode Interface Configuration Mode Defaults...
23.23 no ip pim interface This command deletes an interface at PIM level. no ip pim interface Mode Interface Configuration Mode Example iss (config-if)# no ip pim interface This command is used to destroy the interface at PIM. Related Command show ip pim interface –...
23.24 debug ip pim This command enables PIM trace and the no form of the command disables PIM trace. debug ip pim {[nbr][grp][jp][ast][bsr][io][pmbr][mrt][mdh][mgmt] | [all]} no debug ip pim {[nbr][grp][jp][ast][bsr][io][pmbr][mrt][mdh][mgmt] | [all]} Syntax Description nbr - Neighbor Discovery traces grp - Group Membership traces jp - Join or Prune traces ast - Assert state traces bsr - Bootstrap/RP traces...
23.25 show ip pim interface This command displays the routers PIM interfaces. show ip pim interface [{ Vlan <vlan-id> | detail }] Syntax Description Vlan - VLAN ID detail - Detailed information of the interface Mode Privileged EXEC Mode Example smis# show ip pim interface Address IfName/IfId Ver/Mode Nbr Qry DR-Address DR-Pr...
Page 538
PIM DR: 10.0.0.1 PIM DR Priority: 5 PIM Neighbour Count: 0 PIM Hello/Query Interval: 45 PIM Message Interval: 67 PIM Override Interval: 56 PIM Lan Delay: 66 PIM Lan-Prune-Delay: Disabled PIM Component Id: 1 PIM domain border: disabled It shows the list of Interface addresses, the mode of the interface, Designated Router on that interface, Hello Interval, Join/Prune Interval of the interface.
23.26 show ip pim neighbor This command displays the router's PIM neighbors’ information. show ip pim neighbor [ Vlan <vlan-id>] Syntax Description Vlan - VLAN ID Mode Privileged EXEC Mode Example smis# show ip pim neighbor vlan 1 Nbr IfName/Idx Uptime/Expiry Ver DRPri/Mode CompId Override Lan Address Interval Delay ------------- ------------- --- ---------- ------ -------- ------...
23.27 show ip pim rp-candidate This command displays the candidate RP information. show ip pim rp-candidate [ComponentId <1-255>] Syntax Description ComponentId - Component ID Mode Privileged EXEC Mode Example smis# show ip pim rp-candidate 2 CompId GroupAddress Group Mask RPAddress/Priority 2 224.1.0.0 255.255.0.0 20.0.0.1/192 It shows the Group addresses, the Group Mask and the RP address that indicates the IP address of the Rendezvous Point (RP) for the listed PIM Sparse group.
23.28 show ip pim rp-set This command displays the RP-set information. show ip pim rp-set [rp-address] Syntax Description rp-address - Indicates the IP address of the Rendezvous Point (RP) for the listed PIM Sparse group. Mode Privileged EXEC Mode Example smis# show ip pim rp-set PIM Group-to-RP mappings ---------------------------...
23.29 show ip pim bsr This command displays the BSR information. show ip pim bsr [Component-Id (1-255)] Syntax Description Component-Id - Component ID Mode Privileged EXEC Mode Example smis# show ip pim bsr 1 PIMv2 Bootstrap Configuration For Component 1 ----------------------------------------------- This system is the Bootstrap Router (BSR) BSR Address: 10.0.0.1...
23.30 show ip pim rp-static This command displays the static RP information. show ip pim rp-static [ComponentId <1-255>] Syntax Description ComponentId - Component ID Mode Privileged EXEC Mode Example smis# show ip pim rp-static 2 Static-RP Enabled CompId GroupAddress Group Mask RPAddress 2 225.1.0.0 255.255.0.0 20.0.0.1 Related Command set ip pim static-rp –...
23.31 show ip pim component This command displays the component information. show ip pim component [ComponentId <1-255>] Syntax Description ComponentId - Component ID Mode Privileged EXEC Mode Example smis# show ip pim component 1 PIM Component Information --------------------------- Component-Id: 1 PIM Mode sparse, PIM Version: 2 Elected BSR: 10.0.0.1...
23.32 show ip pim thresholds This command displays threshold configured for SPT, RP thresholds, and rate limit values for both SM (Sparse mode show ip pim thresholds Mode Privileged EXEC Mode Example smis# show ip pim thresholds PIM SPT Threshold Information Group Threshold: 0 Source Threshold: 0 Switching Period: 0...
23.33 show ip pim mroute This command displays the PIM multicast information. show ip pim mroute [ {compid(1-255) | group-address | source-address } summary] Syntax Description compid - Component ID group-address - Indicates the PIM multicast group address using the listed RP source-address - The network address which identifies the sources for which this entry contains multicast routing information summary - Summary of PIM mroute information...
Page 547
--------------------------- Route Flags S: SPT Bit W: Wild Card Bit R: RPT Bit Timers : Uptime/Expires Interface State : Interface, State/Mode PIM Multicast Routing Table For Component 1 (*, 224,1,0.0) , 00:04:35/--- , RP : 12.0.0.1 Incoming Interface : vlan1, RPF nbr : NULL, Route Flags : WR Outgoing InterfaceList: vlan2, Forwarding/Sparse, 00:04:35/--- (12.0.0.30,224.1.0.0) , 00:00:04/00:03:26...
24 PIMv6 PIMv6 is a portable software implementation of the PIM (Sparse Mode and Dense Mode) specification, for IPv6 networks. PIMv6 provides support for inter-domain routing between domains using PIMv6-SM or PIMv6-DM. It also avoids the performance problems of earlier multicast routing protocols. This software provides multicast routing and forwarding capability to a router that runs the IPv6 protocol along with MLD (Multicast Listener Discovery).
Page 549
show ipv6 pim rp-candidate show ipv6 pim rp-set show ipv6 pim bsr show ipv6 pim rp-static show ipv6 pim component show ipv6 pim thresholds show ipv6 pim mroute Release : 549 / 913...
24.2 set ip pim threshold This command configures the (Shortest Path Tree) SPT group or source threshold, when exceeded, switching to shortest path tree is initiated. To switch to SPT, the threshold MUST be configured. set ip pim threshold { spt-grp | spt-src } < number of packets(0-2147483647)> Syntax Description spt-grp - The threshold of data rate for any group.
24.3 set ip pim spt-switchperiod This command configures the period (in seconds) over which the data rate is to be monitored for switching to shortest path tree. set ip pim spt-switchperiod <0-2147483647(in secs)> Mode Global Configuration Mode Defaults Example iss (config)# set ip pim spt-switchperiod 60 •...
24.4 set ip pim rp-threshold This command sets the threshold at which RP (Rendezvous Point) initiates switching to source specific shortest path tree. set ip pim rp-threshold <0-2147483647(number of reg packets)> Mode Global Configuration Mode Defaults Example iss (config)# set ip pim rp-threshold 50 To switch to SPT, this threshold must be configured and this switching is based on the received number of registered packets.
24.5 set ip pim rp-switchperiod This command sets the period (in seconds) over which RP monitors register packets for switching to the source specific shortest path tree. set ip pim rp-switchperiod <0-2147483647(in secs)> Mode Global Configuration Mode Defaults Example iss (config)# set ip pim rp-switchperiod 100 To switch to SPT, this period must be configured RP-tree is a pattern that multicast packets are sent to a PIM-SM router by unicast and then forwarded to actual recipients from RP Related Command...
24.6 set ip pim regstop-ratelimit-period This command sets the period over which RP monitors the number of register packets after sending the register stop message. set ip pim regstop-ratelimit-period <0-2147483647(in secs)> Mode Global Configuration Mode Defaults Example iss (config)# set ip pim regstop-ratelimit-period 100 The Register Stop Message is used to avoid encapsulation of multicast data packets from the first hop router to the RP.
24.7 set ip pim pmbr This command enables or disables the PMBR (PIM Multicast Border Router) Status. set ip pim pmbr { enable | disable } Syntax Description enable - Enables the PMBR Status disable - Disables the PMBR Status Mode Global Configuration Mode Defaults...
24.8 set ip pim static-rp This command enables or disables the Static RP configuration Status. This command specifies whether to use the configured static- RP. set ip pim static-rp { enable | disable } Syntax Description enable - Enables the Static RP configuration Status disable - Disables the Static RP configuration Status Mode Global Configuration Mode...
24.9 ip pim component This command configures the PIMv6 component in the router and the no form of the command destroys the PIMv6 component. ip pim component <ComponentId (1-255)> no ip pim component <ComponentId (2-255)> Mode Global Configuration Mode Example iss (config)# ip pim component 1 •...
24.10 ipv6 pim rp-candidate rp-address This command sets the address of the interface, which will be advertised as a Candidate-RP. The no form of the command disables the address of the interface, which will be advertised as a Candidate-RP. ipv6 pim rp-candidate rp-address <Group Address> <Group Mask> <RP-address> no ipv6 pim rp-candidate rp-address <Group Address>...
24.11 ipv6 pim rp-static rp-address This command sets the address of the IPv6 interface, which will be advertised as a Static-RP. The no form of the command disables the address of the IPv6 interface, which will be advertised as a Static-RP. ipv6 pim rp-static rp-address <Group Address>...
24.12 ipv6 pim query-interval This command sets the frequency at which PIMv6 hello messages are transmitted on the interface. The no form of the command sets the default hello timer interval for the interface. ipv6 pim query-interval <Interval (0-65535)secs> no ipv6 pim query-interval Mode Interface Configuration Mode Defaults...
24.13 ipv6 pim message-interval This command sets the frequency at which the PIMv6 Join/Prune messages are transmitted on the PIMv6 interface. The no form of the command sets the default value for the PIMv6 Join/Prune messages. ipv6 pim message-interval <Interval(0-65535)> no ipv6 pim message-interval Mode Interface Configuration Mode...
24.14 ipv6 pim bsr-candidate This command sets the preference value for the local PIMv6 interface as a candidate bootstrap router. The no form of the command sets the default preference value for the local PIMv6 interface as a candidate bootstrap router. ipv6 pim bsr-candidate <value (0-255)>...
24.15 ipv6 pim componentId This command adds the interface to the component. ipv6 pim componentId <value(1-255)> Mode Interface Configuration Mode Defaults Example iss (config-if)# ipv6 pim componentId 1 This command adds the current VLAN into the specified PIMv6 component. Related Commands set ipv6 pim –...
24.16 ipv6 pim hello-holdtime This command sets the holdtime for the hello message for the PIMv6 interface. The no form of the command sets the default holdtime for the hello message for the interface. ipv6 pim hello-holdtime <holdtime(1-65535)> no ipv6 pim hello-holdtime Mode Interface Configuration Mode Defaults...
24.17 ipv6 pim dr-priority This command sets the designated router priority value configured for the PIMv6 router interface. The no form of the command sets the default designated router priority value for the PIMv6 router interface. ipv6 pim dr-priority <priority(1-65535)> no ipv6 pim dr-priority Mode Interface Configuration Mode...
24.18 ipv6 pim override-interval This command sets the override interval configured for the PIMv6 router interface. The no form of the command sets the default override interval for the PIMv6 router interface. ipv6 pim override-interval <interval(0-65535)> no ipv6 pim override-interval Mode Interface Configuration Mode Defaults...
24.19 ipv6 pim lan-delay This command sets the LanDelay configured for the PIMv6 router interface. The no form of the command sets the default LanDelay for the PIMv6 router per interface. ipv6 pim lan-delay <value(0-65535)> no ipv6 pim lan-delay Mode Interface Configuration Mode Defaults Example...
24.20 set ipv6 pim lan-prune-delay This command sets the LanPruneDelay bit configured for the PIMv6 router interface to advertise the Lan delay. The command specifies whether to use LAN prune delay or not. set ipv6 pim lan-prune-delay { enable | disable } Syntax Description enable - Enables LAN-prune-delay disable - Disables LAN-prune-delay...
24.21 no ipv6 pim interface This command deletes the IPv6 PIM Interface, that is, this command is used to destroy the interface at PIMv6. no ipv6 pim interface Mode Interface Configuration Mode Example iss (config-if)# no ipv6 pim interface Related Command show ipv6 pim interface –...
24.23 show ipv6 pim interface This command displays the PIMv6 interfaces of the router. It shows the list of Interface addresses, the mode of the interface, Designated Router on that interface, Hello Interval, Join/Prune Interval of the interface. show ipv6 pim interface [{ Vlan <vlan-id> | detail }] Syntax Description Vlan - VLAN ID detail - Detailed information of the interface...
24.24 show ipv6 pim neighbor This command displays the PIMv6 neighbor(s) information of the router. It displays the Neighbor Address, the interface used to reach the PIMv6 Neighbor, the Up time (the time since this neighbor became the neighbor of the local router), Expiry Time (the minimum time remaining before this PIMv6 neighbor will be aged out), Lan delay and Override interval.
Page 575
ipv6 pim query-interval – Sets the frequency at which PIMv6 hello messages are transmitted on the interface ipv6 pim message-interval – Sets the frequency at which PIMv6 Join/Prune messages are transmitted on the PIMv6 interface ipv6 pim bsr-candidate – Sets the preference value for the local PIMv6 interface as a candidate bootstrap router ipv6 pim hello-holdtime –...
24.25 show ipv6 pim rp-candidate This command displays the PIMv6 RP-candidate information. It displays the Group addresses, the Group Mask and the RP address that indicates the IP address of the Rendezvous Point (RP) for the listed PIM Sparse group. show ipv6 pim rp-candidate [ComponentId <1-255>] Syntax Description ComponentId - Component ID...
24.26 show ipv6 pim rp-set This command displays the PIMv6 RP-set information. It displays details of the Group Prefix, RP address, Hold time and Expiry Time. show ipv6 pim rp-set [rp-address] Syntax Description rp-address - Indicates the IPv6 address of the Rendezvous Point (RP) for the listed PIM Sparse group.
24.30 show ipv6 pim thresholds This command displays threshold configured for SPT, RP thresholds, and rate limit values for both SM and DM. show ipv6 pim thresholds Mode Privileged EXEC Mode Example smis# show ipv6 pim thresholds PIM SPT Threshold Information ----------------------------- Group Threshold : 111 Source Threshold : 222...
24.31 show ipv6 pim mroute This command displays the IPv6 PIM mroute information. show ipv6 pim mroute [ {compid(1-255) | group <group-address> | source <source-address> } summary ] Syntax Description compid - Component ID group-address - Indicates the PIMv6 multicast group address using the listed RP source-address - The network address which identifies the sources for which this entry contains multicast routing information summary - Summary of PIMv6 mroute information...
Page 583
PIM Multicast Routing Table For Component 1 (*, ff02::e001:0) ,00:02:49/---3401:510a::3401:51a) ,Route Flags : WR smis# show ipv6 pim mroute source ca8d:5102::ca8d:5102 summary IP Multicast Routing Table -------------------------- Route Flags S: SPT Bit W: Wild Card Bit R: RPT Bit Timers: Uptime/Expires (ca8d:5102::ca8d:5102,ff02::e001:0) ,00:01:04/04:01:45 ,Route Flags : --- It shows details of the (S ,G) ,(*,G) and (*,*,RP) entries.
25 VRRP VRRP (Virtual Router Redundancy Protocol) is an election protocol that dynamically assigns responsibility for one or more virtual router(s) to the VRRP routers(s) on a LAN, allowing several routers on a multi- access link to utilize the same virtual IP address. A VRRP router is configured to run the VRRP protocol in conjunction with one or more other routers attached to a LAN.
25.1 router vrrp This command enables VRRP in the router and is used to enter the VRRP Configuration Mode The no form of the command disables VRRP in the router. router vrrp no router vrrp Mode Global Configuration Mode Defaults VRRP is disabled by default Example smis(config)# router vrrp...
25.2 interface vlan This command selects an interface to configure. The no form of the command deletes the virtual router entries on the given Interface. interface vlan <vlan-id (1-4069)> no interface Vlan <vlan-id (1-4069)> Syntax Description vlan-id - VLAN Identifier Mode VRRP Router Configuration Mode Example...
25.3 vrrp - ip address This command sets the Associated IP addresses for the virtual router. The no form of the command deletes the Associated IP addresses for the virtual router. vrrp <vrid(1-255)> ipv4 <ucast_addr > [secondary] no vrrp <vrid(1-255)> ipv4[<ucast_addr>[secondary]] Syntax Description vrid - Virtual Router ID ipv4 - IP address...
25.4 vrrp - priority This command sets the priority for the virtual router. The no form of the command sets the priority for the virtual router to default value. vrrp <vrid(1-255)> priority <priority(1-254)> no vrrp <vrid(1-255)> priority Syntax Description vrid - Virtual Router ID priority - Priority used for the virtual router master election process Mode VRRP Interface Configuration Mode...
25.5 vrrp - preempt This command enables the pre-emption of state change from either Backup to Master or vice versa based on the election process. The no form of the command disables the preempt mode vrrp <vrid(1-255)> preempt no vrrp <vrid(1-255)> preempt Syntax Description vrid - Virtual Router ID preempt - Enables preemption of VRRP router states...
25.6 vrrp - text-authentication This command sets the authentication type for the virtual router to simple password. The no form of the command sets the authentication type for the virtual router to none. vrrp <vrid(1-255)> text-authentication <password> no vrrp <vrid(1-255)> text-authentication Syntax Description vrid - Virtual Router ID textauthentication - Authentication password...
25.7 vrrp - interval This command sets the advertisement timer for a virtual router. The no form of the command sets the advertisement timer for a virtual router to default value. vrrp <vrid(1-255)> timer <interval(1-255)secs> no vrrp <vrid(1-255)> timer Syntax Description vrid - Virtual Router ID timer - The time interval, in seconds, between sending advertisement messages Mode...
25.8 show vrrp interface - vrid This command displays the VRRP status information. show vrrp [interface vlan <VlanId(1-4069)> <VrId(1-255)>] {brief|detail |statistics}] Syntax Description interface vlan - VRRP information on the given VLAN ID andVRID brief - Information about VRRP in brief detail - Information about VRRP in detail statistics - VRRP statistics Mode...
Page 593
12.0.0.1 Advertise time is 1 secs Current priority is 255 Configured priority is 255, may preempt smis# show vrrp interface vlan 2 brief P indicates configured to preempt Interface vrID Priority P State Master VRouter Addr Addr --------- ---- -------- - ----- ------- ------- vlan2 1 100 P Master local 12.0.0.2 vlan2 2 255 P Master local 12.0.0.1 smis# show vrrp interface vlan 2 statistics...
Page 594
Address List Errors : 0 Invalid Authentication Type : 0 Authentication Type Mismatch : 0 Packet Length Errors : 0 smis# show vrrp interface vlan 2 P indicates configured to preempt Interface vrID Priority P State Master VRouter Addr Addr --------- ---- -------- - ----- ------- ------- vlan2 1 100 P Master local 12.0.0.2 vlan2 2 255 P Master local 12.0.0.1...
26 RIP RIP (Routing Information Protocol) is a widely-used protocol for managing router information within a selfcontained network such as a corporate local area network or an interconnected group of such LANs. RIP is classified by the Internet Engineering Task Force (IETF) as one of several internal gateway protocols (Interior Gateway Protocol).
Page 596
ip rip send version ip rip receive version ip rip authentication mode timers basic ip split-horizon debug ip rip show ip rip Release : 596 / 913...
26.1 router rip This command enters the router configuration mode and the no form of the command disables RIP on all the interfaces. router rip no router rip Mode Global Configuration Mode Example smis(config)# router rip Related Commands network – Enables RIP on an IP network show ip rip –...
26.2 ip rip security This command accepts/ignores RIP1 packets when authentication is in use and the no form of the command sets the security level to its default value. ip rip security { minimum | maximum } no ip rip security Syntax Description minimum - Denotes that the RIP1 packets will be accepted even when authentication is in use maximum - Denotes that RIP1 packets will be ignored when authentication is in use...
26.3 ip rip retransmission This command configures the timeout interval and number of retries to retransmit the update request packet or an unacknowledged update response packet and the no form of the command sets the retransmission timeout interval or the number of retransmission retries to its default value. ip rip retransmission { interval <timeout-value (5-10)>...
26.4 network This command enables RIP on an IP network and the no form of the command disables RIP on an IP network. network <ip-address> no network <ip-address> Syntax Description ip-address - IP address for the entry Mode Router Configuration Mode Example smis(config-router)# network 10.0.0.1 •...
26.5 neighbor This command adds a neighbor router and the no form of the command deletes a neighbor router. neighbor <ip address> no neighbor <ip address> Syntax Description ip-address - IP address of the neighbor router Mode Router Configuration Mode Example smis(config-router)# neighbor 10.0.0.5 This command permits the point-to-point (nonbroadcast) exchange of routing information.
26.6 passive-interface vlan This command suppresses routing updates on an interface and the no form of the command does not suppress routing updates from an interface. passive-interface vlan <vlan-id(1-4069)> no passive-interface vlan <vlan-id(1-4069)> Mode Router Configuration Mode Example smis(config-router)# passive-interface vlan 1 If the sending of routing updates is disabled on an interface, the particular subnet will continue to be advertised to other interfaces, and updates from other routers on that interface continue to be received and processed.
26.7 output-delay This command enables interpacket delay for RIP updates and the no form of the command disables interpacket delay for RIP updates. output-delay no output-delay Mode Router Configuration Mode Example smis(config-router)# output-delay • Configuring this command will help prevent the routing table from losing information. Related Command show ip rip –...
26.8 redistribute This command enables redistribution of corresponding protocol routes into RIP and the no form of the command disables redistribution of corresponding protocol routes into RIP. redistribute { all | bgp | connected | ospf | static } no redistribute { all | bgp | connected | ospf | static } Syntax Description all - Advertises all routes learnt in the RIP process bgp - Advertises routes learnt by BGP in the RIP process...
26.9 default-metric This command sets the metric to be used for redistributed routes and the no form of the command sets the metric used with redistributed routes to its default value. default-metric <value> no default-metric Mode Router Configuration Mode Defaults Example smis(config-router)# default-metric 1 The default-metric command is used in conjunction with the redistribute router configuration command to...
26.10 auto-summary This command enables/disables auto summarization of routes in RIP. auto-summary {enable | disable} Syntax Description enable - Enables auto summarization feature in RIP disable - Disables auto summarization feature in RIP Mode Router Configuration Mode Defaults enable Example smis(config-router)# auto-summary disable •...
26.11 ip rip default route originate This command sets the metric to be used for default route propagated over the interface. The no form of the command disables orgination of default route over the interface. ip rip default route originate <metric(1-15)> no ip rip default route originate Mode Interface Configuration Mode...
26.12 ip rip summary-address This command sets route aggregation over an interface for all subnet routes that falls under the specified IP address and mask. The no form of the command disables route aggregation with the specified IP address and mask. ip rip summary-address <ip-address>...
26.13 ip rip default route install This command installs the default route received in updates to the RIP database. The no form of the command does not install default route received in updates to the rip database. ip rip default route install no ip rip default route install Mode Interface Configuration Mode...
26.14 ip rip send version This command sets the IP RIP version number for transmitting advertisements and the no form of the command sets IP RIP send version number to its default value. ip rip send version { 1 | 2 | 1 2 | none } no ip rip send version Syntax Description 1 | 2 | 1 2 | none - Indicates which version of RIP updates are to be sent...
26.15 ip rip receive version This command sets IP RIP version number for receiving advertisements and the no form of the command sets IP RIP receive version number to its default value. ip rip receive version { 1 | 2 | 1 2 | none } no ip rip receive version Syntax Description 1 | 2 | 1 2 | none - Indicates which version of RIP updates, are to be accepted...
26.16 ip rip authentication mode This command configures authentication mode and key. The no form of the command disables authentication. ip rip authentication mode { text | md5 } key-chain <key-chain-name (16)> no ip rip authentication Syntax Description text - Clear text authentication md5 - Keyed Message Digest 5 (MD5) authentication.
26.17 timers basic This command sets update, route age and garbage collection timers. The no form of the command sets update, route age and garbage collection timers to the default values. timers basic <update-value (10-3600)> <routeage-value (30-500)> <garbage- value (120-180)> no timers basic Syntax Description update-value - Interval Time Between Updates...
26.18 ip split-horizon This command sets the split horizon status and the no form of the command disables the split horizon status. ip split-horizon [poisson] no ip split-horizon Syntax Description poisson - Split horizon with poisson reverse is enabled Mode Interface Configuration Mode Example smis(config-if)# ip split-horizon...
26.19 debug ip rip This command sets the debug level for RIP module and the no form of the command resets the debug level for RIP module. debug ip rip { all | init | data | control | dump | os | mgmt | failure | buffer } no debug ip rip { all | init | data | control | dump | os | mgmt | failure | buffer }...
26.20 show ip rip This command displays IP RIP protocol database or statistics. show ip rip { database [ <ip-address> <ip-mask> ] | statistics } Syntax Description database - RIP protocol database for the specified IP address and IP mask of the RIP interface entry statistics - RIP statistics on the router Mode Privileged EXEC Mode...
Page 617
router rip – Enables RIP on all the interfaces ip rip security – Accepts/ignores RIP1 packets when authentication is in use ip rip retransmission – Configures the timeout interval and number of retries to retransmit the update request packet or an unacknowledged update response packet network –...
27 OSPF OSPF (Open Shortest Path First ) protocol, is an Interior Gateway Protocol used to distribute routing information within a single Autonomous System. Routers use link-state algorithms to send routing information to all nodes in an internetwork by calculating the shortest path to each node based on a topography of the Internet constructed by each node.
Page 619
area - range summary-address redistribute redist-config network set nssa asbr-default-route translator passive-interface vlan passive-interface default ip ospf demand-circuit ip ospf retransmit-interval ip ospf transmit-delay ip ospf priority ip ospf hello-interval ip ospf dead-interval ip ospf cost ip ospf network ip ospf authentication-key ip ospf message-digest-key debug ip ospf show ip ospf interface...
Page 620
show ip ospf - database summary show ip ospf - database Release : 620 / 913...
27.1 router ospf This command enables OSPF routing process and the no form of the command disables OSPF routing process. router ospf no router ospf Mode Global Configuration Mode Example smis(config)# router ospf The command no router ospf disables the OSPF Router Admin Status to terminate the OSPF process.
27.2 router-id This command sets the router-id for the OSPF process. router-id <router ip address> Syntax Description router ip address - Specifies the OSPF router ID as an IP address Mode Router Configuration Mode Example smis(config-router)# router-id 10.0.0.1 An arbitrary value for the ip-address for each router can be configured; however, each router ID must be unique.
27.3 area - Stability interval This command configures the Stability interval for NSSA and the no form of the command configures default Stability interval for NSSA. area <area-id> stability-interval <Interval-Value (0 - 0x7fffffff)> no area <area-id> stability-interval Syntax Description area-id - Area associated with the OSPF address range. It is specified as an IP address stabilityinterval - The number of seconds after an elected translator determines its services are no longer required, that it must continue to perform its translation duties Mode...
27.4 area - translation-role This command configures the translation role for the NSSA and the no form of the command configures the default translation role for the NSSA. area <area-id> translation-role { always | candidate } no area <area-id> translation-role Syntax Description area-id - Area associated with the OSPF address range.
27.5 compatible rfc1583 This command sets OSPF compatibility list compatible with RFC 1583 and the no form of the command disables RFC 1583 compatibility. compatible rfc1583 no compatible rfc1583 Mode Router Configuration Mode Defaults Enabled Example smis(config-router)# compatible rfc1583 This command enables support of RFC1583 compatibility in products that support later standards It controls the preference rules, when choosing among multiple AS external LSAs advertising the same destination.
27.6 abr-type This command sets the Alternative ABR Type. abr-type { standard | cisco | ibm } Syntax Description standard - Standard ABR type as defined in RFC 2328 cisco - CISCO ABR type as defined in RFC 3509 ibm - IBM ABR type as defined in RFC 3509 Mode Router Configuration Mode Defaults...
27.7 neighbor This command specifies a neighbor router and its priority. The no form of the command removes the neighbor/Set default value for the Neighbor Priority. neighbor <neighbor-id> [priority <priority value (0-255)>] no neighbor <neighbor-id> [priority] Syntax Description neighbor-id - Neighbor router ID priority - A number value that specifies the router priority Mode Router Configuration Mode...
27.8 area-default cost This command specifies a cost for the default summary route sent into a stub or NSSA and the no form of the command removes the assigned default route cost. area <area-id> default-cost <cost> [tos <tos value(0-30)>] no area <area-id> default-cost [tos <tos value (0-30)>] Syntax Description area-id - Area associated with the OSPF address range.
27.9 area- nssa This command configures an area as a NSSA and other parameters related to that area. area <area-id> nssa [{ no-summary | default-information-originate [metric <value>] [metric-type <Type(1-3)>] [tos <tos value (0-30)>] }] Syntax Description area-id - Area associated with the OSPF address range. It is specified as an IP address nssa - Configures an area as a not-so-stubby area (NSSA) no-summary - Allows an area to be a not-so-stubby area but not have summary routes injected into it defaultinformationoriginate - Default route into OSPF...
Page 630
area - translation-role– Configures the translation role for the NSSA Release : 630 / 913...
27.10 area-stub This command specifies an area as a stub area and other parameters related to that area and the no form of the command removes an area or converts stub/nssa to normal area. area <area-id> stub [no-summary] no area <area-id> [{ stub | nssa }] Syntax Description area-id - Area associated with the OSPF address range.
27.11 default-information originate always This command enables generation of a default external route into an OSPF routing domain and other parameters related to that area. The no form of the command disables generation of a default external route into an OSPF routing domain. default-information originate always [metric <metric-value (0-0xffffff)>] [metric-type <type (1-2)>] no default-information originate always [metric <metric-value (0-0xffffff)>]...
27.12 area - virtual-link This command defines an OSPF virtual link and its related parameters. The no form of removes an OSPF virtual link. area <area-id> virtual-link <router-id> [authentication {message-digest | null}] [hello-interval <value (1-65535)>] [retransmit-interval <value (0- 3600)>] [transmit-delay <value (0-3600)>] [dead-interval <value>] [{authentication-key <key (8)>...
Page 634
retransmit-interval - 5 transmit-delay - 1 dead-interval - 40 Example smis(config-router)# area 10.0.0.1 virtual-link 20.0.0.1 authentication message-digest hello-interval 100 retransmitinterval 100 transmit-delay 50 dead-interval 200 authenticationkey asdf In OSPF, all areas must be connected to a backbone area. If the connection to the backbone is lost, it can be repaired by establishing a virtual link hello-interval and dead-interval: The value must be the same for all routers and access servers on a specific network Related Commands...
27.13 ASBR Router This command specifies this router as ASBR. The no form of the command disables this router as ASBR. ASBR Router no ASBR Router Mode Router Configuration Mode Example smis(config-router)# ASBR Router Routers that act as gateways (redistribution) between OSPF and other routing protocols (IGRP, EIGRP, RIP, BGP, Static) or other instances of the OSPF routing process are called autonomous system boundary router (ASBR).
27.14 area - range This command consolidates and summarizes routes at an area boundary. The no form of the command deletes the Summary Address. area <AreaId> range <Network> <Mask> {summary | Type7} [{advertise | notadvertise}] [tag <value>] no area <AreaId> range <Network> <Mask> Syntax Description Area-id - Area associated with the OSPF address range.
Page 637
For example, a summary-LSA for the destination 128.185.0.0 with a mask of 0xffff0000 actually is describing a single route to the collection of destinations 128.185.0.0 - 128.185.255.255 This command is used only with Area Border Routers (ABRs). It is used to consolidate or summarize routes for an area.
27.15 summary-address This command creates aggregate addresses for OSPF and the no form of the command deletes the External Summary Address. summary-address <Network> <Mask> <AreaId> [{allowAll | denyAll | advertise | not-advertise}] [Translation {enabled | disabled}] no summary-address <Network> <Mask> <AreaId> Syntax Description Network - The IP address of the Net indicated by the range Mask - The subnet mask that pertains to the range...
Page 639
smis(config-router)# summary-address 10.0.0.6 255.0.0.0 10.0.0.0 allowAll Translation enabled When translation {enabled | disabled} is set to enabled, the NSSA border router's futOspfAreaNssaTranslatorRole has been set to always. When this object is set to disabled, a candidate NSSA Border router does not perform translation. Indicates whether Type-5/Type-7 will be aggregated or not generated for the specified range.
27.16 redistribute This command configures the protocol from which the routes have to be redistributed into OSPF and the no form of the command disables redistribution of routes from the given protocol into OSPF. redistribute {static | connected | rip | bgp | all} no redistribute {static | connected | rip | bgp | all} Syntax Description static - Redistributes routes, configured statically, to the OSPF routing protocol...
27.17 redist-config This command configures the information to be applied to routes learnt from RTM and the no form of the command deletes the information applied to routes learnt from RTM. redist-config <Network> <Mask> [metric-value <metric (1 - 16777215)>] [metrictype {asExttype1 | asExttype2}] [tag <tag-value>} no redist-config <Network>...
27.18 network This command defines the interfaces on which OSPF runs and the area ID for those interfaces. The no form of the command disables OSPF routing for interfaces defined and to remove the area ID of that interface. network <Network number> area <area-id> [unnum Vlan <PortNumber>] no network <Network number>...
27.19 set nssa asbr-default-route translator This command enables/disables setting of P bit in the default Type-7 LSA generated by NSSA internal ASBR. set nssa asbr-default-route translator { enable | disable } Syntax Description enable - When set to enabled, P-Bit is set in the generated Type-7 default LSA disable - When set disabled, P-Bit is clear in the generated default LSA Mode Router Configuration Mode...
27.20 passive-interface vlan This command suppresses routing updates on an interface and the no form of the command enables routing updates on an interface. passive-interface vlan <vlan-id(1-4069)>} no passive-interface vlan <vlan-id(1-4069)> Syntax Description vlan-id - LSA retransmissions for adjacencies belonging to the VLAN interface Mode Router Configuration Mode Example...
27.21 passive-interface default This command suppresses routing updates on all interfaces and the no form of the command enables routing updates on all interfaces. passive-interface default no passive-interface default Mode Router Configuration Mode Example smis(config-router)# passive-interface default All the OSPF interfaces created after the execution of this command will be passive. This is useful in Internet service provider (ISP) and large enterprise networks where many of the distribution routers have more than 200 interfaces.
27.22 ip ospf demand-circuit This command configures OSPF to treat the interface as an OSPF demand circuit and the no form of the command removes the demand circuit designation from the interface. ip ospf demand-circuit no ip ospf demand-circuit Mode Interface Configuration Mode Example smis(config-if)# ip ospf demand-circuit...
27.23 ip ospf retransmit-interval This command specifies the time between link-state advertisement (LSA) retransmissions for adjacencies belonging to the interface and the no form of the command uses the default time between link-state advertisement (LSA) retransmissions for adjacencies belonging to the interface. ip ospf retransmit-interval <seconds (0 - 3600)>...
27.24 ip ospf transmit-delay This command sets the estimated time it takes to transmit a link state update packet on the interface and the no form of the command sets the default estimated time it takes to transmit a link state update packet on the interface.
27.25 ip ospf priority This command sets the router priority and the no form of the command sets default value for router priority. ip ospf priority <value (0 - 255)> no ip ospf priority Mode Interface Configuration Mode Defaults Example smis(config-if)# ip ospf priority 25 When two routers attached to a network attempt to become the designated router, the one with the higher router priority takes precedence.
27.26 ip ospf hello-interval This command specifies the interval between hello packets sent on the interface and the no form of the command sets default value for, interval between hello packets sent on the interface. ip ospf hello-interval <seconds (1 - 65535)> no ip ospf hello-interval Mode Interface Configuration Mode...
27.27 ip ospf dead-interval This command sets the interval at which hello packets must not be seen before neighbors declare the router down and the no form of the command sets default value for the interval at which hello packets must not be seen before neighbors declare the router down.
27.28 ip ospf cost This command explicitly specifies the cost of sending a packet on an interface and the no form of the command resets the path cost to the default value. ip ospf cost <cost (1-65535)> [tos <tos value (0-30)>] no ip ospf cost [tos <tos value (0-30)>] Syntax Description cost - Type 1 external metrics which is expressed in the same units as OSPF interface cost, that is in...
27.29 ip ospf network This command configures the OSPF network type to a type other than the default for a given media and the no form of the command sets the OSPF network type to the default type. ip ospf network {broadcast | non-broadcast | point-to-multipoint | point- topoint} no ip ospf network...
27.30 ip ospf authentication-key This command specifies a password to be used by neighboring routers that are using the OSPF simple password authentication. The no form of the command removes a previously assigned OSPF password. ip ospf authentication-key <password (8)> no ip ospf authentication-key Mode Interface Configuration Mode...
27.31 ip ospf authentication This command specifies the authentication type for an interface and the no form of the command removes the authentication type for an interface and set it to NULL authentication. ip ospf authentication [{message-digest | null}] no ip ospf authentication Syntax Description message-digest - Message Digest authentication null - NULL authentication...
27.32 ip ospf message-digest-key This command enables OSPF MD5 authentication and the no form of the command removes an old MD5 key. ip ospf message-digest-key <Key-ID (0-255)> md5 <md5-Key (16)> no ip ospf message-digest-key <Key-ID (0-255)> Syntax Description Key-ID - Identifies the secret key, which is used to create the message digest appended to the OSPF packet md5 - Secret key, which is used to create the message digest appended to the OSPF packet Mode...
27.33 debug ip ospf This command sets the OSPF debug level. and the no form of the command removes an old MD5 key. debug ip ospf { pkt { hp | ddp | lrq | lsu | lsa } | module { adj_formation | ism | nsm | config | interface } } no debug ip ospf { pkt { hp | ddp | lrq | lsu | lsa } | module { adj_formation | ism | nsm | config | interface } | all }...
27.34 show ip ospf interface This command displays OSPF interface information. show ip ospf interface [vlan <vlan-id (1-4069)>] Syntax Description vlan - LSA retransmissions for adjacencies belonging to the VLAN interface Mode Privileged EXEC Mode Example smis# show ip ospf interface vlan10 is up, line protocol is up Internet Address 10.0.0.1, Mask 255.0.0.0, Area 33.0.0.12 AS 1, Router ID 10.0.0.1, Network Type BROADCAST, Cost 1...
Page 660
passive-interface vlan – Suppresses routing updates on an interface passive-interface default – Suppresses routing updates on all interfaces ip ospf demand-circuit – Configures OSPF to treat the interface as an OSPF demand circuit ip ospf hello-interval – Specifies the interval between hello packets sent on the interface ip ospf dead-interval –...
27.35 show ip ospf neighbor This command displays OSPF neighbor information list. show ip ospf neighbor [vlan <vlan-id (1-4069)>] [Neighbor ID] [detail] Syntax Description vlan - LSA retransmissions for adjacencies belonging to the VLAN interface Neighbor ID - Neighbor router ID detail - OSPF Neighbor information in detail Mode Privileged EXEC Mode...
27.36 show ip ospf request-list This command displays OSPF Link state request list information. show ip ospf request-list [<neighbor-id>] [vlan <vlan-id (1-4069)>] Syntax Description neighbor-id - Neighbor router ID vlan - LSA retransmissions for adjacencies belonging to the VLAN interface Mode Privileged EXEC Mode Example...
27.37 show ip ospf retransmission-list This command displays OSPF Link state retransmission list information. show ip ospf retransmission-list [<neighbor-id>] [vlan <vlan-id (1-4069)>] Syntax Description neighbor-id - Neighbor router ID vlan - LSA retransmissions for adjacencies belonging to the VLAN interface Mode Privileged EXEC Mode Example...
27.38 show ip ospf virtual-links This command displays OSPF Virtual link information. show ip ospf virtual-links Mode Privileged EXEC Mode Example smis# show ip ospf virtual-links Virtual Link to router 10.0.0.1, Interface State is DOWN Transit Area 33.0.0.12 Transmit Delay is 1 sec, Neighbor State DOWN Timer intervals configured, Hello 10, Dead 60, Retransmit 5 Related Command area - virtual-link –...
27.39 show ip ospf border-routers This command displays OSPF Border and Boundary Router Information. show ip ospf border-routers Mode Privileged EXEC Mode Example smis# show ip ospf border-routers OSPF Process Border Router Information Destination TOS Type NextHop Cost Rt.Type Area ----------- --- ---- ------- ---- ------- ---- 10.0.0.1 0 ASBR 40.0.0.1 1 intraArea 33.0.0.12 Related Commands...
27.40 show ip ospf - summary address This command displays OSPF summary-address redistribution Information. show ip ospf {area-range | summary-address} Syntax Description area-range - Area associated with the OSPF address range. It is specified as an IP address summary-address - Aggregate addresses for OSPF Mode Privileged EXEC Mode Example...
27.41 show ip ospf This command displays general information about the OSPF routing process. show ip ospf Mode Privileged EXEC Mode Example smis# show ip ospf OSPF Router ID 10.0.0.1 Supports only single TOS(TOS0) route ABR Type supported is Standard ABR Number of Areas in this router is 1 Area is 33.0.0.12 Number of interfaces in this area is 2...
27.42 show ip ospf route This command displays routes learnt by OSPF process. show ip ospf route Mode Privileged EXEC Mode Example smis# show ip ospf route OSPF Process Routing Table Dest/Mask TOS NextHop/Interface Cost Rt.Type Area --------- --- -------/--------- ---- ------- ---- 10.0.0.0/255.0.0.0 0 0.0.0.0/vlan10 1 IntraArea 33.0.0.12 40.0.0.0/255.0.0.0 0 0.0.0.0/vlan1 1 IntraArea 33.0.0.12 Related Commands...
27.43 show ip ospf - database summary This command displays OSPF LSA Database summary. show ip ospf [area-id] database [{database-summary | self-originate | advrouter <ip-address>}] Syntax Description area-id - Area associated with the OSPF address range. It is specified as an IP address. database - Displays how many of each type of LSA for each area there are in the database database-summary - Displays how many of each type of LSA for each area there are in the database, and the total number of LSA types...
Page 670
smis# show ip ospf database database-summary OSPF Router with ID (10.0.0.1) Area 0.0.0.0 database summary -------------------------------- LSA Type Count Maxage -------- ----- ------ Router 0 0 Network 0 0 Summary Net 0 0 Summary ASBR 0 0 Type-7 Ext 0 0 Opaque Link 0 0 Opaque Area 0 0 Subtotal 0 0...
Page 671
Opaque AS 0 0 Total 3 0 smis# show ip ospf database self-originate OSPF Router with ID (10.0.0.1) Router Link States (Area 33.0.0.12) --------------------------------------- Link ID ADV Router Age Seq# Checksum Link count ------- ---------- --- ---- -------- ---------- 10.0.0.1 10.0.0.1 0 0x80000004 0x9d0e 48 smis# show ip ospf database adv-router 20.0.0.2 OSPF Router with ID (10.0.0.1) Router Link States (Area 33.0.0.12)
27.44 show ip ospf - database This command displays OSPF Database summary for the LSA type. show ip ospf [area-id] database { asbr-summary | external | network | nssaexternal | opaque-area | opaque-as | opaque-link | router | summary } [linkstate- id] [{adv-router <ip-address>...
Page 673
Options : (No ToS Capability, DC) LS Type : Summary Links(Network) Link State ID : 10.0.0.0 Advertising Router : 10.0.0.1 LS Seq Number : 0x80000002 Checksum : 0xae77 Length : 28 smis# show ip ospf database network OSPF Router with ID (20.0.0.2) Network Link States (Area 33.0.0.12) --------------------------------------- LS age : 900...
28 BGP The BGP (Border Gateway Protocol) is an interautonomous system routing protocol. An autonomous system is a network or group of networks under a common administration and with common routing policies. BGP is a protocol for exchanging routing information between gateway hosts (each with its own router) in a network of autonomous systems and is used between Internet service providers (ISP).
Page 676
show ip bgp filters show ip bgp aggregate show ip bgp med show ip bgp dampening show ip bgp local-pref show ip bgp timers show ip bgp info show ip bgp rfl info show ip bgp confed info show ip bgp community show ip bgp extcommunity show ip bgp dampened-paths show ip bgp flap-statistics...
28.1 router bgp This command sets the AS number of the BGP Speaker. The no form of the command brings the BGP Speaker Global Admin status DOWN and resets the AS number of the BGP Speaker. router bgp <AS no(1-65535)> no router bgp Syntax Description AS no - Autonomous system number that identifies the BGP router to other routers and tags the routing...
Page 678
bgp nonbgproute-advt – Controls the advertisement of Non-BGP routes no ip bgp overlap-policy – Resets the Overlap route policy to default redistribute – Configures the protocol from which the routes have to be redistributed into BGP bgp always-compare-med – Enables the comparison of med for routes received from different autonomous system default-metric –...
Page 679
show ip bgp aggregate – Displays the contents of aggregate table show ip bgp med – Displays the contents of MED table show ip bgp dampening – Displays the contents of dampening table show ip bgp local-pref – Displays the contents of local preference table show ip bgp timers –...
28.2 ip bgp dampening This command Configures the Dampening Parameters and the no form of the command resets the Dampening Parameters to default. ip bgp dampening [<HalfLife-Time> [<Reuse Value> [<Suppress Value> [<Max- Suppress Time>]]]] [-s <Decay Granularity> [<Reuse Granularity> [<Reuse Array Size>]]] no ip bgp dampening [HalfLife-Time [Reuse-Value [Suppress-Value [Max- Suppress-Time]]]] [-s [Decay-Granularity [Reuse-Granularity [Reuse-Array-...
Page 681
Example smis(config)# ip bgp dampening 100 -s 1 15 BGP Speaker Local AS number must be configured. BGP Administrative status must be DOWN (use Shutdown Command). Related Commands router bgp – Sets the AS number of the BGP Speaker show ip bgp dampening – Displays the contents of dampening table Release : 681 / 913...
28.3 ip bgp overlap-policy This command configures the Overlap Route policy for the BGP Speaker. The no form of the command. Resets the Overlap route policy to default. By default, both less and more specific routes are installed. ip bgp overlap-policy <more-specific|less-specific|both> no ip bgp overlap-policy Syntax Description more-specific - This installs only more-specific routes in the RIB...
28.4 ip bgp synchronization This command enables synchronization between BGP and IGP and the no form of the command disables synchronization between BGP and IGP. ip bgp synchronization no ip bgp synchronization Mode Global Configuration Mode Defaults Disable Example smis(config)# ip bgp synchronization BGP Speaker Local AS number must be configured.
28.5 clear ip bgp - Flap-Statistics This command clears the flap-statistics counters for all paths from the neighbor at the IP address. clear ip bgp <ip-address> flap-statistics Syntax Description ip-address - IP Address of the peer Mode Global Configuration Mode Example smis(config)# clear ip bgp 22.0.0.1 flap-statistics The flap statistics are cleared only when routes from the given peer are already flapped.
28.6 bgp router-id This command configures the BGP Identifier of the BGP Speaker and the no form of the command resets the BGP Identifier of the BGP Speaker to default value. bgp router-id <bgp router id (ip-address)> no bgp router-id Mode Router Configuration Mode Defaults...
28.7 bgp default local-preference This command configures the Default Local Preference value and the no form of the command resets the Default Local Preference to its default value. bgp default local-preference <Local Pref Value> no bgp default local-preference Mode Router Configuration Mode Defaults Example smis(config-router)# bgp default local-preference 100...
28.8 neighbor - remote-as This command creates a Peer and initiates the connection to the peer and the no form of the command disables the peer session and deletes the peer information. neighbor <ip-address> remote-as <AS no(1-65535)> no neighbor <ip-address> Syntax Description ip-address - BGP peer's remote IP address remote-as - Autonomous system to which the BGP peer belongs...
28.9 neighbor - ebgp-multihop This command enables BGP to establish connection with external peers that are not directly connected and the no form of the command resets the peer EBGP-Multihop status to default. By default, EBGP Multihop is disabled. neighbor <ip-address> ebgp-multihop no neighbor <ip-address>...
28.10 neighbor - next-hop-self This command enables BGP to send itself as the next hop for advertised routes and the no form of the command resets the peer nexthop-self status to default. By default, Self Next Hop is disabled. neighbor <ip-address> next-hop-self no neighbor <ip-address>...
28.11 neighbor - interval This command configures neighbor interval and the no form of the command resets neighbor interval. neighbor <ip-address> {advertisement-interval <seconds> | as- originationinterval <seconds> | connect-retry-interval <seconds>} no neighbor <ip-address> {advertisement-interval | as-origination-interval | connect-retry-interval} Syntax Description ip-address - Peer ip address advertisementinterval - The time-interval ( in seconds) for spacing advertisement of successive external route-updates to the same destination...
28.12 neighbor - timers This command configures neighbor KeepAlive Time and Hold Time Intervals and the no form of the command resets neighbor KeepAlive Time and Hold Time Intervals. neighbor <ip-address> timers {keepalive <seconds> | holdtime <seconds>} no neighbor <ip-address> timers {keepalive | holdtime} Syntax Description ip-address - Peer IP address timers - Timers.
28.13 neighbor - shutdown This command disables the Peer session and the no form of the command enables the Peer session. neighbor <ip-address> shutdown no neighbor <ip-address> shutdown Syntax Description ip-address - Peer ip address shutdown - Terminates the peer session Mode Router Configuration Mode Example...
28.14 neighbor - send-community This command enables advertisement of community attributes to (standard/extended) peer and the no form of the command disables advertisement of community attributes to standard/extended) peer. neighbor <ip-address> send-community {both | standard | extended} no neighbor <ip-address> send-community {both | standard |extended} Syntax Description ip-address - Peer IP address send-community - Sends Communities.
28.15 bgp nonbgproute-advt This command controls the advertisement of Non-BGP routes either to the external peer or both to internal and external peer and the no form of the command resets the Non BGP routes advt policy to default. By default, the non BGP routes are advertised to internal and external peers. bgp nonbgproute-advt <external|both>...
28.16 redistribute This command configures the protocol from which the routes have to be redistributed into BGP and the no form of the command disables the redistribution of routes from the given protocol into BGP. redistribute <static|connected|rip|ospf|all> no redistribute <static|connected|rip|ospf|all> Syntax Description static - Advertises routes, configured statically, in the BGP routing process connected - Advertises directly connected networks routes, in the BGP routing process...
28.17 bgp always-compare-med This command enables the comparison of med for routes received from different autonomous system and the no form of the command Disables the comparison of med for routes received from different autonomous system. Med will be compared only for routes from same neighbor autonomous system. bgp always-compare-med no bgp always-compare-med Mode...
28.18 default-metric This command configures the Default IGP Metric value and the no form of the command resets the Default IGP Metric value. default-metric <Default Metric Value> no default-metric Mode Router Configuration Mode Defaults Example smis(config-router)# default-metric 300 This command sets the default metric to be associated with all redistributed routes. If a metric value is not supplied, the default metric value is assigned as 0.
28.19 bgp med This command configures an entry in MED Table and the no form of the command deletes the entry from MED Table. bgp med <1-100> remote-as <0-65535> <ip-address> <ip_mask> [intermediate-as <AS-no list- AS1,AS2,...>] value <value> direction <in|out> [override] no bgp med <1-100>...
28.20 bgp local-preference This command configures an entry in the Local Preference Table and the no form of the command deletes the entry from Local Preference Table. bgp local-preference <1-100> remote-as <0-65535> <ip-address> <ip_mask> [intermediate-as <AS-no list- AS1,AS2,...>] value <value> direction <in|out> [override] no bgp local-preference <1-100>...
Page 701
override BGP Speaker Local AS number must be configured. Related Commands router bgp – Sets the AS number of the BGP Speaker show ip bgp local-pref – Displays the contents of local preference table Release : 701 / 913...
28.21 bgp update-filter This command configures an entry in Update Filter Table and the no form of the command deletes the entry from Update Filter Table. bgp update-filter <1-100> <permit|deny> remote-as <0-65535> <ip-address> <ip_mask> [intermediate-as <AS-no list-AS1,AS2,...>] direction <in|out> no bgp update-filter <1-100> Syntax Description permit - Allow route to pass filter policy test deny - Filter routes when it passes through filter policy test...
Page 703
router bgp – Sets the AS number of the BGP Speaker show ip bgp filters – Displays the contents of filter table Release : 703 / 913...
28.22 aggregate-address index This command configures an entry in Aggregate Table and the no form of the command deletes the entry from Aggregate Table. aggregate-address index <1-100> <ip-address> <ip_mask> [summary-only] no aggregate-address index <1-100> Syntax Description ip-address - The Aggregate address ip_mask - The mask associated with the aggregated route summary-only - Creates an aggregated route for advertisement to peers and also suppresses the advertisement of more-specific routes to the peers...
28.23 bgp cluster-id This command configures the Cluster ID for Route Reflector and the no form of the command resets the Cluster ID for Route Reflector. bgp cluster-id <cluster id value(ip_address)> no bgp cluster-id Syntax Description cluster id value - The cluster Id associated with the route-reflector Mode Router Configuration Mode Example...
28.24 bgp client-to-client reflection This command configures the Route Reflector to support route reflection to Client Peers and the no form of the command configures the Route Reflector not to reflect routes to Client Peers. bgp client-to-client reflection no bgp client-to-client reflection Mode Router Configuration Mode Example...
28.25 neighbor - route-reflector-client This command configures the Peer as Client of the Route Reflector and the no form of the command resets the Peer as conventional BGP Peer. neighbor <ip-address> route-reflector-client no neighbor <ip-address> route-reflector-client Syntax Description ip-address - Peer's Remote IP address route-reflectorclient - Specifies the BGP peer as a client of the Route-Reflector Mode Router Configuration Mode...
28.26 bgp comm-route This command configures an entry in additive or delete community table and the no form of the command removes the entry from additive or delete community table. bgp comm-route {additive|delete} <ip-address> <ip_mask> comm-value <4294967041-4294967043,65536-4294901759> no bgp comm-route {additive|delete} <ip-address> <ip_mask> comm-value <4294967041-4294967043,65536-4294901759>...
28.27 bgp comm-peer This command enables/disables advertisement of community attributes to peer and the no form of the command disables advertisement of community attributes to peer. bgp comm-peer <ip-address> <permit|deny> no bgp comm-peer <ip-address> Syntax Description ip-address - Route prefix on which community policy needs to be applied permit - Allow advertisement of community attributes to peer deny - Filters advertisement of community attributes to peer Mode...
28.28 bgp comm-filter This command allows/filters the community attribute while receiving or advertising. The no form of the command removes the filter policy for the community attribute. bgp comm-filter <comm-value(4294967041-4294967043,65536-4294901759)> <permit|deny> <in|out> no bgp comm-filter <comm-value(4294967041-4294967043,65536-4294901759)> <permit|deny> <in|out> Syntax Description comm.-value - Community Attribute Value permit - Allows a particular community attribute to be received or advertised in updates deny - Filters routes containing the community attribute value in received or advertised updates...
28.29 bgp comm-policy This command configures the community attribute advertisement policy for specific destination. The no form of the command removes the community attribute advertisement policy for specific destination. bgp comm-policy <ip-address> <ip_mask> <set-add|set-none|modify> no bgp comm-policy <ip-address> <ip_mask> Syntax Description ip-address - Route prefix on which community policy needs to be applied ip-mask - Mask associated with the ip address set-add - Sends only the configured additive communities with associated route...
28.30 bgp ecomm-route This command configures an entry in additive or delete ext community table. The no form of the command removes the entry from additive or delete ext community table. bgp ecomm-route {additive|delete} <ip-address> <ip_mask> ecomm-value <value(xx:xx:xx:xx:xx:xx:xx:xx)> no bgp ecomm-route {additive|delete} <ip-address> <ip_mask> ecomm-value <value(xx:xx:xx:xx:xx:xx:xx:xx)>...
28.31 bgp ecomm-peer This command enables/disables advertisement of ext community attributes to peer. The no form of the command disables advertisement of ext community attributes to peer. bgp ecomm-peer <ip-address> <permit|deny> no bgp ecomm-peer <ip-address> Syntax Description ip-address - IP address of the peer permit - Allows advertisement of ext community attributes to peer deny - Denies advertisement of ext community attributes to peer Mode...
28.32 bgp ecomm-filter This command allows/filters the ext community attribute while receiving or advertising. The no form of the command removes the filter policy for the ext community attribute. bgp ecomm-filter <ecomm-value(xx:xx:..:xx)> <permit|deny> <in|out> no bgp ecomm-filter <ecomm-value(xx:xx:..:xx)> <permit|deny> <in|out> Syntax Description ecomm-value - The extended community value permit - Allows the route -update with the associated extended community value to pass the filter test...
28.33 bgp ecomm-policy This command configures the extended community attribute advertisement policy for specific destination. The no form of the command removes the extended community attribute advertisement policy for specific destination. bgp ecomm-policy <ip-address> <ip_mask> <set-add|set-none|modify> no bgp ecomm-policy <ip-address> <ip_mask> Syntax Description ip-address - The route prefix on which extended community policy needs to be applied ip_mask - The mask associated with the ip address...
28.34 bgp confederation identifier This command specifies the BGP confederation identifier. The no form of the command removes the BGP confederation identifier. bgp confederation identifier <AS no(1-65535)> no bgp confederation identifier Mode Router Configuration Mode Example smis(config-router)# bgp confederation identifier 1000 BGP Speaker Local AS number must be configured.
28.35 bgp confederation peers This command configures the ASs that belongs to the confederation. The no form of the command removes the ASs from the confederation. bgp confederation peers <AS no(1-65535)> no bgp confederation peers <AS no(1-65535)) Mode Router Configuration Mode Example smis(config-router)# bgp confederation peers 100 BGP Speaker Local AS number must be configured.
28.36 bgp bestpath med confed This command enables MED comparison among paths learnt from confed peers. The no form of the command disables MED comparison among paths learnt from confed peers. bgp bestpath med confed no bgp bestpath med confed Mode Router Configuration Mode Example...
28.37 neighbor - password This command configures the password for TCP-MD5 authentication with peer. The no form of the command resets the TCP-MD5 password set for the peer. neighbor <ip-address> password <password-string> no neighbor <ip-address> password Syntax Description ip-address - IP address of the BGP peer password - The password that needs to be used for TCP-MD5 authentication with the peer Mode Router Configuration Mode...
28.38 clear ip bgp This command resets the bgp connection dynamically for inbound and outbound route policy. clear ip bgp {* | <ip-address>} [soft {in|out}] Syntax Description * - All BGP peers ip-address - Remote IP address associated with specific BGP peer soft - Soft clear in - Initiates inbound soft reconfiguration out - Initiates outbound soft configuration...
28.39 shutdown ip bgp This command sets the BGP Speaker Global Admin status DOWN and the no form of the command sets the BGP Speaker Global Admin status UP. shutdown ip bgp no shutdown ip bgp Mode Global Configuration Mode Example smis(config)# shutdown ip bgp The shutdown command does not affect all the configurations.
28.40 debug ip bgp This command configures the Trace levels. The no form of the command resets the Trace levels. debug ip bgp {peer | update | fdb | keep | in | out | damp | events | all } no debug ip bgp {peer | update | fdb | keep | in | out | damp | events | all} Syntax Description peer - Trace code related to peer processing...
28.41 show bgp-version This command displays the BGP Version information. show bgp-version Mode Privileged EXEC Mode Example smis# show bgp-version show output Future BGP Version : 4 BGP Speaker Local AS number must be configured. Related Command router bgp – Sets the AS number of the BGP Speaker Release : 723 / 913...
28.42 show ip bgp This command displays the BGP related information. show ip bgp {[neighbor [<peer-addr>]] | rib} Syntax Description neighbor - IP address of the neighbor rib - BGP local RIB (Routing Information Base) Mode Privileged EXEC Mode Example smis# show ip bgp neighbor 10.0.0.2 BGP neighbor is 10.0.0.2, remote AS 200, external link BGP version 4, remote router ID 10.0.0.2...
Page 725
neighbor - remote-as – Creates a Peer and initiates the connection to the peer clear ip bgp – Resets the BGP connection dynamically for inbound and outbound route policy Release : 725 / 913...
28.43 show ip bgp community - routes This command displays routes that belong to specified BGP communities. show ip bgp community community-number(4294967041-4294967043,65536- 4294901759) [exact] Syntax Description community-number - BGP Community attribute exact - Displays the routes that has the same specified communities Mode Privileged EXEC Mode Example...
Page 727
router bgp – Sets the AS number of the BGP Speaker bgp comm-policy – Configures the community attribute advertisement policy for specific destination bgp comm-filter – Allows/filters the community attribute while receiving or advertising bgp comm-peer – Enables/disables advertisement of community attributes to peer bgp comm-route –...
28.44 show ip bgp extcommunity - routes This command displays routes that belong to specified BGP extended-communities. show ip bgp extcommunity <value(xx:xx:xx:xx:xx:xx:xx:xx)> [exact] Syntax Description exact - Displays the routes that has the same specified extended communities Mode Privileged EXEC Mode Example smis# show ip bgp extcommunity 01:02:33:33:33:33:33:33 BGP table version is 5,local router ID is 10.0.0.2...
Page 729
bgp ecomm-policy – Configures the extended community attribute advertisement policy for specific destination Release : 729 / 913...
28.45 show ip bgp summary This command displays the status of all BGP4 connections. show ip bgp summary Mode Privileged EXEC Mode Example smis# show ip bgp summary BGP router identifier is 10.0.0.1, local AS number 100 BGP table version is 5 Neighbor Version AS MsgRcvd MsgSent Up/Down State/PfxRcd --------- ------- -- ------- ------- ------- ------------ 10.0.0.2 4 200 44 56 00:00:21:26 Established...
28.46 show ip bgp filters This command displays the contents of filter table. show ip bgp filters Mode Privileged EXEC Mode Example smis# show ip bgp filters Index Admin Remote-AS PrefixLen Inter-AS Direction Action Status Prefix ----- ----------- ------- ------ --------- -------- --------- - 1 up 500 12.0.0.0 8 555,444 out allow 2 up 500 15.0.0.0 8 - in filter 3 up 500 18.0.0.0 8 555,444 out allow...
28.47 show ip bgp aggregate This command displays the contents of aggregate table. show ip bgp aggregate Mode Privileged EXEC Mode Example smis# show ip bgp aggregate Index AdminStatus Prefix PrefixLen Advertise ----- ----------- ------ --------- --------- 1 up 10.0.0.0 8 all 2 up 20.0.0.0 8 summary-only 3 up 50.0.0.0 8 all BGP Speaker Local AS number must be configured.
28.48 show ip bgp med This command displays the contents of MED table. show ip bgp med Mode Privileged EXEC Mode Example smis# show ip bgp med Index Admin Remote Prefix Prefix Inter Direction Value Preference Status -AS Len -AS ---------- --------- ------ --------- -------- --------- ---- 1 up 300 77.0.0.0 8 556,664 in 400 true 2 up 400 78.0.0.0 8 - out 500 false...
28.49 show ip bgp dampening This command displays the contents of dampening table. show ip bgp dampening Mode Privileged EXEC Mode Example smis# show ip bgp dampening Half Life Time is 900 Reuse value is 500 Suppress value is 3500 Max Suppress time is 3600 Decay timer granularity is 1 Reuse timer granularity is 15...
28.50 show ip bgp local-pref This command displays the contents of local preference table. show ip bgp local-pref Mode Privileged EXEC Mode Example smis# show ip bgp local-pref Index Admin Remote Prefix Prefix Inter Direction Value Preference Status -AS Len -AS --- --------- ------ --------- -------- --------- ----- ---------- 1 up 300 22.0.0.0 8 555,666 in 400 true 2 up 400 23.0.0.0 8 - out 500 false...
28.52 show ip bgp info This command displays the general info about BGP protocol. show ip bgp info Mode Privileged EXEC Mode Example smis# show ip bgp info Routing Protocol is "bgp 100" IGP synchronization is disabled Routing Protocol is bgp 100 Both more-specific and less-specific overlap route policy is set Local Preference is 100 Non-bgp routes are advertised to both external and internal peers...
Page 738
Related Commands router bgp – Sets the AS number of the BGP Speaker ip bgp overlap-policy – Configures the Overlap Route policy for the BGP Speaker ip bgp synchronization – Enables synchronization between BGP and IGP bgp default local-preference – Configures the Default Local Preference value neighbor - ebgp-multihop –...
28.53 show ip bgp rfl info This command displays information about RFL feature. show ip bgp rfl info Mode Privileged EXEC Mode Example smis# show ip bgp rfl info Cluster id is 10.0.0.1 Desired Support of the route reflector - Client Support BGP Peer Extension Table Peer Address Client/Non-Client ---- ------- -----------------...
28.54 show ip bgp confed info This command displays info about confederation feature. show ip bgp confed info Mode Privileged EXEC Mode Example smis# show ip bgp confed info Confederation Identifier is 1000 Confederation best path med comparision is not set Confederation peers: 200 300 400 BGP Speaker Local AS number must be configured.
28.55 show ip bgp community This command displays the contents of community tables. show ip bgp community {route|peer|policy|filter} Syntax Description route - Entry in additive or delete community table peer - Advertisement of community attributes to peer policy - Community attribute advertisement policy for specific destination filter - Filters the community attribute while receiving or advertising Mode Privileged EXEC Mode...
Page 742
80000 deny Outgoing Filter Table CommValue FilterStatus --------- ------------- 75000 accept 85000 deny smis# show ip bgp community policy Community Policy Table Prefix PrefixLen SendStatus ------ --------- ----------- 20.0.0.0 8 set-add 30.0.0.0 8 set-none 40.0.0.0 8 modify smis# show ip bgp community peer Community Peer Table IpAddress SendStatus --------- -----------...
28.56 show ip bgp extcommunity This command displays the contents of ext-community tables. show ip bgp extcommunity {route|peer|policy|filter} Syntax Description route - Entry in additive or delete ext community table peer - Advertisement of ext community attributes to peer policy - Extended community attribute advertisement policy for specific destination filter - Filters the ext community attribute while receiving or advertising Mode Privileged EXEC Mode...
28.57 show ip bgp dampened-paths This command displays the dampened routes. show ip bgp dampened-paths Mode Privileged EXEC Mode Example smis# show ip bgp dampened-paths Status codes: s suppressed, d damped,* valid Network From LastUpdt Path ------- ---- -------- ---- 65.0.0.0 22.0.0.1 00:5:5:1 100 60.0.0.0 22.0.0.1 00:4:15:1 100 80.0.0.0 23.0.0.2 00:4:11:41 300...
28.58 show ip bgp flap-statistics This command displays the statistics of flapped routes. show ip bgp flap-statistics [<ip-address><Mask>] Syntax Description ip-address - IP Address of the Route Mask - Subnet Mask Mode Privileged EXEC Mode Example smis# show ip bgp flap-statistics Status codes: s suppressed, d damped,* valid Network From Flaps LastUpdt Path ------- ---- ----- -------- ----...
29 IPv6 IPv6 is a new version of IP which is designed to be an evolutionary step from IPv4. It can be installed as a normal software upgrade in Internet devices and is interoperable with the current IPv4. It has expanded routing and addressing capabilities because of the 128 bit addressing as compared to the 32 bit addressing in IPv4.
29.1 ipv6 enable This command enables IPv6 processing on an interface that has not been configured with an explicit IPv6 address. The no form of the command disables IPv6 processing on the interface that has not been configured with an explicit IPv6 address. ipv6 enable no ipv6 enable Mode...
29.2 ipv6 unicast-routing This command enables unicast routing. The no form of the command disables unicast routing. ipv6 unicast-routing no ipv6 unicast-routing Mode Global Configuration Mode Defaults Enabled Example smis(config)# ipv6 unicast-routing Release : 750 / 913...
29.3 ipv6 - address This command configures IPv6 address on the interface. The no form of the command deletes the configured IPv6 address. ipv6 address <prefix> <prefix Len> [{unicast | anycast | eui64}] no ipv6 address <prefix> <prefix Len> [{unicast | anycast | eui64}] Syntax Description prefix - IPv6 prefix for the interface prefix Len - IPv6 prefix length...
29.4 ipv6 - link local address This command configures the IPv6 link-local address on the interface. The no form of the command deletes the configured IPv6 link-local address. ipv6 address <prefix> link-local no ipv6 address <prefix> link-local Syntax Description prefix - IPv6 Prefix for the interface link-local - Type of address Mode Interface Configuration Mode...
29.6 ipv6 - neighbor This command configures a static entry in the IPv6 neighbor cache table. The no form of the command removes the static entry from the IPv6 neighbor cache table. ipv6 neighbor <prefix> {vlan <id> | tunnel <id>} <MAC ADDRESS (xx:xx:xx:xx:xx:xx)>...
29.7 ipv6 nd suppress-ra This command suppresses IPv6 router advertisement. The no form of the command enables IPv6 router advertisement. ipv6 nd suppress-ra no ipv6 nd suppress-ra Mode Interface Configuration Mode Defaults Router advertisements are suppressed Example smis(config-if)# ipv6 nd suppress-ra Related Commands show ipv6 interface –...
29.8 ipv6 nd managed-config flag This command sets the 'Managed config flag' which allows the host to use DHCP for address configuration. The no form of the command resets the 'Managed config flag' which in turn does not allow the host to use DHCP for address configuration. ipv6 nd managed-config flag no ipv6 nd managed-config flag Mode...
29.9 ipv6 nd other-config flag This command sets the 'other config flag' which allows the host to use DHCP for other stateful configuration. The no form of the command resets the 'other config flag' which in turn does not allow the host to use DHCP for other stateful configuration.
29.10 ipv6 hop-limit This command configures the maximum hoplimit for all IPv6 packets originating from the interface. The no form of the command resets the hoplimit to default value for all IPv6 packets originating from the interface ipv6 hop-limit <HopLimit (1-255)> no ipv6 hop-limit Mode Interface Configuration Mode...
29.11 ipv6 nd ra-lifetime This command sets the IPv6 Router Advertisement lifetime. ipv6 nd ra-lifetime <LifeTime (0-9000)> Mode Interface Configuration Mode Defaults 1800 seconds Example smis(config-if)# ipv6 nd ra-lifetime 100 The ND RA lifetime value must be greater than or equal to the RA interval. Related Commands no ipv6 nd suppress-ra –...
29.12 ipv6 nd dad attempts This command sets the number of duplicate address detection (dad) attempts. The no form of the command resets the duplicate address detection attempts to its default value. ipv6 nd dad attempts <no of attempts (1-10)> no ipv6 nd dad attempts Mode Interface Configuration Mode...
29.13 ipv6 nd reachable-time This command sets the advertised reachability time. The no form of the command resets the advertised reachability time to default value. ipv6 nd reachable-time <Reachable Time (1-3600)> no ipv6 nd reachable-time Mode Interface Configuration Mode Defaults Example smis(config-if)# ipv6 nd reachable-time 500 Related Commands...
29.14 ipv6 nd ra-interval This command sets the IPv6 Router Advertisement interval. The no form of the command resets the IPv6 Router Advertisement interval to its default value. ipv6 nd ra-interval <interval (4-1800)> no ipv6 nd ra-interval Mode Interface Configuration Mode Defaults 600 seconds Example...
29.15 ipv6 nd prefix This command configures the prefix to be advertised in IPv6 Router Advertisement. The no form of the command removes the prefix from the IPv6 Router Advertisement. ipv6 nd prefix {<prefix addr> <prefixlen> | default} [{{<valid lifetime> | infinite | at <var valid lifetime>}{<preferred lifetime>...
29.16 ping ipv6 This command sends IPv6 echo messages. ping ipv6 <prefix> [data <hex_str>] [repeat <count>] [size <value>] [anycast] [source {vlan <id> | tunnel <id> | <source_prefix>}] [timeout <value (1- 100)>] Syntax Description prefix - IPv6 Destination Prefix data - Data to be sent in ping message repeat - Number of ping messages size - Size of the ping message anycast - Type of Prefix...
29.19 clear ipv6 neighbors This command removes all the entries in the IPv6 neighbor table. clear ipv6 neighbors Mode Privileged EXEC Mode Example smis# clear ipv6 neighbors Related Command show ipv6 neighbors – Displays the IPv6 Neighbour Cache Entries Release : 768 / 913...
29.20 clear ipv6 traffic This command removes all the entries in the IPv6 traffic table. clear ipv6 traffic Mode Privileged EXEC Mode Example smis# clear ipv6 traffic Related Command show ipv6 traffic – Displays the IPv6 ICMP and UDP statistics Release : 769 / 913...
29.23 show ipv6 route This command displays the IPv6 Routes. show ipv6 route Mode Privileged EXEC Mode Example smis# show ipv6 route IPv6 Routing Table - 4 entries Codes : C - Connected, S - Static O - OSPF, R - RIP, B - BGP C 2222::/64 [1/1] via ::, vlan1 C 2223:1:2:3::/64 [1/1]...
30 RRD6 RRD6 (Route Redistribution) allows different routing protocols to exchange IPv6 routing information. The list of CLI commands for the configuration of RRD6 is as follows: export ospfv3 redistribute-policy default redistribute-policy throt show redistribute-policy ipv6 show redistribute information ipv6 Release : 778 / 913...
30.1 export ospfv3 This command enables redistribution of OSPF area/External routes to the protocol. The no form of the command disables redistribution of OSPF area/External routes to the protocol. export ospfv3 {area-route|external-route} {rip} no export ospfv3 {area-route|external-route} {rip} Syntax Description area-route - OSPFv3 inter-area and intra-area address/mask pairs to be exported into the routing protocol external-route - OSPFv3 Type 1 and Type 2 External address/mask pairs to be exported into the...
30.2 redistribute-policy This command adds the IPv6 permit/deny Redistribution Policy. The no form of the command removes the IPv6 permit/deny Redistribution Policy. redistribute-policy {ipv6} {permit|deny} <DestIp> <DestRange> {static|local|rip|ospf} {rip|ospf|all} no redistribute-policy {ipv6} <DestIp> <DestRange> Syntax Description ipv6 - IPv6 Protocol permit - Sets the default rule for all prefixes to 'permit' deny - Sets the default rule for all prefixes to 'deny' DestIp - Destination IP address...
30.3 default redistribute-policy This command sets the default behavior of the RRD6 Control Table. default redistribute-policy {ipv6} {permit | deny} Syntax Description ipv6 - IPv6 Protocol permit - Sets the default rule for all prefixes to 'permit' deny - Sets the default rule for all prefixes to 'deny' Mode Global Configuration Mode Example...
30.4 throt This command configures the maximum number of routes processed for every iteration. throt <value> Mode Global Configuration Mode Defaults 1000 Example smis(config)# throt 100 Release : 782 / 913...
30.5 show redistribute-policy ipv6 This command displays the route redistribution filters show redistribute-policy ipv6 Mode Privileged EXEC Mode Example smis# show redistribute-policy ipv6 Destination Range SrcProto DestProto Flag ----------- ----- -------- ----------- ---- 3434::1111 64 static rip Deny :: 128 all others Allow Related Commands redistribute-policy –...
30.6 show redistribute information ipv6 This command displays the RTM6 RRD status for registered protocols. show redistribute information ipv6 Mode Privileged EXEC Mode Example smis# show redistribute information ipv6 Current State is enabled ProtoName OspfAreaRoutes OspfExtRoutes --------- -------------- ------------- local Disable Disable static Disable Disable rip Enable Enable Related Command...
31 RIPv6 IPv6 RIP functions the same and offers the same benefits as RIP in IPv4. RIP enhancements for IPv6, detailed in RFC 2080, include support for IPv6 addresses and prefixes, and the use of all-RIP-routers multicast group address as the destination address for RIP update messages. This module describes how to configure Routing Information Protocol for IPv6.
31.1 ipv6 router rip This command enables the router configuration mode and the no form of the command disables RIP6 on all the interfaces. ipv6 router rip no ipv6 router rip Mode Global Configuration Mode Example smis(config)# ipv6 router rip Before configuring the router to run IPv6 RIP, the ipv6 unicast-routing must be enabled globally, and IPv6 must be enabled on any interface in which IPv6 RIP is to be processed.
31.2 ipv6 split-horizon This command enables the split horizon updates and the no form of the command disables the split horizon updates. ipv6 split-horizon no ipv6 split-horizon Mode Interface Configuration Mode Example smis(config-if)# ipv6 split-horizon The value splitHorizon denotes that splitHorizon algorithm must be applied in the response packets that are going out.
31.3 ipv6 rip enable This command enables RIP Routing and the no form of the command disables the RIP Routing. ipv6 rip enable no ipv6 rip Mode Interface Configuration Mode Example smis(config-if)# ipv6 rip enable Related Command show ipv6 rip database – Displays IPv6 Local RIB and routing protocol information Release : 788 / 913...
31.4 ipv6 poison reverse This command enables poison reverse. ipv6 poison reverse Mode Interface Configuration Mode Example smis(config-if)# ipv6 poison reverse The value poison reverse denotes that poison reverse algorithm must be applied in the response packets that are going out. Related Command show ipv6 rip database –...
31.5 ipv6 rip default-information originate This command configures handling of default route originate and the no form of the command disables handling of default route originate. ipv6 rip default-information originate no ipv6 rip default-information Mode Interface Configuration Mode Example smis(config-if)# ipv6 rip default-information originate The command originates the IPv6 default route into the specified RIP routing process updates sent out of the specified interface.
31.6 ipv6 rip metric-offset This command adjusts default metric increment. ipv6 rip metric-offset <integer (1-15)> Mode Interface Configuration Mode Example smis(config-if)# ipv6 rip metric-offset 6 The ipv6 rip metric-offset command is used in conjunction with the redistribute router configuration command to cause the current routing protocol to use the same metric value for all redistributed routes. The maximum metric that RIP can advertise is 16, and a metric of 16 denotes a route that is unreachable.
31.7 redistribute This command enables redistribution of IPv6 prefix from another protocol into RIP6 and the no form of the command disables redistribution of IPv6 prefix from another protocol into RIP6. redistribute {static|connected|ospf} metric <integer(0-16)> no redistribute {static|connected|ospf} Syntax Description static - Statically configured routes to advertise in the RIP6 process connected - Connected routes to advertise in the RIP6 process ospf - OSPF routes to advertise in the RIP6 process...
31.8 distribute prefix This command enables Filter network in routing updates sent or received and the no form of the command disables Filter network in routing updates sent or received. distribute prefix <ip6_addr> {in | out} no distribute prefix <ip6_addr> {in | out} Syntax Description ip6_addr - IPv6 Address in - Filter network in routing updates received...
31.9 debug ipv6 rip This command enables IPv6 RIP routing protocol debugging and the no form of the command disables IPv6 RIP routing protocol debugging. debug ipv6 rip { all | data | control } no debug ipv6 rip Syntax Description all - All resources data - Data path messages control - Control Plane messages...
31.12 show ipv6 rip filter This command displays peer and Advfilter table. show ipv6 rip filter Mode Privileged EXEC Mode Example smis# show ipv6 rip filter Filter Address FilterType ************** ********** fe80::200:ff:febb:e01 IN fe80::200:ff:fecc:102 IN 3333::1111 OUT Related Command distribute prefix – Enables Filter network in routing updates sent or received Release : 797 / 913...
32 OSPFv3 Open Shortest Path First (OSPF) is a link-state, hierarchical Interior Gateway Protocol (IGP) routing algorithm. OSPFv3 is the modified form of OSPF to support version 6 of the Internet Protocol. The fundamental mechanisms of OSPF (flooding, DR election, area support, SPF calculations, etc.) remain unchanged. However, some changes have been necessary, either due to changes in protocol semantics between IPv4 and IPv6, or simply to handle the increased address size of IPv6.
32.1 ipv6 router ospf This command enables the OSPFv3 routing protocol. The no form of the command disables the OSPFv3 routing protocol. ipv6 router ospf no ipv6 router ospf Mode Global Configuration Mode Defaults Disabled Example smis(config)# ipv6 router ospf The no form of the command disables all the interfaces and triggers flushing of selforiginated LSAs (Link State Advertisements) and deletes the router's Link State Database.
32.2 router-id This command sets a fixed router ID. router-id <IPv4-Address> Syntax Description IPv4-Address - A 32-bit integer that uniquely identifies the router in the autonomous system. Mode Router Configuration Mode Defaults IPv4-Address - 0.0.0.0 Example smis(config-router)# router-id 11.0.0.1 Related Command show ipv6 ospf - General Information –...
32.3 area - stub/nssa This command defines an area as a stub area or an NSSA (Not So Stubby Area). area <area-id> {{ stub | nssa } [no-summary]} Syntax Description area-id - A 32-bit integer stub - Stub area nssa - NSSA no-summary - Allows an area to be a stubby/not-so-stubby but does not allow it to have summary routes injected into it Mode...
32.4 area - stability-interval This command configures the stability interval (in seconds) for the NSSA. The no form of the command sets the default value of the stability interval for the NSSA. area <area-id> stability-interval <1-65535> no area <area-id> stability-interval Syntax Description area-id - A 32 bit integer stabilityinterval - The number of seconds after which an elected translator determines that its...
32.5 area - translation-role This command configures the translation role for NSSA. The no form of the command configures the default translation role for the NSSA. area <area-id> translation-role { always | candidate } no area <area-id> translation-role Syntax Description area-id - A 32 bit integer translation-role - An NSSA Border router's ability to perform NSSA Translation of Type-7 LSAs to Type-5 LSAs...
32.6 timers spf This command configures the delay time and the hold time between two consecutive SPF calculations. The no form of the command sets the default values for spf-delay and spf-holdtime. timers spf <spf-delay> <spf-holdtime> no timers spf Syntax Description spf-delay - The interval by which SPF calculation is delayed after a topology change reception.
32.7 abr-type This command sets the ABR (Area Border Router) type. The no form of the command sets the default ABR type. abr-type { standard | cisco | ibm } no abr-type Syntax Description standard - Standard ABR type cisco - CISCO ABR type ibm - IBM ABR type Mode Router Configuration Mode...
32.8 area - default-metric value This command sets the default metric value for an area of type NSS/stub only. area <area-id> default-metric <metric> area-id - A 32 bit integer Syntax Description default-metric - Cost for the default summary route in a stub/NSS area Mode Router Configuration Mode Defaults...
32.9 area - default-metric type This command sets the default metric-type for an area type of NSS/stub only. area <area-id> default-metric type <metricType(1-3)> Syntax Description area-id - A 32 bit integer default-metric type - Type of metric Mode Router Configuration Mode Defaults metricType - 1 Example...
32.10 area - virtual-link This command sets the Virtual Link between areas. In OSPFv3, all areas must be connected to a backbone area. If there is a break in backbone continuity, or the backbone is purposefully partitioned, a virtual link can be established. The two endpoints of a virtual link are ABRs. The virtual link must be configured in both routers.
Page 811
Virtual links cannot be configured through stub areas. hello-interval and dead-interval values must be the same for all routers on a specific network. Related Commands show ipv6 ospf interface – Displays the OSPFv3-related interface information show ipv6 ospf virtual-links – Displays the parameters and the current state of OSPFv3 virtual links Release : 811 / 913...
32.11 ASBR Router This command configures the router as an ASBR. The no form of the command disables the ASBR status of the router. ASBR Router no ASBR Router Mode Router Configuration Mode Example smis(config-router)# ASBR Router Only when ASBR (Autonomous System Border Router) status is configured to enable, routes from other protocols are redistributed into OSPFv3 domain.
32.12 area - range This command creates the Internal Aggregation Address Range. The Internal Address Range is of two types Type-3 Aggregation Type 7 Translation Aggregation area <Area-ID> range <IPv6-Prefix> <Prefix-Length> [{ advertise | notadvertise }] {summary | Type7} [tag <tag-value>] Syntax Description Area-ID - A 32-bit integer range - Internal Aggregation Address Range...
Page 814
This is not used by the OSPFv3 protocol alone. It can be used to communicate information between AS boundary routers. Related Command show ipv6 ospf - area-range / summary-prefix – Displays either the list of all area address ranges information or all external summary address configuration information Release : 814 / 913...
32.13 area - external summary address This command enables route aggregation/filtering while importing routes in the OSPFv3 domain. The command configures Type-5 and Type-7 Address Range specifying whether Type-5/Type-7 LSAs are generated or not for the configured range for the particular area. area <AreaID>...
Page 816
3ffe:5000::481d::5 80 allowall Translation enabled The Value allowAll/denyall is not valid for areaId other than 0.0.0.0. Related Command show ipv6 ospf - area-range / summary-prefix – Displays either the list of all area address ranges information or all external summary address configuration information Release : 816 / 913...
32.14 redistribute This command configures the protocol from which the routes have to be redistributed into OSPFv3. The no form of the command disables the redistribution of routes from the given protocol into OSPFv3. redistribute {static | connected | ripng | bgp} no redistribute {static | connected | ripng | bgp } Syntax Description static - Advertises routes, configured statically in the OSPFv3 routing process...
32.15 passive-interface This command sets the global default passive interface status. All the interfaces created after executing this command become passive interfaces. The no form of the command resets the global default passive interface status. All the interfaces created after executing this command become non-passive interfaces. passive-interface no passive-interface Mode...
32.16 host - metric/area-id This command configures a host entry with metric and/or area-id. The no form of the command deletes a host entry. host <IPv6-Address> {metric <cost>} [area-id {<AreaID>}] no host <IPv6-Address> Syntax Description IPv6-Address - IPV6 address prefix metric - Metric to be advertised area-id - A 32-bit integer Mode...
32.17 no area This command deletes an area and does any one of the following based on the optional parameter. coverts stub/nss area to normal area deletes virtual link deletes stub cost delete area-range or summary-prefix. no area <area-id> [ { stub | nssa | virtual-link <router-id> | default-metric | {range {summary | Type7} | summary-prefix} <IPv6-Prefix>...
32.18 nssaAsbrDfRtTrans This command enables setting of P bit in the default Type-7 LSA generated by an NSSA internal ASBR. The no form of the command disables setting of P bit in the default Type-7 LSA generated by an NSSA internal ASBR.
32.19 redist-config This command configures the information to be applied to routes learnt from RTM. The no form of the command deletes the information applied to routes learnt from RTM. redist-config <IPv6-Prefix> <Prefix-Length> [metric-value <metric>] [metrictype {asExttype1 | asExttype2}] [tag <tag-value>] no redist-config <IPv6-Prefix>...
32.20 as-external lsdb-limit This command sets the maximum number of non-default AS-external-LSA entries that can be stored in the link-state database. If the value is -1, then there is no limit. as-external lsdb-limit <lsdb-limit (-1 - 0x7fffffff)> Mode Router Configuration Mode Defaults lsdb-limit - -1 Example...
32.21 exit-overflow-interval This command sets the number of seconds after which a router will attempt to leave the Overflow State. exit-overflow-interval <interval> Mode Router Configuration Mode Defaults interval - 0 Example smis(config-router)# exit-overflow-interval 10 Related Command show ipv6 ospf - General Information – Displays general information about the OSPFv3 routing process Release : 825 / 913...
32.22 demand-extensions This command enables routing support for demand routing. The no form of the command disables routing support for demand routing. demand-extensions no demand-extensions Mode Router Configuration Mode Defaults Enabled Example smis(config-router)# demand-extensions Related Command show ipv6 ospf - General Information – Displays general information about the OSPFv3 routing process Release : 826 / 913...
32.23 reference-bandwidth This command sets the reference bandwidth in kilobits per second for calculating the default interface metrics. reference-bandwidth <ref-bw> Mode Router Configuration Mode Defaults ref-bw - 100,000 KBPS Example smis(config-router)# reference-bandwidth 1000000 Related Command show ipv6 ospf - General Information – Displays general information about the OSPFv3 routing process Release : 827 / 913...
32.24 ipv6 ospf area This command enables OSPFv3 for IPv6 on an interface. The no form of the command disables OSPFv3 routing protocol on the interface. ipv6 ospf area <IPv4-Address> no ipv6 ospf Syntax Description IPv4-Address - A 32-bit integer Mode Interface Configuration Mode Defaults...
32.25 ipv6 ospf demand-circuit This command configures OSPFv3 to treat the interface as an OSPFv3 demand circuit. It indicates whether Demand OSPFv3 procedures (hello suppression to FULL neighbors and setting the DoNotAge flag on propagated LSAs) must be performed on the configured interface. The no form of the command disables the demand circuit on an interface.
32.26 ipv6 ospf retransmit-interval This command sets the time between LSA retransmissions for adjacencies belonging to interface. The no form of the command sets the default retransmit interval for an interface. ipv6 ospf retransmit-interval <interval> no ipv6 ospf retransmit-interval Mode Interface Configuration Mode Defaults interval - 5...
32.27 ipv6 ospf transmit-delay This command sets the estimated time taken to transmit LS update packet over a particular interface. The no form of the command sets the default transmit delay for an interface. ipv6 ospf transmit-delay <1-1800> no ipv6 ospf transmit-delay Mode Interface Configuration Mode Defaults...
32.28 ipv6 ospf priority This command sets the router priority, which helps to determine the Designated Router for this network. The no form of the command sets the default router priority for an interface. ipv6 ospf priority <1-255> no ipv6 ospf priority Mode Interface Configuration Mode Defaults...
32.29 ipv6 ospf hello-interval This command specifies the time interval between the OSPFv3 hello packets on a particular interface (the length of time, in seconds, between the Hello packets that the router sends on the interface). The no form of the command sets the default hello interval for an interface. ipv6 ospf hello-interval <1-65535>...
32.30 ipv6 ospf dead-interval This command configures the router dead interval. It is configured in seconds and indicates the time period for which the router waits for hello packet from the neighbor before declaring this neighbor down. The no form of the command sets the interface dead interval to default value. ipv6 ospf dead-interval <1-65535>...
32.31 ipv6 ospf poll-interval This command configures the larger time interval, in seconds, between the Hello packets sent to an inactive non-broadcast multi-access neighbor. The no form of the command sets the default poll interval for an interface. ipv6 ospf poll-interval <1-65535> no ipv6 ospf poll-interval Mode Interface Configuration Mode...
32.32 ipv6 ospf metric This command explicitly specifies the metric value for sending a packet on an interface. The no form of the command sets the default value for the interface metric. ipv6 ospf metric <1-65535> no ipv6 ospf metric Mode Interface Configuration Mode Defaults...
32.33 ipv6 ospf network This command sets the network type for an interface. The no form of the command sets the default value for the network type. ipv6 ospf network { broadcast | non-broadcast | point-to-multipoint | pointto- point } no ipv6 ospf network Syntax Description broadcast - Networks supporting many (more than two) attached routers, together with the capability to...
32.34 ipv6 ospf neighbor This command configures a neighbor on non-broadcast networks and sets the priority value for the neighbor if specified. The no form of the command deletes a configured neighbor or sets the default priority value (if the priority option is specified). ipv6 ospf neighbor <IPv6-Address>...
32.35 ipv6 ospf passive-interface This command configures an OSPFv3 interface to be Passive. The execution of the command results in suppressing OSPFv3 protocol packets traffic on this interface. The no form of the command configures an OSPFv3 interface to be non-passive. ipv6 ospf passive-interface no ipv6 ospf passive-interface Mode...
32.36 ipv6 ospf neighbor probing This command enables neighbor probing on demand-circuit enabled interface. The no form of the command disables neighbor probing on demand-circuit enabled interface. ipv6 ospf neighbor probing no ipv6 ospf neighbor probing Mode Interface Configuration Mode Defaults Disabled Example...
32.37 ipv6 ospf neighbor-probe retransmit-limit This command sets the number of consecutive LSA retransmissions before the neighbor is deemed inactive. The no form of the command sets the default neighbor probe retransmission limit. ipv6 ospf neighbor-probe retransmit-limit <retrans-limit> no ipv6 ospf neighbor-probe retransmit-limit Mode Interface Configuration Mode Defaults...
32.38 ipv6 ospf neighbor-probe interval This command sets the number of seconds, that indicates how often neighbor will be probed. The no form of the command sets the default neighbor probe interval. ipv6 ospf neighbor-probe interval <interval> no ipv6 ospf neighbor-probe interval Mode Interface Configuration Mode Defaults...
32.39 debug ipv6 ospf This command sets the trace levels. The no form of the command resets the trace levels. debug ipv6 ospf [pkt ( [{high | low | hex}] [hp] [ddp] [lrq] [lsu] [lsa] )] [level ([fn_entry] [fn_exit] [critical] [mem_alloc_succ] [mem_alloc_fail])] [module ( [ppp] [rtm] [nssa] [rt_aggrg] [adj_formation] [lsdb] [ism] [nsm] [rt_calc] [interface] [config] )] no debug ipv6 ospf [ pkt ( [{high | low | hex}] [hp] [ddp] [lrq] [lsu] [lsa]...
Page 844
ism - Interface State Machine Trace nsm - Neighbor State Machine Trace rt_calc - Routing Table Calculation Trace interface - Interface Trace config - Configuration Trace Mode Privileged EXEC Mode Defaults Debugging is disabled by default. Example smis# debug ipv6 ospf pkt high hp level fn_entry module ppp Related Command show ipv6 ospf - General Information –...
32.40 show ipv6 ospf interface This command displays the OSPFv3-related interface information. show ipv6 ospf interface [ vlan <vlan-id(1-4069)> ] Syntax Description Vlan - VLAN Identifier Mode User/Privileged EXEC Mode Example smis# show ipv6 ospf interface vlan 1 OSPFv3 Interface Information Interface Name: vlan2 Interface Id: 1 Area Id: 0.0.0.0 Local Address: fe80::211:22ff:fe33:4412 Router Id: 11.0.0.2 Network Type: BROADCAST Cost: 10 State: WAITING...
Page 846
ipv6 ospf priority – Sets the router priority, which helps to determine the Designated Router for this network ipv6 ospf hello-interval – Specifies the time interval between the OSPFv3 hello packets on a particular interface ipv6 ospf dead-interval – Configures the router dead interval ipv6 ospf poll-interval –...
32.41 show ipv6 ospf neighbor This command displays OSPFv3 neighbor information. show ipv6 ospf neighbor [ <Neighbor-RouterID> ] Mode User/Privileged EXEC Mode Example smis# show ipv6 ospf neighbor ID Pri State Dead Address Time 11.0.0.4 1 FULL/PTOP 31 fe80::211:22ff:fe33:4434 11.0.0.5 10 FULL/BACKUP 35 fe80::260:83ff:fe38:8aa2 Related Command ipv6 ospf neighbor –...
32.42 show ipv6 ospf - request/retrans-list This command displays the list of all link state advertisements (LSAs) in request-list or in retransmissionlist. show ipv6 ospf { request-list | retrans-list } [ <Neighbor-RouterID> ] Syntax Description request-list - The list of Link State Advertisements for which the neighbor has more up-to-date instances.
32.43 show ipv6 ospf virtual-links This command displays the parameters and the current state of OSPFv3 virtual links. show ipv6 ospf virtual-links Mode User/Privileged EXEC Mode Example smis# show ipv6 ospf virtual-links Interface State: PointToPoint, Neighbor State: FULL Transit Area: 2.2.2.2, Virtual Neighbor: 11.0.0.7 Intervals Configured for the Virtual Interface: Hello: 10, Dead: 60, Transit: 1, Retransmit : 20 Related Command...
32.44 show ipv6 ospf border-routers This command displays the internal OSPFv3 routing table entries to an ABR/ASBR. show ipv6 ospf border-routers Mode User/Privileged EXEC Mode Example smis# show ipv6 ospf border-routers OSPFv3 Process Border Router Information Destination Type NextHop Cost Rt Area Type Id 11.0.0.2 ABR fe80::211:22ff:fe33:4412 10 intraArea 0.0.0.0 11.0.0.2 ABR fe80::211:22ff:fe33:4422 10 intraArea 0.0.0.1...
32.45 show ipv6 ospf - area-range / summary-prefix This command displays either the list of all area address ranges information or all external summary address configuration information. show ipv6 ospf { area-range | summary-prefix } Syntax Description area-range - Area associated with the OSPFv3 address range summary-prefix - Aggregate addresses for OSPFv3 Mode User/Privileged EXEC Mode...
Page 852
no area – Deletes an area Release : 852 / 913...
32.46 show ipv6 ospf - General Information This command displays general information about OSPFv3 routing process. show ipv6 ospf Mode User/Privileged EXEC Mode Example smis# show ipv6 ospf Router Id: 11.0.0.1 ABR Type: Standard ABR SPF schedule delay: 5 secs Hold time between two SPFs: 10 secs Exit Overflow Interval: 0 Ref BW: 100000000 Ext Lsdb Limit: -1...
Page 854
ASBR Router – Configures the router as an ASBR passive-interface – Sets the global default passive interface status nssaAsbrDfRtTrans – Enables setting of P bit in the default Type-7 LSA generated by an NSSA internal ASBR as-external lsdb-limit – Sets the maximum number of non-default AS-external-LSAs entries that can be stored in the link-state database exit-overflow-interval –...
32.47 show ipv6 ospf - LSA Database This command displays the LSA information. show ipv6 ospf [area <AreaID>] database [{router|network|as- external|interprefix| inter-router|intra-prefix|link|nssa}] [{detail|HEX}] Syntax Description Area - A 32-bit integer database - Displays the number of each type of LSA for each area in the database router - Router LSAs network - Network LSAs as-external - AS-External LSAs...
32.49 show ipv6 ospf areas This command displays the Area Table. show ipv6 ospf areas Mode User/Privileged EXEC Mode Example smis# show ipv6 ospf areas OSPFv3 AREA CONFIGURATION INFORMATION AreaId: 0.0.0.0 Area Type: NORMAL AREA Spf Calculation: 3 (times) Area Bdr Rtr Count: 1 As Bdr Rtr Count: 0 Area Summary: Send Summary AreaId: 0.0.0.1 Area Type: NSS AREA Spf Calculation: 0 (times) Area Bdr Rtr Count: 1...
32.51 show ipv6 ospf redist-config This command displays the configuration information to be applied to the routes learnt from the RTM. show ipv6 ospf redist-config Mode User/Privileged EXEC Mode Example smis# show ipv6 ospf redist-config Address Prefix PfxLength MetricType Metric TagType TagValue 3ffe:: 64 asExtType2 10 manual 10 Related Command redist-config –...
33 DiffServ (Differentiated Services) DiffServ (Differentiated Services) is an architecture for providing different types or levels of service for network traffic. One key characteristic of Diffserv is that flows are aggregated in the network, so that core routers only need to distinguish a comparably small number of aggregated flows, even if those flows contain thousands or millions of individual flows.
Page 862
show cosq algorithm show cosq weights-bw Release : 862 / 913...
33.1 set qos This command enables differentiated services on the device. The disable option is used to disable the QoS feature on the device. set qos { enable | disable } Syntax Description enable - Enables differentiated services disable - Disables differentiated services Mode Global Configuration Mode Defaults...
33.2 class-map This command creates a class map that is meant to be used for matching the packets to the class whose index is specified. This command is also used to enter the class-map configuration mode The no form of this command is used to delete an existing class map and to return to global configuration mode class-map <class-map-number(1-65535)>...
33.3 policy-map This command is used to enter the policy-map configuration mode In the policy-map configuration mode the user can create or modify a policy map. The no form of this command deletes an existing policy map and returns to the global configuration mode policy-map <policy-map-number(1-65535)>...
33.4 match This command specifies the fields in the incoming packets that are to be examined for the classification of the packets. The IP access group / MAC access group can be used as match criteria. match access-group { mac-access-list | ip-access-list } <acl-index-num (1- 65535) >...
33.5 class This command defines a traffic classification for the policy to act. The class-map-number that is specified in the policy map ties the characteristics for that class to the class map and its match criteria, as configured by using the class-map global configuration command. On execution of the class command, the switch enters the policy-map class configuration mode The no form of this command un-maps the class-map from the current policy-map configuration.
33.6 set cos This command defines the in-profile action by setting a class of service (CoS), Differentiated Services Code Point (DSCP), or IP-precedence value in the packet. The no form of the command deletes the configured values. set {cos <new-cos(0-7)> | ip dscp <new-dscp(0-63)> | ip precedence <newprecedence( 0-7)>} no set {cos <new-cos(0-7)>...
33.7 police This command defines a policer for the classified traffic. This command also specifies the action to be taken if the specified rate is exceeded or if there is no match for the policy configured. police <rate-Mbps(1-1023)> exceed-action {drop | policed-dscp-transmit <newdscp( 0-63)>} Syntax Description - Average traffic rate in mega bits per second (Mbps)
33.8 shutdown qos This command shuts down the Quality-of-Service operation. The no form of the command starts and enables the Quality-of-Service operation. shutdown qos no shutdown qos Mode Global Configuration Mode Defaults QoS is started and enabled by default Example smis(config)# shutdown qos •...
33.11 show policy-map This command displays the quality of service (QoS) policy maps, which defines the classification criteria for the incoming traffic. Policy maps can include policers that specify the bandwidth limitations and the action to take if the limits are exceeded. show policy-map [<policy-map-num(1-65535)>...
Page 874
policy-map - Used to enter the policy map configuration mode class - Defines a traffic classification for the policy to act set cos - Defines the in-profile action by setting a CoS, DSCP or IP-precedence value in the packet police - Defines a policer for the classified traffic Release : 874 / 913...
33.12 show class-map This command displays quality of service (QoS) class maps, which defines the match criteria to classify traffic. show class-map [<class-map-num(1-65535)>] Syntax Description class-map-num - Displays the configured class map number Mode Privileged/User EXEC Mode Example smis# show class-map DiffServ Configurations: ------------------------ Class map 20...
33.13 show cosq algorithm This command displays the CoSq algorithm used for the interface. show cosq algorithm [ interface <interface-type> <interface-id> ] Syntax Description interface-type - Interface Type interface-id - Interface ID Mode Global Configuration Mode Example smis(config)# show cosq algorithm interface gigabitethernet 0/1 CoSq Algorithm ------------------------...
33.14 show cosq weights-bw This command displays the CoSq weights and the bandwidth for the interface. show cosq weights-bw [ interface <interface-type> <interface-id> ] Syntax Description interface-type - Interface Type interface-id - Interface ID Mode Global Configuration Mode Example smis(config)# show cosq weights-bw interface gigabitethernet 0/1 CoSq Weights and Bandwidths ----------------------------------------------...
34 ACL (Access Control Lists) ACLs (Access Control Lists) filter network traffic by controlling whether routed packets are forwarded or blocked at the router's interfaces. ACLs are used to block IP packets from being forwarded by a router. The router examines each packet to determine whether to forward or drop the packet, based on the criteria specified within the access lists.
Page 879
ip access-group mac access-group permit deny show access-lists Release : 879 / 913...
34.1 ip access-list This command creates IP ACLs and enters the IP Access-list configuration mode Standard access lists create filters based on IP address and network mask only (L3 filters only ). Extended access lists enables specification of filters based on the type of protocol, range of TCP/UDP ports as well as the IP address and network mask (Layer 4 filters).
Page 881
deny - ip/ospf/pim/protocol type- Denies traffic for a particular protocol packet if the conditions defined in the deny statement are matched permit tcp - Specifies the TCP packets to be forwarded based on the associated parameters deny tcp - Specifies the TCP packets to be rejected based on the associated parameters permit udp - Specifies the UDP packets to be forwarded based on the associated parameters deny udp - Specifies the UDP packets to be rejected based on the associated parameters permit icmp - Specifies the ICMP packets to be forwarded based on the IP address and the...
34.2 mac access-list extended This command creates Layer 2 MAC ACLs, that is, this command creates a MAC access-list and returns the MAC-Access list configuration mode to the user. The no form of the command deletes the MAC access-list. mac access-list extended <access-list-number (1-65535)> no mac access-list extended <short (1-65535)>...
34.3 permit - standard mode This command specifies the packets to be forwarded depending upon the associated parameters. Standard IP access lists use source addresses for matching operations. permit { any | host <src-ip-address> | < src-ip-address> <mask> } [{ any | host <dest-ip-address>...
34.4 deny - standard mode This command denies traffic if the conditions defined in the deny statement are matched. deny{ any | host <src-ip-address> | <src-ip-address> <mask> } [ { any | host <dest-ip-address> | <dest-ip-address> <mask> } ] Syntax Description any|host src-ip-address| <src-ip-address>...
34.5 permit- ip/ospf/pim/protocol type This command allows traffic for a particular protocol packet if the conditions defined in the permit statement are matched. permit { ip | ospf | pim | <protocol-type (1-255)>} { any | host <src- ipaddress> | <src-ip-address> <mask> } { any | host <dest-ip-address> | <destip-address>...
Page 886
double-tag - Filter to be applied on double VLAN tagged packets. This parameter is specific to Metro package. Mode ACL Extended Access List Configuration Mode Defaults protocol-type - 255 priority - 1 single-tag | double-tag - Single tag Example smis(config-ext-nacl)# permit 200 host 100.0.0.10 any tos 6 Protocol type with the value 255 indicates that protocol can be anything and it will not be checked against the action to be performed.
34.6 deny - ip/ospf/pim/protocol type This command denies traffic for a particular protocol packet if the conditions defined in the deny statement are matched. deny { ip | ospf | pim | <protocol-type (1-255)>} { any | host <src- ipaddress> | <src-ip-address> <mask> } { any | host <dest-ip-address> | <destip-address>...
Page 888
double-tag - Filter to be applied on double VLAN tagged packets. This parameter is specific to Metro package. Mode ACL Extended Access List Configuration Mode Defaults protocol type - 255 priority – 1 single tag | double-tag – single tag Example smis(config-ext-nacl)# deny ospf any host 10.0.0.1 tos Protocol type with the value 255 indicates that protocol can be anything and it will Service Vlan, Service...
34.7 permit tcp This command specifies the TCP packets to be forwarded based on the associated parameters. permit tcp {any | host <src-ip-address> | <src-ip-address> <src-mask> }[{gt <port-number (1-65535)> | lt <port-number (1-65535)> |eq <port-number (1- 65535)> | range <port-number (1-65535)> <port-number (1-65535)>}] { any | host <dest-ip-address>...
Page 890
- The priority of the filter is used to decide which filter rule is applicable when the packet matches with more than one filter rules. Higher value of ‘filter priority’ implies a higher priority. svlan-id - Service VLAN value to match against incoming packets. Filter will be applied if it matches. This parameter is specific to Metro package.
34.8 deny tcp This command specifies the TCP packets to be rejected based on the associated parameters. deny tcp {any | host <src-ip-address> | <src-ip-address> <src-mask> }[{gt <port-number (1-65535)> | lt <port-number (1-65535)> |eq <port-number (1- 65535)> | range <port-number (1-65535)> <port-number (1-65535)>}]{ any | host <dest-ip-address>...
Page 892
svlan-id - Service VLAN value to match against incoming packets. Filter will be applied if it matches. This parameter is specific to Metro package. svlan-priority - Service VLAN priority value to match against incoming packets. Filter will be applied if it matches. This parameter is specific to Metro package. cvlan-id - Customer VLAN value to match against incoming packets.
34.9 permit udp This command specifies the UDP packets to be forwarded based on the associated parameters. permit udp { any | host <src-ip-address> | <src-ip-address> <src-mask>}[{gt <port-number (1-65535)> | lt <port-number (1-65535)>| eq <port-number (1- 65535)> | range <port-number (1-65535)> <port-number (1-65535)>}]{ any | host <dest-ip-address>...
Page 894
svlan-id - Service VLAN value to match against incoming packets. Filter will be applied if it matches. This parameter is specific to Metro package. svlan-priority - Service VLAN priority value to match against incoming packets. Filter will be applied if it matches. This parameter is specific to Metro package. cvlan-id - Customer VLAN value to match against incoming packets.
34.10 deny udp This command specifies the UDP packets to be rejected based on the associated parameters. deny udp { any | host <src-ip-address> | <src-ip-address> <src-mask>}[{gt <port-number (1-65535)> | lt <port-number (1-65535)>| eq <port-number (1- 65535)> | range <port-number (1-65535)> <port-number (1-65535)>}]{ any | host <dest-ip-address>...
Page 896
svlan-priority - Service VLAN priority value to match against incoming packets. Filter will be applied if it matches. This parameter is specific to Metro package. cvlan-id - Customer VLAN value to match against incoming packets. This parameter is specific to Metro package.
34.11 permit icmp This command specifies the ICMP packets to be forwarded based on the IP address and the associated parameters. permit icmp {any |host <src-ip-address>|<src-ip-address> <mask>}{any | host <dest-ip-address> | <dest-ip-address> <mask> }[<message-type (0-255)>] [<message-code (0-255)>] [ priority <value (1-255)>] [ svlan-id <vlan-id (1- 4069)>] [svlan-priority <value (0-7)>] [ cvlan-id <vlan-id (1-4069)>] [ cvlanpriority <value (0-7)>] [ { single-tag | double-tag } ] Syntax Description...
Page 898
ACL Extended Access List Configuration Mode Defaults message-type/message code - 255 single-tag | double-tag - Single tag Example smis(config-ext-nacl)# permit icmp any any The ICMP message type can be one of the following: Value ICMP type 0 Echo reply 3 Destination unreachable 4 Source quench 5 Redirect 8 Echo request...
Page 899
- 9 Destination network administratively prohibited - 10 Destination host administratively prohibited - 11 Network unreachable TOS - 12 Host unreachable TOS - 255 No ICMP code Related Commands ip access-list - Created IP ACLs and enters the IP Access-list configuration mode show access-lists - Displays the access list configuration deny icmp - Specifies the ICMP packets to be rejected based on the IP address and associated parameters...
34.12 deny icmp This command specifies the ICMP packets to be rejected based on the IP address and associated parameters. deny icmp {any |host <src-ip-address>|<src-ip-address> <mask>}{any | host <dest-ip-address> | <dest-ip-address> <mask> }[<message-type (0-255)>] [<message-code (0-255)>] [ priority <value (1-255)>] [ svlan-id <vlan-id (1- 4069)>] [svlan-priority <value (0-7)>] [ cvlan-id <vlan-id (1-4069)>] [ cvlanpriority <value (0-7)>] [ { single-tag | double-tag } ] Syntax Description...
Page 901
ACL Extended Access List Configuration Mode Defaults message-type / message code - 255 single-tag | double-tag - Single tag Example Smis(config-ext-nacl)# deny icmp host 100.0.0.10 10.0.0.1 255.255.255.255 The ICMP message type can be one of the following: Value ICMP type 0 Echo reply 3 Destination unreachable 4 Source quench...
Page 902
9 Destination network administratively prohibited 10 Destination host administratively prohibited 11 Network unreachable TOS 12 Host unreachable TOS 255 No ICMP code Related Commands ip access-list - Creates IP ACLs and enters the IP Access-list configuration mode show access-lists - Displays the access list configuration permit icmp - Specifies the ICMP packets to be forwarded based on the IP address and the associated parameters Release :...
34.13 ip access-group This command enables access control for the packets on the interface. It controls access to a Layer 2 or Layer 3 interface. The no form of this command removes all access groups or the specified access group from the interface.
34.14 mac access-group This command applies a MAC access control list (ACL) to a Layer 2 interface. The no form of this command can be used to remove the MAC ACLs from the interface. mac access-group <access-list-number (1-65535)> {in | out} no mac access-group [<access-list-number (1-65535)>] {in | out} access-list-number - Access List Number in - Inbound packets...
34.15 permit This command specifies the packets to be forwarded based on the MAC address and the associated parameters, that is, this command allows non-IP traffic to be forwarded if the conditions are matched. permit { any | host <mac_addr> } { any | host <mac_addr> } [ { aarp | amber | dec-spanning | decnet-iv | diagnostic | dsm | etype-6000 | etype-8042 | lat | lavc-sca | mop-console | mop-dump | msdos | mumps | netbios | vines-echo | vines-ip | xns-id | <short (0-65535)>...
Page 906
priority - The priority of the L2 filter is used to decide which filter rule is applicable when the packet matches with more than one filter rules. Higher value of 'filter priority' implies a higher priority outerEtherType - EtherType value to match on Service vlan tag svlan-id - Service VLAN value to match against incoming packets.
34.16 deny This command specifies the packets to be rejected based on the MAC address and the associated parameters. deny { any | host <mac_addr> } { any | host <mac_addr> } [ { aarp | amber | dec-spanning | decnet-iv | diagnostic | dsm | etype-6000 | etype-8042 | lat | lavc-sca | mop-console | mop-dump | msdos | mumps | netbios | vines-echo | vines-ip | xns-id | <short (0-65535)>...
Page 909
vlan - VLAN ID to be filtered priority - The priority of the L2 filter is used to decide which filter rule is applicable when the packet matches with more than one filter rules. Higher value of 'filter priority' implies a higher priority.
Page 911
34.17 show access-lists This command displays the access lists configuration. show access-lists [[{ip | mac}] <access-list-number (1-65535)> ] Syntax Description ip - IP Access List mac - MAC Access List Mode Privileged/User EXEC Mode Example smis# show access-lists IP ACCESS LISTS ----------------- Standard IP Access List 1 ----------------------------...
Page 912
Filter Action : Deny Status : InActive smis# show access-lists ip 1 Standard IP Access List 1 ---------------------------- Source IP address : 0.0.0.0 Source IP address mask : 0.0.0.0 Destination IP address : 0.0.0.0 Destination IP address mask : 0.0.0.0 In Port List : NIL Out Port List : NIL Filter Action : Permit...
Page 913
conditions defined in the permit statement are matched deny - ip/ospf/pim/protocol type Denies traffic for a particular protocol packet if the conditions defined in the deny statement are matched permit tcp- Specifies the TCP packets to be forwarded based on the associated parameters deny tcp- Specifies the TCP packets to be rejected based on the associated parameters permit udp- Specifies the UDP packets to be forwarded based on the associated parameters deny udp- Specifies the UDP packets to be rejected based on the associated parameters...