About this Guide This book provides information about the Dell Force10 operating software (FTOS) command line interface (CLI). It includes some information about the protocols and features found in FTOS and on the Dell Force10 systems supported by FTOS. This chapter includes: •...
x | y Keywords and parameters separated by bar require you to choose one. x || y Keywords and parameters separated by a double bar enables you to choose any or all of them. Information Symbols Table 1-1 describes the symbols contained in this document. Table 1-1.
CLI Basics This chapter describes the command structure and command modes. The Dell Force10 operating software (FTOS) commands are in a text-based interface that allows you to use launch commands, change the command modes, and configure interfaces and protocols. This chapter includes the following sections: •...
Multiple Configuration Users When a user enters CONFIGURATION mode and another user(s) is already in that configuration mode, FTOS generates an alert warning message similar to Figure 2-2: Figure 2-2. Configuration Mode User Alert FTOS#conf % Warning: The following users are currently configuring the system: User ""...
Table 2-1. Command Prompt and Corresponding Command Mode Prompt CLI Command Mode FTOS(conf-ext-nacl)# IP ACCESS LIST FTOS(conf-std-nacl)# FTOS(conf-line-console)# LINE FTOS(conf-line-vty)# FTOS(conf-ext-macl)# MAC ACCESS LIST FTOS(conf-std-macl)# FTOS(conf-mon-sess)# MONITOR SESSION FTOS(conf-stp)# FTOS(conf-mstp)# MULTIPLE SPANNING TREE FTOS(conf-pvst)# Per-VLAN SPANNING TREE Plus FTOS(conf-rstp)# RAPID SPANNING TREE FTOS(conf-gvrp)# PROTOCOL GVRP FTOS(conf-route-map)#...
Page 14
shows the results of entering ip ? at the prompt. Figure 2-3 Figure 2-3. Partial Keyword Example FTOS(conf)#ip ? access-list Named access-list control-plane Control plane configuration dhcp DHCP configuration commands domain-list Domain name to complete unqualified host name domain-lookup Enable IP Domain Name System hostname translation domain-name Define the default domain name FTP configuration commands...
Use the left and right arrow keys to navigate left or right in the FTOS command line. Table 2-2 defines the key combinations valid at the FTOS command line. Table 2-2. Short-cut Keys and their Actions Combination Action CNTL-A Moves the cursor to the beginning of the command line. CNTL-B Moves the cursor back one character.
• no-more — do not paginate the display output • save — copy output to a file for future use Note: FTOS accepts a space before or after the pipe, no space before or after the pipe, or any combination. For example: command grep gigabit...
EXEC Privilege Mode The enable command accesses EXEC Privilege mode. If an administrator has configured an Enable password, you are prompted to enter the password here. EXEC Privilege mode allows you to access all commands accessible in EXEC mode, plus other commands, such as to clear ARP entries and IP addresses.
LINE Mode Use LINE mode to configure console or virtual terminal parameters. To enter LINE mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the line command. You must include the keywords console or vty and their line number available on the switch.The prompt changes to include (config-line-console) or (config-line-vty).
PREFIX-LIST Mode While in CONFIGURATION mode, use the ip prefix-list command to enter PREFIX-LIST mode and configure a prefix list. To enter PREFIX-LIST mode: 1. Verify that you are logged in to CONFIGURATION mode. Enter the ip prefix-list command. You must include a name for the prefix list. The prompt changes to include (conf-nprefixl).
MULTIPLE SPANNING TREE Mode Use MULTIPLE SPANNING TREE mode to enable and configure the multiple spanning tree protocol (MSTP), as described in Multiple Spanning Tree Protocol (MSTP). To enter MULTIPLE SPANNING TREE mode: 1. Verify that you are logged into CONFIGURATION mode. 2.
File Management Overview This chapter contains commands needed to manage the configuration files and includes other file management commands found in the Dell Force10 operating software (FTOS). Basic File Management Commands The commands included in this chapter are: • •...
Page 22
Change to a different working directory. Syntax cd directory Parameters directory (OPTONAL) Enter one of the following: flash : • (internal Flash) or any sub-directory • usbflash : (external Flash) or any sub-directory Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History copy...
Page 23
FTOS supports copying the running-configuration to a TFTP server or to an FTP server: copy running-config tftp: copy running-config ftp: Example Figure 3-1. copy running-config scp: Command Example FTOS#copy running-config scp: Address or name of remote host []: 10.10.10.1 Port number of the server [22]: 99 Destination file name [startup-config]: old_running User name to login remote host: sburgess Password to login remote host:...
Page 24
delete Delete a file from the flash. Once deleted, files cannot be restored. Syntax delete flash: ([flash://]filepath) usbflash ([usbflash://]filepath) Parameters flash-url Enter the following location and keywords: flash:// • For a file or directory on the internal Flash, enter followed by the filename or directory name.
format flash Erase all existing files and reformat the filesystem in the internal flash memory. After the filesystem is formatted, files cannot be restored. Syntax format {flash: | usbflash:} Default flash memory Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage You must include the colon (:) when entering this command.
logging coredump server Designate a server to upload core dumps. Syntax logging coredump server {ipv4-address} username name password [type] password Parameters {ipv4-address} Enter the server IPv4 address (A.B.C.D) name Enter a username to access the target server. type Enter the password type: •...
rename Rename a file in the local file system. Syntax rename url url Parameters Enter the following keywords and a filename: flash:// • For a file on the internal Flash, enter followed by the filename. usbflash:// • For a file on the external Flash, enter followed by the filename.
show file Display contents of a text file in the local filesystem. Syntax show file url Parameters Enter one of the following: • For a file on the internal Flash, enter flash:// followed by the filename. • For a file on the external Flash, enter usbflash:// followed by the filename. Command Modes EXEC Privilege Command...
Example Figure 3-7. show file-system Command Example FTOS#show file-systems Size(b) Free(b) Feature Type Flags Prefixes 2143281152 2000936960 FAT32 USERFLASH flash: 15848660992 831594496 FAT32 USBFLASH usbflash: network ftp: network tftp: network scp: FTOS# Table 3-1. show file-systems Command Output Fields Field Description Size(b) Lists the size in bytes of the storage location.
Page 30
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage Note: A filepath that contains a dot (.) is not supported. Information Example Figure 3-8. show os-version Command Example FTOS#show os-version RELEASE IMAGE INFORMATION : --------------------------------------------------------------------- Platform Version Size ReleaseTime IOM-Series:...
show running-config Display the current configuration and display changes from the default values. Syntax show running-config [entity] [configured] [status] Parameters entity (OPTIONAL) Enter one of the keywords listed below to display that entity’s current (non-default) configuration. Note that, if nothing is configured for that entity, nothing is displayed and the prompt returns: •...
configured configuration (OPTIONAL) Enter the keyword to display line card interfaces with non-default configurations only. status status (OPTIONAL) Enter the keyword to display the checksum for the running configuration and the start-up configuration. Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example...
Dell Force10 Real Time Operating System Software Dell Force10 Operating System Version: 1.0 Dell Force10 Application Software Version: E8-3-16-29 Copyright (c) 1999-2012 by Dell Inc. All Rights Reserved. Build Time: Thu Apr 26 05:41:48 PDT 2012 Build Path: /sites/sjc/work/build/buildSpaces/build03/E8-3-16/SW/SRC/Cp_src/ Tacacs FTOS uptime is 13 hour(s), 29 minute(s) System image file is "system://A"...
Copyright information Build Time... Software build’s date stamp Build Path... Location of the software build files loaded on the system Dell Force10 uptime is... Amount of time the system has been up System image... Image file name Chassis Type: System type (MXL 10/40GbE) Control Processor:...
Defaults none Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage You must reload FTOS after executing this command. Information Example Figure 3-13. upgrade boot Command Example FTOS#upgrade boot ? Upgrade both boot flash image and selector image bootflash-image Upgrade boot flash image bootselector-image...
Page 36
Usage You must reload FTOS after executing this command. Use the command upgrade system stack-unit Information copy FTOS from the management unit to one or more stack members. Example Figure 3-14. upgrade system Command Example FTOS#upgrade system ? flash: Copy from flash file system (flash://filepath) ftp: Copy from remote file system, IPv4 or IPv6, (ftp:/ /userid:password@hostip/filepath)
Control and Monitoring This chapter describes control and monitoring for the MXL 10/40GbE Switch IO Module. Commands This chapter includes the following commands: asf-mode ip tftp source-interface banner exec line banner login motd-banner banner motd ping clear alarms reload clear command history send clear line service timestamps...
asf-mode Enable alternate store and forward (ASF) mode and forward packets as soon as a threshold is reached. Syntax asf-mode stack-unit {unit-id | all} queue size To return to standard store and forward mode, use the no asf-mode stack-unit command. Parameters unit-id Enter the stack member unit identifier of the stack member to reset.
FTOS(conf)#end FTOS#exit 4d21h5m: %STKUNIT0-M P:CP %SEC-5-LOGOUT: Exec session is terminated for user on line console This is the banner Dell Force10 con0 now available Press RETURN to get started. This is the banner Related banner login Sets a banner for login connections to the system.
FTOS(conf)#end FTOS#exit 13d21h9m: %STKUNIT0-M:CP %SEC-5-LOGOUT: Exec session is terminated for user on line console This is the banner Dell Force10 con0 now available Press RETURN to get started. 13d21h10m: STKUNIT0-M:CP %SEC-5-LOGIN_SUCCESS: Login successful for user on line console This is the banner...
clear alarms Clear alarms on the system. clear alarms Syntax Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage This command clears alarms that are no longer active. If an alarm situation is still active, it is seen in Information the system output.
If excessive traffic is received by CPU, traffic is rate controlled Note: This command must be enabled before the show cpu-traffic-stats command displays . Dell Force10 recommends disabling debugging ( no debug traffic statistics cpu-traffic-stats) after troubleshooting is complete Related...
debug ftpserver View transactions during an FTP session when a user is logged into the FTP server. Syntax debug ftpserver Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History disable Return to EXEC mode. Syntax disable [ level ] Parameters...
Page 44
Example Figure 4-4. do Command Example FTOS(conf-if-te-5/0)#do clear counters Clear counters on all interfaces [confirm] FTOS(conf-if-te-5/0)# FTOS(conf-if-te-5/0)#do clear logging Clear logging buffer [confirm] FTOS(conf-if-te-5/0)# FTOS(conf-if-te-5/0)#do reload System configuration has been modified. Save? [yes/no]: n Proceed with reload [confirm yes/no]: n FTOS(conf-if-te-5/0)# enable Enter EXEC Privilege mode or any other privilege level configured.
Page 45
Command Modes CONFIGURATION Command Version 8.3.16.1 enable xfp-power-updates Replaces the command. History Usage The default interval for the polling is 300 seconds (5 minutes). Use this command to enable the polling Information and to configure the polling frequency. Return to EXEC Privilege mode from other command modes (for example, CONFIGURATION or ROUTER OSPF modes).
Page 46
exec-timeout Set a time interval for the system to wait for input on a line before disconnecting the session. Syntax exec-timeout minutes [ seconds ] To return to default settings, enter no exec-timeout . Parameters minutes Enter the number of minutes of inactivity on the system before disconnecting the current session.
Introduced on MXL 10/40GbE Switch IO Module History Example Figure 4-6. Logging on to an FTP Server Example morpheus% ftp 10.31.1.111 Connected to 10.31.1.111. 220 Dell Force10 (1.0) FTP server ready Name (10.31.1.111:dch): dch 331 Password required Password: 230 User logged in ftp> pwd 257 Current directory is "flash:"...
Usage After you enable FTP server functions with the ftp-server enable command, Dell Force10 recommends Information specifying a top-level directory path. Without a top-level directory path specified, the FTOS directs users to the flash directory when they log in to the FTP server.
Usage The hostname is used in the prompt. Information ip ftp password Specify a password for outgoing FTP connections. Syntax ip ftp password [ encryption-type ] password Parameters encryption-type (OPTIONAL) Enter one of the following numbers: • 0 (zero) for an unecrypted (clear text) password •...
Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related copy Copies files from and to the switch. Commands ip ftp username Assign a user name for outgoing FTP connection requests. Syntax ip ftp username username Parameters username Enter a text string as the user name up to 40 characters long.
ip telnet source-interface Set an interface’s IP address as the source address in outgoing packets for Telnet sessions. Syntax ip telnet source-interface interface Parameters interface Enter the following keywords and slot/port or number information: loopback • For Loopback interfaces, enter the keyword followed by a number from zero (0) to 16383.
Page 52
line Enable and configure console and virtual terminal lines to the system. This command accesses LINE mode, where you can set the access conditions for the designated line. Syntax line { console 0 | vty number [ end-number ]} Parameters console 0 console 0 Enter the keyword...
Page 53
Parameter host (OPTIONAL) Enter the host name of the devices to which you are testing connectivity. ip-address (OPTIONAL) Enter the IPv4 address of the device to which you are testing connectivity. The address must be in the dotted decimal format. count Enter the number of echo packets to be sent.
Page 54
sweep-interval Enter the incremental value for sweep size. 1-15308 seconds ointerface Enter the outgoing interface for multicast packets. • Enter the IP address in A.B.C.D format port-channel • For a Port Channel, enter the keyword followed by a number: 1-128 TenGigabitEthernet •...
Usage If there is a change in the configuration, FTOS prompts you to save the new configuration. Or you can Information save your running configuration with the copy running-config command. Related redundancy Resets any designated stack member except the management unit. Commands disable-auto-reboot send...
Defaults Not configured. Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage If you do not specify parameters and enter service timestamps , it appears as service timestamps Information debug uptime in the running-configuration. Use the show running-config command to view the current options set for the...
Page 57
Usage One trace log message is generated for each command. No password information is saved to this file. Information Example Figure 4-9. show command-history Command Example FTOS#show command-history [4/20 10:27:23]: CMD-(CLI):[enable]by default from console [4/20 10:27:23]: CMD-(CLI):[configure terminal]by default from console - Repeated 1 time.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 4-11. show cpu-traffic-stats Command Example FTOS#show cpu-traffic-stats Processor : CP -------------- Received 100% traffic on TenGigabitEthernet 8/2 Total packets:100 LLC:0, SNAP:0, IP:100, ARP:0, other:0 Unicast:100, Multicast:0, Broadcast:0 FTOS# Usage Traffic statistics are sorted on a per-interface basis;...
Page 60
Parameters Enter the keyword to view all components. stack-unit unit-id stack-unit unit-id Enter the keyword followed by the to display information on a specific stack member. Range: 0 to 5. thermal sensor thermal-sensor Enter the keyword to view all components. Command Modes EXEC EXEC Privilege...
show inventory Displays the switch type, components (including media), FTOS version including hardware identification numbers and configured protocols. Syntax show inventory [media slot ] Parameters media slot media (OPTIONAL) Enter the keyword followed by the stack ID of the stack member for which you want to display pluggable media inventory.
Related show interfaces Display information on a specific physical interface or virtual interface. Commands show interfaces Displays the physical status and operational status of an installed transceiver. The transceiver output also displays the transceiver’s serial number. show memory View current memory usage on the MXL switch. Syntax show memory [ stack-unit 0-5 ] Parameters...
Page 63
summary summary (OPTIONAL) Enter the keyword to view a summary view of CPU usage for all members of the stack. See Example 1. (OPTIONAL) Enter the keyword to display inter-process communication statistics. memory memory (OPTIONAL) Enter the keyword to display memory statistics. See Example 4.
Page 64
Example 3 Figure 4-21. show processes cpu stack-unit Command Example FTOS#show process cpu stack-unit 0 CPU utilization for five seconds: 4%/0%; one minute: 3%; five minutes: 2% Runtime(ms) Invoked uSecs 5Sec 1Min 5Min Process 0x763a7000 96806080 9680608 10000 3.00% 3.25% 2.93% 0x760d5000 26384050...
Page 65
Example 4 Figure 4-22. show processes memory Command Example FTOS#show processes memory Memory Statistics Of Stack Unit 0 (bytes) =========================================================== Total: 2147483648, MaxUsed: 378417152, CurrentUsed: 378417152, CurrentFree: 1769066496 TaskName TotalAllocated TotalFreed MaxHeld CurrentHolding f10appioserv 225280 208896 ospf 573440 8716288 f10appioserv 225280 208896 fcoecntrl...
show interfaces stack-unit Displays information on all interfaces on a specific stack member. show processes memory Displays CPU usage information based on running processes show processes ipc flow-control Display the Single window protocol queue (SWPQ) statistics. Syntax show processes ipc flow-control [ cp ] Parameters (OPTIONAL) Enter the keyword to view the Control Processor’s SWPQ...
Table 4-1. Description of the show processes ipc flow-control cp output Command Field Description Retr /Available Retra Number of retries left Total/ Max Retra Number of retries allowed Usage The Single window protocol (SWP) provides flow control-based reliable communication between the Information sending and receiving software tasks.
Page 68
The output of show memory and this command will differ based on which FTOS processes are counted. • In the show memory display output, the memory size is equal to the size of the application processes. • In the output of this command, the memory size is equal to the size of the application processes plus the size of the system processes.
Table 4-2. Descriptions of show processes memory output Field Description Process ID Process Process Name ResSize Actual resident size of the process in memory Size Process test, stack, and data size Allocs Total dynamic memory allocated Frees Total dynamic memory freed Maximum dynamic memory allocated Current Current dynamic memory in use...
Page 71
: 2147483648 bytes Temperature : 44C Voltage : ok Switch Power : GOOD Product Name : Force10 MXL 10/40GbE Mfg By : DELL Mfg Date : 2012-01-05 Serial Number : DELL123456 Part Number : 0NVH81X01 Piece Part ID : N/A PPID Revision...
Configures the ability of the switch to become the management unit of a stack. show tech-support Display a collection of data from other show commands, necessary for Dell Force10 technical support to perform troubleshooting on MXL switches. Syntax show tech-support [ stack-unit unit-id | page ]...
Page 73
Examples Figure 4-30. show tech-support save Command Example (Partial) FTOS#show tech-support ? page Page through output stack-unit Unit Number Pipe through a command <cr> FTOS#show tech-support stack-unit 1 ? page Page through output Pipe through a command <cr> FTOS#show tech-support stack-unit 1 | ? except Show only text that does not match a pattern find...
Page 74
Figure 4-31. show tech-support Command Example (Partial) FTOS#show tech-support stack-unit 0 Required Type Unit 5 -- Unit Type : Member Unit Status : not present Required Type ----------------------------------- show environment ------------------- -- Unit Environment Status Unit Status Temp Voltage --------------------------------------------------------------------------- online * Management Unit Thermal Sensor Readings (deg C)
Page 75
This display output is an accumulation of the same information that is displayed when you execute one of the following show commands: • show cam • show clock • show environment • show file • show interfaces • show inventory •...
Defaults Not configured. Command Modes EXEC EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage Telnet to link-local addresses is not supported. Information terminal length Configure the number of lines displayed on the terminal screen. Syntax terminal length screen-length To return to the default values, use the terminal no length command.
Page 77
Usage This command enables XML input mode where you can either cut and paste XML requests or enter the Information XML requests line-by-line. For more information about using the XML feature, refer to the XML chapter in the FTOS Configuration Guide. traceroute View the packet path to a specific device.
undebug all Disable all debug operations on the system. Syntax undebug all Defaults none Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History virtual-ip Configure a virtual IP address for the active management interface. You can configure virtual addresses for IPv4 independently.
Page 79
Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage The write memory command saves the running-configuration to the file labeled startup-configuration. Information When using a other than the startup-config not named “startup-configuration”, LOCAL CONFIG FILE the running-config is not saved to that file;...
Overview All commands in this chapter are in u-Boot mode. These commands are supported on the Dell Force10 MXL 10/40GbE Switch Module platform only. To access this mode, hit any key when the following line appears on the console during a system boot:...
Page 82
Note: You cannot use the Tab key to complete commands in this mode. boot change Change the operating system boot parameters. Syntax boot change [primary | secondary | default] Command Modes uBoot Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History boot selection Change the ROM bootstrap bootflash partition.
boot write net config retries Set the number of retries for network boot configuration failure. boot write net config retries <int> Syntax Command Modes uBoot Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 5-2. boot write net config retries Command Example BOOT_USER # boot write net config retries 2 Updated number of Network Boot Config retries to 2.
Page 84
History Example Figure 5-3. help Command Example BOOT_USER # help ***** Dell Force10 Boot Interface Help Information ***** Current access level: USER LEVEL Use "syntax help" for more information on syntax. Available command list (22 commands total): boot change [primary|secondary|default]...
Page 85
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History interface management ethernet ip address Set the management port IP address and mask. Syntax interface management ethernet ip address <ip/mask> Command Modes uBoot Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History no default-gateway Clear the default gateway IP address.
Page 86
show boot blc Show the boot loop counter value. Syntax show boot blc Command Modes uBoot Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 5-4. show boot blc Command Example BOOT_USER # show boot blc ? Total 1 possible command found.
Figure 5-6. show bootflash Command Example BOOT_USER # show bootflash GENERAL BOOTFLASH INFO ====================== Bootflash Partition A: Dell Force10 Networks System Boot Official IOM_LP_IMG_BOOT_LOADER, BSP Release 4.0.1.0bt1 Created Tue May 1 10:56:16 2012 by build on login-sjc-01 Bootflash Partition B: Dell Force10 Networks System Boot Official IOM_LP_IMG_BOOT_LOADER, BSP Release 4.0.1.0bt1...
Page 88
Example Figure 5-7. show bootvar Command Example BOOT_USER # show bootvar PRIMARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== boot device : tftp file name : premnath Management Etherenet IP address : 10.16.130.134/16 Server IP address : 10.16.127.35 Default Gateway IP address : 15.0.0.1 Management Etherenet MAC address : 00:01:E8:43:DE:DF...
Page 89
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 5-9. show interface management ethernet Command Example BOOT_USER # show interface management ethernet Management ethernet IP address: 10.16.130.134/16 BOOT_USER # show interface management port config Show the management port boot characteristics. Syntax show interface management port config Command Modes...
Page 90
Example Figure 5-11. help Command Example BOOT_USER # help ***** Dell Force10 Boot Interface Help Information ***** Current access level: USER LEVEL Use "syntax help" for more information on syntax. Available command list (22 commands total): boot change [primary|secondary|default] change operating system boot parameters...
Access Control Lists (ACL) Overview The Dell Force10 operating software (FTOS) supports the following types of access control lists (ACLs), IP prefix lists, and route maps: • Commands Common to all ACL Types • Common IP ACL Commands • Standard IP ACL Commands •...
Page 92
description Configure a short text string describing the ACL. Syntax description text Parameters text Enter a text string up to 80 characters long. Defaults Not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-STANDARD CONFIGURATION-IP ACCESS-LIST-EXTENDED CONFIGURATION-MAC ACCESS LIST-STANDARD CONFIGURATION-MAC ACCESS LIST-EXTENDED Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History remark...
Example Figure 6-1. remark Command Example FTOS(conf-std-nacl)#remark 10 Deny rest of the traffic FTOS(conf-std-nacl)#remark 5 Permit traffic from XYZ Inc. FTOS(conf-std-nacl)#show config ip access-list standard test remark 5 Permit traffic from XYZ Inc. seq 5 permit 1.1.1.0/24 remark 10 Deny rest of the traffic seq 10 Deny any FTOS(conf-std-nacl)# Related...
Parameters prefix-list-name Enter the name of configured prefix list, up to 140 characters long. StartingSeqNum Enter the starting sequence number to resequence. Range: 0 to 65535 Step-to-Increment Enter the step to increment the sequence number. Range: 1 to 65535 Defaults none Command Modes EXEC...
The following commands allow you to clear, display, and assign IP ACL configurations. • access-class • clear counters ip access-group • ip access-group • show ip access-lists • show ip accounting access-list Note: See also Commands Common to all ACL Types.
Page 96
implicit-permit implicit-permit (OPTIONAL) Enter the keyword to change the default action of the ACL from implicit-deny to implicit-permit (that is, if the traffic does not match the filters in the ACL, the traffic is permitted instead of dropped). vlan vlan-id vlan (OPTIONAL) Enter the keyword followed by the ID numbers of the...
show ip accounting access-list the IP access-lists created on the switch and the sequence of filters. Display Syntax show ip accounting {access-list access-list-name | cam_count} interface interface Parameters access-list-name Enter the name of the ACL to be displayed. cam_count List the count of the CAM rules for this ACL. interface interface interface Enter the keyword...
Standard IP ACL Commands When an ACL is created without any rule and then applied to an interface, ACL behavior reflects an implicit permit. The MXL 10/40GbE Switch IO Module platform supports both ingress and egress IP ACLs. The commands needed to configure a Standard IP ACL are: •...
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage The order option is relevant in the context of the Policy QoS feature only. For more information, refer Information to the Quality of Service (QoS) chapter of the FTOS Configuration Guide. In the MXL Switch, you can configure either count (packets) or count (bytes).
Page 100
• Use the no permit { source mask ] | any | host ip-address } command. Parameters source Enter the IP address in dotted decimal format of the network from which the packet was sent. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous.
Page 101
source Enter an IP address in dotted decimal format of the network from which the packet was received. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous.
Extended IP ACL Commands When an ACL is created without any rule and then applied to an interface, ACL behavior reflects an implicit permit. The following commands configure extended IP ACLs, which in addition to the IP address also examine the packet’s protocol type. The MXL 10/40GbE Switch IO Module platform supports both ingress and egress IP ACLs.
byte byte (OPTIONAL) Enter the keyword to count bytes processed by the filter. dscp dscp (OPTIONAL) Enter the keyword to match to the IP DSCP values. order order (OPTIONAL) Enter the keyword to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest;...
Page 104
message-type (OPTIONAL) Enter an ICMP message type, either with the type (and code, if necessary) numbers or with the name of the message type (ICMP message types are listed in Table 6-2). Range: 0 to 255 for ICMP type; 0 to 255 for ICMP code count count (OPTIONAL) Enter the keyword...
Table 6-2. ICMP Message Type Keywords Keyword ICMP Message Type Name mask-reply Mask replies mask-request Mask requests mobile-redirect Mobile host redirect net-redirect Network redirect net-tos-redirect Network redirect for TOS net-tos-unreachable Network unreachable for TOS net-unreachable Network unreachable network-unknown Network unknown no-room-for-option Parameter required but no room option-missing...
Page 106
Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. Enter the keyword to specify that all routes are subject to the filter.
Usage The order option is relevant in the context of the Policy QoS feature only. For more information, refer Information to the Quality of Service (QoS) chapter of the FTOS Configuration Guide. In the MXL Switch, you can configure either count (packets) or count (bytes). However, for an ACL with multiple rules, you can configure some ACLs with count (packets) and others as count (bytes) at any given time.
Page 108
Enter the keyword to specify that all routes are subject to the filter. host ip-address host Enter the keyword followed by the IP address to specify a host IP address. dscp Enter this keyword to deny a packet based on DSCP value. Range: 0-63 operator (OPTIONAL) Enter one of the following logical operand:...
For example, an ACL rule with TCP port range 4000 - 8000 will use eight entries in the CAM: Rule# Data Mask From #Covered 0000111110100000 1111111111100000 4000 4031 0000111111000000 1111111111000000 4032 4095 0001000000000000 1111100000000000 4096 6143 2048 0001100000000000 1111110000000000 6144 7167 1024 0001110000000000 1111111000000000 7168...
Page 110
permit Configure a filter to pass IP packets meeting the filter criteria. Syntax permit { ip | ip-protocol-number } { source mask | any | host ip-address } { destination mask | any | host ip-address } [ count [ byte ] [ dscp value] [ order ] [ fragments ] To remove this filter, you have two choices: Use the no seq •...
Related ip access-list extended Creates an extended ACL. Commands permit tcp Assigns a permit filter for TCP packets. permit udp Assigns a permit filter for UDP packets. permit icmp Configure a filter to allow all or specific ICMP messages. Syntax permit icmp { source mask | any | host ip-address } { destination mask | any | host ip-address } [ dscp ] [ message-type ] [ count [ byte ]] [ order ] [ fragments ] To remove this filter, you have two choices:...
permit tcp Configure a filter to pass TCP packets meeting the filter criteria. Syntax permit tcp { source mask | any | host ip-address } [ bit ] [ operator port [ port ]] { destination mask | any | host ip-address dscp operator port...
Page 113
order order (OPTIONAL) Enter the keyword to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
permit udp Configure a filter to pass UDP packets meeting the filter criteria. Syntax permit udp { source mask | any | host ip-address } [ operator port [ port ]] { destination mask | any | host ip-address } [ dscp ] [ operator port [ port ]] [ count [ byte ]] [ order ] [ fragments ] To remove this filter, you have two choices: Use the no seq •...
Page 115
In the MXL Switch, you can configure either count (packets) or count (bytes). However, for an ACL with multiple rules, you can configure some ACLs with count (packets) and others as count (bytes) at any given time. Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators ( gt , lt , range ) may require more than one entry.
Page 116
Enter the keyword to configure a generic IP access list. The keyword specifies that the access list will permit all IP protocols. Enter the keyword to configure a TCP access list filter. Enter the keyword to configure a UDP access list filter. source Enter the IP address of the network or host from which the packets were sent.
Usage The order option is relevant in the context of the Policy QoS feature only. The following applies: Information • The seq sequence-number is applicable only in an ACL group. The order option works across ACL groups that have been applied on an interface via QoS policy •...
mac access-group Apply a MAC ACL to traffic entering or exiting an interface. Syntax mac access-group access-list-name { in [ vlan vlan-range ] | out } Parameters access-list-name Enter the name of a configured MAC access list, up to 140 characters. vlan vlan vlan-range (OPTIONAL) Enter the keyword...
show mac accounting access-list MAC access list configurations and counters (if configured). Display Syntax show mac accounting access-list access-list-name interface interface in | out Parameters access-list-name Enter the name of a configured MAC ACL, up to 140 characters. interface interface interface Enter the keyword followed by the one of the following keywords...
Standard MAC ACL Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. The MXL 10/40GbE Switch IO Module platform supports both ingress and egress MAC ACLs. The following commands configure standard MAC ACLs: •...
mac access-list standard Name a new or existing MAC access control list (MAC ACL) and enter the MAC ACCESS LIST mode to configure a standard MAC ACL. See Commands Common to all ACL Types Common MAC Access List Commands. Syntax mac access-list standard mac-list-name Parameters mac-list-name...
Page 122
count count (OPTIONAL) Enter the keyword to count packets processed by the filter. byte byte (OPTIONAL) Enter the keyword to count bytes processed by the filter. Defaults Not configured. Command Modes CONFIGURATION-MAC ACCESS LIST-STANDARD Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related deny...
Extended MAC ACL Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. The MXL 10/40GbE Switch IO Module platform supports ingress and egress MAC ACLs. The following commands configure Extended MAC ACLs. •...
ethertype operator (OPTIONAL) To filter based on protocol type, enter one of the following Ethertypes: • - is the Ethernet II frame format. • - is the IEEE 802.3 frame format. snap • - is the IEEE 802.3 SNAP frame format. count count (OPTIONAL) Enter the keyword...
Page 125
Example Figure 6-8. mac access-list extended Command Example FTOS(conf)#mac access-list extended TestMATExt FTOS(conf-ext-macl)#remark 5 IPv4 FTOS(conf-ext-macl)#seq 10 permit any any ev2 eq 800 count bytes FTOS(conf-ext-macl)#remark 15 ARP FTOS(conf-ext-macl)#seq 20 permit any any ev2 eq 806 count bytes FTOS(conf-ext-macl)#remark 25 IPv4 FTOS(conf-ext-macl)#seq 30 permit any any ev2 eq 86dd count bytes FTOS(conf-ext-macl)#seq 40 permit any any count bytes...
Page 126
ethertype operator (OPTIONAL) To filter based on protocol type, enter one of the following Ethertypes: • - is the Ethernet II frame format. • - is the IEEE 802.3 frame format. snap • - is the IEEE 802.3 SNAP frame format. count count (OPTIONAL) Enter the keyword...
ethertype operator (OPTIONAL) To filter based on protocol type, enter one of the following Ethertypes: • - is the Ethernet II frame format. • - is the IEEE 802.3 frame format. snap • - is the IEEE 802.3 SNAP frame format. count count (OPTIONAL) Enter the keyword...
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Default Clears “hit” counters for all prefix lists unless a prefix list is specified. Related ip prefix-list Configures a prefix list. Commands deny Configure a filter to drop packets meeting the criteria specified. Syntax deny ip-prefix [ ge min-prefix-length ] [ le max-prefix-length ] Parameters...
Page 129
Usage Prefix lists redistribute OSPF and RIP routes meeting specific criteria. For related RIP commands, Information refer to Chapter 26, Routing Information Protocol (RIP). For related OSPF commands supported, refer to FTOS Command Line Reference Guide Chapter 21, Open Shortest Path First (OSPFv2).
ge min-prefix-length (OPTIONAL) Enter the keyword followed by the minimum prefix length, which is a number from zero (0) to 32. le max-prefix-length (OPTIONAL) Enter the keyword followed by the maximum prefix length, which is a number from zero (0) to 32. bitmask bitmask number Enter the keyword...
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 6-10. show ip prefix-list detail Command Example FTOS#show ip prefix-list detail Prefix-list with the last deletion/insertion: filter_ospf ip prefix-list filter_in: count: 3, range entries: 3, sequences: 5 - 10 seq 5 deny 1.102.0.0/16 le 32 (hit count: 0) seq 6 deny 2.1.0.0/16 ge 23 (hit count: 0) seq 10 permit 0.0.0.0/0 le 32 (hit count: 0)
Route Map Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. The following commands allow you to configure route maps and their redistribution criteria. • continue • description • match interface •...
Page 133
Match clause with Continue clause The continue feature can exist without a match clause. A continue clause without a match clause executes and jumps to the specified route-map entry. With a match clause and a continue clause, the match clause executes first and the continue clause next in a specified route map entry.
match interface Configure a filter to match routes whose next hop is on the interface specified. Syntax match interface interface To remove a match, use the no match interface interface command. Parameters interface Enter the following keywords and slot/port or number information: loopback •...
match metric Redistributes routes that match a specific metric. match route-type Redistributes routes that match a route type. match tag Redistributes routes that match a specific tag. match ip next-hop Configure a filter to match routes based on the next-hop IP addresses specified in an IP access list or IP prefix list.
Related match interface Redistributes routes that match the next-hop interface. Commands match ip address Redistributes routes that match an IP address. match ip next-hop Redistributes routes that match the next-hop IP address. match metric Redistributes routes that match a specific metric. match route-type Redistributes routes that match a route type.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related match interface Redistributes routes that match the next-hop interface. Commands match ip address Redistributes routes that match an IP address. match ip next-hop Redistributes routes that match the next-hop IP address. match ip route-source Redistributes routes that match routes advertised by other routers.
deny deny (OPTIONAL) Enter the keyword to set the route map default as deny. sequence-number (OPTIONAL) Enter a number to identify the route map for editing and sequencing with other route maps. You are prompted for a sequence number if there are multiple instances of the route map.
set metric Configure a filter to assign a new metric to redistributed routes. Syntax set metric [ + | -] metric-value To delete a setting, use the no set metric command. Parameters (OPTIONAL) Enter + to add a metric-value to the redistributed routes. (OPTIONAL) Enter - to subtract a metric-value from the redistributed routes.
set tag Configure a filter to specify a tag for redistributed routes. Syntax set tag tag-value Parameters tag-value Enter a number as the tag. Range: zero (0) to 4294967295. Defaults Not configured Command Modes ROUTE-MAP Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related set automatic-tag...
Page 141
Example Figure 6-14. show route-map Command Example FTOS#show route-map route-map firpo, permit, sequence 10 Match clauses: Set clauses: FTOS# Related route-map Configures a route map. Commands Access Control Lists (ACL) | 141...
. Bare metal provisioning performs auto configuration using a configuration file and an approved version of the Dell Force10 operating system (FTOS) from a network source. Bare metal provisioning not only allows you to configure a stack with a minimum of effort, but it is also useful for quick configuration of a stand alone system.
The default time is infinity; if no time is set, the system continues to wait unless the stop jump-start command is given. Note: Dell Force10 recommends setting the value to 2 or higher. config-download Specify if the system should download a configuration file from the DHCP server or use the start-up configuration files from the flash.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History stop jump-start Cancel the jump-start reload process. Syntax stop jump-start Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage This command stops the jump-start process while the reload is in progress. However, if the system is Information downloading an FTOS image or configuration file, the process is stopped AFTER the DHCP release is sent.
Content Addressable Memory (CAM) Overview Warning: If you are using these features for the first time, contact Dell Force10 Technical Assistance Center (TAC) for guidance. For information on contacting Dell Force10 TAC, visit the Dell Force10 website at www.force10networks.com/support CAM Profile Commands The content addressable memory (CAM) profiling feature allows you to partition the CAM to best suit your application.
Page 148
cam-acl (Configuration) Select the default CAM allocation settings or reconfigure new CAM allocation for Layer 2, IPv4 and IPv6 ACLs, Layer 2 and Layer 3 (IPv4) QoS, Layer 2 Protocol Tunneling (L2PT), IP and MAC source address validation for DHCP, Ethernet Connectivity Fault Management (CFM) ACLs, and Policy-based Routing (PBR).
cam-optimization Optimize CAM utilization for QoS Entries by minimizing require policy-map CAM space. cam-optimization [qos] Syntax Parameters Optimize CAM usage for Quality of Service (QoS) Command Modes CONFIGURATION Defaults Disabled Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage When this command is enabled, if a Policy Map containing classification rules (ACL and/or dscp/...
Page 150
Example Figure 8-1. show cam-acl (default) Command Example FTOS#show cam-acl -- Chassis Cam ACL -- Current Settings(in block sizes) L2Acl Ipv4Acl Ipv6Acl Ipv4Qos L2Qos L2PT IpMacAcl VmanQos VmanDualQos EcfmAcl FcoeAcl iscsiOptAcl -- Stack unit 5 -- Current Settings(in block sizes) L2Acl Ipv4Acl Ipv6Acl...
Page 151
show cam-acl-egress Display the details of the FP groups allocated for the egress ACL. show cam-acl-egress Syntax Defaults none Command Modes EXEC Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage The display reflects the settings implemented with the cam-acl-egress command. Information Figure 8-3.
LAN, server, and storage traffic. The Dell Force10 operating software (FTOS) commands for data center bridging features include 802.1Qbb priority-based flow control (PFC), 802.1Qaz enhanced transmission selection (ETS), and the Data Center Bridging Exchange (DCBX) protocol.
Page 155
Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Usage To disable TLV transmission, use the no form of the command; for example, no advertise Information dcbx-appln-tlv iscsi advertise dcbx-tlv On a DCBX port with a manual role, configure the PFC and ETS TLVs advertised to DCBX peers. advertise dcbx-tlv {ets-conf | ets-reco | pfc} [ets-conf | ets-reco | pfc] [ets-conf | ets-reco | pfc] Syntax To remove the advertised ETS TLVs, use the no advertise dcbx-tlv command.
Page 156
Defaults none Command Modes POLICY-MAP-OUT-ETS Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Usage By default, equal bandwidth is assigned to each port queue and each dot1p priority in a priority group. Information Use the bandwidth-percentage command to configure bandwidth amounts in associated dot1p queues.
Page 157
dcb-input Create a DCB input policy to apply pause or flow control for specified priorities using a configure delay time. Syntax dcb-input policy-name To delete the DCB input policy, use the no dcb-input command. Parameters policy-name Maximum: 32 alphanumeric characters. Defaults none Command Modes...
Page 158
Usage Create a DCB output policy to associate a priority group with an ETS output policy with scheduling Information and bandwidth configuration. You can apply a DCB output policy on multiple egress ports. When you apply an ETS output policy on an interface, ETS-configured scheduling and bandwidth allocation take precedence over any configured settings in QoS output policies.
Page 159
dcb-policy input stack-unit stack-ports all Apply the specified DCB input policy on all ports of the switch stack or a single stacked switch. Syntax dcb-policy input stack-unit {all | stack-unit-id} stack-ports all dcb-input-policy-name To remove all DCB input policies applied to the stacked ports and rest the PFC to its default settings, use the no dcb-policy input stack-unit all command.
Page 160
To remove an ETS output policy from an interface, enter the no dcb-policy output policy-name command. ETS is enabled by default with the default ETS configuration applied (all dot1p priorities in the same group with equal bandwidth allocation). Related dcb-output Create a DCB output policy.
Page 161
Parameters pfc-port-count {1-56} Enter the pfc-port count. The valid range is 1 to 56. pfc-queues {1-2} Enter the pfc-queue number. The valid range is 1 to 2. Defaults The PFC buffer is enabled on all ports on the stack unit. Command Modes CONFIGURATION Command...
Page 162
Usage If you configure PFC on a 40GbE port, count the 40GbE port as four PFC-enabled ports in the pfc-port Information number you enter in the command syntax. To achieve lossless PFC operation, the PFC port count and queue number used for the reserved buffer size that is created must be greater than or equal to the buffer size required for PFC-enabled ports and lossless queues on the switch.
dcbx version Configure the DCBX version used on the interface. Syntax dcbx version {auto | cee | cin | ieee-v2.5} To remove the DCBX version, use the no dcbx version {auto | cee | cin | ieee-v2.5} command. Parameters auto | cee | cin | Enter the DCBX version type used on the interface, where: ieee-v2.5 auto...
Page 164
Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module description Enter a text description of the DCB policy (PFC input or ETS output). Syntax description text To remove the text description, use the no description command. Parameters text Enter the description of the output policy.
Page 165
Related dcb-output Create a DCB output policy. Commands dcb-policy output Apply the output policy. fcoe priority-bits Configure the FCoE priority advertised for the FCoE protocol in application priority TLVs. Syntax fcoe priority-bits priority-bitmap To remove the configured FCoE priority, use the no fcoe priority-bits command. Parameters priority-bitmap Enter the priority-bitmap range.
Page 166
pfc link-delay Configure the link delay used to pause specified priority traffic. Syntax pfc link-delay value To remove the link delay, use the no pfc link-delay command. Parameters value Valid values (in quanta) are 712-65535. One quantum is equal to a 512-bit transmission. Defaults 45556 quantum Command Modes...
pfc no-drop queues Configure the port queues that will still function as no-drop queues for lossless traffic. Syntax pfc no-drop queues queue-range To remove the no-drop port queues, use the no pfc no-drop queues command. Parameters queue-range Enter the queue range. Separate the queue values with a comma; specify a pfc no-drop queues 1,3 priority range with a dash;...
Page 168
Defaults none Command Modes DCB INPUT POLICY Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage you can enable any number of 802.1p priorities for PFC. Queues to which PFC priority traffic is Information mapped are lossless by default. Traffic may be interrupted due to an interface flap (going down and coming up) when you reconfigure the lossless queues for no-drop priorities in a PFC input policy and re-apply the policy to an interface.
Page 169
Related priority-list Configure the 802.1p priorities for an ETS output policy. Commands set-pgid Configure the priority-group. priority-group qos-policy Associate the 802.1p priority traffic in a priority group with the ETS configuration in a QoS output policy. Syntax priority-group group-name qos-policy ets-policy-name To remove the 802.1p priority group, use the no priority-group qos-policy command.
Page 170
Command Modes PRIORITY-GROUP Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Usage By default: Information • All 802.1p priorities are grouped in priority group 0. • 100% of the port bandwidth is assigned to priority group 0. The complete bandwidth is equally assigned to each priority class so that each class has 12-13%.
Page 171
To remove the configured priority schedule, use the no scheduler command. Parameters value Enter schedule priority value. The valid values are: strict • : strict priority traffic is serviced before any other queued traffic. werr • : weighted elastic round robin (werr) provides low-latency scheduling for priority traffic on port queues.
show dcb Displays the data center bridging status, the number of PFC-enabled ports, and the number of PFC-enabled queues. Syntax show dcb [stack-unit unit-number] Parameters unit number Enter the DCB unit number. The valid values are 0 to 5. Command Mode EXEC PRIVILEGE Command History...
Example Figure 9-2. show interface dcbx detail Command Example FTOS(conf)# show interface tengigabitethernet 0/49 dcbx detail FTOS#show interface te 0/49 dcbx detail E-ETS Configuration TLV enabled e-ETS Configuration TLV disabled R-ETS Recommendation TLV enabled r-ETS Recommendation TLV disabled P-PFC Configuration TLV enabled p-PFC Configuration TLV disabled F-Application priority for FCOE enabled f-Application Priority for FCOE...
Page 174
Table 9-2. show interface dcbx detail Command Example Fields (continued) Field Description Local DCBX Configured DCBX version configured on the port: CEE, CIN, IEEE v2.5, or Auto (port mode auto-configures to use the DCBX version received from a peer). Peer Operating version DCBX version that the peer uses to exchange DCB parameters.
show interface ets Displays the ETS configuration applied to egress traffic on an interface, including priority groups with priorities and bandwidth allocation. Syntax show interface port-type slot/port ets {summary | detail} Parameters port-type slot/port Enter the port-type slot and port ETS information. {summary | detail} summary detail...
Page 176
Example Figure 9-3. show interfaces ets summary Command Example FTOS(conf)# show interfaces te 0/0 ets summary Interface TenGigabitEthernet 0/0 Max Supported TC Groups is 4 Number of Traffic Classes is 8 Admin mode is on Admin Parameters: ------------------ Admin is enabled TC-grp Priority# Bandwidth...
Page 177
Example show interfaces ets detail Command Example FTOS(conf)# show FTOS(conf)# show interfaces interfaces tengigabitethernet 0/0 ets tengigabitethernet 0/0 ets detail detail Interface TenGigabitEthernet 0/0 Interface TenGigabitEthernet 0/0 Max Supported TC Groups is 4 Max Supported TC Groups is 4 Number of Traffic Classes is 8 Number of Traffic Classes is 8 Admin mode is on Admin mode is on...
Page 178
Table 9-3 lists the show interface ets detail field descriptions. Table 9-3. show interfaces ets detail Command Example Fields Field Description Interface Interface type with stack-unit and port number. Max Supported TC Group Maximum number of priority groups supported. Number of Traffic Classes Number of 802.1p priorities currently configured. Admin mode ETS mode: on or off.
show interface pfc Displays the PFC configuration applied to ingress traffic on an interface, including priorities and link delay. Syntax show interface port-type slot/port pfc {summary | detail} Parameters port-type slot/port Enter the port-type slot and port PFC information. {summary | detail} summary detail Enter the keyword...
Page 180
Example Figure 9-4. show interface pfc Command Example FTOS# show interfaces tengigabitethernet 0/49 pfc summary Interface TenGigabitEthernet 0/49 Admin mode is on Admin is enabled Remote is enabled, Priority list is 4 Remote Willing Status is enabled Local is enabled Oper status is Recommended PFC DCBX Oper status is Up State Machine Type is Feature...
Page 181
Table 9-4. show interfaces pfc summary Command Example Fields (continued) Field Description Remote is enabled, Operational status (enabled or disabled) of peer device for DCBX exchange of PFC Priority list configuration with a list of the configured PFC priorities. Willing status of peer Remote Willing Status is device for DCBX exchange (Willing bit received in PFC TLV): enabled or enabled...
show interface pfc statistics Displays counters for the PFC frames received and transmitted (by dot1p priority class) on an interface. Syntax show interface port-type slot/port pfc statistics Parameters port-type Enter the port type. slot/port Enter the slot/port number. Command Mode INTERFACE Command History...
Page 183
show qos dcb-output Displays the ETS configuration in a DCB output policy. Syntax show qos dcb-output [ets-profile] Parameters [ets-profile] Enter the ETS profile. Command Mode EXEC PRIVILEGE Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Example Figure 9-7. show qos dcb-output Command Example FTOS# show qos dcb-output dcb-output ets priority-group san qos-policy san...
Page 184
Parameters stack-unit Enter the stack unit identification. port-number Enter the port number. Command Mode CONFIGURATION Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Example Figure 9-9. show stack-unit stack-ports ets detail Command Example FTOS(conf)# show stack-unit all stack-ports all ets details Stack unit 0 stack port all Max Supported TC Groups is 4...
Page 185
show stack-unit stack-ports pfc detail Displays the PFC configuration applied to ingress traffic on stacked ports, including PFC operational mode on each unit with the configured priorities, link delay, and number of pause packets sent and received. Syntax show stack-unit {all | stack-unit} stack-ports {all | port-number} pfc detail Parameters stack-unit Enter the stack unit.
Dynamic Host Configuration Protocol (DHCP) Overview Dynamic host configuration protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on configuration policies determined by network administrators. An MXL Switch can operate as a DHCP server or DHCP client. As a DHCP client, the switch requests an IP address from a DHCP server.
clear ip dhcp Reset DHCP counters. Syntax clear ip dhcp [binding { address} | conflict | server statistics] Parameters binding Enter this keyword to delete all entries in the binding table. address Enter the IP address to clear the binding entry for a single IP address. conflict Enter this keyword to delete all of the log entries created for IP address conflicts.
Page 189
Default none Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History disable Disable the DHCP server. DHCP Server is disabled by default. Enable the system to be a DHCP server using the no form of the disable command. Syntax disable Command Mode...
Page 190
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History excluded-address Prevent the server from leasing an address or range of addresses in the pool. Syntax excluded-address [ address | low-address high-address ] Parameters address Enter a single address to be excluded from the pool. low-address Enter the lowest address in a range of addresses to be excluded from the pool.
Page 191
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History netbios-node-type Specify the NetBIOS node type for a Microsoft DHCP client. Dell Force10 recommends specifying clients as hybrid. Syntax netbios-node-type type Dynamic Host Configuration Protocol (DHCP) | 191...
Parameters type Enter the NETBIOS node type. Broadcast: Enter the keyword b-node. Hybrid: Enter the keyword h-node. Mixed: Enter the keyword m-node. Peer-to-peer: Enter the keyword p-node. Command Mode DHCP <POOL> Default Hybrid Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History network Specify the range of addresses in an address pool.
Parameters pool name Display the configuration for a DHCP pool. global Display the DHCP configuration for the entire system. Command Mode EXEC Privilege Default none Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History show ip dhcp conflict Display the address conflict log.
Commands to Configure the System to be a DHCP Client • clear ip dhcp ip address dhcp Configure an Ethernet interface to acquire its IP address from a DHCP network server. Syntax ip address dhcp Command Mode INTERFACE Default The Ethernet is not configured to operate as a DHCP client and receive a dynamic IP address. Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module...
Other Commands supported by DHCP Client • clear ip dhcp client statistics • debug ip dhcp clients events • debug ip dhcp clients packets • release dhcp interface • renew dhcp interface • show ip dhcp client statistics • show ip dhcp lease clear ip dhcp client statistics Display DHCP client statistics, including the number of DHCP messages sent and received on an interface.
Page 196
Command Mode EXEC Privilege Default None Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History debug ip dhcp clients packets Enable the display of log messages for all DHCP packets sent and received on DHCP client interfaces. Syntax debug ip dhcp client packets [interface type slot/port] Parameters interface type slot/...
Page 197
renew dhcp interface Re-acquire a dynamic IP address on an Ethernet interface enabled as a DHCP client. Syntax renew dhcp interface type slot/port Parameters interface type slot/ For a 10-GigabitEthernet Ethernet interface, enter TenGigabitEthernet followed port by the slot/port numbers; for example, tengigabitethernet 1/3. For a 40-GigabitEthernet Ethernet interface, enter FortyGigabitEthernet followed by the slot/port numbers;...
Parameters interface type slot/ Display DHCP lease information on the specified interface. port For a 10-GigabitEthernet Ethernet interface, enter TenGigabitEthernet followed by the slot/port numbers; for example, tengigabitethernet 1/3. For a 40-GigabitEthernet Ethernet interface, enter FortyGigabitEthernet followed by the slot/port numbers; for example, fortygigabitethernet 0/2. Command Mode EXEC Privilege Default...
arp inspection-trust Specify a port as trusted so that ARP frames are not validated against the binding table. Syntax arp inspection-trust Command Modes INTERFACE INTERFACE PORT-CHANNEL Default Disabled Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related arp inspection Enables Dynamic ARP Inspection on a VLAN.
Introduced in FTOS version 7.8.1.0, DHCP snooping was available for Layer 3 only and dependent on DHCP Relay Agent ( ). FTOS version 8.2.1.0 extends DHCP Snooping to Layer 2, ip helper-address and you do not have to enable relay agent to snoop on Layer 2 interfaces. Related ip dhcp snooping vlan Enables DHCP snooping on one or more VLANs.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related show ip dhcp snooping Displays the contents of the DHCP binding table. Commands ip dhcp snooping database renew Renew the binding table. Syntax ip dhcp snooping database renew Command Modes EXEC EXEC Privilege...
Use the command cam-acl l2acl from CONFIGURATION mode Save the running-config to the startup-config Reload the system. ip dhcp snooping vlan Enable DHCP snooping on one or more VLANs. Syntax [no] ip dhcp snooping vlan name Parameters name Enter the name of a VLAN on which to enable DHCP Snooping. Command Modes CONFIGURATION Default...
Page 203
Parameters binding Display the binding table. source-address-validation Display the interfaces configured with IP Source Guard. Command Modes EXEC EXEC Privilege Default none Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related clear ip dhcp snooping Clears the contents of the DHCP binding table. Commands ip dhcp snooping verify mac-address Validate a DHCP packet’s source hardware address against the client hardware address field...
FIP Snooping Overview In a converged Ethernet network, an MXL Switch can operate as an intermediate Ethernet bridge to snoop on Fibre Channel over Ethernet Initialization Protocol (FIP) packets during the login process on Fibre Channel over Ethernet (FCoE) forwarders (FCFs). Acting as a transit FIP snooping bridge, the switch uses dynamically-created ACLs to permit only authorized FCoE traffic to be transmitted between an FCoE end-device and an FCF.
Page 206
Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module clear fip-snooping statistics Clears the statistics on the FIP packets snooped on all VLANs, a specified VLAN, or a specified port interface. Syntax clear fip-snooping statistics [interface vlan vlan-id | interface port-type port/slot | interface port-channel port-channel-number] Parameters vlan-id...
Page 207
fip-snooping enable Enable FIP snooping on all VLANs or on a specified VLAN. fip-snooping enable Syntax To disable the FIP snooping feature on all or a specified VLAN, use the no fip-snooping enable command. Defaults FIP snooping is disabled on all VLANs. Command Modes •...
Page 208
show fip-snooping config Display the FIP snooping status and configured FC-MAP values. show fip-snooping config Syntax Command Mode • EXEC • EXEC Privilege Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Figure 11-1. show fip-snooping config Command Example Example FTOS# show fip-snooping config FIP Snooping Feature enabled Status: Enabled...
Page 209
Table 11-1. show fip-snooping enode Command Field Description Field Description ENode MAC MAC address of the ENode ENode Interface Slot/ port number of the interface connected to the ENode. FCF MAC MAC address of the FCF VLAN VLAN ID number used by the session FC-ID Fibre Channel session ID assigned by the FCF.
Page 210
Table 11-2. show fip-snooping fcf Command Field Descriptions (continued) Field Description No of ENodes Number of ENodes connected to the FCF FC-ID Fibre Channel session ID assigned by the FCF. show fip-snooping sessions Display information on FIP-snooped sessions on all VLANs or a specified VLAN, including the ENode interface and MAC address, the FCF interface and MAC address, VLAN ID, FCoE MAC address and FCoE session ID number (FC-ID), worldwide node name (WWNN) and the worldwide port name (WWPN).
Page 211
Table 11-3. show fip-snooping sessions Command Field Description (continued) Field Description FCF MAC MAC address of the FCF. FCF Interface Slot/ port number of the interface to which the FCF is connected. VLAN VLAN ID number used by the session. FCoE MAC MAC address of the FCoE session assigned by the FCF.
Page 212
Example Figure 11-5. show fip-snooping statistics Command Example FTOS# show fip-snooping statistics interface vlan 100 Number of Vlan Requests Number of Vlan Notifications Number of Multicast Discovery Solicits Number of Unicast Discovery Solicits Number of FLOGI Number of FDISC Number of FLOGO Number of Enode Keep Alive :9021 Number of VN Port Keep Alive...
Page 213
Figure 11-6. show fip-snooping statistics (port channel) Command Example FTOS# show fip-snooping statistics interface port-channel 22 Number of Vlan Requests Number of Vlan Notifications Number of Multicast Discovery Solicits Number of Unicast Discovery Solicits Number of FLOGI Number of FDISC Number of FLOGO Number of Enode Keep Alive Number of VN Port Keep Alive...
Page 214
Table 11-4. show fip-snooping statistics Command Fields Description (continued) Field Description Number of FLOGI Accepts Number of FIP FLOGI accept frames received on the interface Number of FLOGI Rejects Number of FIP FLOGI reject frames received on the interface Number of FDISC Accepts Number of FIP FDISC accept frames received on the interface Number of FDISC Rejects Number of FIP FDISC reject frames received on the interface...
Page 215
show fip-snooping vlan Display information on the FCoE VLANs on which FIP snooping is enabled. Syntax show fip-snooping vlan Command Mode • EXEC • EXEC Privilege Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Example Figure 11-8. show fip-snooping vlan Command Example FTOS# show fip-snooping vlan * = Default VLAN VLAN...
Important Points to Remember • GVRP is supported on Layer 2 ports only. • All VLAN ports added by GVRP are tagged. • GVRP is supported on untagged ports belonging to a default VLAN, and tagged ports. • GVRP cannot be enabled on untagged ports belonging to a non-default VLAN unless native VLAN is turned on.
garp timers Set the intervals (in milliseconds) for sending GARP messages. Syntax garp timers { join | leave | leave-all } To return to the previous setting, use the no garp timers { join | leave | leave-all } command. Parameters join join...
gvrp enable Enable GVRP on physical interfaces and LAGs. Syntax gvrp enable To disable GVRP on the interface, use the no gvrp enable command. Defaults Disabled Command Modes CONFIGURATION-INTERFACE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related disable Globally disables the GVRP.
Related show gvrp Displays the GVRP configuration including the registration Commands protocol gvrp Access GVRP protocol — (config-gvrp)#. Syntax protocol gvrp Defaults Disabled Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related disable Globally disables the GVRP. Commands show config Display the global GVRP configuration.
Example Figure 12-1. show garp timers Command Example FTOS#show garp timers GARP Timers Value (milliseconds) ---------------------------------------- Join Timer Leave Timer LeaveAll Timer 10000 FTOS# Related garp timers Sets the intervals (in milliseconds) for sending GARP messages. Commands show gvrp Display the GVRP configuration. Syntax show gvrp [ brief | interface ] Parameters...
GVRP Participants running on no ports Related show gvrp statistics Displays the GVRP statistics. Commands show gvrp statistics Display the GVRP configuration statistics. Syntax show gvrp statistics { interface interface | summary } Parameters interface interface interface Enter the keyword followed by one of the interface keywords and slot/ port or number information: port-channel...
• The attribute that was being parsed had an invalid attribute length. • The attribute that was being parsed had an invalid GARP event. • The attribute that was being parsed had an invalid VLAN ID. The valid range is 1 - 4095. A failed registration can occur for the following reasons: •...
Internet Group Management Protocol (IGMP) IGMP Snooping Commands The Dell Force10 operating software (FTOS) supports internet group management protocol (IGMP) snooping version 2 and 3 on all Dell Force10 systems: • ip igmp access-group • ip igmp group-join-limit • ip igmp querier-timeout •...
Important Points to Remember for IGMP Querier • The IGMP snooping Querier supports version 2. • You must configure an IP address to the VLAN interface for IGMP snooping Querier to begin. The IGMP snooping Querier disables itself when a VLAN IP address is cleared, and then it restarts itself when an IP address is re-assigned to the VLAN interface.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History ip igmp querier-timeout Change the interval that must pass before a multicast router decides that there is no longer another multicast router that should be the querier. Syntax ip igmp querier-timeout seconds To return to the default value, enter no ip igmp querier-timeout .
Parameters seconds Enter the number of seconds for the maximum response time. Default: 10 seconds Range: 1 to 25 Defaults 10 seconds Command Modes INTERFACE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History ip igmp version Manually set the version of the router to IGMPv2 or IGMPv3. Syntax ip igmp version 2 | 3...
Related no shutdown Activates an interface. Commands ip igmp snooping fast-leave Enable IGMP snooping fast leave for this VLAN. Syntax ip igmp snooping fast-leave To disable IGMP snooping fast leave, use the no igmp snooping fast-leave command. Defaults Not configured Command Modes INTERFACE VLAN —...
ip igmp snooping last-member-query-interval The last member query interval is the maximum response time inserted into Group-Specific queries sent in response to Group-Leave messages. This interval is also the interval between successive Group-Specific Query messages. Use this command to change the last member query interval. Syntax ip igmp snooping last-member-query-interval milliseconds To return to the default value, enter...
ip igmp snooping querier Enable IGMP querier processing for the VLAN interface. Syntax ip igmp snooping querier To disable IGMP querier processing for the VLAN interface, enter no ip igmp snooping querier command. Defaults Not configured Command Modes INTERFACE VLAN — (conf-if-vl-n) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module...
Page 234
Internet Group Management Protocol (IGMP)
Interfaces Overview This chapter defines interface commands and is divided into the following sections: • Basic Interface Commands • Port Channel Commands • Time Domain Reflectometer (TDR) • UDP Broadcast Basic Interface Commands The following commands are for physical, loopback, and null interfaces: •...
• show config (from INTERFACE RANGE mode) • show interfaces • show interfaces configured • show interfaces dampening • show interfaces description • show interfaces stack-unit • show interfaces status • show interfaces switchport • show interfaces transceiver • show range •...
Example Figure 14-1. clear counters Command Example FTOS#clear counters Clear counters on all interfaces [confirm] Related mac learning-limit Limit the maximum number of MAC addresses (static + dynamic) learned on a Commands selected interface. show interfaces Display information on a specific physical interface or virtual interface. clear dampening Clear the dampening counters on all the interfaces or just the specified interface.
Page 238
Parameters Enter the keyword that matches the cable length to be used at the selected long medium short port: short = For 1-meter and 3-meter cable lengths medium = For 5-meter cable length long = For 10-meter and 15-meter cable lengths Defaults medium Command Mode...
Page 239
Parameters half-life Enter the number of seconds after which the penalty is decreased. The penalty is decreased by half after the half-life period expires. Range: 1 to 30 seconds Default: 5 seconds Enter a number as the reuse threshold, the penalty value below which the reuse threshold interface state is changed to “up”.
Page 240
description Assign a descriptive text string to the interface. Syntax description desc_text To delete a description, enter no description . Parameters desc_text Enter a text string up to 240 characters long. Defaults No description is defined. Command Modes INTERFACE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History...
Page 241
Important Points to Remember • Do not enable tx pause when buffer carving is enabled. Consult Dell Force10 TAC for information and assistance. • Asymmetric flow control ( rx on tx off or rx off tx on ) setting for the interface port less than 100 Mb/s speed is not permitted.
Page 242
Table 14-1 lists how FTOS negotiates the flow control values between two Dell Force10 chassis connected back-to-back using 10G copper ports. Table 14-1. Negotiated Flow Control Values Configured Negotiated...
Page 243
Related show running-config Displays the flow configuration parameters (non-default values only). Commands show interfaces Display information on a specific physical interface or virtual interface. interface Configure a physical interface on the switch. Syntax interface interface Parameters interface Enter one of the following keywords and slot/port or number information: TenGigabitEthernet •...
interface loopback Configure a Loopback interface. Syntax interface loopback number To remove a loopback interface, use the no interface loopback number command. Parameters number Enter a number as the interface number. Range: 0 to 16383. Defaults Not configured. Command Modes CONFIGURATION Command Version 8.3.16.1...
The Management port is enabled by default (no shutdown). Use the ip address command to assign an IP address to the Management port. Related management route Configure a static route that points to the Management interface or a Commands forwarding router. duplex (1000/10000 Interfaces) Configure duplex mode on any physical interfaces where the speed is set to 1000/10000...
Page 246
Parameters interface , interface range Enter the keyword and one of the interfaces — slot/port, port-channel or VLAN number. Select the range of interfaces for bulk configuration. interface ,. You can enter up to six comma separated ranges—spaces are not required between the commas.
Page 247
Example Figure 14-13. Interface Range prompt Overlapping Port Ranges FTOS(conf)#interface range tengig 2/1 - 11 , tengig 2/1 - 23 FTOS(conf-if-range-tengig-2/1-23# Only VLAN and port-channel interfaces created using the interface vlan interface port-channel commands can be used in the interface range command. Use the show running-config command to display the VLAN and port-channel interfaces.
interface range macro (define) Defines a macro for an interface range and then saves the macro in the running configuration. Syntax define interface range macro name interface , interface , ... Parameters name Enter up to 16 characters for the macro name. interface interface , interface , Enter the...
interface range macro name Run the interface-range macro to automatically configure the pre-defined range of interfaces. Syntax interface range macro name Parameters name Enter the name of an existing macro. Defaults none Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage Figure 14-18...
Page 250
FTP, TFTP, and SNMP operations are not supported on a VLAN. MAC ACLs are not supported in VLANs. IP ACLs are supported. Refer to Chapter 6, Access Control Lists (ACL). Related interface Configures a physical interface. Commands interface loopback Configures a loopback interface. interface null Configures a null interface.
Parameters seconds (OPTIONAL) For interfaces with PPP encapsulation enabled, enter the number of seconds between keepalive packets. Range: 0 to 23767 Default: 10 seconds Defaults Enabled Command Modes INTERFACE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage When you configure keepalive , the system sends a self-addressed packet out of the configured Information...
Page 252
Example Figure 14-20. monitor Command Example of a Single Interface systest-3 Monitor time: 00:00:06 Refresh Intvl.: 2s Time: 03:26:26 Interface: tengig 0/3, Enabled, Link is Up, Linespeed is 1000 Mbit Traffic statistics: Current Rate Delta Input bytes: 9069828 43 Bps Output bytes: 606915800 43 Bps...
Page 253
Parameters value Enter a maximum frame size in bytes. Range: 594 to 9252 MXL Switch Range: 594 to 12000 Default: 1554 Defaults 1554 Command Modes INTERFACE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage If the packet includes a Layer 2 header, the difference between the link MTU and IP MTU ( ip mtu Information command) must be enough bytes to include the Layer 2 header: •...
negotiation auto Enable auto-negotiation on an interface. Syntax negotiation auto To disable auto-negotiation, enter no negotiation auto . Defaults Enabled Command Modes INTERFACE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage The no negotiation auto command is only available if you first manually set the speed of a port to Information 10Mbits or 100Mbits.
Auto-negotiation Master/Slave Setting (partial) isplay FTOS#show interfaces configured TenGigabitEthernet 13/18 is up, line protocol is up Hardware is Dell Force10Eth, address is 00:01:e8:05:f7:fc Current address is 00:01:e8:05:f7:fc Interface index is 474791997 Internet address is 1.1.1.1/24 MTU 1554 bytes, IP MTU 1500 bytes...
Page 256
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 14-23. portmode hybrid Configuration Example FTOS(conf)#interface tengig 0/20 FTOS(conf-if-te-0/20)#no shut FTOS(conf-if-te-0/20)#portmode hybrid FTOS(conf-if-te-0/20)#sw FTOS(conf-if-te-0/20)#int vlan 10 FTOS(conf-if-vl-10)#tag tengig 0/20 FTOS(conf-if-vl-10)#int vlan 20 FTOS(conf-if-vl-20)#untag tengig 0/20 FTOS(conf-if-vl-20)# Usage Figure 14-23 sets a port as hybrid, makes the port a tagged member of VLAN 20, and an untagged Information...
Page 257
Example Figure 14-24. the Tagged Hybrid Interface Display FTOS(conf)#interface tengig 0/20 FTOS(conf-if-te-0/20)#no shut FTOS(conf-if-te-0/20)#portmode hybrid FTOS(conf-if-te-0/20#sw FTOS(conf-if-te-0/20)#int vlan 10 FTOS(conf-if-vl-10)#int tengig 0/20 FTOS(conf-if-vl-20)# untag tengig 0/20 FTOS (conf-if-vl-20)# FTOS(conf)#do show interfaces switchport tengigabitethernet 3/20 Codes: U - Untagged, T - Tagged x - Dot1x untagged, X - Dot1x tagged G - GVRP tagged, M - Trunk, H - VSN tagged i - Internal untagged, I - Internal tagged, v - VLT untagged,...
rate-interval Configure the traffic sampling interval on the selected interface. Syntax rate-interval seconds Parameters seconds traffic Enter the number of seconds for which to collect data. Range: 5 to 299 seconds Note: For 0-5 seconds, polling occurs every 5 seconds. For 6-10 seconds, polling occurs every 10 seconds.
On the MXL Switch, the show interface output displays incorrect rate information details over time for link monitoring when the rate-interval is configured for 5 seconds. Dell Force10 recommends using higher rate-intervals such as 15 to 299 seconds to minimize the errors seen.
Page 260
Figure 14-28. show interfaces Command Example for 10G Port FTOS#show interfaces tengigabitethernet 2/0 TenGigabitEthernet 2/0 is up, line protocol is up Hardware is Dell Force10Eth, address is 00:01:e8:05:f7:3a Interface index is 100990998 Internet address is 213.121.22.45/28 MTU 1554 bytes, IP MTU 1500 bytes...
Page 261
Table 14-5. Lines in show interfaces Command Example Line Description Input Statistics: Displays all the input statistics including: • Number of packets and bytes into the interface • Number of packets with IP headers and VLAN tagged headers. Note: The sum of the number of packets may not be as expected since a VLAN tagged IP packet counts as both a VLAN packet and an IP packet.
Page 262
Example Figure 14-29. show interfaces Command Example for 1G SFP Interface FTOS#show interfaces tengigabitethernet 0/44 TenGigabitEthernet 0/44 is up, line protocol is up Hardware is DellForce10Eth, address is 00:01:e8:43:00:01 Current address is 00:01:e8:43:00:01 Port is present Pluggable media present, SFP+ type is 10GBASE-SR Medium is MultiRate, Wavelength is 850nm SFP+ receive power reading is -3.6041dBm Interface index is 45420801...
Related show interfaces configured Displays any interface with a non-default configuration. Commands show interfaces stack-unit Displays information on all interfaces on a specific stack unit. strict-priority unicast Displays information of either rate limiting or rate policing on the interface. show interfaces switchport Displays Layer 2 information about the interfaces.
show interfaces dampening Display interface dampening information. Syntax show interfaces dampening [[ interface ] [ summary ] [ detail ]] Parameters interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: port-channel • For a Port Channel interface, enter the keyword followed by a number: Range: 1-128...
show interfaces description Display the descriptions configured on the interface. Syntax show interfaces [ interface ] description Parameters interface Enter one of the following keywords and slot/port or number information: loopback • For Loopback interfaces, enter the keyword followed by a number from 0 to 16383.
Table 14-6. show interfaces description Command Example Fields Field Description Protocol States whether IP is enabled (up) or disabled (down) on the interface. Description Displays the description (if any) manually configured for the interface. Related show interfaces Display information on a specific physical interface or virtual interface. Commands show interfaces stack-unit Display information on all interfaces on a specific MXL Switch stack member.
Related show hardware stack-unit Displays data plane and management plane input/output statistics. Commands show interfaces Displays information on a specific physical interface or virtual interface. show interfaces status Display a summary of interface information or specify a stack unit and interface to display status information for that specific interface only.
show interfaces switchport Display only virtual and physical interfaces in Layer 2 mode. This command displays the Layer 2 mode interfaces’ IEEE 802.1Q tag status and VLAN membership. Syntax show interfaces switchport [ interface | stack-unit unit-id ] Parameters interface Enter one of the following keywords and slot/port or number information: port-channel •...
Page 269
Table 14-7. Items in show interfaces switchport Command Example Items Description Name Displays the interface’s type, slot and port number. 802.1QTagged Displays whether if the VLAN tagged (“True”), untagged (“False”), or hybrid (“Hybrid”), which supports both untagged and tagged VLANs by port 13/0. Vlan membership Lists the VLANs to which the interface is a member.
show interfaces transceiver Display the physical status and operational status of an installed transceiver. The output also displays the transceiver’s serial number. Syntax tengigabitethernet slot/port | fortyGigE slot/port show interfaces transceiver Parameters tengigabitethernet tengigabitethernet For a 10G interface, enter the keyword followed by the slot/port information.
Page 271
Example Figure 14-37. show interfaces tengigabitethernet transceiver Command Example FTOS#show interfaces tengigabitethernet 1/0 transceiver SFP is present. SFP 0 Serial Base ID fields SFP 0 Id = 0x03 SFP 0 Ext Id = 0x04 SFP 0 Connector = 0x07 SFP 0 Transciever Code = 0x00 0x00 0x00 0x01 0x20 0x40 0x0c 0x05 SFP 0 Encoding = 0x01...
Page 272
Table 14-8. Diagnostic Data in show interfaces transceiver Line Description Rx Power measurement type Output depends on the vendor, typically either “Average” or “OMA” (Receiver optical modulation amplitude). Temp High Alarm threshold Factory-defined setting, typically in Centigrade. Value differs between SFPs and SFP+.
Page 273
Table 14-8. Diagnostic Data in show interfaces transceiver (continued) Line Description Tx Power Present Tx power of the SFP. If this crosses Tx power alarm/warning thresholds, then the Tx power high alarm/warning flag is set to true. If it falls below the low alarm/warning thresholds, then the Tx power low alarm/ warning flag is set to true.
Table 14-8. Diagnostic Data in show interfaces transceiver (continued) Line Description Tx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Rx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above.
Page 275
shutdown Disable an interface. shutdown Syntax To activate an interface, enter no shutdown . Defaults The interface is disabled. Command Modes INTERFACE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage shutdown command marks a physical interface as unavailable for traffic. To discover if an Information interface is disabled, use the show ip interface brief...
Page 276
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage This command is found on the 1000/10000 Base-T Ethernet interfaces. Information When you enable auto , the system performs and automatic discovery to determine the optics installed and configure the appropriate speed. When you configure a speed for the 1000/10000 interface, you should confirm negotiation auto command setting.
Port Channel Commands A link aggregation group (LAG) is a group of links that appear to a MAC client as if they were a single link according to IEEE 802.3ad. In FTOS, a LAG is referred to as a Port Channel. Table 14-9.
Page 278
Usage Use the interface port-channel command to access this command. Information You cannot add an interface to a Port Channel if the interface contains an IP address in its configuration. Link MTU and IP MTU considerations for Port Channels are: •...
Command Modes PORT-CHANNEL FAILOVER-GROUP (conf-po-failover-grp) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 14-39. group Command Example FTOS(conf)#port-channel failover-group FTOS(conf-po-failover-grp)#group 1 port-channel 1 port-channel 2 FTOS(conf-po-failover-grp)# Related port-channel failover-group Accesses the PORT-CHANNEL FAILOVER-GROUP mode to configure Commands a LAG failover group.
Related channel-member Adds a physical interface to the LAG. Commands interface Configures a physical interface. interface loopback Configures a Loopback interface. interface null Configures a null interface. interface vlan Configures a VLAN. shutdown Disables/Enables the port channel. minimum-links Configure the minimum number of links in a LAG (Port Channel) that must be in “oper up” status for the LAG to be also in “oper up”...
Related group Groups two LAGs in a supergroup (“fate-sharing group”). Commands show interfaces port-channel Displays information on configured Port Channel groups. show config Display the current configuration of the selected LAG. Syntax show config Command Modes INTERFACE PORTCHANNEL Example Figure 14-41. show config Command Sample Output for a Selected LAG FTOS(conf-if-po-1)#show config interface Port-channel 1 no ip address...
Page 282
Example Figure 14-42. show interfaces port-channel Command Example (EtherScale) FTOS#show interfaces port-channel Port-channel 1 is down, line protocol is down Hardware address is 00:1e:c9:f1:00:05, Current address is 00:1e:c9:f1:00:05 Interface index is 1107755009 Minimum number of links to bring Port-channel up is 1 Internet address is not set Mode of IP Address Assignment : NONE DHCP Client-ID :lag1001ec9f10005...
Page 283
Table 14-10. show interfaces port-channel Command Example Fields (continued) Field Description Output 0... Displays the type and number of packets sent out the interface. This information is displayed over three lines. Rate information... Displays the traffic rate information into and out of the interface. Traffic rate is displayed in bits and packets per second.
Time Domain Reflectometer (TDR) Time domain reflectormeter (TDR) is useful for troubleshooting an interface that is not establishing a link; either it is flapping or not coming up at all. TDR detects open or short conditions of copper cables on 100/1000 Base-T modules. •...
Page 285
Parameters interface TenGigabitEthernet Enter the keyword followed by the slot/port information for the 100/1000 Ethernet interface. Defaults none Command Modes EXEC Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 14-44. show tdr tengigabitethernet Command Example FTOS#show tdr tengigabitethernet 10/47 Time since last test: 00:00:02 Pair A, Length: OK Status: Terminated...
UDP Broadcast The user datagram protocol (UDP) broadcast feature is a software-based method to forward low throughput (not to exceed 200 pps) IP/UDP broadcast traffic arriving on a physical or VLAN interface. Important Points to Remember • Routing information protocol (RIP) is not supported with the UDP broadcast feature. •...
ip udp-broadcast-address Configure an IP UDP address for broadcast. Syntax ip udp-broadcast-address address To delete the configuration, use the no ip udp-broadcast-address address command. Parameters address Enter an IP broadcast address in dotted decimal format (A.B.C.D). Defaults Not Configured Command Modes INTERFACE (config-if) Usage When a UDP broadcast packet is flooded out of an interface, and the outgoing interface is configured...
Related ip helper-address Configures the destination broadcast or host address for DHCP server. Commands debug ip udp-helper Enables debug and display the debug information on a console. show ip udp-helper Displays the configured UDP helper(s) on all interfaces. show ip udp-helper Display the configured UDP helper(s) on all interfaces.
IPv4 Routing Commands This chapter describes the IPv4-related commands. They are: • • arp learn-enable • arp retries • arp timeout • clear arp-cache • clear host • clear ip fib stack-unit • clear ip route • clear tcp statistics •...
Page 290
• show ip management-route • show ip protocols • show ip route • show ip route list • show ip route summary • show ip traffic • show tcp statistics Use the address resolution protocol (ARP) to associate an IP address with a MAC address in the switch.
Defaults Disabled Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History arp retries Set the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request. Syntax arp retries number Parameters...
clear arp-cache Clear the dynamic ARP entries from a specific interface or optionally delete ( no-refresh ) ARP entries from CAM. Syntax clear arp-cache [ interface | ip ip-address ] [ no-refresh ] Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: ManagementEthernet •...
clear ip fib stack-unit Clear all forwarding information base (fib) entries in the specified stack unit (use this command with caution, refer to Usage Information). Syntax clear ip fib stack-unit unit-number Parameters unit-number Enter the stack-unit number. Range: 0 to 5 Command Mode EXEC EXEC Privilege...
Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History debug arp View information on ARP transactions. Syntax debug arp [ interface ] [ count value ] To stop debugging ARP transactions, use the no debug arp command. Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information:...
Usage Use the count option to stop packets from flooding the user terminal when debugging is turned on. Information The access-group option supports only the equal to ( eq ) operator in TCP ACL rules. Port operators not equal to ( neq ), greater than ( gt ), less than ( lt ), or range are not supported in access-group option (see...
ip directed-broadcast Enables the interface to receive directed broadcast packets. ip directed-broadcast Syntax To disable the interface from receiving directed broadcast packets, use the no ip directed-broadcast command. Defaults Disabled (that is, the interface does not receive directed broadcast packets) Command Modes INTERFACE Command...
ip domain-lookup Enable dynamic host-name to address resolution (that is, DNS). Syntax ip domain-lookup To disable DNS lookup, use the no ip domain-lookup command. Defaults Disabled. Command Mode CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage To fully enable DNS, also specify one or more domain name servers with the ip name-server...
Related ip domain-list Configures additional names. Commands ip helper-address Specify the address of a DHCP server so that DHCP broadcast messages can be forwarded when the DHCP server is not on the same subnet as the client. Syntax ip helper-address ip-address To remove a DHCP server address, use the no ip helper-address command.
Related ip helper-address Specifies the destination broadcast or host address for DHCP server requests. Commands show running-config Displays the current configuration and changes from the default values. ip host Assign a name and IP address to be used by the host-to-IP address mapping table. Syntax ip host name ip-address To remove an IP host, use the no ip host...
Parameters ipv4-address Enter the IPv4 address, in dotted decimal format, of the name server to be used. ipv4-address2... (OPTIONAL) Enter up five more IPv4 addresses, in dotted decimal format, of name servers to be used. ipv4-address6 Separate the addresses with a space. Defaults No name servers are configured.
interface Enter the following keywords and slot/port or number information: loopback • For a loopback interface, enter the keyword followed by a number from zero (0) to 16383. null • For the null interface, enter the keyword followed by zero (0). port-channel •...
Defaults Enabled. Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History ip unreachables Enable the generation of Internet Control Message Protocol (ICMP) unreachable messages. ip unreachables Syntax To disable the generation of ICMP messages, use the no ip unreachables command. Defaults Disabled Command Modes...
show arp Display the ARP table. Syntax show arp [ interface interface | ip ip-address [ mask ] | macaddress mac-address [ mac-address mask ]] [ static | dynamic ] [ summary ] Parameters interface interface (OPTIONAL) Enter the following keywords and slot/port or number information: managementethernet •...
Page 307
Figure 15-6. show arp Command Example with Private VLAN data FTOS#show arp Protocol Address Age(min) Hardware Address Interface VLAN ----------------------------------------------------------------------------------- Internet 5.5.5.1 00:01:e8:43:96:5e Vl 10 pv 200 Internet 5.5.5.10 00:01:e8:44:99:55 Vl 10 Internet 10.1.2.4 00:01:e8:d5:9e:e2 Ma 0/0 Internet 10.10.10.4 00:01:e8:d5:9e:e2 Ma 0/0 Internet 10.16.127.53...
show arp retries Display the configured number of ARP retries. Syntax show arp retries Command Modes EXEC EXEC Privilege Command Version 8.3.1.0 Introduced History Related arp retries Sets the number of ARP retries in case the system does not receive an ARP reply Commands in response to an ARP request.
Table 15-4. show hosts Command Example Fields (continued) Field Description Flags Classifies the entry as one of the following: • perm - the entry was manually configured and will not time out • temp - the entry was learned and will time out after 72 hours of inactivity. Also included in the flag is an indication of the validity of the route: •...
Page 310
Example Figure 15-9. show ip cam stack-unit Command Example FTOS#show ip cam stack-unit 0 port-set 0 10.10.10.10/32 longer-prefixes Destination EC CG V C Mac-Addr Port ----------------- -- -- - - ----- ----------------- ------------- 10.10.10.10 0 1 1 0 00:00:00:00:00:00 3f01 FTOS# Table 15-5.
show ip fib stack-unit View all forwarding information base (FIB) entries. Syntax show ip fib stack-unit 0-5 [ ip-address [ mask ] [ longer-prefixes ] | summary ] Parameters Enter the stack unit ID, from 0 to 5. ip-address mask (OPTIONAL) Enter the IP address of the network destination to view only information on that destination.
show ip interface View IP-related information on all interfaces. Syntax show ip interface [interface | brief ] [ configuration ] Parameter interface (OPTIONAL) Enter the following keywords and slot/port or number information: Loopback • For a Loopback interface, enter the keyword followed by a number from 0 to 16383.
Table 15-7. show ip interface Command Example Items (continued) Lines Description IP MTU is... Displays IP MTU value. Inbound access... Displays the name of the any configured incoming access list. If none is configured, the phrase “not set” is displayed. Proxy ARP...
summary summary (OPTIONAL) Enter the keyword to view a table listing the number of active and non-active routes and their sources. static static (OPTIONAL) Enter the keyword to view non-active routes also. Command Modes EXEC EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example...
show ip route View information, including how they were learned, about the IP routes on the switch. Syntax show ip route [ hostname | ip-address [ mask ] [ longer-prefixes ] | list prefix-list [ process-id ] | all | connected | static | summary ] Parameter ip-address...
Example Figure 15-18. show ip route summary and show ip route static Command Examples FTOS#show ip route summary Route Source Active Routes Non-active Routes connected static Total Total 3 active route(s) using 612 bytes FTOS#show ip route static ? Pipe through a command <cr>...
Parameters prefix-list Enter the name of a configured prefix list. Command Modes EXEC EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related ip prefix-list Enters the CONFIGURATION-IP PREFIX-LIST mode and configure a Commands prefix list. show ip prefix-list summary Displays a summary of the configured prefix lists.
Example Figure 15-20. show ip route summary Command Example FTOS>show ip route summary Route Source Active Routes Non-active Routes connected static ospf 100 1368 Intra-area: 762 Inter-area: 1 External-1: 600 External-2: 5 Total 1388 Total 1388 active route(s) using 222440 bytes Total 2 non-active route(s) using 128 bytes FTOS>...
Page 319
Example Figure 15-21. show ip traffic Command Example (partial) FTOS#show ip traffic IP statistics: Rcvd: 10021161 total, 3197480 local destination 2501 format errors, 390 checksum errors, 0 bad hop count 0 unknown protocol, 0 not a gateway 115 security failures, 0 bad options Frags: 0 reassembled, 0 timeouts, 0 too big 0 fragmented, 0 couldn't fragment Bcast: 6281 received, 0 sent;...
Usage The F10 monitoring MIB provides access to the statistics described below. Information Table 15-12. F10 Monitoring MIB Command Display Object OIDs IP statistics: Bcast: Received f10BcastPktRecv 1.3.6.1.4.1.6027.3.3.5.1.1 Sent f10BcastPktSent 1.3.6.1.4.1.6027.3.3.5.1.2 Mcast: Received f10McastPktRecv 1.3.6.1.4.1.6027.3.3.5.1.3 Sent f10McastPktSent 1.3.6.1.4.1.6027.3.3.5.1.4 ARP statistics: Rcvd: Request f10ArpReqRecv...
Page 321
Example Figure 15-22. show tcp statistics cp Command Example FTOS#show tcp statistics Rcvd: 9849 Total, 0 no port 0 checksum error, 0 bad offset, 0 too short 5735 packets (7919 bytes) in sequence 20 dup packets (2 bytes) 0 partially dup packets (0 bytes) 1 out-of-order packets (0 bytes) 0 packets ( 0 bytes) with data after window 0 packets after close...
Page 322
Table 15-13. show tcp statistics cp Command Example Fields (continued) Field Description 355 ack... Displays the number of acknowledgement packets sent and the number of packet delayed. 0 window probe... Displays the number of window probe and update packets sent. 7 Connections initiated...
iSCSI Optimization Overview Internet Small Computer System Interface (iSCSI) optimization enables quality-of-service (QoS) treatment for iSCSI storage traffic on an MXL Switch. The following FTOS commands are used to configure and verify the iSCSI Optimization feature: • advertise dcbx-app-tlv • iscsi aging time •...
iscsi aging time Set the aging time for iSCSI sessions. Syntax iscsi aging time time To remove the iSCSI session aging time, use the no iscsi aging time command. Parameters time Enter the aging time for the iSCSI session. Valid values: 5 to 43,200 minutes. Defaults 10 minutes.
iscsi enable Globally enable iSCSI optimization. Syntax iscsi enable To disable iSCSI optimization, use the no iscsi command. Parameters enable enable Enter the keyword to enable the iSCSI optimization feature. Defaults Enabled. Command Modes CONFIGURATION Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Usage When you enable the iSCSI feature using the iscsi enable command, flow control settings are set to rx Information...
iscsi target port Configure the iSCSI target ports and optionally, the IP addresses on which iSCSI communication will be monitored. Syntax iscsi target port tcp-port-1[tcp-port-2...tcp-port-16][address ip-address] To remove the configured iSCSI target ports or IP addresses, use the no iscsi target port command.
Example Figure 16-1. show iscsi Command Example FTOS# show isci iSCSI is enabled iSCSI COS : dot1p is 4 no-remark Session aging time: 10 Maximum number of connections is 256 ------------------------------------------------ iSCSI Targets and TCP Ports: ------------------------------------------------ TCP Port Target IP Address 3260 Related show iscsi sessions...
Page 328
show iscsi sessions detailed Display detailed information on active iSCSI sessions on the switch. show iscsi sessions detailed [session isid] Syntax Parameters isid Enter the session’s iSCSi ID to display detailed information on specified iSCSi session. Command Mode EXEC EXEC Privilege Command History Version 8.3.16.1...
show run iscsi Display all globally-configured non-default iSCSI settings in the current FTOS session. Syntax show run iscsi Command Mode EXEC Privilege Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Related show iscsi Display the currently configured iSCSI settings. Commands show iscsi sessions Display information on active iSCSI sessions on the switch.
Link Aggregation Control Protocol (LACP) Overview This chapter contains commands for Dell Force10’s implementation of the link aggregation control protocol (LACP) for the creation of dynamic link aggregation groups (LAGs — called port-channels in FTOS parlance). For static LAG commands, refer to the section...
Usage This command applies to dynamic port-channel interfaces only. When applied on a static port-channel, Information the command has no effect. Related show lacp Displays the lacp configuration Commands lacp port-priority Configure the port priority to influence which ports will be put in standby mode when there is a hardware limitation that prevents all compatible ports from aggregating.
Parameters number port-channel Enter the keyword followed by a number: Range: 1 to 128 active active Enter the keyword to set the mode to the active state.* passive passive Enter the keyword to set the mode to the passive state.* Enter the keyword to set the mode to the off state.* * The LACP modes are defined in...
Related show lacp Displays the LACP information. Commands show interfaces port-channel Displays information on configured Port Channel groups. show lacp Display the LACP matrix. Syntax show lacp port-channel-number [ sys-id | counters ] Parameters port - channel-number Enter a port-channel number: Range: 1 to 128 sys-id sys-id...
Page 336
Example 3 Figure 17-4. show lacp counter Command Example FTOS#show lacp 1 counters ---------------------------------------------------------------------- LACP PDU Marker PDU Unknown Illegal Port Xmit Recv Xmit Recv Pkts Rx Pkts Rx ---------------------------------------------------------------------- TenGig 10/6 FTOS# Related clear lacp counters Clears the LACP counters. Commands show interfaces port-channel Displays the information on configured Port Channel groups.
Layer 2 Overview This chapter describes commands to configure Layer 2 features. It contains the following sections: • MAC Addressing Commands • Virtual LAN (VLAN) Commands MAC Addressing Commands The following commands are related to configuring, managing, and viewing MAC addresses: •...
interface interface Enter the following keywords and slot/port or number information: port-channel • For a Port Channel interface, enter the keyword followed by a number: Range: 1 to 128 • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. fortyGigE •...
Parameters mac-address Enter the 48-bit hexidecimal address in nn:nn:nn:nn:nn:nn format. output interface output Enter the keyword followed by one of the following interfaces: port-channel • For a Port Channel interface, enter the keyword followed by a number: Range: 1 to 128 •...
Page 340
no-station-move no-station-move (OPTIONAL) Enter the keyword to disallow a station move (associate the learned MAC address with the most recently accessed port) on learned MAC addresses. station-move station-move (OPTIONAL) Enter the keyword to allow a station move on learned MAC addresses. sticky (OPTIONAL) Enter the keyword sticky to allow configuring the sticky mac feature along with the learning limit.
mac learning-limit learn-limit-violation Configure an action for a MAC address learning-limit violation. Syntax mac learning-limit learn-limit-violation { log | shutdown } To return to the default, use the no mac learning-limit learn-limit-violation { log | shutdown } command. Parameters Enter the keyword to generate a syslog message on a learning-limit violation.
Usage This is supported on physical interfaces, static LAGs, and LACP LAGs. Information Related show mac learning-limit Displays details of the mac learning-limit. Commands mac learning-limit reset Reset the MAC address learning-limit error-disabled state. Syntax mac learning-limit reset Defaults none Command Modes EXEC EXEC Privilege...
interface interface interface (OPTIONAL) Enter the keyword followed by the interface type, slot and port information: port-channel • For a Port Channel interface, enter the keyword followed by a number: Range: 1 to 128 • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
Page 344
vlan vlan-id vlan (OPTIONAL) Enter the keyword followed by the VLAN ID to display the MAC address assigned to the VLAN. Range: 1 to 4094. count count (OPTIONAL) Enter the keyword , followed optionally, by an interface or VLAN ID, to display total or interface-specific static addresses, dynamic addresses, and MAC addresses in use.
Table 18-2. show mac-address-table count Command Information Line Beginning with Description MAC Entries... Displays the number of MAC entries learnt per VLAN. Dynamic Address... Lists the number of dynamically learned MAC addresses. Static Address... Lists the number of user-defined MAC addresses. Total MAC...
show mac learning-limit MAC address learning limits set for various interfaces. Display Syntax show mac learning-limit [ violate-action ] [ detail ] [ interface interface Parameters violate-action violate-action (OPTIONALY) Enter the keyword to display the MAC learning limit violation status. detail detail (OPTIONAL) Enter the keyword...
Virtual LAN (VLAN) Commands The following commands configure and monitor virtual local area networks (VLANs). VLANs are a virtual interface and use many of the same commands as physical interfaces. You can configure an IP address and Layer 3 protocols on a VLAN called Inter-VLAN routing. FTP, TFTP, ACLs, and SNMP are not supported on a VLAN.
default vlan-id Specify a VLAN as the Default VLAN. Syntax default vlan-id vlan-id To remove the default VLAN status from a VLAN and VLAN 1 does not exist, use the no default vlan-id vlan-id command. Parameters vlan-id Enter the VLAN ID number of the VLAN to become the new Default VLAN. Range: 1 to 4094.
Page 349
Defaults Not configured. Command Modes INTERFACE VLAN Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage To display information about a named VLAN, enter the show vlan command with the name parameter Information or the show interfaces description command.
Page 350
id vlan-id (OPTIONAL) Enter the keyword followed by a number from 1 to 4094. Only information on the VLAN specified is displayed. name name (OPTIONAL) Enter the keyword followed by the name configured for the VLAN. vlan-name Only information on the VLAN named is displayed. Command Modes EXEC EXEC Privilege...
Page 351
Figure 18-7. show vlan id Command Example FTOS# show vlan id 40 Codes: * - Default VLAN, G - GVRP VLANs, R - Remote Port Mirroring VLANs, P - Primary, C - Community, I - Isolated Q: U - Untagged, T - Tagged x - Dot1x untagged, X - Dot1x tagged G - GVRP tagged, M - Vlan-stack, H - VSN tagged i - Internal untagged, I - Internal tagged, v - VLT untagged, V...
Parameters interface Enter the following keywords and slot/port or number information: port-channel • For a Port Channel interface, enter the keyword followed by a number: Range: 1-128 TenGigabitEthernet • For a 10-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. fortyGigE •...
Page 353
Usage When you configure this command, the VLAN is operationally UP if any of the interfaces specified in Information the track ip command are operationally UP. The VLAN is operationally DOWN if none of the tracking interfaces are operationally UP. If you do not configure the track ip command, the VLAN's Layer 3 operational state depends on all the members of the VLAN.
IEEE 802 LAN. LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management. The Dell Fore10 operating software (FTOS) implementation of LLDP is based on IEEE standard 801.1ab.
Parameters interface Enter the following keywords and slot/port or number information: tenGigabitEthernet • For a 10-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. fortyGigE • For a 40-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. Defaults none Command Modes...
Page 359
disable Enable or disable LLDP. Syntax disable To enable LLDP, use the no disable Defaults Enabled, that is no disable Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related protocol lldp (Configuration) Enables LLDP globally.
Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related protocol lldp (Configuration) Enables LLDP globally. Commands show lldp neighbors Displays the LLDP neighbors multiplier Set the number of consecutive misses before LLDP declares the interface dead. Syntax multiplier integer To return to the default, use the...
Command Modes INTERFACE (conf-if-interface-lldp) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage You must enable LLDP globally from CONFIGURATION mode before you can configure it on an Information interface. This command places you in LLDP mode on the interface; it does not enable the protocol. When you enter the LLDP protocol in the Interface context, it overrides global configurations.
Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 19-2. show lldp statistics Command Example FTOS#show lldp statistics --------- LLDP GLOBAL STATISTICS ON CHASSIS ------------ Total number of neighbors: 2 Last table change time: 1w5d4h, In ticks: 52729764 Total number of Table Inserts: 56 Total number of Table Deletes: 54 Total number of Table Drops: 0...
LLDP-MED Network Connectivity Device — any device that provides access to an IEEE 802 LAN to an LLDP-MED endpoint device, and supports IEEE 802.1AB (LLDP) and TIA-1057 (LLDP-MED). The Dell Force10 system is an LLDP-MED network connectivity device. With regard to connected endpoint devices, LLDP-MED provides network connectivity devices with the ability to: •...
DSCP_value Enter the DSCP value. Range: 0 to 63 priority-tagged number priority-tagged Enter the keyword followed the Layer 2 priority. Range: 0 to 7 Defaults Unconfigured Command Modes CONFIGURATION (conf-lldp) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related protocol lldp (Configuration)
advertise med location-identification Configure the system to advertise a location identifier. Syntax advertise med location-identification { coordinate-based value | civic-based value | ecs-elin value } To return to the default, use the no advertise med location-identification { coordinate-based value | civic-based value | ecs-elin value } command.
Related debug lldp interface Debugs LLDP Commands show lldp neighbors Displays the LLDP neighbors show running-config lldp Displays the LLDP running configuration advertise med softphone-voice Configure the system to advertise softphone to enable IP telephony on a computer so that the computer can be used as a phone.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related debug lldp interface Debugs LLDP Commands show lldp neighbors Displays the LLDP neighbors show lldp neighbors Displays the LLDP running configuration advertise med video-conferencing Configure the system to advertise dedicated video conferencing and other similar appliances that support real-time interactive video.
Command Modes CONFIGURATION (conf-lldp) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related debug lldp interface Debugs LLDP Commands show lldp neighbors Displays the LLDP neighbors show lldp neighbors Displays the LLDP running configuration advertise med voice Configure the system to advertise a dedicated IP telephony handset or other appliances supporting interactive voice services.
Page 369
Defaults unconfigured Command Modes CONFIGURATION (conf-lldp) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related debug lldp interface Debugs LLDP Commands show lldp neighbors Displays the LLDP neighbors show lldp neighbors Displays the LLDP running configuration Link Layer Discovery Protocol (LLDP) | 369...
Multiple Spanning Tree Protocol (MSTP) Overview The multiple spanning tree protocol (MSTP), as implemented by the Dell Force10 operating software (FTOS), conforms to IEEE 802.1s. Commands The following commands configure and monitor MSTP: • debug spanning-tree mstp • disable •...
debug spanning-tree mstp Enable debugging of the multiple spanning tree protocol and view information on the protocol. Syntax debug spanning-tree mstp [all | bpdu interface { in | out } | events] To disable debugging, use the no debug spanning-tree mstp command. Parameters (OPTIONAL) Enter the keyword to debug all spanning tree operations.
Page 373
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related protocol spanning-tree mstp Enters MULTIPLE SPANNING TREE mode on the switch. Commands disable Globally disable the multiple spanning tree protocol on the switch. Syntax disable To enable Multiple Spanning Tree Protocol, use the no disable command. Defaults MSTP is disabled Command Modes...
Page 374
Parameters seconds Enter the number of seconds the interface waits in the Blocking State and the Learning State before transiting to the Forwarding State. Range: 4 to 30 Default: 15 seconds. Defaults 15 seconds Command Modes MULTIPLE SPANNING TREE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History...
Page 375
Parameters max-age Enter a number of seconds the FTOS waits before refreshing configuration information. Range: 6 to 40 Default: 20 seconds. Defaults 20 seconds Command Modes MULTIPLE SPANNING TREE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related edge-port The amount of time the interface waits in the Blocking State and the Learning State...
Page 376
Parameters msti instance Enter the MST instance number. Range: 0 to 4094. vlan range vlan Enter the keyword followed by the identifier range value. Range: 1 to 4094 bridge-priority priority bridge-priority Enter the keyword followed by a value in increments of 4096 as the bridge priority.
protocol spanning-tree mstp Enter MULTIPLE SPANNING TREE mode to enable and configure the multiple spanning tree group. Syntax protocol spanning-tree mstp To disable the multiple spanning tree group, use the no protocol spanning-tree mstp command. Defaults Not configured. Command Modes CONFIGURATION Command Version 8.3.16.1...
show config View the current configuration for the mode. Only non-default values are shown. Syntax show config Command Modes MULTIPLE SPANNING TREE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Figure 20-3. show config Command Example Example FTOS(conf-mstp)#show config protocol spanning-tree mstp no disable...
Page 379
Parameters instance-number [OPTIONAL] Enter the MST instance number. Range: 0 to 4094. brief [OPTIONAL] Enter the keyword brief to view a synopsis of the MST instance. guard [OPTIONAL] Enter the keyword guard to display the type of guard enabled on an MSTP interface and the current port state.
Page 380
Example 2 Figure 20-6. show spanning-tree msti Command Example with EDS and LBK FTOS#show spanning-tree msti 0 brief MSTI 0 VLANs mapped 1-4094 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15, max hops 20 Bridge ID Priority 32768, Address 0001.e801.6aa8 We are the root of MSTI 0 (CIST)
Table 20-1. show spanning-tree msti guard Command Information Field Description Port state: root-inconsistent (INCON Root), forwarding (FWD), listening (LIS), blocking (BLK), or shut down (EDS Shut) Guard Type Type of STP guard configured (Root or BPDU guard) BPDU Filter BPDU filter enabled (Yes) or BPDU filter disabled (No) spanning-tree Enable the multiple spanning tree protocol on the interface.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History spanning-tree mstp Configures a Layer 2 MSTP interface as an edge port with (optionally) a BPDU guard, a BPDU filter or enables the root guard feature on the interface. Syntax spanning-tree mstp {edge-port [ bpduguard [ shutdown-on-violation | bpdufilter ] | rootguard } Parameters...
Page 383
tc-flush-standard Enable the MAC address flushing after receiving every topology change notification. Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage By default, FTOS implements an optimized flush mechanism for MSTP. This helps in flushing the Information MAC addresses only when necessary (and less often) allowing for faster convergence during topology changes.
(AS). OSPF is also a link-state protocol in which all routers contain forwarding tables derived from information about their links to their neighbors. OSPFv2 Commands The Dell Force10 implementation of OSPFv2 is based on IETF RFC 2328. The following commands allow you to configure and enable OSPFv2. •...
Page 386
• ip ospf message-digest-key • ip ospf mtu-ignore • ip ospf network • ip ospf priority • ip ospf retransmit-interval • ip ospf transmit-delay • log-adjacency-changes • maximum-paths • mib-binding • network area • passive-interface • redistribute • router-id • router ospf •...
area default-cost Set the metric for the summary default route generated by the area border router (ABR) into the stub area. Use this command on the border routers at the edge of a stub area. Syntax area area-id default-cost cost To return default values, use the no area area-id default-cost command.
area range Summarize routes matching an address/mask at an area border router (ABR). Syntax area area-id range ip-address mask [ not-advertise ] To disable route summarization, use the no area area-id range ip-address mask command. Parameters area-id Specify the OSPF area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535.
Related router ospf Enters the ROUTER OSPF mode to configure an OSPF instance. Commands auto-cost Specify how the OSPF interface cost is calculated based on the reference bandwidth method. Syntax auto-cost [ reference-bandwidth ref-bw ] To return to the default bandwidth or to assign cost based on the interface type, use the no auto-cost [ reference-bandwidth ] command.
clear ip ospf statistics Clear the packet statistics in interfaces and neighbors. Syntax clear ip ospf process-id statistics [ interface name { neighbor router-id }] Parameters process-id Enter the OSPF Process ID to clear statistics for a specific process. If no Process ID is entered, all OSPF processes are cleared. interface interface name (OPTIONAL) Enter the keyword...
Page 391
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 21-1. debug ip ospf process-id packet Command Example FTOS#debug ip ospf 1 packet OSPF process 1, packet debugging is on FTOS# 08:14:24 : OSPF(100:00): Xmt. v:2 t:1(HELLO) l:44 rid:192.1.1.1 aid:0.0.0.1 chk:0xa098 aut:0 auk: keyid:0 to:TenGig 4/3 dst:224.0.0.5 netmask:255.255.255.0 pri:1 N-, MC-, E+, T-, hi:10 di:40 dr:90.1.1.1 bdr:0.0.0.0...
Page 392
Table 21-1. debug ip ospf process-id packet Output Descriptions Field Description N, MC, E, T Displays information available in the Options field of the HELLO packet: • N + (N-bit is set) • N - (N-bit is not set) • MC+ (bit used by MOSPF is set and router is able to forward IP multicast packets) •...
Page 393
default-metric Change the metrics of redistributed routes to a value useful to OSPF. Use this command with the redistribute command. Syntax default-metric number To return to the default values, use the no default-metric [ number ] command. Parameters number Enter a number as the metric. Range: 1 to 16777214.
Parameters weight Specify an administrative distance. Range: 1 to 255. Default: 110 ip-address (OPTIONAL) Enter a router ID in the dotted decimal format. If you enter a router ID, you must include the mask for that router address. mask (OPTIONAL) Enter a mask in dotted decimal format or /n format. access-list-name (OPTIONAL) Enter the name of an IP standard access list, up to 140 characters.
Page 395
distribute-list in Apply a filter to incoming routing updates from OSPF to the routing table. Syntax distribute-list prefix-list-name in [ interface ] To delete a filter, use the no distribute-list prefix-list-name in [ interface ] command. Parameters prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Enter one of the following keywords and slot/port or number information:...
Page 396
This will impact CPU utilization and may impact adjacency stability in larger topologies. Generally, convergence level 1 meets most convergence requirements. Higher convergence levels should only be selected following consultation with Dell Force10 Technical Support. flood-2328 Enable RFC-2328 flooding behavior.
By default, FTOS implements an enhanced flooding procedure that dynamically and intelligently determines when to optimize flooding. Whenever possible, the OSPF task attempts to reduce flooding overhead by selectively flooding on a subset of the interfaces between two routers. When flood-2328 is enabled, this command configures FTOS to flood LSAs on all interfaces. graceful-restart helper-reject Specify the OSPF router to not act as a helper during graceful restart.
ip ospf authentication-key Enable authentication and set an authentication key on OSPF traffic on an interface. Syntax ip ospf authentication-key [ encryption-type ] key To delete an authentication key, use the no ip ospf authentication-key command. Parameters encryption-type (OPTIONAL) Enter 7 to encrypt the key. Enter an 8 character string.
ip ospf dead-interval Set the time interval since the last hello-packet was received from a router. After the interval elapses, the neighboring routers declare the router dead. Syntax ip ospf dead-interval seconds To return to the default values, use the no ip ospf dead-interval command. Parameters seconds Enter the number of seconds for the interval.
This process ensures that the neighbors learn the new key and communication is not disrupted by keeping the old key enabled. After the reply is received and the new key is authenticated, you must delete the old key. Dell Force10 recommends keeping only one key per interface.
ip ospf network Set the network type for the interface. Syntax ip ospf network { broadcast | point-to-point } To return to the default, use the no ip ospf network command. Parameters broadcast broadcast Enter the keyword to designate the interface as part of a broadcast network.
Parameters seconds Enter the number of seconds as the interval between retransmission. Range: 1 to 3600. Default: 5 seconds. This interval must be greater than the expected round-trip time for a packet to travel between two routers. Defaults 5 seconds Command Modes INTERFACE Command...
maximum-paths Enable the software to forward packets over multiple paths. Syntax maximum-paths number To disable packet forwarding over multiple paths, use the no maximum-paths command. Parameters number Specify the number of paths. Range: 1 to 64. Default: 4 paths. Defaults Command Modes ROUTER OSPF Command...
Page 404
mask Enter a network mask in /prefix format. (/x) area-id Enter the OSPF area ID as either a decimal value or in a valid IP address. Decimal value range: 0 to 65535 IP address format: dotted decimal format A.B.C.D. Note: If the area ID is smaller than 65535, it will be converted to a decimal value. For example, if you use an area ID of 0.0.0.1, it will be converted to 1.
Page 405
The default keyword sets all interfaces as passive. You can then configure individual interfaces, where adjacencies are desired, using the no passive-interface interface command. The no form of this command is inserted into the configuration for individual interfaces when the no passive-interface command is issued while passive-interface default is configured.
Page 406
metric-type metric-type (OPTIONAL) Enter the keyword followed by one of the type-value following: • 1 = OSPF External type 1 • 2 = OSPF External type 2 map-name route-map route-map (OPTIONAL) Enter the keyword followed by the name of the route map.
Usage You can configure an arbitrary value in the IP address format for each router. However, each router ID Information must be unique. If this command is used on an OSPF router process, which is already active (that is, has neighbors), a prompt reminding you that changing router-id will bring down the existing OSPF adjacency.
show ip ospf Display information on the OSPF process configured on the switch. Syntax show ip ospf process-id Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. Command Modes EXEC EXEC Privilege...
show ip ospf asbr Display all ASBR routers visible to OSPF. Syntax show ip ospf process-id asbr Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. Defaults No default values or behavior Command Modes...
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 21-7. show ip ospf process-id database Command Example FTOS>show ip ospf 1 database OSPF Router with ID (11.1.2.1) (Process ID 1) Router (Area 0.0.0.0) Link ID ADV Router Seq# Checksum Link count...
Page 411
Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format. The LSA ID value depends on the LSA type, and it can be one of the following: •...
Table 21-4. show ip ospf database asbr-summary Command Description Item Description Link State ID Displays the Link State ID. Advertising Router Identifies the advertising router’s ID. Checksum Displays the Fletcher checksum of the an LSA’s complete contents. Length Displays the length in bytes of the LSA. Network Mask Displays the network mask implemented on the area.
Page 413
Example Figure 21-9. show ip ospf database external Command Example FTOS#show ip ospf 1 database external OSPF Router with ID (20.20.20.5) (Process ID 1) Type-5 AS External LS age: 612 Options: (No TOS-capability, No DC, E) LS type: Type-5 AS External Link State ID: 12.12.12.2 Advertising Router: 20.31.3.1 LS Seq Number: 0x80000007...
Table 21-5. show ip ospf process-id database external Command Description Item Description Metrics Displays the LSA metric. Forward Address Identifies the address of the forwarding router. Data traffic is forwarded to this router. If the forwarding address is 0.0.0.0, data traffic is forwarded to the originating router.
Page 415
Example Figure 21-10. show ip ospf process-id database network Command Example FTOS#show ip ospf 1 data network OSPF Router with ID (20.20.20.5) (Process ID 1) Network (Area 0.0.0.0) LS age: 1372 Options: (No TOS-capability, DC, E) LS type: Network Link State ID: 202.10.10.2 Advertising Router: 20.20.20.8 LS Seq Number: 0x80000006 Checksum: 0xa35...
show ip ospf database nssa-external Display NSSA-External (type 7) LSA information. Syntax show ip ospf database nssa-external [ link-state-id ] [ adv-router ip-address ] Parameters link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format. The LSA ID value depends on the LSA type, and it can be one of the following: •...
Page 417
Example Figure 21-11. show ip ospf process-id database opaque-area Command Example (Partial) FTOS>show ip ospf 1 database opaque-area OSPF Router with ID (3.3.3.3) (Process ID 1) Type-10 Opaque Link Area (Area 0) LS age: 1133 Options: (No TOS-capability, No DC, E) LS type: Type-10 Opaque Link Area Link State ID: 1.0.0.1 Advertising Router: 10.16.1.160...
show ip ospf database opaque-as Display the opaque-as (type 11) LSA information. Syntax show ip ospf process-id database opaque-as [ link-state-id ] [ adv-router ip-address ] Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
show ip ospf database router Display the router (type 1) LSA information. Syntax show ip ospf process-id database router [ link-state-id ] [ adv-router ip-address ] Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Page 420
Example Figure 21-12. show ip ospf process-id database router Command Example (Partial) FTOS#show ip ospf 100 database router OSPF Router with ID (1.1.1.10) (Process ID 100) Router (Area 0) LS age: 967 Options: (No TOS-capability, No DC, E) LS type: Router Link State ID: 1.1.1.10 Advertising Router: 1.1.1.10 LS Seq Number: 0x8000012f...
Table 21-8. show ip ospf process-id database router Command Description Item Description LS Seq Number Displays the link state sequence number. This number detects duplicate or old LSAs. Checksum Displays the Fletcher checksum of an LSA’s complete contents. Length Displays the length in bytes of the LSA. Number of Links Displays the number of active links to the type of router (Area Border Router or AS Boundary Router) listed in the previous line.
Page 422
Example Figure 21-13. show ip ospf process-id database summary Command Example FTOS#show ip ospf 100 database summary OSPF Router with ID (1.1.1.10) (Process ID 100) Summary Network (Area 0.0.0.0) LS age: 1551 Options: (No TOS-capability, DC, E) LS type: Summary Network Link State ID: 192.68.16.0 Advertising Router: 192.168.17.1 LS Seq Number: 0x80000054...
Table 21-9. show ip ospf process-id database summary Command Description Items Description Displays the TOS options. Option 0 is the only option. Metric Displays the LSA metrics. Related show ip ospf database Displays OSPF database information. Commands show ip ospf interface Display the OSPF interfaces configured.
Page 424
Example Figure 21-14. show ip ospf process-id interface Command Example FTOS>show ip ospf int TenGigabitEthernet 13/17 is up, line protocol is up Internet Address 192.168.1.2/30, Area 0.0.0.1 Process ID 1, Router ID 192.168.253.2, Network Type BROADCAST, Cost: 1 Transmit Delay is 1 sec, State DR, Priority 1 Designated Router (ID) 192.168.253.2, Interface address 192.168.1.2 Backup Designated Router (ID) 192.168.253.1, Interface address 192.168.1.1 Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5...
show ip ospf neighbor Display the OSPF neighbors connected to the local router. Syntax show ip ospf process-id neighbor Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. Command Modes EXEC Privilege Command...
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage This command is useful in isolating routing problems between OSPF and RTM. For example, if a route Information is missing from the RTM/FIB but is visible from the display output of this command, then likely the problem is with downloading the route to the RTM.
Page 427
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 21-17. show ip ospf process-id statistics global Command Example FTOS#show ip ospf 10 statistics global OSPF Packet Count Total Error Hello DDiscr LSReq LSUpd LSAck OSPF Global Queue Length TxQ-Len RxQ-Len Tx-Mark...
Page 428
Table 21-13. show ip ospf statistics process-id global Error Descriptions Error Type Description Intf_Down Received packets on an interface that is either down or OSPF is not enabled. Non-Dr Received packets with a destination address of ALL_DRS even though SELF is not a designated router Self-Org Receive the self originated packet...
show ip ospf topology Display routers in directly connected areas. Syntax show ip ospf process-id topology Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. Defaults none Command Modes...
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage The command area range summarizes routes for the different areas. Information With "not-advertise" parameter configured, this command can be used to filter out some external routes. For example, you want to redistribute static routes to OSPF, but you don't want OSPF to advertise routes with prefix 1.1.0.0.
Parameters start-interval Set the minimum interval between initial sending and resending the same LSA. Range: 0-600,000 milliseconds hold-interval Set the next interval to send the same LSA. This is the time between sending the same LSA after the start-interval has been attempted. Range: 1-600,000 milliseconds max-interval Set the maximum amount of time the system waits before sending the LSA.
Port monitoring is supported on physical ports only. Logical interfaces, such as Port Channels and virtual local are networks (VLANs), are not supported. • The Dell Force10 operating software (FTOS) supports as many monitor sessions on a system as the number of port-pipes. •...
description Enter a description of this monitoring session. Syntax description { description } To remove the description, use the no description { description } command. Parameters description Enter a description regarding this session(80 characters maximum). Defaults none Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Command Version 8.3.16.1 Introduced on M I/O Aggregator...
show config Display the current monitor session configuration. show config Syntax Defaults none Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Command Version 8.3.16.1 Introduced on M I/O Aggregator History Example Figure 22-2. show config Command Example FTOS(conf-mon-sess-11)#show config monitor session 11 source TenGigabitEthernet 10/0 destination TenGigabitEthernet 10/47 direction show monitor session Display the monitor information of a particular session or all sessions.
show running-config monitor session Display the running configuration of all monitor sessions or a specific session. Syntax show running-config monitor session {session-ID} To display the running configuration for all monitor sessions, use just the show running-config monitor session command. Parameters session-ID (OPTIONAL) Enter a session identification number.
source (port monitoring) Configure a port monitor source. Syntax source interface destination interface direction { rx | tx | both } To disable a monitor source, use the no source interface destination interface direction { rx | tx | both } command Parameters interface...
Chapter 18, Layer 2 Private virtual local area networks (VLANs) extend the Dell Force10 operating software (FTOS) security suite by providing Layer 2 isolation between ports within the same private VLAN. A private VLAN partitions a traditional VLAN into subdomains identified by a primary and secondary VLAN pair.
Private VLAN Concepts Primary VLAN: The primary VLAN is the base VLAN and can have multiple secondary VLANs. There are two types of secondary VLAN — community VLAN and isolated VLAN: • A primary VLAN can have any number of community VLANs and isolated VLANs. •...
To disable Layer 3 communication in a particular secondary VLAN, use the no ip local-proxy-arp command in INTERFACE VLAN mode for the selected secondary VLAN. Note: Even after ip-local-proxy-arp is disabled (no ip-local-proxy-arp) in a secondary VLAN, Layer 3 communication may happen between some secondary VLAN hosts, until the ARP timeout happens on those secondary VLAN hosts.
Only ports (and port channels) configured as promiscuous, host, or PVLAN trunk ports (as described above) can be added to the PVLAN. No other regular ports can be added to the PVLAN. After using this command to configure a VLAN as a primary VLAN, use the private-vlan mapping secondary-vlan command to map secondary VLANs to this VLAN.
show interfaces private-vlan Display type and status of PVLAN interfaces. Syntax show interfaces private-vlan [ interface interface ] Parameters interface interface interface (OPTIONAL) Enter the keyword , followed by the ID of the specific interface for which to display PVLAN status. Defaults none Command Modes...
show vlan private-vlan mapping Displays the primary-secondary VLAN mapping. switchport mode private-vlan Sets the PVLAN mode of the selected port. show vlan private-vlan Display PVLANs and/or interfaces that are part of a PVLAN. Syntax show vlan private-vlan [ community | interface | isolated | primary | primary_vlan | interface interface Parameters community...
Page 445
Figure 23-4. show vlan private-vlan Command Example (Primary) FTOS# show vlan private-vlan primary Primary Secondary Type Active Ports ------- --------- --------- ------ ------------------------ primary TenGig 2/1,3 primary TenGig 3/1,3 Figure 23-5. show vlan private-vlan Command Example (Isolated) FTOS# show vlan private-vlan isolated Primary Secondary Type Active Ports ------- --------- --------- ------ ------------------------...
Table 23-2 defines the fields in the output. Table 23-2. show interfaces Command Description Field Description Primary Displays the VLAN ID of the designated or associated primary VLAN(s) Secondary Displays the VLAN ID of the designated or associated secondary VLAN(s Type Displays the type of VLAN in which the listed interfaces reside Active...
switchport mode private-vlan Set PVLAN mode of the selected port. Syntax [ no ] switchport mode private-vlan { host | promiscuous | trunk } To remove the PVLAN mode from the selected port, use the no switchport mode private-vlan command. Parameters host host...
Per-VLAN Spanning Tree Plus (PVST+) Overview The FTOS implementation of PVST+ (Per-VLAN Spanning Tree plus) is based on the IEEE 802.1d standard Spanning Tree Protocol, but it creates a separate spanning tree for each VLAN configured. Commands The FTOS PVST+ commands are: •...
Page 450
Related protocol spanning-tree pvst Enter PVST+ mode. Commands description Enter a description of the PVST+ Syntax description { description } To remove the description, use the no description { description } command. Parameters description Enter a description to identify the Spanning Tree (80 characters maximum). Defaults No default behavior or values Command Modes...
Page 451
extend system-id Use Extend System ID to augment the Bridge ID with a VLAN ID so that PVST+ differentiate between BPDUs for each VLAN. If for some reason a VLAN receives a BPDU meant for another VLAN, PVST+ will then not detect a loop, and both ports can remain in forwarding state. Syntax extend system-id Defaults...
protocol spanning-tree pvst Enter the PVST+ mode to enable PVST+ on a device. Syntax protocol spanning-tree pvst To disable PVST+, use the disable command. Defaults This command has no default value or behavior. Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 24-2.
Page 453
Interface (OPTIONAL) Enter one of the interface keywords along with the slot/port information: port-channel • For a Port Channel interface, enter the keyword followed by a number: Range: 1-128 • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. fortyGigE •...
Page 454
Example 2 Figure 24-4. show spanning-tree pvst vlan Command FTOS#show spanning-tree pvst vlan 2 VLAN 2 Root Identifier has priority 32768, Address 001e.c9f1.00f3 Root Bridge hello time 2, max age 20, forward delay 15 Bridge Identifier has priority 32768, Address 001e.c9f1.00f3 Configured hello time 2, max age 20, forward delay 15 Bpdu filter disabled globally We are the root of VLAN 2...
Page 455
Example 4 Figure 24-6. show spanning-tree pvst with EDS and PVID FTOS#show spanning-tree pvst vlan 2 interface tengigabitethernet 1/0 TenGigabitEthernet 1/0 of VLAN 2 is PVID_INC discarding Edge port:no (default) port guard :none (default) Link type: point-to-point (auto) bpdu filter:disable (default) Bpdu filter :disable Bpdu guard :disable Bpdu guard shutdown-on-violation :disable...
spanning-tree pvst Configure a PVST+ interface with one of the following settings: edge port with optional Bridge Port Data Unit (BPDU) guard, BPDU filter, port disablement if an error condition occurs, port priority or cost for a VLAN range, or root guard. Syntax spanning-tree pvst {edge-port [bpduguard [shutdown-on-violation] | bpdufilter] | err-disable | vlan vlan-range {cost number | priority value} | rootguard}...
Page 457
BPDUs: an 802.1D BPDU and an untagged PVST+ BPDU. Dell Force10 systems do not expect PVST+ BPDU on an untagged port. If this happens, FTOS places the port in error-disable state. This behavior might result in the network not converging. To prevent...
Page 458
tc-flush-standard Enable the MAC address flushing upon receiving every topology change notification. Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage By default FTOS implements an optimized flush mechanism for PVST+. This helps in flushing the Information MAC addresses only when necessary (and less often) allowing for faster convergence during topology changes.
vlan forward-delay Set the amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State. Syntax vlan <vlan-id> forward-delay seconds To return to the default setting, enter no vlan forward-delay command. Parameters vlan vlan-range vlan...
Page 460
Related vlan bridge-priority Set the bridge-priority value Commands vlan forward-delay Change the time interval before FTOS transitions to the forwarding state vlan max-age Change the time interval before PVST+ refreshes show spanning-tree pvst Display the PVST+ configuration vlan max-age Set the time interval for the PVST+ bridge to maintain configuration information before refreshing that information.
Quality of Service (QoS) Overview The Dell Force10 operating software (FTOS) commands for quality of service (QoS) include traffic conditioning and congestion control. This chapter contains the following sections: • Global Configuration Commands • Policy-Based QoS Commands Global Configuration Commands •...
service-class dot1p-mapping This command maps an 802.1p priority to an internal traffic class. Syntax service-class dot1p-mapping user-priority trafficclass user-priority value can range from 0-7 and traffic class can range from 0-6. The no form of this command is not supported. Command Modes CONFIGURATION Command...
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage dot1p-priority command changes the priority of incoming traffic on the interface. The system Information places traffic marked with a priority in the correct queue and processes that traffic according to its queue.
Related rate-police Police traffic output as part of the designated policy. Commands rate shape Shape the traffic output on the selected interface. Syntax rate shape [ kbps ] rate [ burst-KB ] Parameters kbps Enter this keyword to specify the rate shape in Kilobits per second (Kbps). On MXL Switch.
Page 465
Table 25-1. Default dot1p to Queue Mapping (continued) dot1p Queue ID Command Modes INTERFACE CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage Enter this command to honor all incoming 802.1p markings, on incoming switched traffic, on the Information interface.
Page 466
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage Guarantee a minimum bandwidth to different queues globally using the command service-class Information bandwidth-percentage from CONFIGURATION mode. The DCB ETS supersedes the global and policy based QoS bandwidth configurations. When you enable ETS, the egress QoS features in the output QoS policy-map (such as service-class bandwidth-percentage and bandwidth-percentage), the default bandwidth allocation ratio for egress queues are superseded by ETS configurations.
Policy-Based QoS Commands Policy-based traffic classification is handled with class maps. These maps classify unicast traffic into one of four classes in the MXL Switch. FTOS enables you to match multiple class maps and specify multiple match criteria. Policy-based QoS is not supported on logical interfaces, such as port-channels, VLANS, or loopbacks.
Page 468
bandwidth-percentage Assign a percentage of weight to class/queue. Syntax bandwidth-percentage percentage To remove the bandwidth percentage, use the no bandwidth-percentage command. Parameters percentage Enter the percentage assignment of weight to class/queue. Range: 1 to 100% (granularity 1%) Defaults none Command Modes CONFIGURATION (conf-qos-policy-out) Command Version 8.3.16.1...
Usage Packets arriving at the input interface are checked against the match criteria, configured using this Information command, to determine if the packet belongs to that class. This command accesses the CLASS-MAP mode, where the configuration commands include match ip and match mac options. Related ip access-list extended Configures an extended IP ACL.
match ip access-group Configure match criteria for a class map, based on the access control list (ACL). Syntax match ip access-group access-group-name [ set-ip-dscp value] To remove ACL match criteria from a class map, use the no match ip access-group access-group-name [ set-ip-dscp value] command.
qos-policy-output Creates an output QOS-policy on the router. wred-profile Creates a WRED profile. match ip dscp Use a differentiated services code point (DSCP) value as a match criteria. Syntax match ip dscp dscp-list [ set-ip-dscp value] To remove a DSCP value as a match criteria, use the no match ip dscp dscp-list [[ multicast ] set-ip-dscp value] command.
Page 472
Parameters ip-precedence-list Enter the IP precedence value(s) as the match criteria. Separate values by commas — no spaces (1,2,3) or indicate a list of values separated by a hyphen (1-3). Range: 0 to 7 set-ip-dscp value set-ip-dscp (OPTIONAL) Enter the keyword followed by the IP DSCP value.
match mac dot1p Configure a match criterion for a class map, based on a dot1p value. Syntax match mac dot1p { dot1p-list } Parameters dot1p-list Enter a dot1p value. Range: 0 to 7 Defaults none Command Modes CLASS-MAP Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage...
Page 474
Parameters qos-policy-name Enter the name of the policy map in character format (32 characters maximum) Defaults none Command Modes CONFIGURATION (policy-map-input and policy-map-output) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage Aggregate input/output QoS policy applies to all the port ingoing/outgoing traffic. Aggregate input/ Information output QoS policy can co-exist with per queue input/output QoS policies.
Page 475
policy-map-output Create an output policy map. Syntax policy-map-output policy-map-name To remove a policy map, use the no policy-map-output policy-map-name command. Parameters policy-map-name Enter the name for the policy map in character format (16 characters maximum). Defaults none Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module...
Page 476
When changing a service-queue configuration in a QoS policy map, all QoS rules are deleted and re-added automatically to ensure that the order of the rules is maintained. As a result, the Matched Packets value shown in the “show qos statistics” command is reset. Related rate-police Incoming traffic policing function...
Page 477
burst-KB (OPTIONAL) Enter the burst size in KB. Range: 16 to 200000 KB Default: 100 KB peak peak peak-rate (OPTIONAL) Enter the keyword followed by the peak rate in Mbps. Range: 0 to 10000 Mbps committed-rate Default: Same as designated for Defaults Burst size is 100 KB.
service-policy input Apply an input policy map to the selected interface. Syntax service-policy input policy-map-name [ layer2 ] To remove the input policy map from the interface, use the no service-policy input policy-map-name [ layer2 ] command. Parameters policy-map-name Enter the name for the policy map in character format (16 characters You can identify an existing maximum).
Page 479
Usage A single policy-map can be attached to one or more interfaces to specify the service-policy for those Information interfaces. A policy map attached to an interface can be modified. Related policy-map-output Creates an output policy map. Commands service-queue Assign a class map and QoS policy to different queues. Syntax service-queue queue-id [ class-map class-map-name ] [ qos-policy qos-policy-name ] To remove the queue assignment, use the no service-queue queue-id [ class-map class-map-name ]...
Mark outgoing traffic with a Differentiated Service Code Point (DSCP) or dot1p value. Syntax set { ip-dscp value | mac-dot1p value } Parameters ip-dscp value ip-dscp (OPTIONAL) Enter the keyword followed by the IP DSCP value. Range: 0 to 63 mac-dot1p mac-dot1p value Enter the keyword...
show qos policy-map View the QoS policy map information. Syntax show qos policy-map { summary [interface] | detail [ interface]} Parameters summary interface summary To view a policy map interface summary, enter the keyword optionally one of the following keywords and slot/port or number information: •...
show qos policy-map-input View the input QoS policy map details. Syntax show qos policy-map-input [ policy-map-name ] [ class class-map-name ] [ qos-policy-input qos-policy-name Parameters policy-map-name Enter the policy map name. Enter the keyword class followed by the class map name. class class-map-name qos-policy-input qos-policy-input...
Table 25-2. show qos statistics Command Description (ED and EE Series) Field Description Queue # Queue Number Matched Pkts The number of packets that matched the class-map criteria. Note: When trust is configured, matched packet counters are not incremented in this field. Example 2 Figure 25-9.
Page 486
Example Figure 25-10. show qos wred-profile Command Example FTOS#show qos wred-profile Wred-profile-name min-threshold max-threshold wred_drop wred_ge_y 1024 2048 wred_ge_g 2048 4096 wred_teng_y 4096 8192 wred_teng_g 8192 16384 WRED1 2000 7000 test cam-usage Check the Input Policy Map configuration for the CAM usage. Syntax test cam-usage service-policy input policy-map stack-unit { [ number] | [all ]} Parameters...
Page 487
Table 25-4. test cam-usage Command Description Field Description stack-unit Indicates the stack-unit number. Portpipe Indicates the portpipe number. CAM Partition The CAM space where the rules are added. Available CAM Indicates the free CAM space, in the partition, for the classification rules. Note: The CAM entries reserved for the default rules are not included in the Available CAM column;...
Page 488
Usage When trust is configured, matched bytes/packets counters are not incremented in the show qos Information statistics command. Dynamic mapping honors packets marked according to the standard definitions of DSCP. The default mapping table is detailed in the following table. Table 25-5.
Page 489
Usage Use this command to assign drop precedence to green or yellow traffic. If there is no honoring enabled Information on the input, all the traffic defaults to green drop precedence. Related wred-profile Creates a WRED profile and name that profile Commands trust Defines the dynamic classification to trust DSCP...
Routing Information Protocol (RIP) Overview Routing information protocol (RIP) is a distance vector routing protocol. The Dell Force10 operating software (FTOS) supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2). The FTOS implementation of RIP is based on IETF RFCs 2453 and RFC 1058. For more information about configuring RIP, refer to the FTOS Configuration Guide.
• show running-config rip • timers basic • version auto-summary Restore the default behavior of automatic summarization of subnet routes into network routes. This command applies only to RIP version 2. Syntax auto-summary To send sub-prefix routing information, use the no auto-summary command. Default Enabled.
Page 493
Parameters interface (OPTIONAL) Enter the interface type and ID as one of the following: port-channel • For a Port Channel interface, enter the keyword followed by a number: Range: 1-128 TenGigabitEthernet • For a 10-Gigabit Ethernet interface, enter the keyword followed by the slot/port information.
Page 494
default-metric Change the default metric for routes. Use this command with the redistribute command to ensure that all redistributed routes use the same metric value. Syntax default-metric number To return the default metric to the original values, use the no default-metric command. Parameters number Specify a number.
Page 495
distance Assign a weight (for prioritization) to all routes in the RIP routing table or to a specific route. Lower weights (“administrative distance”) are preferred. Syntax distance weight [ ip-address mask [ prefix-name ]] To return to the default values, use the no distance weight [ ip-address mask ] command. Parameters weight weight (for prioritization)
Related ip prefix-list Enters PREFIX-LIST mode and configures a prefix list. Commands distribute-list out Configure a filter for outgoing routing updates. Syntax distribute-list prefix-list-name out [ interface | bgp | connected | ospf | static ] To delete the filter, use the no distribute-list prefix-list-name out command.
Related ip split-horizon Sets the RIP routing updates to exclude routing prefixes. Commands ip rip receive version Set the interface to receive specific versions of RIP. The RIP version you set on the interface overrides version command in ROUTER RIP mode. Syntax ip rip receive version [ 1 ] [ 2 ] To return to the default, use the no ip rip receive version command.
Related ip rip receive version Sets the RIP version for the interface to receive traffic. Commands version Sets the RIP version to be used for the switch software. ip split-horizon Enable split-horizon for RIP data on the interface. As described in RFC 2453, the split-horizon scheme prevents any routes learned over a specific interface to be sent back out that interface.
Page 499
Parameters ip-address Enter the IP address, in dotted decimal format, of a router with which to exchange information. Defaults Not configured. Command Modes ROUTER RIP Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Usage Information When a neighbor router is identified, unicast data exchanges occur. Multiple neighbor routers are possible.
Page 500
Parameters prefix-list-name Enter the name of an established Prefix list to determine which incoming routes will be modified. offset Enter a number from zero (0) to 16 to be applied to the incoming route metric matching the access list specified. If you set an offset value to zero (0), no action is taken.
Page 501
passive-interface Suppress routing updates on a specified interface. Syntax passive-interface interface To delete a passive interface, use the no passive-interface interface command. Parameters interface Enter the following information: port-channel • For a Port Channel interface, enter the keyword followed by a number: Range: 1-128 TenGigabitEthernet •...
Related default-information originate Generates a default route for RIP traffic. Commands redistribute ospf Redistribute routing information from an OSPF process. Syntax redistribute ospf process-id [ match external { 1 | 2 } | match internal | metric metric-value ] [ route-map map-name To disable redistribution, use the no redistribute ospf [ match external { 1 | 2 } | match...
Example Figure 26-1. router rip Command Example FTOS(conf)#router rip FTOS(conf-router_rip)# Related network Enable RIP. Commands exit Return to the CONFIGURATION mode. show config Display the changes you made to the RIP configuration. Default values are not shown. Syntax show config Command Modes ROUTER RIP Command...
Example Figure 26-3. show ip rip database Command Example (Partial) FTOS#show ip rip database Total number of routes in RIP database: 1624 204.250.54.0/24 [50/1] via 192.14.1.3, 00:00:12, TenGigabitEthernet 9/15 204.250.54.0/24 auto-summary 203.250.49.0/24 [50/1] via 192.13.1.3, 00:00:12, TenGigabitEthernet 9/14 203.250.49.0/24 auto-summary 210.250.40.0/24 [50/2] via 1.1.18.2, 00:00:14, Vlan 18 [50/2] via 1.1.130.2, 00:00:12, Port-channel 30...
timers basic Manipulate the RIP timers for routing updates, invalid, holddown times and flush time. Syntax timers basic update invalid holddown flush To return to the default settings, use the no timers basic command. Parameters update Enter the number of seconds to specify the rate at which RIP routing updates are sent. Range: zero (0) to 4294967295.
Page 506
Default The FTOS sends RIPv1 and receives RIPv1 and RIPv2. Command Modes ROUTER RIP Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Related ip rip receive version Sets the RIP version to be received on the interface. Commands ip rip send version Sets the RIP version to be sent out the interface.
Remote Monitoring (RMON) Overview Dell Force10 operating software (FTOS) remote monitoring (RMON) is based on IEEE standards, providing both 32-bit and 64-bit monitoring and long-term statistics collection. FTOS RMON supports the following RMON groups, as defined in RFC-2819, RFC-3273, and RFC-3434: •...
• show rmon history • show rmon log • show rmon statistics rmon alarm Set an alarm on any MIB object. Syntax rmon alarm number variable interval { delta | absolute } rising-threshold value event-number falling-threshold value event-number [ owner string ] To disable the alarm, use the no rmon alarm number command.
rmon collection history Enable the RMON MIB history group of statistics collection on an interface. Syntax rmon collection history { controlEntry integer } [ owner name ] [ buckets number ] [ interval seconds ] To remove a specified RMON history group of statistics collection, use the no rmon collection history { controlEntry integer } command.
rmon event Add an event in the RMON event table. Syntax rmon event number [ log ] [ trap community ] [ description string ] [ owner name ] To disable RMON on an interface, use the no rmon event number [ log ] [ trap community...
rising-threshold value rising-threshold Enter the keyword followed by the value (64 bit) the event-number rising-threshold alarm is either triggered or reset. Then enter the event-number to trigger when the rising threshold exceeds its limit. This value is the same as the alarmRisingEventIndex or alarmTable of the RMON MIB.
Page 512
Parameters index (OPTIONAL) Enter the table index number to display just that entry. brief brief (OPTIONAL) Enter the keyword to display the RMON Alarm Table in an easy-to-read format. Defaults none Command Modes EXEC Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Example 1 Figure 27-2.
show rmon events Display the contents of RMON event table. Syntax show rmon events [ index ] [ brief ] Parameters index (OPTIONAL) Enter the table index number to display just that entry. brief brief (OPTIONAL) Enter the keyword to display the RMON Event Table in an easy-to-read format.
show rmon hc-alarm Display the contents of RMON High-Capacity Alarm Table. Syntax show rmon hc-alarm [ index ] [ brief ] Parameters index (OPTIONAL) Enter the table index number to display just that entry. brief brief (OPTIONAL) Enter the keyword to display the RMON High-Capacity Alarm Table in an easy-to-read format.
Command Modes EXEC Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Example 1 Figure 27-8. show rmon history index Command Example FTOS#show rmon history 6001 RMON history control entry 6001 interface: ifIndex.100974631 TenGigabitEthernet 2/1 bucket requested: 1 bucket granted: 1 sampling interval: 5 sec owner: 1...
Example 2 Figure 27-11. show rmon log brief Command Example FTOS#show rmon log br eventIndex description -------------------------------------------------------------------- FTOS# Usage Information The log table has a maximum of 500 entries. If the log exceeds that maximum, the oldest log entry is purged to allow room for the new entry.
Rapid Spanning Tree Protocol (RSTP) Overview The Dell Force10 operating software (FTOS) implementation of the rapid spanning tree protocol (RSTP) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged local area network (LAN) that is comprised of LANs interconnected by bridges.
Command Modes CONFIGURATION RSTP (conf-rstp) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related protocol spanning-tree rstp Enters rapid spanning tree mode Commands debug spanning-tree rstp Enable debugging of RSTP and view information on the protocol. Syntax debug spanning-tree rstp [all | bpdu interface { in | out } | events] To disable debugging, use the no debug spanning-tree rstp command.
Page 521
Parameters description Enter a description to identify the Rapid Spanning Tree (80 characters maximum). Defaults none Command Modes SPANNING TREE (The prompt is “config-rstp”.) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related protocol spanning-tree rstp Enters SPANNING TREE mode on the switch. Commands disable Disable RSTP globally on the system.
Page 522
Related hello-time Changes the time interval between BPDUs. Commands max-age Changes the wait time before RSTP refreshes protocol configuration information. hello-time Set the time interval between generation of RSTP bridge protocol data units (BPDUs). Syntax hello-time [ milli-second ] seconds To return to the default value, use the no hello-time command.
Command Modes CONFIGURATION RSTP (conf-rstp) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related max-age Changes the wait time before RSTP transitions to the Forwarding state. Commands hello-time Changes the time interval between BPDUs. edge-port bpdufilter default Enable BPDU Filter globally to filter transmission of BPDU on port fast enabled interfaces.
show config View the current configuration for the mode. Only non-default values are displayed. Syntax show config Command Modes CONFIGURATION RSTP (conf-rstp) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Figure 28-3. show config Command Example for RSTP Mode Example FTOS(conf-rstp)#show config protocol spanning-tree rstp...
Page 525
Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Example 1 Figure 28-4. show spanning-tree rstp brief Command Example FTOS#show spanning-tree rstp brief Executing IEEE compatible Spanning Tree Protocol Root ID Priority 8192, Address 0001.e805.e306 Root Bridge hello time 4, max age 20, forward delay 15 Bridge ID Priority 16384, Address 0001.e801.6aa8 Configured hello time 2, max age 20, forward delay 15 Bpdu filter disabled globally...
Example 2 Figure 28-5. show spanning-tree rstp with EDS and LBK FTOS#show spanning-tree rstp br Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32768, Address 0001.e801.6aa8 We are the root Configured hello time 2, max age 20, forward delay 15 Interface...
Note: Loop guard is not supported in the show spanning-tree rstp guard command. spanning-tree rstp Configure an RSTP interface with one of these settings: port cost, edge port with optional Bridge Port Data Unit (BPDU) guard, port priority, loop guard, or root guard. Syntax spanning-tree rstp { cost port-cost | edge-port [ bpduguard [ shutdown-on-violation ] | bpdufilter ] | priority priority | { rootguard }}...
Usage The BPDU guard option prevents the port from participating in an active STP topology in case a Information BPDU appears on a port unintentionally, or is mis-configured, or is subject to a DOS attack. This option places the port into an error disable state if a BPDU appears, and a message is logged so that the administrator can take corrective action.
Page 529
Usage By default FTOS implements an optimized flush mechanism for RSTP. This helps in flushing MAC Information addresses only when necessary (and less often), allowing for faster convergence during topology changes. However, if a standards-based flush mechanism is needed, you can turn on this knob command to enable flushing MAC addresses after receiving every topology change notification.
Security Commands This chapter describes various types of security commands in the Dell Force10 operating software (FTOS), in the following sections: • AAA Accounting Commands • Authorization and Privilege Commands • Authentication and Password Commands • RADIUS Commands • TACACS+ Commands •...
aaa accounting Enable AAA accounting and create a record for monitoring the accounting function. Syntax aaa accounting system exec commands level name default start-stop wait-start stop-only tacacs+ To disable AAA Accounting, use the no aaa accounting system exec command level name default start-stop...
aaa accounting suppress Prevent the generation of accounting records of users with user name value of NULL. Syntax aaa accounting suppress null-username To permit accounting records to users with user name value of NULL, use the no aaa accounting suppress null-username command Defaults Accounting records are recorded for all users.
Command Modes EXEC Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 29-2. show accounting Command Example FTOS#show accounting Active accounted actions on tty2, User admin Priv 1 Task ID 1, EXEC Accounting record, 00:00:39 Elapsed, service=shell Active accounted actions on tty3, User admin Priv 1 Task ID 2, EXEC Accounting record, 00:00:26 Elapsed, service=shell FTOS#...
Usage aaa authorization commands Sets the parameters that restrict (or permit) a user’s access to EXEC and Information CONFIGURATION level commands aaa authorization exec Sets the parameters that restrict (or permit) a user’s access to EXEC level commands. aaa authorization commands Set parameters that restrict (or permit) a user’s access to EXEC and CONFIGURATION level commands Syntax...
aaa authorization exec Set parameters that restrict (or permit) a user’s access to EXEC-level commands. Syntax aaa authorization exec name default local tacacs+ if-authenticated none To disable authorization checking for EXEC level commands, use the no aaa authorization exec command. Parameters name Define a name for the list of authorization methods.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage To define a password for the level to which you are assigning privilege or access, use the enable Information password command. privilege level (LINE mode) Change the access level for users on the terminal lines. Syntax privilege level level To delete access to a terminal line, use the no privilege level level command.
aaa authentication enable Configure AAA Authentication method lists for user access to the EXEC privilege mode (the “Enable” access). Syntax aaa authentication enable default method-list-name method ... method2 To return to the default setting, use the no aaa authentication enable default method-list-name method...
aaa authentication login Configure AAA Authentication method lists for user access to the EXEC mode (Enable log-in). Syntax aaa authentication login { method-list-name | default } method [ ... method4 ] To return to the default setting, use the no aaa authentication login { method-list-name | default } command.
Enter a followed by a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Force10 router. show Use this parameter only with a password that you copied from the running-config file of another Dell Force10 router.
Enter followed a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Force10 router. show Use this parameter only with a password that you copied from the running-config file of another Dell Force10 router.
Enter a followed by a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Force10 router. show Use this parameter only with a password that you copied from the running-config file of another Dell Force10 router.
Page 543
Parameters method-list-name method-list-name Enter the to specify that method list, created in the authentication login command, to be applied to the designated terminal line. default default Enter the keyword to specify that the default method list, created in the aaa authentication login command, is applied to the terminal line.
Page 544
radius-server key Configures a key for all RADIUS communications between the switch and the RADIUS host server. tacacs-server key Configures a key for communication between a TACACS+ server and client. username Establishes an authentication system based on user names. password-attributes Configure the password attributes (strong password).
service password-encryption Encrypt all passwords configured in FTOS. Syntax service password-encryption To store new passwords as clear text, use the no service password-encryption command. Defaults Enabled. Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Caution: Encrypting passwords with this command does not provide a high level of security.
show users View information on all users logged into the switch. Syntax show users Parameters (OPTIONAL) Enter the keyword to view all terminal lines in the switch. Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 29-4.
Page 547
Command Modes LINE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage The software measures the period of inactivity defined in this command as the period between Information consecutive keystrokes. For example, if your password is “password” you can enter “p” and wait 29 seconds to enter the next letter.
Related password Specifies a password for users on terminal lines. Commands show running-config Views the current configuration. RADIUS Commands The RADIUS commands supported by FTOS are: • debug radius • ip radius source-interface • radius-server deadtime • radius-server host • radius-server key •...
Parameters interface Enter the following keywords and slot/port or number information: loopback • For Loopback interfaces, enter the keyword followed by a number from zero (0) to 16838. null 0 • For the Null interface, enter the keywords port-channel • For a Port Channel interface, enter the keyword followed by a number: Range: 1 to 128...
Page 550
auth-port port-number auth-port (OPTIONAL) Enter the keyword followed by a number as the port number. Range: zero (0) to 65535 port-number The default is 1812. retransmit retries retransmit (OPTIONAL) Enter the keyword followed by a number as the number of attempts. This parameter overwrites the radius-server retransmit command.
radius-server key Configure a key for all RADIUS communications between the switch and the RADIUS host server. Syntax radius-server key [ encryption-type ] key To delete a password, use the no radius-server key command. Parameters encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the entered.
Related radius-server host Configures a RADIUS host. Commands radius-server timeout Configure the amount of time the RADIUS client (the switch) waits for a RADIUS host server to reply to a request. Syntax radius-server timeout seconds To return to the default value, use the no radius-server timeout command.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History ip tacacs source-interface Specify an interface’s IP address as the source IP address for TACACS+ connections. Syntax ip tacacs source-interface interface To delete a source interface, use the no ip tacacs source-interface command. Parameters interface Enter the following keywords and slot/port or number information:...
Page 554
timeout seconds timeout (OPTIONAL) Enter the keyword followed by the number of seconds the switch waits for a reply from the TACACS+ server. Range: 0 to 1000 Default: 10 seconds key key (OPTIONAL) Enter the keyword followed by a string up to 42 characters long as the authentication key.
SSH Server and SCP Commands FTOS supports secure shell (SSH) protocol versions 1.5 and 2.0. SSH is a protocol for secure remote login over an insecure network. SSH sessions are encrypted and use authentication. The SSH and SCP commands are: •...
Example Figure 29-5. crypto key generate rsa1 Command Example FTOS#conf FTOS(conf)#crypto key generate rsa1 Enter key size <1024-2048>. Default<1024>: 1024 Host key already exists. Do you want to replace. [y/n] FTOS(conf)# Usage The host keys are required for key-exchange by the SSH server. If the keys are not found when the Information server is enabled ( ip ssh server enable...
Parameters directory Enter a directory name. Defaults The internal flash ( flash: ) is the default directory. Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage To configure the switch as a SCP server, use the ip ssh server command.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History ip ssh hostbased-authentication Enable hostbased-authentication for the SSHv2 server. Syntax ip ssh hostbased-authentication enable To disable hostbased-authentication for SSHv2 server, use the no ip ssh hostbased-authentication enable command. Parameters enable enable Enter the keyword...
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage The server-generated key is used for SSHv1 key-exchange. Information ip ssh password-authentication Enable password authentication for the SSH server. Syntax ip ssh password-authentication enable To disable password-authentication, use the no ip ssh password-authentication enable command. Parameters enable enable...
Usage This command specifies the file to be used for the host-based authentication. The file creates/ Information overwrites the file flash://ADMIN_DIR/ssh/knownhosts and deletes the user specified file. Even though this is a global configuration command, it does not appear in the running configuration because this command needs to be run just once.
ip ssh rsa-authentication (Config) Enable RSA authentication for the SSHv2 server. Syntax ip ssh rsa-authentication enable To disable RSA authentication, use the no ip ssh rsa-authentication enable command. Parameters enable enable Enter the keyword to enable RSA authentication for the SSHv2 server. Defaults RSA authentication is disabled by default.
Related show ip ssh rsa-authentication Displays RSA authorized keys. Commands ip ssh rsa-authentication (Config) Enables RSA authentication. ip ssh server Configure an SSH server. Syntax ip ssh server {enable | port port-number version To disable SSH server functions, use the no ip ssh server enable command.
Enter the keyword to display the host SSHv2 RSA public key. rsa1 rsa1 Enter the keyword to display the host SSHv1 RSA public key. Defaults none Command Modes EXEC Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 29-9.
show ip ssh client-pub-keys Display the client public keys used in host-based authentication. Syntax show ip ssh client-pub-keys Defaults none Command Modes EXEC Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 29-11. show ip ssh client-pub-keys Command Example FTOS#show ip ssh client-pub-keys poclab4,123.12.1.123 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAox/ QQp8xYhzOxn07yh4VGPAoUfgKoieTHO9G4sNV+ui+DWEc3cgYAcU5Lai1MU2ODrzhCwyDNp05tKBU3tReG1...
Page 565
Usage This command displays the contents of the file flash:/ADMIN_DIR/ssh/authorized-keys.username. Information Related ip ssh rsa-authentication (Config) Configures the RSA authorized keys. Commands Open an SSH connection specifying the hostname, username, port number and version of the SSH client. FTOS supports both inbound and outbound SSH sessions using IPv4 addressing. Inbound SSH supports accessing the system through the management interface as well as through a physical Layer 3 interface.
Secure DHCP Commands The dynamic host configuration protocol (DHCP) as defined by RFC 2131 provides no authentication or security mechanisms. Secure DHCP is a suite of features that protects networks that use dynamic address allocation from spoofing and attacks. The DHCP commands are: •...
Page 567
ip dhcp snooping Enable DHCP Snooping globally. Syntax [ no ] ip dhcp snooping Command Modes CONFIGURATION Default Disabled Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage When enabled, no learning takes place until snooping is enabled on a VLAN. After disabling DHCP Information Snooping, the binding table is deleted, and Option 82, IP Source Guard, and Dynamic ARP Inspection are disabled.
Page 568
type interface interface Enter the keyword followed by the type of interface to which the host is connected. • For a Ten Gigabit Ethernet interface, enter the keyword tengigabitethernet • fortyGigE For a 40-Gigabit Ethernet interface, enter the keyword slot/port Enter the slot and port number of the interface.
Page 569
ip dhcp source-address-validation Enable IP Source Guard. Syntax [ no ] ip dhcp source-address-validation Command Modes INTERFACE Default Disabled Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs. Syntax [ no ] ip dhcp snooping vlan name Parameters...
Overview The Dell Force10 operating software (FTOS) sFlow monitoring system includes an sFlow agent and an sFlow collector. • The sFlow agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow collector.
As part of the sFlow-MIB, if the simple network management protocol (SNMP) request originates from a configured collector, FTOS returns the corresponding configured agent IP in management information base (MIB) requests. FTOS checks to ensure that two entries are not configured for the same collector IP with a different agent IP.
sflow extended-switch enable Enable packing information on a switch only. Syntax sflow extended-switch enable To disable packing information, use the no sflow extended-switch [ enable ] command. Parameters enable enable Enter the keyword to enable global extended information. Defaults Disabled Command Modes CONFIGURATION Command...
sflow polling-interval (Interface) Set the sFlow polling interval at an interface (overrides the global-level setting.) Syntax sflow polling-interval interval value To return to the default, use the no sflow polling-interval interval command. Parameters interval value Enter the interval value in seconds. Range: 15 to 86400 seconds Default: The global counter polling interval Defaults...
Related sflow sample-rate (Interface) Changes the Interface sampling rate. Commands sflow sample-rate (Interface) Change the Interface default sampling rate. Syntax sflow sample-rate value To return to the default sampling rate, use the no sflow sample-rate command. Parameters value Enter the sampling rate value. Range:256 to 8388608 packets Enter values in powers of 2 only, for example 4096, 8192, 16384 etc.
Page 577
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 30-1. show sflow Command Example FTOS##show sflow sFlow services are disabled Global default sampling rate: 32768 Global default counter polling interval: 20 Global extended information enabled: none 0 collectors configured 0 UDP packets exported 0 UDP packets dropped...
(SNMP) v1/v2/v3 and Syslog. The chapter contains the following sections: • SNMP Commands • Syslog Commands SNMP Commands The SNMP commands available in the Dell Force10 operating software (FTOS) are: • show snmp • show snmp engineID • show snmp group •...
(LAN) and wide area network (WAN) applications. If you experience a timeout with these values, the recommended best practice on Dell Force10 switches (to accommodate their high port density) is to increase the timeout and retry values on your SNMP server to the following: —...
Command Modes EXEC EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 31-2. show snmp engineID Command Example FTOS#show snmp engineID Local SNMP engineID: 0000178B02000001E80214A8 Remote Engine ID IP-addr Port 80001F88043132333435 172.31.1.3 5009 80001F88043938373635 172.31.1.3 5008 FTOS#...
IF-MIB::ifAlias.134530304 = STRING: This is a port connected to Router2. This is a port connected to IF-MIB::ifAlias.134792448 = STRING: !------command run on Dell Force10 switch: --------------! FTOS#snmp ifmib ifalias long !------command run on server connected to switch: --------------! > snmpwalk -c public 10.10.10.130 .1.3.6.1.2.1.31 | grep -i alias | more IF-MIB::ifAlias.134530304 = STRING: This is a port connected to Router2.
Page 583
Parameters community-name Enter a text string (up to 20 characters long) to act as a password for SNMP. Enter the keyword to specify read-only permission. Enter the keyword to specify read-write permission. security-name security-name name (OPTIONAL) Enter the keyword followed by the security name as defined by the community MIB.
Related ip access-list standard Names (or selects) a standard access list to filter based on IP address. Commands snmp Displays the current SNMP configuration and defaults. show running-config snmp-server contact Configure contact information for troubleshooting this SNMP node. Syntax snmp-server contact text To delete the SNMP server contact information, use the no snmp-server contact command.
Parameters notification-type Enter the type of notification from the list below: ecfm — • Notification of changes to ECFM entity — • Notification of changes to entity envmon • —Device notification when an environmental threshold is exceeded eoam — • Notification of changes to the EOAM state ets —...
Parameters local local engineID Enter the keyword followed by the engine ID number that identifies the copy of the SNMP on the local device. Format (as specified in RFC 3411): 12 octets. • The first 4 octets are set to the private enterprise number. •...
Page 587
Parameters group_name Enter a text string (up to 20 characters long) as the name of the group. Defaults: The following groups are created for mapping to read/write community/security-names. • v1v2creadg — maps to a community/security-name with permissions 1v2cwriteg — • maps to a community/security-name permissions 2c | 3...
Related Displays the group name, security model, view status, and storage type of Commands show snmp group each group. show running-config snmp Displays the SNMP running configuration. snmp-server host Configure the recipient of an SNMP trap operation. Syntax snmp-server host ip-address [ traps | informs ] [ version 1 | 2c | 3 ] [ auth | no auth | priv ] community-string ] [ udp-port port-number...
Page 589
udp-port port-number udp-port (OPTIONAL) Enter the keywords followed by the port number of the remote host to use. Range: 0 to 65535. Default: 162 notification-type (OPTIONAL) Enter one of the following keywords for the type of trap to be sent to the host: ecfm •...
To send an inform, follow these steps: 1. Configure a remote engine ID. 2. Configure a remote user. 3. Configure a group for this user with access rights. 4. Enable traps. 5. Configure a host to receive informs. Related snmp-server enable traps Enables the SNMP traps.
snmp-server trap-source Configure a specific interface as the source for SNMP traffic. Syntax snmp-server trap-source interface To disable sending traps out a specific interface, use the no snmp trap-source command. Parameter interface Enter the following keywords and slot/port or number information: loopback •...
Page 592
udp-port udp-port port-number Enter the keyword followed by the UDP (User Datagram Protocol) port number on the remote device. Range: 0 to 65535. Default: 162 2c | 3 (OPTIONAL) Enter the security model version number ( , or • is the least secure version •...
Figure 31-10 shows how to enter a plain-text password as the string authpasswd for user authuser of group v3group . Figure 31-10. snmp-server user Command Example (Plain-text) FTOS#conf FTOS(conf)# snmp-server user authuser v3group v3 auth md5 authpasswd Figure 31-11 configures a remote user named n3user with a v3 security model and a security level of authNOPriv .
Usage If the interface is expected to flap during normal usage, you can disable this command. Information Syslog Commands The following commands allow you to configure logging functions on all Dell Force10 switches: • clear logging • default logging buffered •...
clear logging Clear the messages in the logging buffer. clear logging Syntax Defaults none Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related show logging Displays logging settings and system messages in the internal buffer. Commands default logging buffered Return to the default setting for messages logged to the internal buffer.
default logging monitor Return to the default settings for messages logged to the terminal. Syntax default logging monitor Defaults level = 7 or debugging Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related logging monitor Sets the logging monitor parameters.
Related logging on Enables the logging asynchronously to logging buffer, console, Syslog server, and Commands terminal lines. logging trap Enables logging to the Syslog server based on severity. logging buffered Enable logging and specify which messages are logged to an internal buffer. By default, all messages are logged to the internal buffer.
Defaults 7 or debugging Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related clear logging Clears the logging buffer. Commands default logging console Returns the logging console parameters to the default setting. show logging Displays the logging settings and system messages in the internal buffer.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related logging Enables logging to a Syslog server. Commands logging on Enables logging. logging history Specify which messages are logged to the history table of the switch and the SNMP network management station (if configured).
Usage When the number of messages reaches the limit you set with the logging history size command, older Information messages are deleted as newer ones are added to the table. Related show logging history Displays information logged to the history buffer. Commands logging monitor Specify which messages are logged to Telnet applications.
logging source-interface Specify that the IP address of an interface is the source IP address of Syslog packets sent to the Syslog server. Syntax logging source-interface interface To disable this command and return to the default setting, use the no logging source-interface command.
Enter the keyword to turn off all limit number-of-buffers limit Enter the keyword followed by the number of buffers to be queued for the terminal after which new messages are dropped Range: 20 to 300 Default: 20 Defaults Disabled. If enabled without level number-of-buffers options specified,...
show logging Display the logging settings and system messages logged to the internal buffer of the switch. Syntax show logging [ number | history [ reverse ][ number ] | reverse [ number ] | summary ] Parameters number (OPTIONAL) Enter the number of message to be displayed on the output. Range: 1 to 65535 history history...
Figure 31-14. show logging history Command Example FTOS#show logging history Syslog History Table: 1 maximum table entries, saving level warnings or higher SNMP notifications not Enabled May 22 08:53:09: %STKUNIT0-M:CP %SEC-3-AUTHENTICATION_ENABLE_SUCCESS: Enable password authentication success on vty0 ( 10.11.68.22 ) FTOS# show logging driverlog stack-unit Display the driver log for the specified stack member.
Storm Control Overview The Dell Force10 operating software (FTOS) storm control feature allows users to limit or suppress traffic during a traffic storm. Commands The storm control commands are: • show storm-control broadcast • show storm-control multicast • show storm-control unknown-unicast •...
Page 606
Parameters interface (OPTIONAL) Enter one of the following interfaces to display the interface specific storm control configuration. TenGigabitEthernet • For a 10-Gigabit Ethernet interface, enter the keyword followed by the slot/port information. fortyGigE • For a 40-Gigabit Ethernet interface, enter the keyword followed by the slot/ port information.
Example Figure 32-2. show storm-control multicast Command Example FTOS#show storm-control multicast tengigabitethernet 1/0 Multicast storm control configuration Interface Direction Packets/Second ----------------------------------------------- TenGig 1/0 Ingress FTOS# show storm-control unknown-unicast Display the storm control unknown-unicast configuration Syntax show storm-control unknown-unicast [ interface ] Parameters interface (OPTIONAL) Enter one of the following interfaces to display the interface specific storm...
Page 608
Parameters packets_per_second Enter the packets per second of broadcast traffic allowed from the network. Range: 0 to 33554368. Defaults none Command Modes CONFIGURATION (conf) Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage Broadcast storm control is valid on Layer 2/Layer 3 interfaces only. Layer 2 broadcast traffic is treated Information as unknown-unicast traffic.
Page 609
Usage Broadcast traffic (all 0xFs) should be counted against broadcast storm control meter, not against the Information multicast storm control meter. It is possible, however, that some multicast control traffic may get dropped when storm control thresholds are exceeded. storm-control multicast (Interface) Configure the packets per second of multicast traffic allowed on a MXL Switch interface (ingress only).
Page 610
storm-control unknown-unicast (Interface) Configure the packets per second of unknown-unicast traffic allowed on a MXL Switch interface (ingress only). Syntax storm-control unknown-unicast [ packets_per_second ] in To disable unknown-unicast storm control on the interface, use the no storm-control unknown-unicast [ packets_per_second ] in command. Parameters packets_per_second Enter the packets per second of broadcast traffic allowed from the network.
Stacking Commands Overview For more information about using the MXL 10/40GbE Switch stacking feature, refer to the “Stacking MXL 10/40GbE Switches” chapter in the FTOS Configuration Guide. Commands The commands described in this chapter are used for managing the stacking of MXL 10/40GbE switch systems.
Usage When the command is given as redundancy disable-auto-reboot stack-unit, it prevents the MXL 10/ Information 40GbE switch stack management unit and standby unit from rebooting if they fail. When a particular unit number in the range 0-5 is issued as part of the CLI, it prevents that particular unit from rebooting upon failure.
Example Figure 33-1. reset stack-unit Command Example on the Stack Standby Unit FTOS# show system brief Stack MAC : 00:1e:c9:f1:00:7b Reload Type : jump-start [Next boot : normal-reload] Stack Info Unit UnitType Status ReqTyp CurTyp Version Ports ------------------------------------------------------------------------------- Management online MXL-10/40GbE MXL-10/40GbE 9-1-0-853...
Page 614
Example Figure 33-2. show redundancy Command Example FTOS#show redundancy Stack-unit Status ------------------------------------------------ Mgmt ID: Stack-unit ID: Stack-unit Redundancy Role: Primary Stack-unit State: Active Stack-unit SW Version: E8-3-16-160 Link to Peer: Down Peer Stack-unit: not present Stack-unit Redundancy Configuration ------------------------------------------------ Primary Stack-unit: mgmt-id Auto Data Sync: Full...
Page 615
Example Figure 33-3. show system stack-ports Command Example FTOS# show system stack-ports Topology: Ring Interface Connection Link Speed Admin Link Trunk (Gb/s) Status Status Group 0/33 1/37 0/37 2/33 0/41 1/49 0/45 2/53 1/33 2/37 1/37 0/33 1/49 0/41 1/53 2/49 2/33 0/37...
Page 616
Example Figure 33-4. show system stack-ports status Command Example FTOS# show system stack-ports status Topology: Ring Interface Link Speed Admin Link Trunk (Gb/s) Status Status Group 0/33 0/37 0/41 0/45 1/33 1/37 1/49 1/53 2/33 2/37 2/49 2/53 Example Figure 33-5. show system stack-ports topology Command Example FTOS# show system stack-ports Topology: Ring Interface...
Page 617
Table 33-1. show system stack-ports Command Description Field Description Topology Lists the topology of stack ports connected: Ring, Daisy chain, or Standalone Interface The unit/port ID of the connected stack port on this unit Link Speed Link Speed of the stack port in Gb/s Admin The only currently listed status is Up.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related reload Reboots FTOS. Commands show system Displays the current status of all stack members or a specific member. show system stack-unit Display the stack-groups present/configured for a MXL 10/40GbE switch stack stack-group unit.
stack-unit renumber Change the stack member ID of any stack member or a stand-alone switch. Syntax stack-unit 0-5 renumber 0-5 Parameters The first instance of this value is the stack member unit identifier, from 0 to 5, of the switch that you want add to the stack. The second instance of this value is the desired new unit identifier number.
Spanning Tree Protocol (STP) Overview The commands described in this chapter configure and monitor the IEEE 802.1d spanning tree protocol (STP). The STP commands are: • bridge-priority • debug spanning-tree • description • disable • forward-delay • hello-time • max-age •...
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History debug spanning-tree Enable debugging of the spanning tree protocol and view information on the protocol. Syntax debug spanning-tree { stp-id [ all | bpdu | events | exceptions ] | protocol } To disable debugging, use the no debug spanning-tree command.
Page 623
disable Disable the spanning tree protocol globally on the switch. Syntax disable To enable STP, use the no disable command. Defaults Enabled (that is, the spanning tree protocol is disabled.) Command Modes SPANNING TREE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related portfast bpdufilter default...
Page 624
Parameters seconds Enter a number as the time interval between transmission of BPDUs. Range: 1 to 10. Default: 2 seconds. Defaults 2 seconds Command Modes SPANNING TREE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related forward-delay Changes the wait time before STP transitions to the Forwarding state.
Command History Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module protocol spanning-tree Enter SPANNING TREE mode to enable and configure the spanning tree group. Syntax protocol spanning-tree stp-id To disable the Spanning Tree group, use the no protocol spanning-tree stp-id command. Parameters stp-id Enter zero (0).
show spanning-tree 0 Display the spanning tree group configuration and status of interfaces in the spanning tree group. Syntax show spanning-tree 0 [ active | brief | guard | interface interface | root | summary ] Parameters Enter (zero) to display information about that specific Spanning Tree group. active (OPTIONAL) Enter the keyword active to display only active interfaces in Spanning Tree group 0.
Page 627
Example Figure 34-3. show spanning-tree 0 Command Example FTOS#show spanning-tree 0 Executing IEEE compatible Spanning Tree Protocol Bridge Identifier has priority 32768, Address 0001.e800.0a56 Configured hello time 2, max age 20, forward delay 15 Bpdu filter disabled globally We are the root of the spanning tree Current root has priority 32768 address 0001.e800.0a56 Topology change flag set, detected flag set Number of topology changes 1 last change occurred 0:00:05 ago...
Page 628
Table 34-1. show spanning-tree 0 Command Description Field Description “Times” List the number of seconds since the last: • hello time • topology change • notification • aging “Port 1...” Displays the Interface type slot/port information and the status of the interface (Disabled or Enabled). “Port path...”...
Page 629
Table 34-2. show spanning-tree 0 guard Command Description Field Description Guard Type Type of STP guard configured (Root, Loop, or BPDU guard) Bpdu Filter BPDU Filter enabled - Yes, BPDU Filter disabled - No spanning-tree 0 Assigns a Layer 2 interface to STP instance 0 and configures a port cost or port priority, or enables loop guard, root guard, or the Portfast feature on the interface.
Page 630
STP root guard is supported on a port or port-channel enabled in any Spanning Tree mode: Spanning Tree Protocol (STP), Rapid Spanning Tree Protocol (RSTP), Multiple Spanning Tree Protocol (MSTP), and Per-VLAN Spanning Tree Plus (PVST+). Root guard is supported on any STP-enabled port or port-channel except when used as a stacking port. When enabled on a port, root guard applies to all VLANs configured on the port.
System Time and Date Overview The commands in this chapter configure time values on the system, either using the Dell Force10 operating software (FTOS), the hardware, or using the network time protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For more information, refer to the “Network Time Protocol”...
calendar set Set the time and date for the switch hardware clock. Syntax calendar set time month day year Parameters time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format, for example, 17:15:00 is 5:15 pm. month Enter the name of one of the 12 months in English.
The software clock runs only when the software is up. The clock restarts, based on the hardware clock, when the switch reboots. Dell Force10 recommends using an outside time source, such as NTP, to ensure accurate time on the switch.
clock summer-time date Set a date (and time zone) on which to convert the switch to daylight saving time on a one-time basis. Syntax clock summer-time time-zone date start-month start-day start-year start-time end-month end-day end-year end-time offset To delete a daylight saving time zone configuration, use the no clock summer-time command.
clock summer-time recurring Set the software clock to convert to daylight saving time on a specific day each year. Syntax clock summer-time time-zone recurring [ start-week start-day start-month start-time end-week end-day end-month end-time [ offset ]] To delete a daylight saving time zone configuration, use the no clock summer-time command. Parameters time-zone Enter the three-letter name for the time zone.
clock timezone Configure a timezone for the switch. Syntax clock timezone timezone-name offset To delete a timezone configuration, use the no clock timezone command. Parameters timezone-name Enter the name of the timezone. You cannot use spaces. offset Enter one of the following: •...
ntp authentication-key Specify a key for authenticating the NTP server. Syntax ntp authentication-key number md5 Parameters number Specify a number for the authentication key. Range: 1 to 4294967295. This number must be the same as the number parameter configured in the ntp trusted-key command.
ntp disable Prevent an interface from receiving NTP packets. Syntax ntp disable To re-enable NTP on an interface, use the no ntp disable command. Default Disabled (that is, if an NTP host is configured, all interfaces receive NTP packets) Command Modes INTERFACE Command Version 8.3.16.1...
NTP host with which to synchronize. To determine which server was selected, use the show ntp associations. Because a large number of polls to NTP hosts can impact network performance, Dell Force10 recommends limiting the number of hosts configured. Related show ntp associations Displays NTP servers configured and their status.
Defaults Not configured. Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage The number parameter in the ntp trusted-key command must be the same number as the number Information parameter in the ntp authentication-key command.
Example Figure 35-3. show calendar Command Example FTOS#show calendar 12:29:34 pacific Tue May 22 2012 FTOS# Related show clock Displays the time and date from the switch software clock. Commands show clock Display the current clock settings. Syntax show clock [detail] Parameters detail detail...
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 35-6. show ntp associations Command Example FTOS#show ntp associations remote ref clock st when poll reach delay offset disp ========================================================================== 10.10.120.5 0.0.0.0 0.00 0.000 16000.0 *172.16.1.33 127.127.1.0 -0.08 -1499.9 104.16...
Page 644
Example Figure 35-7. show ntp status Command Example FTOS#show ntp status Clock is unsynchronized, stratum 16, no reference clock frequency is 0.000 ppm, stability is 0.000 ppm, precision is 4294967279 reference time is 00000000.00000000 (6:28:16.000 UTC Thu Feb 7 2036) clock offset is 0.000000 msec, root delay is 0.00000 sec root dispersion is 0.00000 sec, peer dispersion is 0.000 msec peer mode is unspec...
Uplink Failure Detection (UFD) Overview Uplink failure detection (UFD) provides detection of the loss of upstream connectivity and, if used with network interface controller (NIC) teaming, automatic recovery from a failed link. Commands The UFD commands described in this chapter are: •...
Parameters interface interface Specifies one or more downstream interfaces. For interface, enter one of the following interface types: 10-Gigabit Ethernet: tengigabitethernet {slot/port |slot/port-range} 40-Gigabit Ethernet: fortygigabitethernet {slot/port |slot/port-range} Port channel: port-channel {1-512 | port-channel-range} Where port-range and port-channel-range specify a range of ports separated by a dash (-) and/or individual ports/port channels in any order;...
Page 647
description Enter a text description of an uplink-state group. Syntax description text Parameters text Text description of the uplink-state group. Maximum length: 80 alphanumeric characters. Defaults none Command Modes UPLINK-STATE-GROUP Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Related uplink-state-group...
Usage You can assign physical port or port-channel interfaces to an uplink-state group. Information You can assign an interface to only one uplink-state group. You must configure each interface assigned to an uplink-state group as either an upstream or downstream interface, but not both. You can assign individual member ports of a port channel to the group.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage When one upstream interface in an uplink-state group goes down, a user-configurable number of Information downstream interfaces in an uplink-state group are put into a link-down state with an UFD-Disabled error message.
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 36-2. show running-config uplink-state-group Command Example FTOS#show running-config uplink-state-group uplink-state-group 3 no enable description Testing UFD feature downstream disable links 2 downstream TenGigabitEthernet 0/1-2,5,9,11-12 upstream TenGigabitEthernet 0/3-4 Related show uplink-state-group Displays status information on a specified uplink-state group or all groups.
Page 651
Example Figure 36-3. show uplink-state-group Command Examples FTOS# show uplink-state-group Uplink State Group: 1 Status: Enabled, Up Uplink State Group: 3 Status: Enabled, Up Uplink State Group: 5 Status: Enabled, Down Uplink State Group: 6 Status: Enabled, Up Uplink State Group: 7 Status: Enabled, Up Uplink State Group: 16 Status: Disabled, Up...
Page 652
Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage After you enter the command, you enter Uplink-State-Group Configuration mode to assign upstream Information and downstream interfaces to the group. An uplink-state group is considered to be operationally UP if at least one upstream interface in the group is in the Link-Up state.
Page 653
You can assign individual member ports of a port channel to the group. An uplink-state group can contain either the member ports of a port channel or the port channel itself, but not both. Related downstream Assigns a port or port-channel to the uplink-state group as a downstream Commands interface.
VLAN Stacking Overview With the virtual local area network (VLAN)-stacking feature (also called stackable VLANs and QinQ), you can “stack” VLANs into one tunnel and switch them through the network transparently. The VLAN stacking commands described in this chapter are: •...
• Dell Force10 recommends not using the same MAC address, on different customer VLANs, on the same stackable VLAN. • Interfaces configured using stackable VLAN access or stackable VLAN trunk commands do not switch traffic for the default VLAN. These interfaces switch traffic only when they are added to a non-default VLAN.
dei mark Set the DEI value on egress according to the color currently assigned to the packet. Syntax dei mark { green | yellow } { 0 | 1 } Parameters 0 | 1 Enter the bit value you want to map to a color. green | Choose a color: yellow...
Page 658
Related vlan-stack compatible Enables stackable VLAN on a VLAN. Commands show interface dei-honor Display the dei honor configuration. Syntax show interface dei-honor interface slot port Parameters interface slot port Enter the interface type followed by the slot and port number. Command Mode EXEC Privilege Command...
Related dei mark Sets the DEI value on egress. Commands vlan-stack access Specify a Layer 2 port or port channel as an access port to the Stackable VLAN network. Syntax vlan-stack access To remove access port designation, use the no vlan-stack access command. Defaults Not configured.
Figure 37-3. show vlan Command Example with Stackable VLANs FTOS#show vlan Codes: * - Default VLAN, G - GVRP VLANs Status Q Ports Inactive Active M Te 13/13 M Te 13/0-2 Active M Po1(Te 13/14-15) M Te 13/18 M Te 13/3 Active M Po1(Te 13/14-15) M Te 13/18...
Command Modes CONFIGURATION Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage For specific interoperability limitations regarding the S-Tag TPID, refer to the FTOS Configuration Information Guide. Related portmode hybrid Sets a port (physical ports only) to accept both tagged and untagged frames. A port Commands configured this way is identified as a hybrid port in report displays.
Page 662
Example 1 Figure 37-4. Adding a Stackable VLAN Trunk Port to a Tagged VLAN FTOS(conf-if-te-0/42)#switchport FTOS(conf-if-te-0/42)#vlan-stack trunk FTOS(conf-if-te-0/42)#show config interface Tengigabitethernet 0/42 no ip address switchport vlan-stack trunk no shutdown FTOS(conf-if-te-0/42)#interface vlan 100 FTOS(conf-if-vl-100)#vlan-stack compatible FTOS(conf-if-vl-100-stack)#member Tengigabitethernet 0/42 FTOS(conf-if-vl-100-stack)#show config interface Vlan 100 no ip address vlan-stack compatible...
Introduced on MXL 10/40GbE Switch IO Module History Usage Dell Force10 recommends keeping the default setting for this command. If you do change the time Information interval between VRRP advertisements on one router, you must change it on all routers.
debug vrrp Allows you to enable debugging of VRRP. Syntax debug vrrp interface [ vrrp-id ] { all | packets | state | timer } To disable debugging, use the no debug vrrp interface [ vrrp-id ] { all | packets | state | timer } command.
Page 666
disable Disable a VRRP group. Syntax disable To re-enable a disabled VRRP group, use the no disable command. Defaults VRRP is enabled. Command Modes VRRP Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Usage To enable VRRP traffic, assign an IP address to the VRRP group using the virtual-address command Information...
Page 667
preempt Permit a BACKUP router with a higher priority value to preempt or become the MASTER router. Syntax preempt To prohibit preemption, use the no preempt command. Defaults Enabled (that is, a BACKUP router can preempt the MASTER router). Command Modes VRRP Command Version 8.3.16.1...
show config View the non-default VRRP configuration. Syntax show config [ verbose ] Parameters verbose verbose (OPTIONAL) Enter the keyword to view all VRRP group configuration information, including defaults. Command Modes VRRP Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History Example Figure 38-1.
Page 669
Example Figure 38-2. show vrrp brief Command Example FTOS>Interface Grp Pri Pre State Master addr Virtual addr(s) Description------------------------------------------------------------------------------ TenGig 10/37 Master 200.200.200.200 200.200.200.201 TenGig10/37 Master 200.200.200.200 200.200.200.202 200.200.200.203 Description TenGig10/37 Master 1.1.1.1 1.1.1.2 TenGig10/37 Master 200.200.200.200 200.200.200.206 200.200.200.207 ... short desc FTOS>...
Page 670
Figure 38-3. show vrrp Command Example FTOS>show vrrp ------------------ TenGigabitEthernet 12/3, VRID: 1, Net: 10.1.1.253 State: Master, Priority: 105, Master: 10.1.1.253 (local) Hold Down: 0 sec, Preempt: TRUE, AdvInt: 1 sec Adv rcvd: 0, Adv sent: 1862, Gratuitous ARP sent: 0 Virtual MAC address: 00:00:5e:00:01:01 Virtual IP address:...
Page 671
Table 38-2. show vrrp Command Description Authentication:... States whether authentication is configured for the VRRP group. If it is, the authentication type and the password are listed. Tracking states... This line is displayed if the track command is configured on an interface. Below this line, the following information on the tracked interface is displayed: •...
virtual-address Configure up to 12 IP addresses of virtual routers in the VRRP group. You must set at least one virtual address for the VRRP group to start sending VRRP packets. Syntax virtual-address ip-address1 [... ip-address12 ] To delete one or more virtual IP addresses, use the no virtual-address ip-address1 [...
Usage This command applies to a single interface.When used in conjunction with the vrrp delay reload CLI, Information the later timer rules the VRRP enabling. For example, if vrrp delay reload is 600 and the vrrp delay minimum is 300: •...
Page 674
vrrp-group Assign a VRRP ID to an interface. You can configure up to 12 VRRP groups per interface. Syntax vrrp-group vrrp-id Parameters vrrp-id Enter a number as the group ID. Range: 1 to 255. Defaults Not configured. Command Modes INTERFACE Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module...
The offline diagnostics test suite is useful for isolating faults and debugging hardware. While tests are running, the Dell Force10 operating software (FTOS) results are saved as a text file (TestReport-SU-X.txt) in the flash directory. The show file command is available only on Master and Standby.
level0 Enter the keyword level0 to run Level 0 diagnostics. Level 0 diagnostics check for the presence of various components and perform essential path verifications. In addition, they verify the identification registers of the components on the board. level1 Enter the keyword Level1 to run Level 1 diagnostics.
Warning: Altering the buffer allocations is a sensitive operation. Do not use any buffer tuning commands without first contacting the Dell Force10 Technical Assistance Center (TAC). buffer (Buffer Profile) Allocate an amount of dedicated buffer space, dynamic buffer space, or packet pointers to queues 0 to...
Page 678
queue0 number Enter this keyword to allocate an amount of buffer space or packet pointers to Queue 0. Dedicated Buffer Range: 0-2013 Dynamic Buffer Range: FP: 0-2013 CSF: 0-131200 (in multiples of 80) Packet Pointer Range: 0-2047 queue1 number Enter this keyword to allocate an amount of buffer space or packet pointers to Queue 1.
Page 679
port-set port-pipe port-set Enter the keyword followed by the port-pipe number. Range: 0-1 buffer-policy buffer-profile buffer-policy Enter the keyword followed by the name of a buffer profile you created. Defaults none Command Mode BUFFER PROFILE Usage If you attempt to apply a buffer profile to a non-existent port-pipe, FTOS displays the following Information message.
Page 680
Usage command fails if you have already applied a custom buffer-profile on an buffer-profile global Information interface. Similarly, when you configure buffer-profile global , you cannot not apply buffer-profile on any interface. If the default buffer-profile (4Q) is active, FTOS displays an error message instructing you to remove the default configuration using the no buffer-profile global command.
Page 681
Example Figure 39-1. show buffer-profile Command Example FTOS#show buffer-profile summary fp-uplink Stack Unit Port-set Buffer-profile test1 test2 FTOS# Related buffer-profile (Configuration) Creates a buffer profile that can be applied to an interface. Commands show buffer-profile interface Display the buffer profile that is applied to an interface. Syntax { detail | summary } interface interface slot/port show buffer-profile...
Hardware Commands These commands display information from a hardware sub-component or ASIC. The hardware commands are: • clear hardware stack-unit • clear hardware system-flow • show hardware layer2 acl • show hardware layer3 • show hardware stack-unit • show hardware system-flow clear hardware stack-unit Clear statistics from selected hardware components.
clear hardware system-flow Clear system-flow statistics from selected hardware components. Syntax clear hardware system-flow layer2 stack-unit 0-5 port-set 0-0 counters Parameters stack-unit 0-5 stack-unit Enter the keyword followed by 0 to 5 to select a particular stack member and then enter one of the following command options to clear a specific collection of data.
stack-unit 0-5 stack-unit followed by a numeral from Enter the keyword 0 to 5 to select a stack ID. port-set 0-0 port-set Enter the keyword with a port-pipe number — 0. Defaults none Command Modes EXEC Privilege Command Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module History show hardware stack-unit...
Page 685
drops [ unit 0-0 [ port drops Enter the keyword to display internal drops on the selected stack unit 1-56 member. Optionally, use the keyword with 0 to select port-pipe 0, and port 1-56 then use to select a port on that port-pipe. stack-port 33-56 Enter this keyword and a stacking port number to select a stacking port for which to display statistics.
Page 686
In the above example, the “Status” field represents presence of OPTM ports, “Programmed version” field represents loaded firmware version, and “SW version” represents SDK version. Example 2 Figure 39-4. show hardware stack-unit cpu data-plane statistics Command Example FTOS#show hardware stack-unit 0 cpu data-plane statistics bc pci driver statistics for device: rxHandle noMhdr...
Page 687
Example 5 Figure 39-7. show hardware stack-unit drops unit (drop summary per port) Command Example FTOS#show hard stack-unit 0 drops unit 0 PortNumber Ingress Drops IngMac Drops Total Mmu Drops EgMac Drops Egress Drops FTOS# Example 6 Figure 39-8. show hardware stack-unit drops (drop counters per port) Command Example FTOS#show hardware stack-unit 0 drops unit 0 port 27 --- Ingress Drops...
Page 688
Example 7 Figure 39-9. show hardware stack-unit port-statistics Command Example FTOS#show hardware stack-unit 0 unit 0 port-stats ena/ speed/ link auto inter loop port link duplex scan neg? state pause discrd ops face frame back !ena 1G FD Forward GMII 1550 !ena 1G FD...
Page 689
Example 9 Figure 39-11. show hardware stack-unit unit details Command Example FTOS#show hardware stack-unit 0 unit 0 details ****************************************************** The total no of FP & CSF Devices in the Card is 1 The total no of FP Devices in the Card is 1 The total no of CSF Devices in the Card is 0 The number of ports in device 0 is - 49 The number of Hg ports in devices 0 is - 1...
Example 11 Figure 39-13. show hardware stack-unit per port buffer (a Specific Port) Command Example FTOS(conf)#show hardware stack-unit 0 buffer unit 0 port 1 buffer-info ----- Buffer Stats for Unit 0 Port 1 ----- Maximum Shared Limit for the Port: 30720 Default Packet Buffer allocate for the Port: 120 Used Packet Buffer for the Port: 0 Example 12...
Internet Control Message Protocol (ICMP) Message Types This chapter lists and describes the possible internet control message protocol (ICMP) Message Types resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. Table 40-1.
Page 696
Table 40-1. ICMP Messages and Their Definitions Symbol Type Code Description Query Error router advertisement • router solicitation • & time exceeded: time-to-live equals 0 during transit • time-to-live equals 0 during reassembly • parameter problem: IP header bad (catchall error) •...
SNMP Traps This chapter lists the traps sent by FTOS. Each trap is listed by the fields Message ID, Trap Type, and Trap Option, and the next is the message(s) associated with the trap. Table 41-1. SNMP Traps and Error Messages Message ID Trap Type Trap Option...
Page 698
Table 41-1. SNMP Traps and Error Messages (continued) Message ID Trap Type Trap Option RESV NONE NONE CHM_MIN_ALRM_TEMP ENVMON TEMP %CHMGR-2-MINOR_TEMP: Minor alarm: chassis temperature CHM_MIN_ALRM_TEMP_CLR ENVMON TEMP %CHMRG-5-MINOR_TEMP_CLR: Minor alarm cleared: chassis temperature normal (%s %d temperature is within threshold of %dC) CHM_MAJ_ALRM_TEMP ENVMON TEMP...
Page 699
Table 41-1. SNMP Traps and Error Messages (continued) Message ID Trap Type Trap Option %DIFFSERV-5-ETS_TRAP_TYPE_MODULE_STATUS_CHANGE: ETS Module status changed to disabled ETS_TRAP_TYPE_ADMIN_MODE_CHANG NONE %DIFFSERV-5-ETS_TRAP_TYPE_ADMIN_MODE_CHANGE : ETS Admin mode changed to on for port %s %DIFFSERV-5-ETS_TRAP_TYPE_ADMIN_MODE_CHANGE : ETS Admin mode changed to off for port %s ETS_TRAP_TYPE_OPER_STATE_CHANGE ETS NONE %DIFFSERV-5-ETS_TRAP_TYPE_OPER_STATE_CHANGE: ETS Oper state changed to init for port %s...
Page 700
Table 41-1. SNMP Traps and Error Messages (continued) Message ID Trap Type Trap Option FIPS_SESSION_DROP FIPS NONE %FCOE-5-SESSION_DROP: New session(%d,%s) request in interface %s dropped as max-session-limit in system reached FIPS_ACL_INSTALL_FAIL FIPS NONE %FCOE-5-ACL_INSTALL_FAIL: problem in installing ACL entries due to no space or hardware failure CHMGR_ENT_LAST_CHANGE_TIME ENTITY NONE...
Index Numerics bridge-priority bridge-priority (RSTP) 802.3x pause frames buffer buffer-profile Bulk Configuration aaa accounting suppress see interface range aaa authentication login Bulk Configuration Macro see interface range macro Access Control Lists (ACLs) access control lists. See ACL. access-class (common IP ACL) calendar set access-group CAM (Content Addressable Memory)
Page 702
LINE default logging console MAC ACCESS LIST default logging monitor MULTIPLE SPANNING TREE default logging trap PREFIX-LIST Default VLAN ROUTE-MAP default vlan-id ROUTER OSPF default-information originate ROUTER RIP default-metric SPANNING TREE OSPF clock read-calendar clock set default-metric (OSPF) clock summer-time date default-metric (RIP) clock summer-time recurring define interface range macro...
Page 703
disable (GVRP) external flash, number of files supported disable (MSTP) disable (PVST+) fast-convergence disable (RSTP) OSPF disable (STP) fast-convergence (OSPF) disable (VRRP) disable-on-sfm-failure files, number supported on external flash INTERFACE find parameter discontiguous subnet masks flood-2328 (OSPF) display parameter flow control values distance flow control, asymmetric OSPF...
Page 704
hostname ip igmp access-group ip local-proxy-arp command ip max-frag-count ip name-server ICMP ip ospf auth-change-wait-time IEEE 802.1d IETF RFCs OSPF 1058 ip ospf authentication-key 2328 ip ospf cost 2453 ip ospf dead-interval IFM (interface management) ip ospf hello-interval IGMP Snooping ip ospf message-digest-key Important Things to Remember for IGMP Querier ip ospf mtu-ignore...
Page 705
JumpStart mac access-group reload-type mac access-list extended (Extended MAC ACL) show reload-type mac access-list standard (standard MAC ACL) mac accounting destination MAC ACL, extended keepalive mac learning-limit mac learning-limit learn-limit-violation mac learning-limit reset LACP mac learning-limit station-move-violation clear lacp counters mac-address-table aging-time debug lacp mac-address-table static...
Page 708
aaa accounting show config (interface configuration) aaa accounting suppress show config (IP prefix ACL) aaa authorization show config (LAG) show accounting show config (MSTP) show config (OSPF) IP ACL (extended) show config (port monitor) standard IP ACL show config (Route Map) seq (extended IP ACLs) show config (RSTP) seq (Extended MAC ACL)
Page 709
show ip ospf database opaque-area show route-map show ip ospf database opaque-as show route-map (Route Map) show ip ospf database opaque-link show running-config extcommunity-list show ip ospf database router show running-config monitor session show ip ospf database summary show running-config uplink-state-group show ip ospf interface show sflow show ip ospf neighbor...
Command Index banner exec banner login banner motd aaa accounting bridge-priority (RSTP) aaa accounting suppress 535, 536 bridge-priority (STP) aaa authorization buffer Access list 95, 540 access-class clear counters ip access-group ip access-group 94, 140 show config calendar set show ip accounting access-list cam-acl Access list (extended) cam-optimization...
Page 720
copy running-config tftp diag stack-unit copy slot0 disable copy startup-config disable (GVRP) crypto key generate disable (LLDP) disable (MSTP) disable (PVST+) disable (RSTP) disable (STP) Debug debug arp clear host debug ftpserver ip domain-list debug ip icmp ip domain-lookup debug ip ospf ip domain-name debug ip packet 647, 648...
Page 721
ip igmp snooping mrouter ip igmp snooping querier ip local-proxy-arp hello (LLDP) ip max-frag-count hello-time (MSTP) ip name-server hello-time (RSTP) ip prefix-list hello-time (STP) ip proxy-arp hostname ip radius source-interface ip route ip source-route ip ssh authentication-retries IGMP ip ssh connection-rate-limit igmp snooping fast-leave ip ssh hostbased-authentication enable ip igmp querier-timeout...
Page 722
logging facility match ip address (Route Map) logging history match ip dscp logging history size match ip next-hop (Route Map) logging monitor match ip precedence logging on match ip route-source (Route Map) logging source-interface match mac access-group (policy QoS) logging synchronous match mac dot1p (policy QoS) logging trap match metric (Route Map)
Page 723
ntp broadcast client show ip ospf database ntp disable show ip ospf database asbr-summary ntp multicast client show ip ospf database database-summary ntp server show ip ospf database external ntp source show ip ospf database network ntp trusted-key show ip ospf database nssa-external ntp update-calendar show ip ospf database opaque-area show ntp associations...
Page 725
Route map service-policy-output match interface service-queue match ip address set (policy QoS) match ip next-hop set as-path (Route Map) match ip route-source set automatic-tag (Route Map) match metric set comm-list delete (Route Map) match route-type set metric (Route Map) match tag set metric-type (Route Map) route-map set origin (Route Map)
Page 726
show interfaces private-vlan show running-config 158, 159, 160, 161, 172 show interfaces rate show running-config lldp show interfaces stack-unit show running-config monitor session show interfaces status show running-config uplink-state-group show inventory (S-Series) show sflow show ip accounting access-list show sflow linecard show ip cam stack-unit show snmp show ip fib stack-unit...
Page 727
max-age tdr-cable-test protocol spanning-tree traceroute 349, 625 show config track ip show spanning-tree 0 trust diffserv spanning-tree spanning-tree (MSTP) spanning-tree 0 (STP) spanning-tree msti undebug all spanning-tree mstp 34, 35 upgrade (S-Series management unit) spanning-tree pvst upgrade boot spanning-tree rstp upgrade system speed uplink-state-group...